[09/Oct/2022:02:27:44 +0200] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dump.tgz HTTP/1.1" 402
[09/Oct/2022:02:51:54 +0200] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:04:16:05 +0200] 192.241.215.189 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[09/Oct/2022:04:36:48 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[09/Oct/2022:05:39:52 +0200] 183.136.225.35 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[09/Oct/2022:06:06:14 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:06:06:35 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[09/Oct/2022:06:06:56 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[09/Oct/2022:06:30:09 +0200] 192.241.219.120 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[09/Oct/2022:06:31:35 +0200] 192.241.219.55 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[09/Oct/2022:06:33:53 +0200] 192.241.216.172 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[09/Oct/2022:06:40:44 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dump.zip HTTP/1.1" 394
[09/Oct/2022:06:40:59 +0200] 128.1.248.42 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:07:18:48 +0200] 192.241.209.39 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[09/Oct/2022:08:03:53 +0200] 154.209.125.72 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[09/Oct/2022:08:17:02 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.rar HTTP/1.1" 394
[09/Oct/2022:08:23:15 +0200] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.rar HTTP/1.1" 402
[09/Oct/2022:08:58:20 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[09/Oct/2022:08:58:20 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[09/Oct/2022:08:58:21 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[09/Oct/2022:08:58:21 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[09/Oct/2022:08:58:22 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[09/Oct/2022:08:58:22 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[09/Oct/2022:08:58:22 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[09/Oct/2022:08:58:23 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[09/Oct/2022:08:58:23 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[09/Oct/2022:08:58:24 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[09/Oct/2022:08:58:24 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin/.env HTTP/1.1" 308
[09/Oct/2022:08:58:24 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /admin/.env HTTP/1.1" 308
[09/Oct/2022:08:58:25 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backend/.env HTTP/1.1" 310
[09/Oct/2022:08:58:25 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /backend/.env HTTP/1.1" 310
[09/Oct/2022:08:58:26 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /app/.env HTTP/1.1" 307
[09/Oct/2022:08:58:26 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /app/.env HTTP/1.1" 307
[09/Oct/2022:08:58:27 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /js/app.js HTTP/1.1" 308
[09/Oct/2022:08:58:27 +0200] 109.237.97.204 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /js/app.js HTTP/1.1" 308
[09/Oct/2022:09:00:28 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.rar HTTP/1.1" 385
[09/Oct/2022:09:57:32 +0200] 192.241.214.82 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:10:14:13 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[09/Oct/2022:11:13:30 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[09/Oct/2022:11:19:46 +0200] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.rar HTTP/1.1" 402
[09/Oct/2022:11:29:17 +0200] 192.241.220.134 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[09/Oct/2022:11:45:54 +0200] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.rar HTTP/1.1" 402
[09/Oct/2022:11:57:55 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[09/Oct/2022:12:56:35 +0200] 167.99.250.6 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:13:17:25 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tar HTTP/1.1" 402
[09/Oct/2022:14:37:18 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[09/Oct/2022:15:35:39 +0200] 162.247.72.199 TLSv1.2 AES256-SHA "GET /.DS_Store HTTP/1.1" 304
[09/Oct/2022:15:35:52 +0200] 185.195.71.3 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 306
[09/Oct/2022:15:35:54 +0200] 207.46.13.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[09/Oct/2022:15:36:03 +0200] 83.137.158.15 TLSv1.2 AES256-SHA "GET /.DS_Store HTTP/1.1" 304
[09/Oct/2022:16:13:23 +0200] 64.62.197.166 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:16:27:16 +0200] 64.62.197.152 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[09/Oct/2022:16:33:21 +0200] 64.62.197.166 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:17:13:44 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tar.gz HTTP/1.1" 388
[09/Oct/2022:17:52:30 +0200] 51.132.29.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[09/Oct/2022:17:52:31 +0200] 51.132.29.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[09/Oct/2022:18:12:28 +0200] 87.236.176.220 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:19:00:19 +0200] 94.102.61.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:20:30:53 +0200] 128.1.248.42 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:20:36:45 +0200] 94.102.61.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[09/Oct/2022:20:41:46 +0200] 198.235.24.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[09/Oct/2022:20:48:29 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tgz HTTP/1.1" 394
[09/Oct/2022:20:51:06 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tgz HTTP/1.1" 385
[09/Oct/2022:20:51:23 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tgz HTTP/1.1" 402
[09/Oct/2022:21:19:48 +0200] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tgz HTTP/1.1" 385
[09/Oct/2022:21:21:23 +0200] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.tgz HTTP/1.1" 394
[09/Oct/2022:22:35:17 +0200] 192.241.205.169 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[09/Oct/2022:22:56:58 +0200] 66.23.202.220 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[09/Oct/2022:23:42:35 +0200] 178.62.118.173 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[10/Oct/2022:00:01:58 +0200] 124.156.222.254 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Oct/2022:00:02:28 +0200] 208.100.26.235 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[10/Oct/2022:00:09:03 +0200] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[10/Oct/2022:00:44:21 +0200] 164.92.139.146 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[10/Oct/2022:00:44:22 +0200] 164.92.139.146 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[10/Oct/2022:01:02:06 +0200] 164.52.24.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[10/Oct/2022:01:02:31 +0200] 164.52.24.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 394
[10/Oct/2022:01:03:26 +0200] 34.77.127.183 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[10/Oct/2022:01:32:34 +0200] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Oct/2022:01:41:29 +0200] 54.185.30.78 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[10/Oct/2022:01:41:54 +0200] 35.90.95.182 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[10/Oct/2022:01:41:58 +0200] 35.90.95.182 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[10/Oct/2022:01:44:04 +0200] 23.251.102.74 TLSv1.2 AES256-SHA "GET /owa/ HTTP/1.1" 304