[06/Oct/2022:02:13:11 +0200] 34.220.201.68 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[06/Oct/2022:02:13:50 +0200] 54.202.171.149 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[06/Oct/2022:02:32:41 +0200] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:03:08:48 +0200] 154.209.125.71 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[06/Oct/2022:03:14:45 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[06/Oct/2022:04:19:40 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[06/Oct/2022:04:48:53 +0200] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:05:03:40 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[06/Oct/2022:05:27:25 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[06/Oct/2022:05:50:13 +0200] 34.240.106.171 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 304
[06/Oct/2022:05:50:17 +0200] 34.240.106.171 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 297
[06/Oct/2022:06:17:05 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[06/Oct/2022:06:20:55 +0200] 64.62.197.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:06:30:30 +0200] 146.190.30.185 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[06/Oct/2022:06:30:32 +0200] 146.190.30.185 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[06/Oct/2022:06:30:37 +0200] 146.190.30.185 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:06:33:24 +0200] 64.62.197.107 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[06/Oct/2022:06:37:15 +0200] 64.62.197.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:06:49:12 +0200] 93.159.230.83 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:07:05:54 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:07:29:24 +0200] 208.100.26.237 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[06/Oct/2022:08:12:58 +0200] 167.94.138.61 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[06/Oct/2022:08:12:59 +0200] 167.94.138.61 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:08:13:00 +0200] 167.94.138.61 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[06/Oct/2022:08:36:36 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:08:45:46 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[06/Oct/2022:08:45:47 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[06/Oct/2022:08:49:34 +0200] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:08:53:40 +0200] 193.235.141.178 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[06/Oct/2022:09:00:12 +0200] 167.172.140.80 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[06/Oct/2022:09:00:14 +0200] 167.172.140.80 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[06/Oct/2022:09:00:21 +0200] 167.172.140.80 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:10:00:06 +0200] 192.241.219.153 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:10:07:12 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[06/Oct/2022:10:20:48 +0200] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[06/Oct/2022:10:26:14 +0200] 165.22.237.144 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[06/Oct/2022:10:36:33 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[06/Oct/2022:10:36:33 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[06/Oct/2022:10:40:46 +0200] 87.236.176.238 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:10:52:19 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[06/Oct/2022:10:52:20 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[06/Oct/2022:11:28:05 +0200] 192.241.206.44 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[06/Oct/2022:12:12:38 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tar HTTP/1.1" 396
[06/Oct/2022:12:13:37 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[06/Oct/2022:12:21:03 +0200] 93.159.230.89 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[06/Oct/2022:12:22:28 +0200] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tar HTTP/1.1" 387
[06/Oct/2022:12:28:50 +0200] 209.222.252.91 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[06/Oct/2022:12:34:15 +0200] 208.100.26.237 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 298
[06/Oct/2022:13:05:38 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tar HTTP/1.1" 387
[06/Oct/2022:13:21:19 +0200] 93.159.230.83 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[06/Oct/2022:13:47:46 +0200] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tar.gz HTTP/1.1" 390
[06/Oct/2022:14:10:10 +0200] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tar.gz HTTP/1.1" 407
[06/Oct/2022:14:21:12 +0200] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[06/Oct/2022:14:45:00 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 310
[06/Oct/2022:14:45:01 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 310
[06/Oct/2022:14:45:03 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 317
[06/Oct/2022:14:45:04 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 317
[06/Oct/2022:14:45:06 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 315
[06/Oct/2022:14:45:07 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 315
[06/Oct/2022:14:45:08 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 316
[06/Oct/2022:14:45:11 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 316
[06/Oct/2022:14:45:13 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 314
[06/Oct/2022:14:45:15 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 314
[06/Oct/2022:14:45:16 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 312
[06/Oct/2022:14:45:18 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 312
[06/Oct/2022:14:45:19 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 315
[06/Oct/2022:14:45:20 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 315
[06/Oct/2022:14:45:23 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 313
[06/Oct/2022:14:45:24 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 313
[06/Oct/2022:14:45:26 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 312
[06/Oct/2022:14:45:27 +0200] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 312
[06/Oct/2022:15:09:35 +0200] 192.241.219.134 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[06/Oct/2022:15:09:38 +0200] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:15:09:49 +0200] 128.1.248.26 TLSv1.2 AES256-SHA "HEAD /icons/sphere1.png HTTP/1.1" -
[06/Oct/2022:15:21:24 +0200] 77.74.177.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[06/Oct/2022:15:24:59 +0200] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tar.gz HTTP/1.1" 390
[06/Oct/2022:15:42:13 +0200] 128.14.209.146 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[06/Oct/2022:15:56:20 +0200] 207.46.13.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[06/Oct/2022:16:19:23 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:16:31:36 +0200] 45.33.102.90 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:16:49:36 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[06/Oct/2022:17:24:35 +0200] 157.230.124.248 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[06/Oct/2022:17:24:36 +0200] 157.230.124.248 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[06/Oct/2022:17:29:03 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.tgz HTTP/1.1" 387
[06/Oct/2022:18:07:52 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[06/Oct/2022:18:07:53 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[06/Oct/2022:18:13:25 +0200] 45.79.204.46 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:18:31:44 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[06/Oct/2022:18:40:19 +0200] 54.83.149.151 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[06/Oct/2022:18:40:22 +0200] 54.83.149.151 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[06/Oct/2022:18:40:52 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[06/Oct/2022:18:58:28 +0200] 138.128.109.253 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[06/Oct/2022:19:18:42 +0200] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.zip HTTP/1.1" 396
[06/Oct/2022:19:35:29 +0200] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:19:46:51 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[06/Oct/2022:20:21:09 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 293
[06/Oct/2022:20:47:52 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:21:01:55 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.zip HTTP/1.1" 404
[06/Oct/2022:21:38:44 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[06/Oct/2022:22:23:49 +0200] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:22:38:58 +0200] 43.134.234.251 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[06/Oct/2022:22:39:57 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[06/Oct/2022:22:39:57 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[06/Oct/2022:22:51:48 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.bkp HTTP/1.1" 404
[06/Oct/2022:23:29:04 +0200] 54.71.217.98 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[06/Oct/2022:23:29:20 +0200] 34.222.181.133 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[06/Oct/2022:23:29:24 +0200] 35.162.38.110 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[06/Oct/2022:23:42:05 +0200] 35.86.85.193 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[06/Oct/2022:23:42:25 +0200] 34.222.217.46 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[07/Oct/2022:00:36:43 +0200] 194.5.73.5 TLSv1.2 AES256-SHA "GET /rest/api/latest/repos HTTP/1.1" 313
[07/Oct/2022:00:36:43 +0200] 194.5.73.5 TLSv1.2 AES256-SHA "GET /rest/api/latest/projects/%7B%7Bkey%7D%7D/repos/%7B%7Bslug%7D%7D/archive?filename=0iXSl&at=0iXSl&path=0iXSl&prefix=ax%00--exec=%60divd_fake_command%60%00--remote=origin HTTP/1.1" 415
[07/Oct/2022:00:43:45 +0200] 103.149.192.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:00:47:20 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.bkup HTTP/1.1" 388
[07/Oct/2022:01:01:05 +0200] 34.77.127.183 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Oct/2022:01:06:06 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.bkup HTTP/1.1" 405
[07/Oct/2022:01:11:26 +0200] 35.91.93.195 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[07/Oct/2022:01:11:31 +0200] 192.241.219.55 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[07/Oct/2022:01:13:06 +0200] 192.241.219.120 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[07/Oct/2022:01:13:16 +0200] 35.91.249.175 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[07/Oct/2022:01:14:51 +0200] 192.241.216.172 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[07/Oct/2022:01:45:43 +0200] 198.235.24.56 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Oct/2022:01:46:25 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.bkup HTTP/1.1" 397
[07/Oct/2022:01:48:42 +0200] 167.248.133.45 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Oct/2022:01:48:43 +0200] 167.248.133.45 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:01:48:43 +0200] 167.248.133.45 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379