[02/Nov/2022:01:12:47 +0100] 192.241.198.18 TLSv1.2 AES256-SHA "GET /public/carn.jsp HTTP/1.1" 313
[02/Nov/2022:01:49:22 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[02/Nov/2022:02:44:32 +0100] 34.173.180.95 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[02/Nov/2022:03:03:52 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /include.tgz HTTP/1.1" 388
[02/Nov/2022:03:29:49 +0100] 109.248.6.76 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.0" 399
[02/Nov/2022:03:41:48 +0100] 194.180.48.125 TLSv1.2 AES256-SHA "GET /docker-compose.yml HTTP/1.1" 312
[02/Nov/2022:03:56:41 +0100] 192.241.203.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:04:35:16 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /include.bck HTTP/1.1" 388
[02/Nov/2022:05:21:15 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /include.bck HTTP/1.1" 405
[02/Nov/2022:05:45:02 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /include.bck HTTP/1.1" 397
[02/Nov/2022:06:09:21 +0100] 198.235.24.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[02/Nov/2022:06:11:25 +0100] 198.199.119.248 TLSv1.2 AES256-SHA "GET /ReportServer HTTP/1.1" 307
[02/Nov/2022:06:14:27 +0100] 138.197.181.157 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[02/Nov/2022:06:14:28 +0100] 138.197.181.157 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:06:31:33 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.gz HTTP/1.1" 388
[02/Nov/2022:06:36:30 +0100] 192.241.212.170 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 305
[02/Nov/2022:07:36:02 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[02/Nov/2022:07:36:02 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[02/Nov/2022:07:36:03 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[02/Nov/2022:07:36:03 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[02/Nov/2022:07:36:04 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[02/Nov/2022:07:36:04 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[02/Nov/2022:07:36:05 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[02/Nov/2022:07:36:05 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[02/Nov/2022:07:36:06 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[02/Nov/2022:07:36:06 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[02/Nov/2022:07:36:07 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[02/Nov/2022:07:36:07 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[02/Nov/2022:07:36:08 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[02/Nov/2022:07:36:09 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[02/Nov/2022:07:36:09 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[02/Nov/2022:07:36:10 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[02/Nov/2022:07:36:10 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[02/Nov/2022:07:36:11 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[02/Nov/2022:07:36:11 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[02/Nov/2022:07:36:12 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[02/Nov/2022:07:39:19 +0100] 63.251.232.75 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Electron/download/windows/\\Program%20Files\\3CX%20Phone%20System\\Data\\DB\\base\\16384\\16393 HTTP/1.0" 479
[02/Nov/2022:07:49:10 +0100] 198.235.24.49 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[02/Nov/2022:08:05:31 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[02/Nov/2022:08:28:44 +0100] 184.105.139.73 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:08:39:03 +0100] 184.105.139.101 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[02/Nov/2022:08:44:32 +0100] 184.105.139.109 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:08:45:30 +0100] 184.105.139.117 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[02/Nov/2022:08:58:33 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.rar HTTP/1.1" 406
[02/Nov/2022:09:38:20 +0100] 193.169.254.184 TLSv1.2 AES256-SHA "POST /wp-plain.php HTTP/1.1" 405
[02/Nov/2022:09:38:20 +0100] 193.169.254.184 TLSv1.2 AES256-SHA "GET /vwvngyuu.php?Fox=d3wL7 HTTP/1.1" 415
[02/Nov/2022:09:58:43 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[02/Nov/2022:10:00:07 +0100] 62.138.2.19 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:10:02:41 +0100] 192.241.198.105 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[02/Nov/2022:10:27:09 +0100] 194.110.203.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:10:57:04 +0100] 192.241.203.30 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[02/Nov/2022:11:22:23 +0100] 128.1.248.42 TLSv1.2 AES256-SHA "GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 330
[02/Nov/2022:11:22:59 +0100] 35.216.204.3 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[02/Nov/2022:11:23:01 +0100] 35.216.204.3 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[02/Nov/2022:11:30:47 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.zip HTTP/1.1" 398
[02/Nov/2022:11:34:22 +0100] 104.210.55.152 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[02/Nov/2022:12:05:54 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[02/Nov/2022:12:25:17 +0100] 40.77.167.97 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[02/Nov/2022:12:25:18 +0100] 40.77.167.97 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[02/Nov/2022:12:25:30 +0100] 157.55.39.99 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[02/Nov/2022:12:46:32 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[02/Nov/2022:12:51:17 +0100] 128.14.134.134 TLSv1.2 AES256-SHA "GET /remote/login HTTP/1.1" 309
[02/Nov/2022:13:30:00 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.tar.gz HTTP/1.1" 401
[02/Nov/2022:13:44:22 +0100] 198.12.252.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.tar.gz HTTP/1.1" 409
[02/Nov/2022:13:53:46 +0100] 193.235.141.177 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[02/Nov/2022:14:13:57 +0100] 154.89.5.206 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 383
[02/Nov/2022:14:24:13 +0100] 80.66.83.75 - - "-" -
[02/Nov/2022:14:45:32 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[02/Nov/2022:15:56:50 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.tar HTTP/1.1" 389
[02/Nov/2022:16:08:23 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.tar HTTP/1.1" 398
[02/Nov/2022:16:10:43 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.tar HTTP/1.1" 406
[02/Nov/2022:18:08:03 +0100] 193.118.53.194 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:18:10:08 +0100] 208.100.26.247 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[02/Nov/2022:18:24:46 +0100] 137.226.113.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[02/Nov/2022:18:30:09 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.bz2 HTTP/1.1" 406
[02/Nov/2022:18:41:46 +0100] 162.142.125.121 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:18:41:47 +0100] 162.142.125.121 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[02/Nov/2022:18:46:42 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[02/Nov/2022:18:46:44 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 298
[02/Nov/2022:18:46:45 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 304
[02/Nov/2022:18:46:47 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 304
[02/Nov/2022:18:46:49 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 303
[02/Nov/2022:18:46:50 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 303
[02/Nov/2022:18:46:51 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 304
[02/Nov/2022:18:46:53 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 304
[02/Nov/2022:18:46:54 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 302
[02/Nov/2022:18:46:56 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 302
[02/Nov/2022:18:46:57 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 300
[02/Nov/2022:18:46:59 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 300
[02/Nov/2022:18:47:01 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 303
[02/Nov/2022:18:47:04 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 303
[02/Nov/2022:18:47:05 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 301
[02/Nov/2022:18:47:06 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 301
[02/Nov/2022:18:47:08 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 300
[02/Nov/2022:18:47:10 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 300
[02/Nov/2022:18:56:11 +0100] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[02/Nov/2022:20:21:44 +0100] 194.180.48.125 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[02/Nov/2022:20:27:33 +0100] 34.76.110.202 TLSv1.2 AES256-SHA "POST /api/report HTTP/1.1" 308
[02/Nov/2022:20:28:55 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[02/Nov/2022:20:39:37 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.tgz HTTP/1.1" 398
[02/Nov/2022:21:28:25 +0100] 146.88.240.11 TLSv1.2 AES256-SHA "-" -
[02/Nov/2022:21:45:28 +0100] 93.159.230.83 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[02/Nov/2022:21:50:46 +0100] 192.241.199.130 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[02/Nov/2022:22:35:29 +0100] 213.32.122.82 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[02/Nov/2022:22:35:37 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.bck HTTP/1.1" 398
[02/Nov/2022:22:46:56 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /includes.bck HTTP/1.1" 406
[02/Nov/2022:23:15:01 +0100] 181.214.206.161 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "-" -
[02/Nov/2022:23:44:53 +0100] 193.56.29.26 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[02/Nov/2022:23:44:53 +0100] 193.56.29.26 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[03/Nov/2022:00:26:02 +0100] 34.76.158.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Nov/2022:00:46:04 +0100] 93.159.230.89 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:00:49:54 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.gz HTTP/1.1" 388