[27/Oct/2022:02:14:15 +0200] 185.180.143.135 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:02:23:41 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[27/Oct/2022:02:27:24 +0200] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/connect.bak HTTP/1.1" 404
[27/Oct/2022:03:41:50 +0200] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[27/Oct/2022:04:41:28 +0200] 194.55.186.123 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[27/Oct/2022:04:41:29 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[27/Oct/2022:04:49:23 +0200] 192.241.214.41 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:05:30:38 +0200] 68.183.180.219 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[27/Oct/2022:05:30:41 +0200] 68.183.180.219 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[27/Oct/2022:05:31:02 +0200] 68.183.180.219 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[27/Oct/2022:05:34:17 +0200] 159.65.197.1 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[27/Oct/2022:05:34:17 +0200] 159.65.197.1 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[27/Oct/2022:05:34:19 +0200] 159.65.197.1 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:05:35:48 +0200] 167.94.146.59 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[27/Oct/2022:05:35:48 +0200] 167.94.146.59 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:05:35:48 +0200] 167.94.146.59 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[27/Oct/2022:06:22:04 +0200] 183.136.225.35 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[27/Oct/2022:06:23:17 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[27/Oct/2022:06:23:23 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/connect.php.bak HTTP/1.1" 408
[27/Oct/2022:06:25:01 +0200] 68.183.124.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v1 HTTP/1.1" 305
[27/Oct/2022:06:25:39 +0200] 192.81.130.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[27/Oct/2022:07:00:33 +0200] 192.241.208.63 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[27/Oct/2022:07:13:59 +0200] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/connect.php.bak HTTP/1.1" 416
[27/Oct/2022:07:21:11 +0200] 198.199.70.227 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v1 HTTP/1.1" 305
[27/Oct/2022:07:21:44 +0200] 138.197.199.129 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[27/Oct/2022:07:39:02 +0200] 165.22.211.181 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[27/Oct/2022:08:18:06 +0200] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/connect.php.bck HTTP/1.1" 416
[27/Oct/2022:08:19:42 +0200] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/connect.php.bck HTTP/1.1" 399
[27/Oct/2022:08:41:20 +0200] 46.101.40.128 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[27/Oct/2022:08:41:20 +0200] 46.101.40.128 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[27/Oct/2022:08:41:22 +0200] 46.101.40.128 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:08:51:37 +0200] 72.251.235.152 - - "-" -
[27/Oct/2022:09:05:14 +0200] 52.59.197.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 310
[27/Oct/2022:09:05:14 +0200] 52.59.197.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 310
[27/Oct/2022:09:22:32 +0200] 152.89.196.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[27/Oct/2022:09:34:30 +0200] 13.40.191.91 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 316
[27/Oct/2022:09:34:30 +0200] 13.40.191.91 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 316
[27/Oct/2022:09:34:31 +0200] 13.40.191.91 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 314
[27/Oct/2022:09:34:31 +0200] 13.40.191.91 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 314
[27/Oct/2022:09:48:41 +0200] 192.241.219.95 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[27/Oct/2022:09:51:17 +0200] 94.102.61.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[27/Oct/2022:10:20:32 +0200] 102.131.60.115 TLSv1.2 AES256-SHA "GET /Electron/download/windows/%5CProgram%20Files%5C3CX%20Phone%20System%5CData%5CDB%5Cbase%5C16384%5C16393 HTTP/1.1" 369
[27/Oct/2022:10:28:35 +0200] 192.241.220.110 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[27/Oct/2022:10:30:34 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/config.php~ HTTP/1.1" 412
[27/Oct/2022:10:31:39 +0200] 192.241.219.20 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[27/Oct/2022:10:33:52 +0200] 192.241.212.172 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[27/Oct/2022:10:49:36 +0200] 192.241.217.81 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[27/Oct/2022:11:50:40 +0200] 192.241.213.183 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[27/Oct/2022:12:18:38 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/config.php~ HTTP/1.1" 395
[27/Oct/2022:13:11:36 +0200] 64.62.197.76 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:13:17:26 +0200] 23.251.102.74 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:13:19:28 +0200] 64.62.197.73 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[27/Oct/2022:13:21:52 +0200] 3.76.6.163 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 304
[27/Oct/2022:13:21:53 +0200] 3.76.6.163 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 304
[27/Oct/2022:13:23:55 +0200] 64.62.197.66 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:13:33:19 +0200] 40.77.167.97 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[27/Oct/2022:13:33:20 +0200] 40.77.167.97 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[27/Oct/2022:13:33:28 +0200] 157.55.39.118 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[27/Oct/2022:14:00:32 +0200] 181.214.206.161 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "-" -
[27/Oct/2022:14:53:12 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/config.bck HTTP/1.1" 394
[27/Oct/2022:14:59:40 +0200] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 387
[27/Oct/2022:15:09:21 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/config.bck HTTP/1.1" 403
[27/Oct/2022:15:49:49 +0200] 194.180.48.125 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[27/Oct/2022:17:07:34 +0200] 185.180.143.7 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:17:17:45 +0200] 193.235.141.168 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[27/Oct/2022:19:16:50 +0200] 176.58.124.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[27/Oct/2022:19:29:06 +0200] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /config/config.php.bck HTTP/1.1" 415
[27/Oct/2022:21:07:11 +0200] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /conf/db.php~ HTTP/1.1" 398
[27/Oct/2022:21:58:29 +0200] 183.136.225.35 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[27/Oct/2022:21:58:51 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:21:59:12 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[27/Oct/2022:21:59:53 +0200] 183.136.225.35 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[27/Oct/2022:22:32:31 +0200] 192.241.213.4 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[27/Oct/2022:22:41:09 +0200] 134.209.102.157 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[27/Oct/2022:22:41:12 +0200] 134.209.102.157 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[27/Oct/2022:22:41:20 +0200] 134.209.102.157 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[27/Oct/2022:22:54:15 +0200] 89.248.165.52 - - "-" -
[27/Oct/2022:23:11:20 +0200] 185.180.143.142 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[27/Oct/2022:23:13:49 +0200] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /conf/db.bck HTTP/1.1" 397
[28/Oct/2022:00:04:09 +0200] 222.179.139.158 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 388
[28/Oct/2022:00:04:10 +0200] 222.179.139.158 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[28/Oct/2022:00:58:07 +0200] 185.216.214.14 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[28/Oct/2022:01:01:42 +0200] 185.183.96.203 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@1337.com/owa/?&Email=autodiscover/autodiscover.json%3F@1337.com HTTP/1.1" 350
[28/Oct/2022:01:04:26 +0200] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[28/Oct/2022:01:29:12 +0200] 35.233.62.116 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[28/Oct/2022:01:40:24 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /conf/db.bak HTTP/1.1" 388
[28/Oct/2022:01:43:56 +0200] 146.190.73.50 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[28/Oct/2022:01:43:57 +0200] 146.190.73.50 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[28/Oct/2022:01:44:01 +0200] 146.190.73.50 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[28/Oct/2022:01:44:21 +0200] 194.180.48.125 TLSv1.2 AES256-SHA "GET /docker-compose.yml HTTP/1.1" 312
[28/Oct/2022:01:53:53 +0200] 89.248.165.52 - - "-" -
[28/Oct/2022:01:59:36 +0200] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /conf/db.bak HTTP/1.1" 405
[28/Oct/2022:01:59:43 +0200] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /conf/db.bak HTTP/1.1" 397