[07/Oct/2022:02:12:40 +0200] 104.248.51.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Oct/2022:02:14:23 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[07/Oct/2022:02:39:30 +0200] 198.98.59.132 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[07/Oct/2022:02:47:20 +0200] 193.235.141.176 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[07/Oct/2022:02:58:29 +0200] 43.143.194.145 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /api/Ticket/query?m=18900547892&refer__2377=eu0%3DiKY5DK0ITxBkP56KGI94Wq7KQDCFtleD HTTP/1.1" 383
[07/Oct/2022:03:25:14 +0200] 88.214.43.118 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 300
[07/Oct/2022:03:25:14 +0200] 88.214.43.118 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 300
[07/Oct/2022:03:27:31 +0200] 198.98.59.132 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[07/Oct/2022:03:47:51 +0200] 192.241.212.202 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[07/Oct/2022:03:58:10 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.psc HTTP/1.1" 396
[07/Oct/2022:04:07:09 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.psc HTTP/1.1" 387
[07/Oct/2022:05:23:51 +0200] 128.14.141.34 TLSv1.2 AES256-SHA "GET /cgi-bin/config.exp HTTP/1.1" 315
[07/Oct/2022:05:39:14 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[07/Oct/2022:05:58:27 +0200] 68.183.154.130 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Oct/2022:06:22:31 +0200] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Oct/2022:07:27:54 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.npb HTTP/1.1" 396
[07/Oct/2022:07:39:23 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[07/Oct/2022:07:39:25 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[07/Oct/2022:08:16:51 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:08:34:38 +0200] 64.62.197.184 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:08:47:56 +0200] 64.62.197.182 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[07/Oct/2022:08:52:15 +0200] 64.62.197.184 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:08:56:57 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[07/Oct/2022:09:00:42 +0200] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:09:10:37 +0200] 188.166.63.243 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:09:32:31 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[07/Oct/2022:09:32:31 +0200] 179.61.219.71 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[07/Oct/2022:09:33:05 +0200] 181.214.206.161 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[07/Oct/2022:09:36:17 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[07/Oct/2022:09:44:03 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[07/Oct/2022:09:56:32 +0200] 192.241.205.118 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:09:57:17 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.ibz HTTP/1.1" 404
[07/Oct/2022:10:15:32 +0200] 20.92.162.191 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 310
[07/Oct/2022:11:26:36 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[07/Oct/2022:12:19:58 +0200] 192.53.170.243 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:12:42:18 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup.backup HTTP/1.1" 399
[07/Oct/2022:13:17:27 +0200] 161.123.151.95 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Oct/2022:13:27:07 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[07/Oct/2022:13:36:46 +0200] 172.104.131.24 TLSv1.2 AES256-SHA "GET /public/jsp/ResourcesVerificaton.jsp HTTP/1.1" 326
[07/Oct/2022:13:37:20 +0200] 178.79.149.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[07/Oct/2022:14:23:39 +0200] 193.118.53.194 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:15:11:15 +0200] 192.241.216.55 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[07/Oct/2022:15:15:32 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup/backup.bz2 HTTP/1.1" 394
[07/Oct/2022:15:16:08 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[07/Oct/2022:15:48:21 +0200] 207.46.13.234 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 302
[07/Oct/2022:15:48:23 +0200] 207.46.13.234 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 302
[07/Oct/2022:15:48:27 +0200] 207.46.13.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[07/Oct/2022:15:58:59 +0200] 185.83.144.103 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo.php.bak HTTP/1.1" 306
[07/Oct/2022:15:59:00 +0200] 185.83.144.103 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo.php.bak HTTP/1.1" 306
[07/Oct/2022:17:12:25 +0200] 35.197.96.4 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.0" 383
[07/Oct/2022:18:02:56 +0200] 159.203.115.224 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[07/Oct/2022:18:25:41 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup/backup.gz HTTP/1.1" 402
[07/Oct/2022:18:33:21 +0200] 139.162.146.254 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:19:07:22 +0200] 23.251.102.82 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:19:14:55 +0200] 198.199.101.62 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[07/Oct/2022:19:46:49 +0200] 192.241.217.118 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[07/Oct/2022:20:45:52 +0200] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup/backup.rar HTTP/1.1" 394
[07/Oct/2022:20:59:42 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup/backup.rar HTTP/1.1" 403
[07/Oct/2022:21:50:43 +0200] 162.142.125.212 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Oct/2022:21:50:43 +0200] 162.142.125.212 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:21:50:44 +0200] 162.142.125.212 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[07/Oct/2022:23:12:50 +0200] 193.235.141.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[07/Oct/2022:23:40:18 +0200] 2.57.122.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:23:40:18 +0200] 2.57.122.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[07/Oct/2022:23:40:18 +0200] 2.57.122.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:23:40:18 +0200] 2.57.122.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[07/Oct/2022:23:40:18 +0200] 2.57.122.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[07/Oct/2022:23:52:30 +0200] 104.248.195.19 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[07/Oct/2022:23:52:31 +0200] 104.248.195.19 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[07/Oct/2022:23:52:44 +0200] 104.248.195.19 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Oct/2022:23:53:05 +0200] 104.248.195.19 - - "-" -
[08/Oct/2022:00:36:00 +0200] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup/backup.tar HTTP/1.1" 394
[08/Oct/2022:00:37:41 +0200] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Oct/2022:00:55:55 +0200] 34.76.158.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[08/Oct/2022:01:17:44 +0200] 34.219.117.228 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[08/Oct/2022:01:18:09 +0200] 34.220.142.153 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[08/Oct/2022:01:18:14 +0200] 34.220.142.153 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[08/Oct/2022:01:25:16 +0200] 121.5.45.11 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /api/Ticket/query?m=18900547892&refer__2377=eu0%3DiKY5DK0ITxBkP56KGI94Wq7KQDCFtleD HTTP/1.1" 383
[08/Oct/2022:01:28:41 +0200] 174.138.29.20 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Oct/2022:01:40:52 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452