#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 00:52:16
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 00:52:16 W3SVC93 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+YandexBot/3.0;++http://yandex.com/bots) - - 404 2 1850 225 15
2018-01-10 00:52:20 W3SVC93 W2K3WEB1 192.168.25.10 GET /pickup_files/filelist.xml - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+YandexBot/3.0;++http://yandex.com/bots) - - 200 0 495 284 109
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 02:51:06
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 02:51:06 W3SVC93 W2K3WEB1 192.168.25.10 GET /wp-login.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+MSIE+9.0;+Windows+NT+6.1;+Trident/5.0) - - 404 2 1850 266 0
2018-01-10 02:51:06 W3SVC93 W2K3WEB1 192.168.25.10 GET /wp-login.php - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+MSIE+9.0;+Windows+NT+6.1;+Trident/5.0) - - 404 2 1850 243 0
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 03:10:08
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 03:10:08 W3SVC93 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - 404 2 1850 288 0
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 04:03:25
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 04:03:25 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/42.0.2311.90+Safari/537.36 - - 200 0 792 392 125
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 04:45:04
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 04:45:03 W3SVC93 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 404 2 1850 268 0
2018-01-10 04:45:03 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 788 331 109
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 05:06:54
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 05:06:54 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(iPhone;+CPU+iPhone+OS+7_0+like+Mac+OS+X)+AppleWebKit/537.51.1+(KHTML,+like+Gecko)+Version/7.0+Mobile/11A465+Safari/9537.53+BingPreview/1.0b - - 200 0 990 346 109
2018-01-10 05:06:56 W3SVC93 W2K3WEB1 192.168.25.10 GET /Menu.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(iPhone;+CPU+iPhone+OS+7_0+like+Mac+OS+X)+AppleWebKit/537.51.1+(KHTML,+like+Gecko)+Version/7.0+Mobile/11A465+Safari/9537.53+BingPreview/1.0b - - 200 0 2335 354 0
2018-01-10 05:06:57 W3SVC93 W2K3WEB1 192.168.25.10 GET /Homepage.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(iPhone;+CPU+iPhone+OS+7_0+like+Mac+OS+X)+AppleWebKit/537.51.1+(KHTML,+like+Gecko)+Version/7.0+Mobile/11A465+Safari/9537.53+BingPreview/1.0b - - 200 0 3062 358 109
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 07:20:35
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 07:20:35 W3SVC93 W2K3WEB1 192.168.25.10 GET /ads.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 404 2 1850 338 15
2018-01-10 07:34:20 W3SVC93 W2K3WEB1 192.168.25.10 HEAD /Default.htm - 80 - 192.168.25.52 HTTP/1.1 - - - 200 0 398 99 46
2018-01-10 07:36:33 W3SVC93 W2K3WEB1 192.168.25.10 HEAD /Default.htm - 80 - 192.168.25.52 HTTP/1.1 - - - 200 0 398 99 31
2018-01-10 07:43:58 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 788 331 109
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 08:55:08
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 08:55:08 W3SVC93 W2K3WEB1 192.168.25.10 GET /robots.txt - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 404 2 1850 271 0
2018-01-10 08:55:08 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(compatible;+Googlebot/2.1;++http://www.google.com/bot.html) - - 200 0 792 334 125
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 11:27:27
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 11:27:26 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354568 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1317 326 328
2018-01-10 11:27:28 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 269 0
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 12:33:42
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 12:33:42 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354367 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/62.0.3202.62+Safari/537.36 - - 200 0 1301 512 156
2018-01-10 12:33:42 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/62.0.3202.62+Safari/537.36 ASPSESSIONIDSQCDTRDS=LAEFHKNCCJDGHOBEDLMPIJAA http://www.windsordistribution.com/vwrpacktrack.asp?pronum=354367 404 2 1850 548 0
2018-01-10 12:34:26 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/59.0.3071.115+Safari/537.36+OPR/46.0.2597.57 - - 200 0 788 286 78
2018-01-10 12:35:50 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354915 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/62.0.3202.62+Safari/537.36 ASPSESSIONIDSQCDTRDS=LAEFHKNCCJDGHOBEDLMPIJAA - 200 0 1207 567 140
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 13:04:47
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 13:04:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354974 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 443 337 187
2018-01-10 13:04:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=OAEFHKNCMAHEJBOHHGNONCMO - 404 2 1850 315 0
2018-01-10 13:08:25 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQDCQQDS=BCJHCJIBABECBLHBPMPOOFAD;+ASPSESSIONIDAQQQDTCT=GMKHALBBCBMBALMKLKNKKAGO;+ASPSESSIONIDSQAASRCT=NDNBFADCMFFJLLHBLFIEECPP;+ASPSESSIONIDAQRRCTCT=IEEHPCOBAOIOHGHGAALLNEME;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 588 683 156
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 13:31:04
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 13:31:04 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1330 532 156
2018-01-10 13:33:15 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1262 579 156
2018-01-10 13:39:52 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354873 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.84+Safari/537.36 ASPSESSIONIDAQRRCTCT=OEEHPCOBPCLKGDCLBKLKMOJL - 200 0 1295 518 156
2018-01-10 13:42:01 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354873 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/62.0.3202.75+Safari/537.36 - - 200 0 1295 456 140
2018-01-10 13:42:04 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/62.0.3202.75+Safari/537.36 ASPSESSIONIDSQCDTRDS=FBEFHKNCCFJJCFFIHCDMPAMO http://www.windsordistribution.com/vwrpacktrack.asp?pronum=354873 404 2 1850 492 0
2018-01-10 13:45:07 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123674 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 - - 200 0 588 459 140
2018-01-10 13:45:07 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/vwrpacktrack.asp?pronum=123674 404 2 1850 495 0
2018-01-10 13:45:12 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123674 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB - 200 0 521 514 140
2018-01-10 13:46:24 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123674 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB - 200 0 521 514 140
2018-01-10 13:46:29 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123674 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB - 200 0 521 514 140
2018-01-10 13:46:36 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB - 200 0 792 484 62
2018-01-10 13:46:36 W3SVC93 W2K3WEB1 192.168.25.10 GET /Homepage.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/ 200 0 1636 542 0
2018-01-10 13:46:36 W3SVC93 W2K3WEB1 192.168.25.10 GET /Homepage_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/Homepage.htm 200 0 11025 493 0
2018-01-10 13:46:36 W3SVC93 W2K3WEB1 192.168.25.10 GET /Menu.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/ 200 0 972 538 109
2018-01-10 13:46:40 W3SVC93 W2K3WEB1 192.168.25.10 GET /login.asp - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/Menu.htm 200 0 1738 547 46
2018-01-10 13:46:40 W3SVC93 W2K3WEB1 192.168.25.10 GET /login_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/login.asp 404 2 1850 487 0
2018-01-10 13:46:46 W3SVC93 W2K3WEB1 192.168.25.10 GET /Proof.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/Menu.htm 200 0 2410 547 0
2018-01-10 13:46:46 W3SVC93 W2K3WEB1 192.168.25.10 GET /Proof_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/Proof.htm 200 0 11025 487 15
2018-01-10 13:46:48 W3SVC93 W2K3WEB1 192.168.25.10 GET /pickup.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/Menu.htm 200 0 3023 549 31
2018-01-10 13:46:48 W3SVC93 W2K3WEB1 192.168.25.10 GET /pickup_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB http://www.windsordistribution.com/pickup.html 200 0 10906 490 15
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 14:19:31
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 14:19:30 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 579 156
2018-01-10 14:28:37 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=225982 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 588 363 140
2018-01-10 14:38:35 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 - https://www.google.com/ 200 0 788 456 46
2018-01-10 14:38:35 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 - http://windsordistribution.com/ 404 2 1850 399 0
2018-01-10 14:41:23 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354915 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1312 363 156
2018-01-10 14:41:23 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=DCEFHKNCHLOINNOCLBHAKADM - 404 2 1850 341 0
2018-01-10 14:53:29 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123704 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1330 333 156
2018-01-10 14:53:30 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 276 0
2018-01-10 14:56:07 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=236039 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 - - 200 0 1305 459 140
2018-01-10 14:56:07 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=GCEFHKNCMPMKFCGFLGFKJCNK http://www.windsordistribution.com/vwrpacktrack.asp?pronum=236039 404 2 1850 495 0
2018-01-10 15:01:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235810 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1310 333 140
2018-01-10 15:01:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=ICEFHKNCAADCGLLLFKKMCMON - 404 2 1850 311 0
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 15:22:18
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 15:22:18 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235966 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1326 363 156
2018-01-10 15:22:18 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=LCEFHKNCGOCGDGILCGFBDANA - 404 2 1850 341 15
2018-01-10 15:23:24 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=236004 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQAASRCT=MDNBFADCEKKBJNJEPOECDJEA - 200 0 1314 513 140
2018-01-10 15:23:24 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQAASRCT=MDNBFADCEKKBJNJEPOECDJEA;+ASPSESSIONIDSQCDTRDS=MCEFHKNCMMNHMPCAPDOELIIG http://www.windsordistribution.com/vwrpacktrack.asp?pronum=236004 404 2 1850 541 0
2018-01-10 15:29:38 W3SVC93 W2K3WEB1 192.168.25.10 POST /Default.htm %2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/56.0.2924.87+Safari/537.36 - - 405 0 1822 1000 0
2018-01-10 15:29:42 W3SVC93 W2K3WEB1 192.168.25.10 POST /cgi-bin/php %2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/56.0.2924.87+Safari/537.36 - - 404 2 1850 1011 0
2018-01-10 15:29:44 W3SVC93 W2K3WEB1 192.168.25.10 POST /cgi-bin/php5 %2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/56.0.2924.87+Safari/537.36 - - 404 2 1850 1012 0
2018-01-10 15:29:46 W3SVC93 W2K3WEB1 192.168.25.10 POST /cgi-bin/php4 %2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/56.0.2924.87+Safari/537.36 - - 404 2 1850 1012 0
2018-01-10 15:29:47 W3SVC93 W2K3WEB1 192.168.25.10 POST /cgi-bin/php-cgi %2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/56.0.2924.87+Safari/537.36 - - 404 2 1850 1015 0
2018-01-10 15:29:49 W3SVC93 W2K3WEB1 192.168.25.10 POST /cgi-bin/php.cgi %2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/56.0.2924.87+Safari/537.36 - - 404 2 1850 1015 0
2018-01-10 15:41:25 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=230457 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1333 325 140
2018-01-10 15:48:31 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=236041 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.106+Safari/537.36 - - 200 0 1339 529 140
2018-01-10 15:48:31 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.106+Safari/537.36 ASPSESSIONIDSQCDTRDS=ADEFHKNCDHHKMFFFDHIDEMPG http://www.windsordistribution.com/vwrpacktrack.asp?pronum=236041 404 2 1850 540 0
2018-01-10 15:49:19 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(X11;+Linux+x86_64;+rv:30.0)+Gecko/20100101+Firefox/30.0+Iceweasel/30.0 - - 200 0 994 357 109
2018-01-10 15:51:20 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=233749 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 - - 200 0 1353 531 140
2018-01-10 15:51:20 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=BDEFHKNCHANBCPEIPLFCGCNB http://www.windsordistribution.com/vwrpacktrack.asp?pronum=233749 404 2 1850 502 0
2018-01-10 15:52:40 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=233749 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=BDEFHKNCHANBCPEIPLFCGCNB - 200 0 1285 586 140
2018-01-10 15:53:08 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=234490 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=BDEFHKNCHANBCPEIPLFCGCNB - 200 0 1286 586 140
2018-01-10 15:57:28 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=233749 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=BDEFHKNCHANBCPEIPLFCGCNB - 200 0 1285 586 140
2018-01-10 15:58:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=234490 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=BDEFHKNCHANBCPEIPLFCGCNB - 200 0 1286 586 156
2018-01-10 16:10:00 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123728 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1309 325 140
2018-01-10 16:10:01 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 268 0
2018-01-10 16:22:30 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 579 156
2018-01-10 16:22:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 579 140
2018-01-10 16:22:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 579 140
2018-01-10 16:22:36 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 579 140
2018-01-10 16:27:48 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=236004 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQAASRCT=MDNBFADCEKKBJNJEPOECDJEA;+ASPSESSIONIDSQCDTRDS=MCEFHKNCMMNHMPCAPDOELIIG;+ASPSESSIONIDCSTRASCS=MDKLDPKCIJDOPPBLAOOCDHJC - 200 0 1257 607 140
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 17:11:15
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 17:11:15 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123674 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=HBEFHKNCGKKENHCBPBGIMJJB;+ASPSESSIONIDCSTRASCS=ECKLDPKCLGNBPHCCKDACKIGM - 200 0 1210 561 140
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 17:32:33
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 17:32:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /Default.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 - https://www.google.com/ 200 0 990 478 62
2018-01-10 17:32:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /Menu.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 2335 266 0
2018-01-10 17:32:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /Homepage_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 11025 285 0
2018-01-10 17:32:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /Homepage.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 3062 270 109
2018-01-10 17:32:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 - - 404 2 1850 394 0
2018-01-10 17:32:33 W3SVC93 W2K3WEB1 192.168.25.10 GET /Homepage_files/filelist.xml - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 497 285 109
2018-01-10 17:33:21 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDCSTRASCS=KEKLDPKCMMEAJOHOAKAAEJCG;+ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 626 156
2018-01-10 17:33:25 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDCSTRASCS=KEKLDPKCMMEAJOHOAKAAEJCG;+ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 626 125
2018-01-10 17:33:44 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 - - 404 2 1850 394 15
2018-01-10 17:33:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /about.html - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 - http://windsordistribution.com/Menu.htm 200 0 2817 504 31
2018-01-10 17:33:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /about_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 11025 282 15
2018-01-10 17:33:47 W3SVC93 W2K3WEB1 192.168.25.10 GET /about_files/filelist.xml - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 527 282 109
2018-01-10 17:33:53 W3SVC93 W2K3WEB1 192.168.25.10 GET /Contact_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 10905 284 0
2018-01-10 17:33:53 W3SVC93 W2K3WEB1 192.168.25.10 GET /Contact.htm - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 - http://windsordistribution.com/Menu.htm 200 0 3957 505 109
2018-01-10 17:33:53 W3SVC93 W2K3WEB1 192.168.25.10 GET /Contact_files/filelist.xml - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 200 0 750 284 125
2018-01-10 17:34:09 W3SVC93 W2K3WEB1 192.168.25.10 GET /login.asp - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 - http://windsordistribution.com/Menu.htm 200 0 2893 503 15
2018-01-10 17:34:09 W3SVC93 W2K3WEB1 192.168.25.10 GET /login_files/filelist.xml - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 404 2 1850 282 0
2018-01-10 17:34:12 W3SVC93 W2K3WEB1 192.168.25.10 GET /login_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/4.0+(compatible;) - - 404 2 1850 282 0
2018-01-10 17:34:12 W3SVC93 W2K3WEB1 192.168.25.10 GET /login_files/image001.gif - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=EEEFHKNCIOBIKMOFOBBCPDND http://windsordistribution.com/login.asp 404 2 1850 587 0
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 18:05:25
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 18:05:25 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=352932 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+MALC;+rv:11.0)+like+Gecko - - 200 0 1322 337 171
2018-01-10 18:05:25 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+MALC;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=KEEFHKNCBODPCPPPDGGOJFND - 404 2 1850 315 15
2018-01-10 18:09:52 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=352932 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+MALC;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=KEEFHKNCBODPCPPPDGGOJFND - 200 0 1252 392 140
2018-01-10 18:09:52 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+MALC;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=KEEFHKNCBODPCPPPDGGOJFND - 404 2 1850 315 15
2018-01-10 18:10:07 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=353119 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:56.0)+Gecko/20100101+Firefox/56.0 - - 200 0 1348 394 140
2018-01-10 18:10:07 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:56.0)+Gecko/20100101+Firefox/56.0 ASPSESSIONIDSQCDTRDS=LEEFHKNCNHFHIECJNEEJKBJI - 404 2 1850 400 0
2018-01-10 18:10:31 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=352932 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+MALC;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=KEEFHKNCBODPCPPPDGGOJFND - 200 0 1252 392 140
2018-01-10 18:10:58 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354948 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+rv:56.0)+Gecko/20100101+Firefox/56.0 ASPSESSIONIDSQCDTRDS=LEEFHKNCNHFHIECJNEEJKBJI - 200 0 1243 449 140
2018-01-10 18:17:58 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354866 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDCSTRASCS=GEKLDPKCFFNIDCPCBCMMOKIP - 200 0 1291 525 140
2018-01-10 18:17:58 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354866 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDCSTRASCS=GEKLDPKCFFNIDCPCBCMMOKIP;+ASPSESSIONIDSQCDTRDS=AFEFHKNCOKNENAPJIEDKBIMJ - 200 0 1226 572 140
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 19:01:26
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 19:01:26 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=236004 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQAASRCT=MDNBFADCEKKBJNJEPOECDJEA;+ASPSESSIONIDSQCDTRDS=MCEFHKNCMMNHMPCAPDOELIIG;+ASPSESSIONIDCSTRASCS=MDKLDPKCIJDOPPBLAOOCDHJC - 200 0 1257 607 140
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 20:11:53
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 20:11:53 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235594 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 - - 200 0 1338 457 156
2018-01-10 20:11:53 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/63.0.3239.132+Safari/537.36 ASPSESSIONIDSQCDTRDS=LFEFHKNCNNKFKKFLJFADFHEN http://www.windsordistribution.com/vwrpacktrack.asp?pronum=235594 404 2 1850 493 0
2018-01-10 20:23:31 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 _sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1340 495 156
2018-01-10 20:26:42 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 _sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1340 495 140
2018-01-10 20:31:27 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=PFEFHKNCOEIHINMADCPFHGEK;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 542 140
2018-01-10 20:31:29 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=PFEFHKNCOEIHINMADCPFHGEK;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 125
2018-01-10 20:32:51 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 _sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1340 495 156
2018-01-10 20:33:14 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 _sm_au=aaaaaaaaaaaaaaaaaaaa;+ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC - 200 0 1270 542 140
2018-01-10 20:33:52 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 _sm_au=aaaaaaaaaaaaaaaaaaaa;+ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC - 200 0 1270 542 140
2018-01-10 20:38:50 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=234536 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1317 337 156
2018-01-10 20:38:50 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 269 15
2018-01-10 20:40:13 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235908 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_12_6)+AppleWebKit/604.4.7+(KHTML,+like+Gecko)+Version/11.0.2+Safari/604.4.7 ASPSESSIONIDCSTRASCS=KEKLDPKCMMEAJOHOAKAAEJCG;+ASPSESSIONIDSQCDTRDS=DBEFHKNCJBPEBIJGICIOENDM;+ASPSESSIONIDAQRRCTCT=GEEHPCOBEDLAGLAGIJFJOBPP;+ASPSESSIONIDSQAASRCT=NBNBFADCNDLLGJJMFIOIKKKM - 200 0 1260 626 140
2018-01-10 20:41:14 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 542 140
2018-01-10 20:44:30 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=234536 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1317 325 140
2018-01-10 20:44:31 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 268 0
2018-01-10 20:44:40 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=234536 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=EGEFHKNCPBIJKAHOIHFBFBNA - 200 0 1249 380 156
2018-01-10 20:44:40 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 268 0
2018-01-10 20:45:18 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235701 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=PHLLDPKCHFPPJABMJPCPLHHO - 200 0 1346 418 140
2018-01-10 20:45:18 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=PHLLDPKCHFPPJABMJPCPLHHO;+ASPSESSIONIDSQCDTRDS=FGEFHKNCEMEMIGBEKBAKLHKK - 404 2 1850 388 0
2018-01-10 20:53:00 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354974 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=AILLDPKCCIDLEBGGKBJKICFE - 200 0 6104 392 250
2018-01-10 20:54:18 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354976 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=AILLDPKCCIDLEBGGKBJKICFE;+ASPSESSIONIDSQCDTRDS=GGEFHKNCAJPAAOHAMBDGJODJ - 200 0 6020 439 281
2018-01-10 20:54:28 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354977 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=AILLDPKCCIDLEBGGKBJKICFE;+ASPSESSIONIDSQCDTRDS=GGEFHKNCAJPAAOHAMBDGJODJ - 200 0 6047 439 250
2018-01-10 20:54:35 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354978 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=AILLDPKCCIDLEBGGKBJKICFE;+ASPSESSIONIDSQCDTRDS=GGEFHKNCAJPAAOHAMBDGJODJ - 200 0 6037 439 234
2018-01-10 20:54:43 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354979 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=AILLDPKCCIDLEBGGKBJKICFE;+ASPSESSIONIDSQCDTRDS=GGEFHKNCAJPAAOHAMBDGJODJ - 200 0 6032 439 234
2018-01-10 20:55:06 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=354974 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDCSTRASCS=AILLDPKCCIDLEBGGKBJKICFE;+ASPSESSIONIDSQCDTRDS=GGEFHKNCAJPAAOHAMBDGJODJ - 200 0 6037 439 234
2018-01-10 21:00:34 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 542 156
2018-01-10 21:00:36 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 156
2018-01-10 21:00:46 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:02:08 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 156
2018-01-10 21:02:09 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:02:10 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:02:10 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:02:11 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:02:12 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 125
2018-01-10 21:02:14 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 125
2018-01-10 21:02:14 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:03:23 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 542 140
2018-01-10 21:09:35 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 156
2018-01-10 21:09:39 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 542 171
2018-01-10 21:10:54 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
2018-01-10 21:10:56 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=355000 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/51.0.2704.79+Safari/537.36+Edge/14.14393 ASPSESSIONIDSQCDTRDS=AGEFHKNCIGDEFLOMGEMENOHC;+_sm_au=aaaaaaaaaaaaaaaaaaaa - 200 0 1270 560 140
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 21:41:21
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 21:41:20 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=235267 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1294 332 156
2018-01-10 21:41:20 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+Win64;+x64;+Trident/7.0;+rv:11.0)+like+Gecko - - 404 2 1850 275 0
#Software: Microsoft Internet Information Services 6.0
#Version: 1.0
#Date: 2018-01-10 22:23:20
#Fields: date time s-sitename s-computername s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs-version cs(User-Agent) cs(Cookie) cs(Referer) sc-status sc-win32-status sc-bytes cs-bytes time-taken 
2018-01-10 22:23:19 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123286 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko - - 200 0 1348 363 156
2018-01-10 22:23:19 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=PGEFHKNCMDLFBNPKBBGJIBLN - 404 2 1850 341 0
2018-01-10 22:24:12 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123286 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=PGEFHKNCMDLFBNPKBBGJIBLN - 200 0 1278 418 140
2018-01-10 22:25:52 W3SVC93 W2K3WEB1 192.168.25.10 GET /vwrpacktrack.asp pronum=123286 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=PGEFHKNCMDLFBNPKBBGJIBLN - 200 0 1278 418 140
2018-01-10 22:25:52 W3SVC93 W2K3WEB1 192.168.25.10 GET /favicon.ico - 80 - 192.168.25.52 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64;+Trident/7.0;+rv:11.0)+like+Gecko ASPSESSIONIDSQCDTRDS=PGEFHKNCMDLFBNPKBBGJIBLN - 404 2 1850 341 0