[29/Sep/2021:02:17:03 +0200] 34.86.35.26 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[29/Sep/2021:02:48:10 +0200] 54.214.103.135 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[29/Sep/2021:02:48:41 +0200] 18.237.35.206 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[29/Sep/2021:02:48:45 +0200] 18.237.35.206 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[29/Sep/2021:03:27:20 +0200] 64.62.197.152 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[29/Sep/2021:04:22:36 +0200] 192.241.208.162 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[29/Sep/2021:04:23:45 +0200] 192.241.198.125 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[29/Sep/2021:04:26:18 +0200] 192.241.193.131 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[29/Sep/2021:04:50:42 +0200] 131.220.6.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[29/Sep/2021:05:40:38 +0200] 207.46.13.6 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 311
[29/Sep/2021:05:40:40 +0200] 207.46.13.6 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 311
[29/Sep/2021:05:40:46 +0200] 157.55.39.187 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 304
[29/Sep/2021:05:40:51 +0200] 34.77.162.14 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 391
[29/Sep/2021:05:49:13 +0200] 34.96.130.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 391
[29/Sep/2021:06:02:32 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[29/Sep/2021:06:02:33 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "POST /api/jsonws/invoke HTTP/1.1" 314
[29/Sep/2021:06:02:34 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[29/Sep/2021:06:02:35 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[29/Sep/2021:06:02:38 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[29/Sep/2021:06:02:38 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[29/Sep/2021:06:02:42 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[29/Sep/2021:06:02:43 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1" 332
[29/Sep/2021:06:02:45 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[29/Sep/2021:06:02:46 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[29/Sep/2021:06:02:46 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[29/Sep/2021:06:02:47 +0200] 45.146.164.110 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[29/Sep/2021:06:15:19 +0200] 45.83.65.29 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 293
[29/Sep/2021:07:00:17 +0200] 193.118.53.202 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[29/Sep/2021:07:32:22 +0200] 192.241.200.55 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[29/Sep/2021:07:50:45 +0200] 183.136.225.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[29/Sep/2021:08:19:48 +0200] 193.106.29.210 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[29/Sep/2021:09:11:50 +0200] 213.32.122.82 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[29/Sep/2021:09:38:20 +0200] 185.189.182.234 TLSv1.2 AES256-SHA "GET /Of8o HTTP/1.1" 379
[29/Sep/2021:09:53:48 +0200] 128.14.134.134 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[29/Sep/2021:11:31:54 +0200] 192.241.210.29 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[29/Sep/2021:14:13:38 +0200] 216.246.49.10 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[29/Sep/2021:14:39:09 +0200] 192.241.202.83 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[29/Sep/2021:15:12:37 +0200] 45.155.204.227 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /autodiscover/autodiscover.json?@evil.corp/ews/exchange.asmx?&Email=autodiscover/autodiscover.json%3F@evil.corp HTTP/1.1" 362
[29/Sep/2021:15:38:59 +0200] 104.152.52.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[29/Sep/2021:15:38:59 +0200] 104.152.52.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[29/Sep/2021:15:38:59 +0200] 104.152.52.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[29/Sep/2021:15:38:59 +0200] 104.152.52.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[29/Sep/2021:15:39:00 +0200] 104.152.52.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[29/Sep/2021:16:21:27 +0200] 157.55.39.187 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 304
[29/Sep/2021:17:35:31 +0200] 77.74.177.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[29/Sep/2021:17:49:15 +0200] 185.180.143.145 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 295
[29/Sep/2021:18:21:01 +0200] 128.1.248.26 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[29/Sep/2021:20:22:36 +0200] 139.162.145.250 TLSv1.2 AES256-SHA "GET /bag2 HTTP/1.1" 304
[29/Sep/2021:20:26:01 +0200] 80.82.77.192 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[29/Sep/2021:20:35:02 +0200] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[29/Sep/2021:20:57:07 +0200] 208.87.129.67 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[29/Sep/2021:21:24:02 +0200] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[29/Sep/2021:22:00:44 +0200] 109.248.6.101 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[29/Sep/2021:23:06:58 +0200] 34.216.53.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[29/Sep/2021:23:07:22 +0200] 18.236.173.236 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[29/Sep/2021:23:09:03 +0200] 54.189.162.24 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[29/Sep/2021:23:09:14 +0200] 34.217.25.121 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[29/Sep/2021:23:09:50 +0200] 34.215.92.193 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[29/Sep/2021:23:09:55 +0200] 34.215.92.193 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[30/Sep/2021:00:21:30 +0200] 137.226.113.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[30/Sep/2021:00:33:20 +0200] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[30/Sep/2021:00:59:22 +0200] 34.79.107.251 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[30/Sep/2021:01:27:36 +0200] 54.189.204.208 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306