|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/interactivehomesinc/logs/W2K3WEB1/ |
Upload File : |
#Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 01:05:33 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 01:05:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 732 314 125 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 02:54:11 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 02:54:11 W3SVC1202 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 404 2 1850 269 0 2018-01-12 02:54:11 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 728 332 109 2018-01-12 02:54:17 W3SVC1202 W2K3WEB1 192.168.25.10 GET /intro.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 416 268 109 2018-01-12 02:54:17 W3SVC1202 W2K3WEB1 192.168.25.10 GET /introinitial.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 7823 275 0 2018-01-12 03:06:19 W3SVC1202 W2K3WEB1 192.168.25.10 HEAD /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Uptimebot/1.0;++http://www.uptime.com/uptimebot) - http://uptime-as.net/interactivehomesinc.com 200 0 411 244 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 03:25:42 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 03:25:42 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Magic+Browser - - 200 0 728 175 93 2018-01-12 03:28:56 W3SVC1202 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Cliqzbot/2.0;++http://cliqz.com/company/cliqzbot) - - 404 2 1850 326 0 2018-01-12 03:28:57 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Cliqzbot/2.0;++http://cliqz.com/company/cliqzbot) - - 200 0 732 316 125 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 05:14:39 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 05:14:39 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 728 310 125 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 06:18:52 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 06:18:52 W3SVC1202 W2K3WEB1 192.168.25.10 GET /dhvfrvg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 452 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 07:21:02 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 07:21:02 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 375 2018-01-12 07:21:04 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29924 11583 296 2018-01-12 07:21:06 W3SVC1202 W2K3WEB1 192.168.25.10 GET /upssacdehz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 465 0 2018-01-12 07:23:41 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wxchddy.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 462 0 2018-01-12 07:39:14 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2785.143+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 328 2018-01-12 07:39:18 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2785.143+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29848 11536 781 2018-01-12 07:39:20 W3SVC1202 W2K3WEB1 192.168.25.10 GET /crgzdhxs.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2785.143+Safari/537.36 - - 404 2 1850 458 15 2018-01-12 07:51:30 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/47.0.2526.111+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 618 343 2018-01-12 07:51:33 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/47.0.2526.111+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29830 11528 359 2018-01-12 07:51:34 W3SVC1202 W2K3WEB1 192.168.25.10 GET /aqnbwhrz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/47.0.2526.111+Safari/537.36 - - 404 2 1850 459 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 08:17:46 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 08:17:45 W3SVC1202 W2K3WEB1 192.168.25.10 GET /kepusbe.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Maxthon/4.4.3.4000+Chrome/30.0.1599.101+Safari/537.36 - - 404 2 1850 477 0 2018-01-12 08:17:47 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Maxthon/4.4.3.4000+Chrome/30.0.1599.101+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 637 296 2018-01-12 08:18:29 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Maxthon/4.4.3.4000+Chrome/30.0.1599.101+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 67642 30453 843 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 08:48:28 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 08:48:28 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 375 4818 31 2018-01-12 08:48:28 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 4534 15 2018-01-12 08:48:29 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 340 15 2018-01-12 08:48:29 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 4815 15 2018-01-12 08:50:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 338 46 2018-01-12 08:50:35 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 42984 426 359 2018-01-12 08:50:36 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 309 6213 31 2018-01-12 08:56:29 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 375 4821 31 2018-01-12 08:56:30 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 4817 31 2018-01-12 08:57:31 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 4827 0 2018-01-12 08:57:32 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 4540 15 2018-01-12 08:57:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 341 0 2018-01-12 08:57:34 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 7200 4817 1125 2018-01-12 08:57:36 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 435 0 2018-01-12 09:07:26 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 4544 46 2018-01-12 09:07:26 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 344 31 2018-01-12 09:07:27 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 42988 430 375 2018-01-12 09:07:27 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 42988 432 296 2018-01-12 09:07:27 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 309 6258 31 2018-01-12 09:22:53 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 610 328 2018-01-12 09:22:56 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29920 11565 312 2018-01-12 09:22:56 W3SVC1202 W2K3WEB1 192.168.25.10 GET /zenqqxux.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 - - 404 2 1850 451 0 2018-01-12 09:22:58 W3SVC1202 W2K3WEB1 192.168.25.10 GET /zenqqxux.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 - - 404 2 1850 452 0 2018-01-12 09:22:58 W3SVC1202 W2K3WEB1 192.168.25.10 GET /zenqqxux.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 - - 404 2 1850 450 0 2018-01-12 09:23:00 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 609 296 2018-01-12 09:23:04 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 60452 26834 671 2018-01-12 09:23:06 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 609 312 2018-01-12 09:23:08 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9540 1372 46 2018-01-12 09:23:10 W3SVC1202 W2K3WEB1 192.168.25.10 GET /mgdttkrs.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 - - 404 2 1850 450 0 2018-01-12 09:23:13 W3SVC1202 W2K3WEB1 192.168.25.10 GET /mgdttkrs.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.22+(KHTML,+like+Gecko)+Chrome/25.0.1364.172+Safari/537.22 - - 404 2 1850 451 0 2018-01-12 09:25:41 W3SVC1202 W2K3WEB1 192.168.25.10 GET /razfwdw.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Dragon/52.15.25.665+Chrome/52.0.2743.82+Safari/537.36 - - 404 2 1850 477 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 10:18:07 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 10:18:07 W3SVC1202 W2K3WEB1 192.168.25.10 GET /pgmxhmxa.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36 - - 404 2 1850 457 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 11:16:25 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 11:16:25 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 328 2018-01-12 11:16:28 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29884 11554 578 2018-01-12 11:16:30 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bwssyayr.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 - - 404 2 1850 458 0 2018-01-12 11:16:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bwssyayr.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 - - 404 2 1850 458 15 2018-01-12 11:16:35 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 265 2018-01-12 11:16:39 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 69182 31205 546 2018-01-12 11:16:46 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 359 2018-01-12 11:16:47 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9504 1362 31 2018-01-12 11:16:49 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bnechzsr.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 - - 404 2 1850 458 0 2018-01-12 11:16:51 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bnechzsr.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/27.0.1453.93+Safari/537.36 - - 404 2 1850 457 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 12:11:29 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 12:11:29 W3SVC1202 W2K3WEB1 192.168.25.10 GET /hpuzv.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 404 2 1850 454 0 2018-01-12 12:11:30 W3SVC1202 W2K3WEB1 192.168.25.10 GET /hpuzv.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 404 2 1850 456 0 2018-01-12 12:11:32 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 618 359 2018-01-12 12:12:11 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 57928 25577 390 2018-01-12 12:22:29 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_pvt/_vti_cnf/infodata.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows+NT+6.1;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://interactivehomesinc.com/_vti_pvt/_vti_cnf/infodata.php 404 3 258 474 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 12:45:59 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 12:45:59 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_5)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/58.0.3029.110+Safari/537.36 - - 200 0 728 277 140 2018-01-12 12:48:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /udzfryt.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/50.0.2661.64+Safer/50.0.2661.205+Safari/537.36 - - 404 2 1850 477 0 2018-01-12 12:53:34 W3SVC1202 W2K3WEB1 192.168.25.10 GET /backups.php 35e641cd01eafff2f371c90bd66cb51e48a353bc=fa212b10fea997986e6d732dc57836dda535e3f4 80 - 192.168.25.52 HTTP/1.1 Go-http-client/1.1 - - 404 2 1869 253 15 2018-01-12 12:53:35 W3SVC1202 W2K3WEB1 192.168.25.10 GET /backups.php 35e641cd01eafff2f371c90bd66cb51e48a353bc=fa212b10fea997986e6d732dc57836dda535e3f4 80 - 192.168.25.52 HTTP/1.1 Go-http-client/1.1 - - 404 2 1869 254 15 2018-01-12 12:58:29 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-admin/ - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows+NT+10.0;+WOW64;+rv:56.0)+Gecko/20100101+Firefox/56.0 - - 404 2 1874 339 0 2018-01-12 12:58:29 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-login.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows+NT+10.0;+WOW64;+rv:56.0)+Gecko/20100101+Firefox/56.0 - - 404 2 1874 342 0 2018-01-12 13:02:25 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 609 328 2018-01-12 13:02:28 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29842 11525 421 2018-01-12 13:02:30 W3SVC1202 W2K3WEB1 192.168.25.10 GET /znwvyb.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 448 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 13:34:50 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 13:34:50 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 340 31 2018-01-12 13:34:51 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 124555 578 2018-01-12 13:34:51 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 9484 428 31 2018-01-12 13:36:59 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 378 124557 453 2018-01-12 13:37:00 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 159836 656 2018-01-12 13:37:00 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 340 31 2018-01-12 13:44:47 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 159837 671 2018-01-12 13:44:59 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 340 15 2018-01-12 13:45:00 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 124553 859 2018-01-12 13:46:26 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 340 0 2018-01-12 13:58:59 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 378 124561 453 2018-01-12 13:59:02 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 159841 1546 2018-01-12 13:59:03 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 378 124560 703 2018-01-12 13:59:06 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 350 124555 718 2018-01-12 13:59:10 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 309 224805 1062 2018-01-12 14:04:09 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET4.0C) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 666 375 2018-01-12 14:04:15 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET4.0C) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29924 11627 640 2018-01-12 14:04:20 W3SVC1202 W2K3WEB1 192.168.25.10 GET /cssxbqmewg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET4.0C) - - 404 2 1850 509 0 2018-01-12 14:08:08 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/45.0.2454.85+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 359 2018-01-12 14:08:14 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/45.0.2454.85+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29780 11506 468 2018-01-12 14:08:25 W3SVC1202 W2K3WEB1 192.168.25.10 GET /znhhzq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/45.0.2454.85+Safari/537.36 - - 404 2 1850 456 0 2018-01-12 14:08:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /znhhzq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/45.0.2454.85+Safari/537.36 - - 404 2 1850 454 15 2018-01-12 14:09:17 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+rv:49.0)+Gecko/20100101+Firefox/49.0 - - 200 0 477 773 31 2018-01-12 14:09:23 W3SVC1202 W2K3WEB1 192.168.25.10 GET /rvegx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/45.0.2454.85+Safari/537.36 - - 404 2 1850 452 0 2018-01-12 14:09:24 W3SVC1202 W2K3WEB1 192.168.25.10 GET /rvegx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/45.0.2454.85+Safari/537.36 - - 404 2 1850 455 0 2018-01-12 14:14:38 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/39.0.2171.95+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 618 328 2018-01-12 14:14:41 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/39.0.2171.95+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29860 11543 250 2018-01-12 14:14:42 W3SVC1202 W2K3WEB1 192.168.25.10 GET /fgwpkpuyhz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/39.0.2171.95+Safari/537.36 - - 404 2 1850 461 0 2018-01-12 14:14:42 W3SVC1202 W2K3WEB1 192.168.25.10 GET /fgwpkpuyhz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/39.0.2171.95+Safari/537.36 - - 404 2 1850 459 0 2018-01-12 14:15:01 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wznhdmkrx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/39.0.2171.95+Safari/537.36 - - 404 2 1850 458 0 2018-01-12 14:16:23 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wznhdmkrx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/39.0.2171.95+Safari/537.36 - - 404 2 1850 458 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 15:01:27 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 15:01:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - - 200 0 732 332 46 2018-01-12 15:01:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /introtop.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/ 200 0 696 391 31 2018-01-12 15:01:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /intro.js - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/introtop.html 200 0 1321 339 78 2018-01-12 15:01:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - - 404 2 1850 343 0 2018-01-12 15:01:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /introbottom.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/ 200 0 447 394 109 2018-01-12 15:01:27 W3SVC1202 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - - 404 2 1850 343 0 2018-01-12 15:01:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /intro.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/introtop.html 200 0 416 400 109 2018-01-12 15:01:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /introinitial.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 7823 403 0 2018-01-12 15:01:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /content.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 2045 399 0 2018-01-12 15:01:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /pins004.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 41252 398 15 2018-01-12 15:01:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /mp3loader.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 475 400 62 2018-01-12 15:01:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /040513c-minorresolution.mp3 - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 615521 414 93 2018-01-12 15:01:36 W3SVC1202 W2K3WEB1 192.168.25.10 GET /technology_018.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 206 0 272815 458 15 2018-01-12 15:01:36 W3SVC1202 W2K3WEB1 192.168.25.10 GET /technology_018.swf - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 64 196962 405 4969 2018-01-12 15:01:43 W3SVC1202 W2K3WEB1 192.168.25.10 GET /drf-article-1.jpg - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 138579 404 140 2018-01-12 15:01:58 W3SVC1202 W2K3WEB1 192.168.25.10 GET /cert-signs-x3-fx2.jpg - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:38.0)+Gecko/20100101+Firefox/38.0 - http://www.interactivehomesinc.com/intro.swf 200 0 44754 408 125 2018-01-12 15:15:11 W3SVC1202 W2K3WEB1 192.168.25.10 GET /&wd=test - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:43.0)+Gecko/20100101+Firefox/43.0 - http://www.baidu.com/s?wd=QMY0 404 2 1850 365 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 15:36:13 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 15:36:13 W3SVC1202 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 404 2 1850 291 15 2018-01-12 15:37:16 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16271 234 2018-01-12 15:37:17 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16278 296 2018-01-12 15:37:19 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16274 140 2018-01-12 15:43:10 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16279 156 2018-01-12 15:43:12 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16281 218 2018-01-12 15:43:12 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-info.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16278 109 2018-01-12 15:44:11 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 16285 468 2018-01-12 15:44:13 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 21210 156 2018-01-12 15:44:14 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 341 0 2018-01-12 15:44:16 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 7214 16272 1250 2018-01-12 15:44:18 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 16287 609 2018-01-12 15:44:20 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 21214 500 2018-01-12 15:44:20 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 342 0 2018-01-12 15:44:24 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 16285 109 2018-01-12 15:44:24 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 21211 203 2018-01-12 15:44:25 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 16287 93 2018-01-12 15:44:26 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 21215 250 2018-01-12 15:44:28 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 345 340 15 2018-01-12 15:44:31 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-green.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 7214 16276 1265 2018-01-12 15:53:04 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 389 16282 203 2018-01-12 15:53:44 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 64 0 21218 29203 2018-01-12 15:53:44 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 42988 428 7828 2018-01-12 15:53:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 309 29371 250 2018-01-12 15:53:46 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/5.0+(Windows;+U;+Windows+NT+6.1;+en-US;+rv:1.9.2)+Gecko/20100115+Firefox/3.6 - - 200 0 309 29339 359 2018-01-12 16:00:04 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36+OPR/36.0.2130.80 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 627 296 2018-01-12 16:00:08 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36+OPR/36.0.2130.80 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29938 11595 640 2018-01-12 16:00:10 W3SVC1202 W2K3WEB1 192.168.25.10 GET /adxyaxeudm.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36+OPR/36.0.2130.80 - - 404 2 1850 470 0 2018-01-12 16:14:57 W3SVC1202 W2K3WEB1 192.168.25.10 GET /cbhqxuteeg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/42.0.2311.135+Safari/537.36+Edge/12.10240 - - 404 2 1850 479 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 16:41:58 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 16:41:57 W3SVC1202 W2K3WEB1 192.168.25.10 GET /autodiscover/autodiscover.xml - 80 - 192.168.25.52 HTTP/1.0 Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+6.1;+Win64;+x64;+Trident/6.0;+.NET+CLR+2.0.50727;+SLCC2;+.NET+CLR+3.5.30729;+.NET+CLR+3.0.30729;+Media+Center+PC+6.0;+.NET4.0C;+.NET4.0E;+InfoPath.3;+Tablet+PC+2.0;+Microsoft+Outlook+15.0.4481;+ms-office;+MSOffice+15) - http://interactivehomesinc.com/autodiscover/autodiscover.xml 404 3 1869 872 0 2018-01-12 16:43:54 W3SVC1202 W2K3WEB1 192.168.25.10 GET /efymf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 461 0 2018-01-12 16:44:10 W3SVC1202 W2K3WEB1 192.168.25.10 GET /efymf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 16:44:12 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 343 2018-01-12 16:44:16 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 55130 24182 1343 2018-01-12 16:44:20 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 265 2018-01-12 16:44:23 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9490 1364 46 2018-01-12 16:44:25 W3SVC1202 W2K3WEB1 192.168.25.10 GET /ntwpp.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 16:45:06 W3SVC1202 W2K3WEB1 192.168.25.10 GET /ntwpp.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.99+Safari/537.36 - - 404 2 1850 459 0 2018-01-12 16:55:44 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+rv:50.0)+Gecko/20100101+Firefox/50.0.2+Waterfox/50.0.2 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 605 375 2018-01-12 16:55:47 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+rv:50.0)+Gecko/20100101+Firefox/50.0.2+Waterfox/50.0.2 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29854 11531 437 2018-01-12 16:55:48 W3SVC1202 W2K3WEB1 192.168.25.10 GET /rnaxxxxz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+rv:50.0)+Gecko/20100101+Firefox/50.0.2+Waterfox/50.0.2 - - 404 2 1850 446 0 2018-01-12 17:01:38 W3SVC1202 W2K3WEB1 192.168.25.10 GET /fmzkfsytbb.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) - - 404 2 1850 480 0 2018-01-12 17:01:40 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 637 296 2018-01-12 17:01:42 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 53920 23594 390 2018-01-12 17:01:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 637 265 2018-01-12 17:01:46 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9542 1401 31 2018-01-12 17:01:48 W3SVC1202 W2K3WEB1 192.168.25.10 GET /dgrnfhxk.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) - - 404 2 1850 478 0 2018-01-12 17:01:49 W3SVC1202 W2K3WEB1 192.168.25.10 GET /dgrnfhxk.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) - - 404 2 1850 431 0 2018-01-12 17:01:51 W3SVC1202 W2K3WEB1 192.168.25.10 GET /dgrnfhxk.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) - - 404 2 1850 432 0 2018-01-12 17:01:52 W3SVC1202 W2K3WEB1 192.168.25.10 GET /dgrnfhxk.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) - - 404 2 1850 431 0 2018-01-12 17:01:52 W3SVC1202 W2K3WEB1 192.168.25.10 GET /dgrnfhxk.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322) - - 404 2 1850 431 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 18:15:12 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 18:15:12 W3SVC1202 W2K3WEB1 192.168.25.10 GET /hmtgxpnq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 457 15 2018-01-12 18:19:54 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 609 359 2018-01-12 18:19:57 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29900 11554 265 2018-01-12 18:19:58 W3SVC1202 W2K3WEB1 192.168.25.10 GET /fmvktxm.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.112+Safari/537.36 - - 404 2 1850 449 0 2018-01-12 18:34:21 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wreuwavzr.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 476 15 2018-01-12 18:34:23 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 634 312 2018-01-12 18:34:31 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 57294 25280 1125 2018-01-12 18:34:41 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 634 328 2018-01-12 18:34:46 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9508 1381 46 2018-01-12 18:34:48 W3SVC1202 W2K3WEB1 192.168.25.10 GET /xeqhmcwbg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 476 0 2018-01-12 18:35:31 W3SVC1202 W2K3WEB1 192.168.25.10 GET /xeqhmcwbg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 477 0 2018-01-12 18:35:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /xeqhmcwbg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 477 0 2018-01-12 18:35:35 W3SVC1202 W2K3WEB1 192.168.25.10 GET /xeqhmcwbg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 520 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 19:28:14 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 19:28:14 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wp-content/themes/headway-162/style.css - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/42.0.2311.152+Safari/537.36 - http://www.interactivehomesinc.com/wp-content/themes/headway-162/style.css 404 3 1869 489 0 2018-01-12 19:40:44 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_pvt/mfhqe - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(iPad;+CPU+OS+10_3_2+like+Mac+OS+X)+AppleWebKit/603.2.4+(KHTML,+like+Gecko)+Version/10.0+Mobile/14F89+Safari/602.1 - http://interactivehomesinc.com/_vti_pvt/mfhqe 404 2 258 569 0 2018-01-12 19:40:44 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_pvt/index.php owyv=ohc 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_7_3)+AppleWebKit/534.55.3+(KHTML,+like+Gecko)+Version/5.1.3+Safari/534.53.10 - http://interactivehomesinc.com/_vti_pvt/index.php?owyv=ohc 404 2 258 582 0 2018-01-12 19:40:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_pvt/jovxxgy - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_7_3)+AppleWebKit/534.55.3+(KHTML,+like+Gecko)+Version/5.1.3+Safari/534.53.10 - http://www.interactivehomesinc.com/_vti_pvt/jovxxgy 404 2 258 570 0 2018-01-12 19:40:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_pvt/index.php srxy=obvhj 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_7_3)+AppleWebKit/534.55.3+(KHTML,+like+Gecko)+Version/5.1.3+Safari/534.53.10 - http://www.interactivehomesinc.com/_vti_pvt/index.php?srxy=obvhj 404 2 258 600 0 2018-01-12 19:40:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_txt/wlmkfk - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - http://interactivehomesinc.com/_vti_txt/wlmkfk 403 5 1744 513 0 2018-01-12 19:40:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_txt/index.php lqh=riu 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/59.0.3071.115+Safari/537.36 - http://interactivehomesinc.com/_vti_txt/index.php?lqh=riu 403 0 1973 583 0 2018-01-12 19:40:45 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_txt/okvsh - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/59.0.3071.115+Safari/537.36 - http://www.interactivehomesinc.com/_vti_txt/okvsh 403 5 1744 564 0 2018-01-12 19:40:46 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_txt/index.php blyc=mngt 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - http://www.interactivehomesinc.com/_vti_txt/index.php?blyc=mngt 403 0 1973 546 0 2018-01-12 19:40:46 W3SVC1202 W2K3WEB1 192.168.25.10 POST /_vti_pvt/_vti_cnf/lummpc - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - http://interactivehomesinc.com/_vti_pvt/_vti_cnf/lummpc 500 87 254 531 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 19:57:15 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 19:57:14 W3SVC1202 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10.11;+rv:48.0)+Gecko/20100101+Firefox/48.0+glindahl-cocrawler/0.1.5.dev294+g613ad3a.d20180112+(+http://www.pbm.com/~lindahl/glindahl-cocrawler.html) - - 404 2 1850 367 0 2018-01-12 19:57:14 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10.11;+rv:48.0)+Gecko/20100101+Firefox/48.0+glindahl-cocrawler/0.1.5.dev294+g613ad3a.d20180112+(+http://www.pbm.com/~lindahl/glindahl-cocrawler.html) - - 200 0 908 357 109 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 20:47:38 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 20:47:38 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET4.0C) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 665 375 2018-01-12 20:48:17 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+1.1.4322;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET4.0C) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29886 11607 546 2018-01-12 20:53:57 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 343 2018-01-12 20:54:01 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29890 11562 468 2018-01-12 20:54:03 W3SVC1202 W2K3WEB1 192.168.25.10 GET /nnsnvwcwkw.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 - - 404 2 1850 465 0 2018-01-12 20:54:04 W3SVC1202 W2K3WEB1 192.168.25.10 GET /nnsnvwcwkw.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 - - 404 2 1850 465 0 2018-01-12 20:54:04 W3SVC1202 W2K3WEB1 192.168.25.10 GET /nnsnvwcwkw.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 - - 404 2 1850 465 0 2018-01-12 20:54:05 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 296 2018-01-12 20:54:07 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 68380 30807 312 2018-01-12 20:54:09 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 312 2018-01-12 20:54:09 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9532 1381 31 2018-01-12 20:54:11 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvuas.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 20:54:13 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvuas.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 20:54:14 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvuas.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.75+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 20:59:19 W3SVC1202 W2K3WEB1 192.168.25.10 GET /snmzda.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 473 15 2018-01-12 20:59:20 W3SVC1202 W2K3WEB1 192.168.25.10 GET /snmzda.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 473 0 2018-01-12 20:59:22 W3SVC1202 W2K3WEB1 192.168.25.10 GET /snmzda.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2623.75+Safari/537.36+OPR/36.0.2130.32 - - 404 2 1850 472 0 2018-01-12 21:11:59 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64;+g0bi6Dlg-23)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 629 296 2018-01-12 21:12:02 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64;+g0bi6Dlg-23)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29900 11578 437 2018-01-12 21:12:05 W3SVC1202 W2K3WEB1 192.168.25.10 GET /zvvvz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64;+g0bi6Dlg-23)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 467 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 21:55:50 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 21:55:49 W3SVC1202 W2K3WEB1 192.168.25.10 GET /anwdscxtw.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2840.87+Safari/537.36 - - 404 2 1850 459 0 2018-01-12 22:01:58 W3SVC1202 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.0 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.04506.648;+.NET+CLR+3.5.21022;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+InfoPath.2) - http://interactivehomesinc.com/robots.txt 404 2 1869 372 0 2018-01-12 22:01:58 W3SVC1202 W2K3WEB1 192.168.25.10 GET /anwdscxtw.php - 80 - 192.168.25.52 HTTP/1.0 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+2.0.50727;+.NET+CLR+3.0.04506.648;+.NET+CLR+3.5.21022;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+InfoPath.2) - http://interactivehomesinc.com/anwdscxtw.php 404 2 1869 378 0 2018-01-12 22:03:24 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/48.0.2564.109+Safari/537.36 - - 200 0 42988 342 296 2018-01-12 22:03:26 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/48.0.2564.109+Safari/537.36 - - 200 0 8482 440 203 2018-01-12 22:03:26 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/48.0.2564.109+Safari/537.36 - - 200 0 52091 396 62 2018-01-12 22:07:51 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 622 359 2018-01-12 22:07:52 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29858 11550 250 2018-01-12 22:07:52 W3SVC1202 W2K3WEB1 192.168.25.10 GET /syvkt.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 22:13:40 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2785.143+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 618 296 2018-01-12 22:13:43 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2785.143+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29888 11557 421 2018-01-12 22:13:45 W3SVC1202 W2K3WEB1 192.168.25.10 GET /fvkts.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2785.143+Safari/537.36 - - 404 2 1850 456 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 22:32:12 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 22:32:12 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 615 375 2018-01-12 22:32:17 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29880 11554 546 2018-01-12 22:32:20 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wmcuvc.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 454 0 2018-01-12 22:32:22 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wmcuvc.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 455 0 2018-01-12 22:32:23 W3SVC1202 W2K3WEB1 192.168.25.10 GET /wmcuvc.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 456 0 2018-01-12 22:32:26 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 343 2018-01-12 22:32:35 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 60848 27038 3031 2018-01-12 22:32:43 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 281 2018-01-12 22:32:48 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9532 1376 46 2018-01-12 22:32:50 W3SVC1202 W2K3WEB1 192.168.25.10 GET /qxgcxqvzra.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 460 0 2018-01-12 22:32:52 W3SVC1202 W2K3WEB1 192.168.25.10 GET /qxgcxqvzra.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 459 0 2018-01-12 22:33:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /qxgcxqvzra.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 461 0 2018-01-12 22:33:35 W3SVC1202 W2K3WEB1 192.168.25.10 GET /qxgcxqvzra.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2883.87+Safari/537.36 - - 404 2 1850 458 0 2018-01-12 22:46:21 W3SVC1202 W2K3WEB1 192.168.25.10 GET /shfzuvt.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/31.0.1650.57+Safari/537.36 - - 404 2 1850 456 15 2018-01-12 22:46:23 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/31.0.1650.57+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 616 359 2018-01-12 22:46:39 W3SVC1202 W2K3WEB1 192.168.25.10 GET /index.html - 80 - 192.168.25.52 HTTP/1.1 - - - 200 0 908 84 109 2018-01-12 22:47:04 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/31.0.1650.57+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 63728 28475 687 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 23:12:28 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 23:12:27 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/43.0.2357.130+AOL/9.8+AOLBuild/4346.2019.US+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 687 296 2018-01-12 23:12:29 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/43.0.2357.130+AOL/9.8+AOLBuild/4346.2019.US+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29838 11601 406 2018-01-12 23:12:31 W3SVC1202 W2K3WEB1 192.168.25.10 GET /ffdqugzfyq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/43.0.2357.130+AOL/9.8+AOLBuild/4346.2019.US+Safari/537.36 - - 404 2 1850 530 15 2018-01-12 23:12:33 W3SVC1202 W2K3WEB1 192.168.25.10 GET /ffdqugzfyq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/43.0.2357.130+AOL/9.8+AOLBuild/4346.2019.US+Safari/537.36 - - 404 2 1850 484 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-01-12 23:37:05 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-01-12 23:37:05 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+2.0.50727;+InfoPath.2;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET+CLR+1.1.4322;+.NET4.0C) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 676 390 2018-01-12 23:37:08 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+2.0.50727;+InfoPath.2;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET+CLR+1.1.4322;+.NET4.0C) 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 29904 11623 406 2018-01-12 23:37:11 W3SVC1202 W2K3WEB1 192.168.25.10 GET /urpnykyz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+8.0;+Windows+NT+5.1;+Trident/4.0;+.NET+CLR+2.0.50727;+InfoPath.2;+.NET+CLR+3.0.4506.2152;+.NET+CLR+3.5.30729;+.NET+CLR+1.1.4322;+.NET4.0C) - - 404 2 1850 517 0 2018-01-12 23:39:53 W3SVC1202 W2K3WEB1 192.168.25.10 GET /xxvwx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 - - 404 2 1850 455 0 2018-01-12 23:39:56 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 343 2018-01-12 23:40:07 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 57192 25212 3000 2018-01-12 23:40:18 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 42984 617 328 2018-01-12 23:40:27 W3SVC1202 W2K3WEB1 192.168.25.10 POST /wp-conf.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0;+5478f7b6d367034d8ab8ec840e37b287=98f1c0df11a885a189652547179c45f0 - 200 0 9504 1362 46 2018-01-12 23:40:31 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvxsvna.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 - - 404 2 1850 457 0 2018-01-12 23:40:31 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvxsvna.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 - - 404 2 1850 459 0 2018-01-12 23:40:32 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvxsvna.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 - - 404 2 1850 458 0 2018-01-12 23:41:13 W3SVC1202 W2K3WEB1 192.168.25.10 GET /bvxsvna.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.120+Safari/537.36 - - 404 2 1850 456 15