[07/Jul/2022:02:35:03 +0200] 198.235.24.25 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[07/Jul/2022:03:20:46 +0200] 185.7.214.104 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[07/Jul/2022:03:26:10 +0200] 167.94.138.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Jul/2022:03:26:11 +0200] 167.94.138.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Jul/2022:03:26:11 +0200] 167.94.138.60 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[07/Jul/2022:03:51:50 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[07/Jul/2022:03:51:50 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[07/Jul/2022:03:51:51 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[07/Jul/2022:03:51:51 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[07/Jul/2022:03:51:52 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[07/Jul/2022:03:51:52 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[07/Jul/2022:03:51:53 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[07/Jul/2022:03:51:53 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[07/Jul/2022:03:51:54 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[07/Jul/2022:03:51:54 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[07/Jul/2022:03:51:55 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws HTTP/1.1" 304
[07/Jul/2022:03:51:55 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws HTTP/1.1" 304
[07/Jul/2022:03:51:57 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /public/.env HTTP/1.1" 309
[07/Jul/2022:03:51:58 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /public/.env HTTP/1.1" 309
[07/Jul/2022:03:51:59 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /public/.aws/credentials HTTP/1.1" 316
[07/Jul/2022:03:51:59 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /public/.aws/credentials HTTP/1.1" 316
[07/Jul/2022:03:51:59 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[07/Jul/2022:03:52:00 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[07/Jul/2022:03:52:01 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /public/aws/credentials HTTP/1.1" 316
[07/Jul/2022:03:52:01 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /public/aws/credentials HTTP/1.1" 316
[07/Jul/2022:03:52:02 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /public/.aws HTTP/1.1" 309
[07/Jul/2022:03:52:02 +0200] 109.237.103.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /public/.aws HTTP/1.1" 309
[07/Jul/2022:04:01:58 +0200] 192.241.216.8 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[07/Jul/2022:04:16:48 +0200] 185.7.214.104 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[07/Jul/2022:04:42:10 +0200] 192.241.214.163 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Jul/2022:04:48:00 +0200] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[07/Jul/2022:05:02:12 +0200] 205.210.31.134 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[07/Jul/2022:05:48:16 +0200] 35.233.62.116 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Jul/2022:05:56:07 +0200] 205.210.31.18 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[07/Jul/2022:06:02:00 +0200] 45.61.185.76 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[07/Jul/2022:06:19:08 +0200] 185.7.214.104 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[07/Jul/2022:06:35:36 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Jul/2022:06:35:36 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 292
[07/Jul/2022:06:35:36 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 292
[07/Jul/2022:06:35:37 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 292
[07/Jul/2022:06:35:37 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 292
[07/Jul/2022:06:35:37 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 292
[07/Jul/2022:06:35:38 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1/ HTTP/1.1" 292
[07/Jul/2022:06:35:38 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1/ HTTP/1.1" 292
[07/Jul/2022:06:35:38 +0200] 45.14.224.50 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1/ HTTP/1.1" 292
[07/Jul/2022:06:47:34 +0200] 185.180.143.136 TLSv1.2 DHE-RSA-AES256-SHA256 "GET /owa/ HTTP/1.1" 304
[07/Jul/2022:07:05:36 +0200] 157.55.39.33 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[07/Jul/2022:07:32:34 +0200] 162.142.125.9 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Jul/2022:07:32:34 +0200] 162.142.125.9 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Jul/2022:07:32:35 +0200] 162.142.125.9 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[07/Jul/2022:07:40:02 +0200] 88.214.43.118 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /environments/.aws/.credentials HTTP/1.1" 325
[07/Jul/2022:07:40:03 +0200] 88.214.43.118 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /environments/.aws/.credentials HTTP/1.1" 325
[07/Jul/2022:09:23:06 +0200] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 396
[07/Jul/2022:09:23:06 +0200] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 386
[07/Jul/2022:09:33:17 +0200] 45.61.185.76 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[07/Jul/2022:09:34:02 +0200] 92.255.85.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[07/Jul/2022:09:51:25 +0200] 184.105.247.254 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Jul/2022:10:06:20 +0200] 184.105.247.244 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Jul/2022:11:17:00 +0200] 182.161.66.103 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Jul/2022:13:29:56 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "POST /_ignition/execute-solution HTTP/1.1" 319
[07/Jul/2022:13:29:58 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Jul/2022:13:30:00 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "GET /script HTTP/1.1" 305
[07/Jul/2022:13:30:02 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 305
[07/Jul/2022:13:30:04 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "GET /jenkins/login HTTP/1.1" 312
[07/Jul/2022:13:30:06 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "GET /manager/html HTTP/1.1" 308
[07/Jul/2022:13:30:08 +0200] 150.230.140.216 TLSv1.2 AES256-SHA "GET /?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=4uwj4kgg HTTP/1.1" 385
[07/Jul/2022:13:43:36 +0200] 172.105.161.246 TLSv1.2 DHE-RSA-AES256-SHA256 "GET / HTTP/1.1" 301
[07/Jul/2022:14:07:01 +0200] 192.241.219.213 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[07/Jul/2022:14:08:23 +0200] 192.241.221.222 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[07/Jul/2022:14:08:37 +0200] 192.241.214.157 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[07/Jul/2022:14:10:17 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /UKWe HTTP/1.1" 387
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/HEAD HTTP/1.1" 392
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /__Additional HTTP/1.1" 395
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1 HTTP/1.1" 388
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /nmaplowercheck1657195817 HTTP/1.1" 407
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "SSTP_DUPLEX_POST /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/ HTTP/1.1" 925
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /?=PHPE9568F36-D428-11d2-A769-00AA001ACF42 HTTP/1.1" 424
[07/Jul/2022:14:10:19 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /main.pl HTTP/1.1" 390
[07/Jul/2022:14:10:20 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /sdk HTTP/1.1" 386
[07/Jul/2022:14:10:20 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /menu.shtml HTTP/1.1" 393
[07/Jul/2022:14:10:20 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.jsa HTTP/1.1" 391
[07/Jul/2022:14:10:20 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 393
[07/Jul/2022:14:10:21 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.shtml HTTP/1.1" 394
[07/Jul/2022:14:10:21 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /pools HTTP/1.1" 388
[07/Jul/2022:14:10:21 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 394
[07/Jul/2022:14:10:21 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Jul/2022:14:10:21 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.aspx HTTP/1.1" 393
[07/Jul/2022:14:10:21 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /readme.txt HTTP/1.1" 393
[07/Jul/2022:14:10:29 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Jul/2022:14:10:29 +0200] 185.130.224.69 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Jul/2022:14:56:28 +0200] 193.46.254.155 TLSv1.2 AES256-SHA "GET /frontend/v1/config?encryptedBody=ORpofRVIKIfbif6Gmzt9OYwgHKHB80YzVGG/7qMfX/0= HTTP/1.1" 365
[07/Jul/2022:15:07:01 +0200] 2.57.122.207 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 310
[07/Jul/2022:16:18:09 +0200] 159.65.178.216 - - "-" -
[07/Jul/2022:16:52:04 +0200] 159.65.178.216 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Jul/2022:16:52:06 +0200] 159.65.178.216 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 754
[07/Jul/2022:16:52:08 +0200] 159.65.178.216 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 1150
[07/Jul/2022:16:53:29 +0200] 45.61.185.76 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[07/Jul/2022:16:55:06 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[07/Jul/2022:16:55:07 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Jul/2022:16:55:09 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts HTTP/1.1" 293
[07/Jul/2022:16:55:10 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /.DS_Store HTTP/1.1" 307
[07/Jul/2022:16:55:11 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /telescope/requests HTTP/1.1" 311
[07/Jul/2022:16:55:12 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /info.php HTTP/1.1" 307
[07/Jul/2022:16:55:12 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /.json HTTP/1.1" 305
[07/Jul/2022:16:55:13 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /login.action HTTP/1.1" 311
[07/Jul/2022:16:55:14 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /config.json HTTP/1.1" 311
[07/Jul/2022:16:55:16 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[07/Jul/2022:16:55:17 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /idx_config/ HTTP/1.1" 310
[07/Jul/2022:16:55:18 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /api/geojson?url=file:///etc/hosts HTTP/1.1" 325
[07/Jul/2022:16:55:21 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /server-status HTTP/1.1" 308
[07/Jul/2022:16:55:23 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /.env HTTP/1.1" 304
[07/Jul/2022:16:55:23 +0200] 185.162.235.162 TLSv1.2 AES256-SHA "GET /s/lkx/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 353
[07/Jul/2022:20:25:35 +0200] 103.203.57.10 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Jul/2022:21:13:26 +0200] 185.7.214.104 TLSv1.2 AES256-SHA "-" -
[07/Jul/2022:22:12:16 +0200] 164.52.24.166 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Jul/2022:22:30:13 +0200] 185.7.214.104 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[07/Jul/2022:23:26:13 +0200] 205.210.31.137 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[08/Jul/2022:01:06:39 +0200] 167.172.73.117 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 374
[08/Jul/2022:01:25:29 +0200] 43.158.213.246 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301