[26/Oct/2022:02:21:07 +0200] 164.92.229.138 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[26/Oct/2022:03:22:05 +0200] 206.189.116.84 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[26/Oct/2022:03:22:06 +0200] 206.189.116.84 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[26/Oct/2022:03:22:07 +0200] 206.189.116.84 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:03:37:27 +0200] 124.156.223.97 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:03:52:24 +0200] 192.241.220.110 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[26/Oct/2022:03:55:34 +0200] 192.241.215.109 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[26/Oct/2022:03:58:35 +0200] 192.241.218.58 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[26/Oct/2022:04:23:43 +0200] 167.248.133.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[26/Oct/2022:04:23:44 +0200] 167.248.133.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:04:23:45 +0200] 167.248.133.120 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[26/Oct/2022:04:40:23 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[26/Oct/2022:04:49:49 +0200] 192.241.212.97 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:05:28:23 +0200] 109.248.6.108 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.0" 399
[26/Oct/2022:05:28:38 +0200] 184.105.247.248 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:05:40:25 +0200] 184.105.247.224 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[26/Oct/2022:05:44:24 +0200] 184.105.247.200 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:05:46:55 +0200] 45.83.67.91 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 293
[26/Oct/2022:05:46:56 +0200] 45.83.67.61 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 293
[26/Oct/2022:05:52:42 +0200] 208.100.26.236 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 298
[26/Oct/2022:05:55:10 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[26/Oct/2022:06:30:13 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/db.bak HTTP/1.1" 399
[26/Oct/2022:06:42:00 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "-" -
[26/Oct/2022:07:09:43 +0200] 192.241.215.228 TLSv1.2 AES256-SHA "GET /ReportServer HTTP/1.1" 307
[26/Oct/2022:07:27:24 +0200] 198.12.252.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/db.bak HTTP/1.1" 390
[26/Oct/2022:07:32:29 +0200] 192.241.219.83 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 305
[26/Oct/2022:08:13:00 +0200] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/db.bck HTTP/1.1" 390
[26/Oct/2022:08:50:19 +0200] 154.6.13.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[26/Oct/2022:08:50:20 +0200] 154.6.13.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[26/Oct/2022:09:02:41 +0200] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[26/Oct/2022:09:02:43 +0200] 188.166.87.233 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[26/Oct/2022:09:02:45 +0200] 188.166.87.233 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[26/Oct/2022:09:02:46 +0200] 188.166.87.233 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:09:03:07 +0200] 188.166.87.233 - - "-" -
[26/Oct/2022:09:07:51 +0200] 179.43.175.204 TLSv1.2 AES256-SHA "GET /.esmtprc HTTP/1.1" 306
[26/Oct/2022:09:27:00 +0200] 164.52.24.172 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[26/Oct/2022:09:27:23 +0200] 164.52.24.172 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 394
[26/Oct/2022:09:54:17 +0200] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:10:52:32 +0200] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/db.php.bak HTTP/1.1" 394
[26/Oct/2022:10:58:13 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/db.php.bak HTTP/1.1" 411
[26/Oct/2022:11:24:22 +0200] 162.248.160.43 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /application/themes/cms/assets/js/fileupload/js/app.js HTTP/1.1" 438
[26/Oct/2022:11:28:25 +0200] 161.35.29.185 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[26/Oct/2022:11:28:27 +0200] 161.35.29.185 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[26/Oct/2022:11:28:38 +0200] 161.35.29.185 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:12:28:27 +0200] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/db.php.bck HTTP/1.1" 394
[26/Oct/2022:13:24:43 +0200] 198.235.24.172 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[26/Oct/2022:13:36:48 +0200] 208.100.26.246 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[26/Oct/2022:13:49:44 +0200] 176.34.163.103 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 101
[26/Oct/2022:14:02:23 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.php~ HTTP/1.1" 406
[26/Oct/2022:14:07:58 +0200] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.php~ HTTP/1.1" 414
[26/Oct/2022:15:04:40 +0200] 192.3.251.168 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[26/Oct/2022:15:47:46 +0200] 68.183.180.219 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[26/Oct/2022:15:47:48 +0200] 68.183.180.219 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[26/Oct/2022:16:08:00 +0200] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.bak HTTP/1.1" 413
[26/Oct/2022:16:09:54 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.bak HTTP/1.1" 396
[26/Oct/2022:16:14:53 +0200] 192.241.200.74 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[26/Oct/2022:16:18:53 +0200] 205.210.31.156 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[26/Oct/2022:16:49:24 +0200] 179.43.175.204 TLSv1.2 AES256-SHA "GET /api/settings/values HTTP/1.1" 313
[26/Oct/2022:17:40:32 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.bak HTTP/1.1" 405
[26/Oct/2022:17:54:41 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.bck HTTP/1.1" 413
[26/Oct/2022:17:55:17 +0200] 213.32.122.82 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[26/Oct/2022:18:03:43 +0200] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[26/Oct/2022:18:47:30 +0200] 142.93.159.182 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[26/Oct/2022:18:47:31 +0200] 142.93.159.182 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[26/Oct/2022:18:47:36 +0200] 142.93.159.182 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:18:55:08 +0200] 198.235.24.177 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[26/Oct/2022:19:25:08 +0200] 185.183.96.203 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com HTTP/1.1" 349
[26/Oct/2022:19:53:54 +0200] 146.190.232.230 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[26/Oct/2022:19:53:54 +0200] 146.190.232.230 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[26/Oct/2022:19:53:57 +0200] 146.190.232.230 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:20:35:15 +0200] 185.180.143.5 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:20:55:48 +0200] 205.210.31.3 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 380
[26/Oct/2022:20:56:08 +0200] 192.241.213.215 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[26/Oct/2022:20:57:13 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[26/Oct/2022:21:54:51 +0200] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.php.bck HTTP/1.1" 409
[26/Oct/2022:22:02:57 +0200] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.php.bck HTTP/1.1" 400
[26/Oct/2022:22:23:41 +0200] 198.12.252.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/database.php.bck HTTP/1.1" 417
[26/Oct/2022:23:22:07 +0200] 162.142.125.121 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[26/Oct/2022:23:22:09 +0200] 162.142.125.121 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[26/Oct/2022:23:31:12 +0200] 193.235.141.168 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[26/Oct/2022:23:32:08 +0200] 137.226.113.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[27/Oct/2022:00:01:06 +0200] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/connect.php~ HTTP/1.1" 413
[27/Oct/2022:00:19:40 +0200] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:01:12:18 +0200] 54.159.37.85 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[27/Oct/2022:01:26:09 +0200] 54.159.20.212 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 304
[27/Oct/2022:01:34:15 +0200] 3.237.9.122 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:01:34:15 +0200] 3.237.9.122 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[27/Oct/2022:01:34:15 +0200] 3.237.9.122 TLSv1.2 AES256-SHA "GET /99vt HTTP/1.1" 304
[27/Oct/2022:01:34:15 +0200] 3.237.9.122 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[27/Oct/2022:01:34:16 +0200] 3.237.9.122 TLSv1.2 AES256-SHA "GET /99vu HTTP/1.1" 305
[27/Oct/2022:01:34:49 +0200] 34.76.158.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[27/Oct/2022:01:45:15 +0200] 35.175.209.67 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 304
[27/Oct/2022:01:49:16 +0200] 3.71.77.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 310
[27/Oct/2022:01:49:16 +0200] 3.71.77.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 310
[27/Oct/2022:01:50:35 +0200] 161.35.24.13 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301