[30/Mar/2022:02:24:31 +0200] 128.14.134.134 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[30/Mar/2022:02:24:44 +0200] 128.14.134.134 TLSv1.2 DHE-RSA-AES256-SHA256 "HEAD /icons/sphere1.png HTTP/1.1" -
[30/Mar/2022:02:50:04 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /dns-query HTTP/1.1" 392
[30/Mar/2022:02:50:05 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dns-query?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 433
[30/Mar/2022:02:50:06 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 383
[30/Mar/2022:02:50:07 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 424
[30/Mar/2022:02:50:08 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /resolve HTTP/1.1" 390
[30/Mar/2022:02:50:09 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /resolve?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 431
[30/Mar/2022:02:50:10 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /doh HTTP/1.1" 386
[30/Mar/2022:02:50:11 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /doh?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 427
[30/Mar/2022:02:50:13 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /doh/family-filter HTTP/1.1" 400
[30/Mar/2022:02:50:14 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /doh/family-filter?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 441
[30/Mar/2022:02:50:15 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /doh/secure-filter HTTP/1.1" 400
[30/Mar/2022:02:50:16 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /doh/secure-filter?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 441
[30/Mar/2022:02:50:17 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /query HTTP/1.1" 388
[30/Mar/2022:02:50:18 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /query?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 429
[30/Mar/2022:02:50:19 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ads HTTP/1.1" 386
[30/Mar/2022:02:50:20 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /ads?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 427
[30/Mar/2022:02:50:21 +0200] 43.129.24.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /uncensored HTTP/1.1" 393
[30/Mar/2022:04:21:00 +0200] 34.217.99.137 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[30/Mar/2022:04:47:36 +0200] 131.220.6.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[30/Mar/2022:04:57:09 +0200] 92.118.160.57 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[30/Mar/2022:05:22:49 +0200] 138.197.158.214 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:05:50:39 +0200] 192.241.214.142 TLSv1.2 AES256-SHA "GET /ReportServer HTTP/1.1" 307
[30/Mar/2022:06:12:51 +0200] 192.241.213.55 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 305
[30/Mar/2022:06:50:34 +0200] 23.129.64.135 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:06:50:53 +0200] 185.220.100.248 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[30/Mar/2022:06:53:11 +0200] 213.32.122.82 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[30/Mar/2022:06:57:51 +0200] 34.96.130.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[30/Mar/2022:07:03:04 +0200] 183.136.226.3 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[30/Mar/2022:07:18:05 +0200] 40.77.167.1 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 302
[30/Mar/2022:07:51:06 +0200] 35.195.93.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[30/Mar/2022:07:59:54 +0200] 192.241.213.50 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[30/Mar/2022:08:00:26 +0200] 192.241.226.16 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[30/Mar/2022:08:14:18 +0200] 91.229.79.227 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[30/Mar/2022:08:18:45 +0200] 193.118.53.194 TLSv1.2 DHE-RSA-AES256-SHA256 "GET /cgi-bin/config.exp HTTP/1.1" 315
[30/Mar/2022:08:45:55 +0200] 74.82.47.3 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[30/Mar/2022:09:09:39 +0200] 157.55.39.29 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[30/Mar/2022:09:12:15 +0200] 103.203.57.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:12:27:42 +0200] 109.237.103.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[30/Mar/2022:12:27:43 +0200] 109.237.103.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[30/Mar/2022:12:27:43 +0200] 109.237.103.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[30/Mar/2022:12:27:44 +0200] 109.237.103.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[30/Mar/2022:12:54:10 +0200] 172.105.189.111 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[30/Mar/2022:13:00:55 +0200] 208.100.26.233 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 298
[30/Mar/2022:13:28:20 +0200] 109.248.6.84 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.0" 399
[30/Mar/2022:13:32:55 +0200] 66.240.236.109 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:14:13:32 +0200] 139.162.200.114 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[30/Mar/2022:14:17:11 +0200] 81.173.112.207 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[30/Mar/2022:16:02:07 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[30/Mar/2022:16:14:20 +0200] 45.83.64.230 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 293
[30/Mar/2022:16:14:21 +0200] 45.83.67.130 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 293
[30/Mar/2022:16:42:59 +0200] 40.77.167.1 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 302
[30/Mar/2022:17:01:09 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[30/Mar/2022:17:17:22 +0200] 128.14.133.58 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[30/Mar/2022:17:42:12 +0200] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[30/Mar/2022:17:55:07 +0200] 176.58.103.239 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[30/Mar/2022:18:06:04 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[30/Mar/2022:18:32:32 +0200] 157.55.39.29 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[30/Mar/2022:18:33:35 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "-" -
[30/Mar/2022:18:41:33 +0200] 45.134.144.140 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET ///remote/fgt_lang?lang=/../../../..//////////dev/ HTTP/1.1" 325
[30/Mar/2022:19:20:54 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[30/Mar/2022:20:12:33 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[30/Mar/2022:20:27:50 +0200] 192.241.212.233 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[30/Mar/2022:20:30:22 +0200] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[30/Mar/2022:21:09:17 +0200] 193.118.53.210 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[30/Mar/2022:21:15:34 +0200] 64.44.139.174 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@1337.com/owa/?&Email=autodiscover/autodiscover.json%3F@1337.com HTTP/1.1" 350
[30/Mar/2022:21:35:00 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:22:23:52 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:22:26:53 +0200] 159.203.174.130 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[30/Mar/2022:22:54:09 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 293
[30/Mar/2022:23:30:23 +0200] 192.241.215.223 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[30/Mar/2022:23:42:23 +0200] 45.155.204.146 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[31/Mar/2022:00:19:55 +0200] 144.202.15.98 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[31/Mar/2022:00:20:25 +0200] 167.94.138.63 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[31/Mar/2022:00:20:26 +0200] 167.94.138.63 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[31/Mar/2022:00:20:27 +0200] 167.94.138.63 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[31/Mar/2022:00:30:19 +0200] 162.142.125.9 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[31/Mar/2022:00:30:19 +0200] 162.142.125.9 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[31/Mar/2022:00:30:20 +0200] 162.142.125.9 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[31/Mar/2022:01:51:32 +0200] 128.14.133.58 TLSv1.2 DHE-RSA-AES256-SHA256 "GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 330