[11/Feb/2022:01:58:26 +0100] 5.8.10.202 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[11/Feb/2022:01:58:26 +0100] 5.8.10.202 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[11/Feb/2022:02:05:27 +0100] 104.140.188.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 374
[11/Feb/2022:02:34:01 +0100] 5.8.10.202 TLSv1.2 AES256-SHA "GET /aaa9 HTTP/1.1" 304
[11/Feb/2022:02:34:01 +0100] 5.8.10.202 TLSv1.2 AES256-SHA "GET /aab9 HTTP/1.1" 304
[11/Feb/2022:02:34:06 +0100] 5.8.10.202 TLSv1.2 AES256-SHA "GET /aaa9 HTTP/1.1" 304
[11/Feb/2022:02:34:06 +0100] 5.8.10.202 TLSv1.2 AES256-SHA "GET /aab9 HTTP/1.1" 304
[11/Feb/2022:02:39:36 +0100] 40.77.167.96 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[11/Feb/2022:02:39:37 +0100] 40.77.167.96 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[11/Feb/2022:02:40:26 +0100] 207.46.13.205 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[11/Feb/2022:04:08:21 +0100] 184.105.247.195 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[11/Feb/2022:04:53:46 +0100] 131.220.6.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[11/Feb/2022:05:11:53 +0100] 109.237.103.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[11/Feb/2022:05:11:53 +0100] 109.237.103.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[11/Feb/2022:05:40:42 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[11/Feb/2022:05:40:45 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /vendor/.env HTTP/1.1" 302
[11/Feb/2022:05:40:48 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /storage/.env HTTP/1.1" 303
[11/Feb/2022:05:40:52 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /public/.env HTTP/1.1" 303
[11/Feb/2022:05:40:55 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /info.php HTTP/1.1" 301
[11/Feb/2022:05:40:59 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo.php HTTP/1.1" 302
[11/Feb/2022:05:41:02 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /info HTTP/1.1" 298
[11/Feb/2022:05:41:05 +0100] 128.199.127.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 295
[11/Feb/2022:05:53:41 +0100] 34.96.130.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[11/Feb/2022:06:11:48 +0100] 128.14.133.58 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:06:25:20 +0100] 35.195.93.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[11/Feb/2022:06:52:00 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[11/Feb/2022:07:18:47 +0100] 35.208.166.254 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[11/Feb/2022:07:56:33 +0100] 34.96.130.24 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[11/Feb/2022:08:49:16 +0100] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 395
[11/Feb/2022:08:49:16 +0100] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[11/Feb/2022:09:03:56 +0100] 185.180.143.79 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:09:04:06 +0100] 185.180.143.79 TLSv1.2 DHE-RSA-AES256-SHA256 "GET /showLogin.cc HTTP/1.1" 311
[11/Feb/2022:10:12:59 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[11/Feb/2022:10:25:13 +0100] 128.14.134.134 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:10:57:28 +0100] 46.249.33.15 TLSv1.2 AES256-SHA "POST /web_shell_cmd.gch HTTP/1.1" 400
[11/Feb/2022:10:57:35 +0100] 46.249.33.15 TLSv1.2 AES256-SHA "POST /web_shell_cmd.gch HTTP/1.1" 400
[11/Feb/2022:10:57:38 +0100] 46.249.33.15 TLSv1.2 AES256-SHA "POST /web_shell_cmd.gch HTTP/1.1" 400
[11/Feb/2022:11:03:06 +0100] 185.174.28.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[11/Feb/2022:11:03:07 +0100] 185.174.28.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 298
[11/Feb/2022:11:09:04 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[11/Feb/2022:11:23:13 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[11/Feb/2022:12:21:03 +0100] 192.241.204.186 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[11/Feb/2022:12:21:30 +0100] 40.77.167.96 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[11/Feb/2022:12:21:31 +0100] 40.77.167.96 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[11/Feb/2022:12:23:16 +0100] 207.46.13.205 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[11/Feb/2022:13:24:37 +0100] 194.32.107.187 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Feb/2022:14:37:02 +0100] 23.251.102.82 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:14:52:16 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Feb/2022:15:33:06 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 293
[11/Feb/2022:16:08:42 +0100] 45.146.165.37 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Feb/2022:16:27:42 +0100] 45.145.167.9 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[11/Feb/2022:16:41:58 +0100] 128.14.141.34 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:17:01:57 +0100] 192.241.212.76 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Feb/2022:17:06:26 +0100] 139.162.145.250 TLSv1.2 AES256-SHA "GET /bag2 HTTP/1.1" 304
[11/Feb/2022:17:38:08 +0100] 185.180.143.72 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:17:39:14 +0100] 15.188.207.74 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/HEAD HTTP/1.1" 392
[11/Feb/2022:18:13:58 +0100] 92.118.160.37 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[11/Feb/2022:18:37:58 +0100] 172.105.23.140 TLSv1.2 AES256-SHA "GET /wp-login.php HTTP/1.1" 316
[11/Feb/2022:19:46:55 +0100] 159.89.194.175 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 383
[11/Feb/2022:20:52:27 +0100] 193.118.53.210 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[11/Feb/2022:21:13:50 +0100] 172.104.146.109 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 304
[11/Feb/2022:21:17:26 +0100] 192.241.213.79 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[11/Feb/2022:21:17:41 +0100] 192.241.209.134 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[11/Feb/2022:21:19:56 +0100] 192.241.211.189 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[11/Feb/2022:22:19:52 +0100] 34.221.254.168 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[11/Feb/2022:22:20:23 +0100] 34.223.109.116 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[11/Feb/2022:22:23:46 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 387
[11/Feb/2022:23:15:19 +0100] 162.142.125.7 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[11/Feb/2022:23:15:20 +0100] 162.142.125.7 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[11/Feb/2022:23:15:20 +0100] 162.142.125.7 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[12/Feb/2022:00:02:45 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 403
[12/Feb/2022:00:16:57 +0100] 192.241.202.124 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[12/Feb/2022:00:24:04 +0100] 192.241.210.249 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335