[03/Nov/2022:01:26:46 +0100] 35.90.116.43 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/Nov/2022:01:27:03 +0100] 54.244.205.208 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[03/Nov/2022:01:58:02 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.gz HTTP/1.1" 397
[03/Nov/2022:02:46:16 +0100] 93.159.230.83 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:02:56:52 +0100] 162.221.192.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:03:58:08 +0100] 192.241.205.139 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:04:04:59 +0100] 157.245.143.249 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Nov/2022:04:05:00 +0100] 157.245.143.249 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/Nov/2022:04:05:04 +0100] 157.245.143.249 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:04:19:32 +0100] 167.248.133.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Nov/2022:04:19:33 +0100] 167.248.133.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:04:19:33 +0100] 167.248.133.119 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Nov/2022:04:21:08 +0100] 162.221.192.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:04:54:02 +0100] 87.236.176.112 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:05:53:36 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.tgz HTTP/1.1" 406
[03/Nov/2022:05:55:09 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.tgz HTTP/1.1" 398
[03/Nov/2022:06:03:00 +0100] 35.81.79.121 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 394
[03/Nov/2022:06:16:09 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.tgz HTTP/1.1" 389
[03/Nov/2022:06:38:53 +0100] 192.241.206.92 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[03/Nov/2022:06:56:31 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[03/Nov/2022:07:16:55 +0100] 208.115.218.254 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET ///3c625c27b4da33d3d5c12e8d02104755/js/login.js HTTP/1.1" 335
[03/Nov/2022:07:39:06 +0100] 134.209.231.205 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Nov/2022:07:39:07 +0100] 134.209.231.205 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:07:42:02 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.bck HTTP/1.1" 406
[03/Nov/2022:07:43:18 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[03/Nov/2022:08:08:18 +0100] 93.159.230.89 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:08:11:23 +0100] 167.94.138.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Nov/2022:08:11:23 +0100] 167.94.138.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:08:11:24 +0100] 167.94.138.120 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Nov/2022:08:56:53 +0100] 142.93.212.114 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Nov/2022:08:56:55 +0100] 142.93.212.114 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/Nov/2022:08:57:00 +0100] 142.93.212.114 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:09:39:11 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[03/Nov/2022:10:01:44 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:10:04:35 +0100] 192.241.202.124 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[03/Nov/2022:10:13:20 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wp/wp-config.php~ HTTP/1.1" 411
[03/Nov/2022:10:29:02 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/Nov/2022:10:29:33 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:10:29:42 +0100] 35.205.245.30 TLSv1.2 AES256-SHA "POST /api/report HTTP/1.1" 308
[03/Nov/2022:10:29:54 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/Nov/2022:10:30:35 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[03/Nov/2022:12:43:37 +0100] 194.180.48.125 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[03/Nov/2022:12:56:50 +0100] 64.227.34.144 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Nov/2022:12:56:51 +0100] 64.227.34.144 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/Nov/2022:12:56:57 +0100] 64.227.34.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:13:08:13 +0100] 110.238.104.198 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:13:36:22 +0100] 65.49.20.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:13:47:42 +0100] 65.49.20.92 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/Nov/2022:13:53:07 +0100] 65.49.20.104 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:13:54:24 +0100] 65.49.20.108 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[03/Nov/2022:14:26:55 +0100] 208.100.26.249 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 298
[03/Nov/2022:14:38:10 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wp/wp-config.bck HTTP/1.1" 393
[03/Nov/2022:14:38:49 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wp/wp-config.bck HTTP/1.1" 410
[03/Nov/2022:14:43:32 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wp/wp-config.bck HTTP/1.1" 402
[03/Nov/2022:15:40:07 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[03/Nov/2022:16:50:53 +0100] 94.102.61.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Nov/2022:16:54:20 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wp/wp-config.php.bak HTTP/1.1" 397
[03/Nov/2022:17:15:41 +0100] 165.232.191.153 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 374
[03/Nov/2022:17:43:48 +0100] 161.35.33.161 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Nov/2022:17:43:48 +0100] 161.35.33.161 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/Nov/2022:17:43:49 +0100] 161.35.33.161 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:18:16:06 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/Nov/2022:18:16:07 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[03/Nov/2022:18:16:07 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[03/Nov/2022:18:16:08 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[03/Nov/2022:18:16:08 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[03/Nov/2022:18:16:09 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[03/Nov/2022:18:16:09 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[03/Nov/2022:18:16:10 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[03/Nov/2022:18:16:10 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[03/Nov/2022:18:16:11 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[03/Nov/2022:18:16:11 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[03/Nov/2022:18:16:12 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[03/Nov/2022:18:16:13 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[03/Nov/2022:18:16:13 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[03/Nov/2022:18:16:14 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[03/Nov/2022:18:16:14 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[03/Nov/2022:18:16:15 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[03/Nov/2022:18:16:16 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[03/Nov/2022:18:16:16 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[03/Nov/2022:18:16:17 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[03/Nov/2022:18:22:07 +0100] 23.251.102.90 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:18:38:45 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wp/wp-config.php.bck HTTP/1.1" 406
[03/Nov/2022:18:57:35 +0100] 109.206.243.220 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[03/Nov/2022:19:29:43 +0100] 194.55.186.126 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[03/Nov/2022:19:57:18 +0100] 198.20.69.98 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Nov/2022:19:57:35 +0100] 198.20.69.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Nov/2022:19:57:39 +0100] 198.20.69.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Nov/2022:19:57:41 +0100] 198.20.69.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Nov/2022:19:57:47 +0100] 198.20.69.98 TLSv1.2 AES256-SHA "quit" 379
[03/Nov/2022:19:57:49 +0100] 198.20.69.98 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[03/Nov/2022:19:57:51 +0100] 198.20.69.98 TLSv1.2 AES256-SHA "GET /sitemap.xml HTTP/1.1" 394
[03/Nov/2022:19:57:54 +0100] 198.20.69.98 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 407
[03/Nov/2022:19:57:57 +0100] 198.20.69.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[03/Nov/2022:19:58:00 +0100] 198.20.69.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Nov/2022:20:25:57 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /blog/wp-config.php~ HTTP/1.1" 405
[03/Nov/2022:21:32:29 +0100] 152.32.135.231 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Nov/2022:22:09:54 +0100] 35.161.57.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/Nov/2022:22:10:41 +0100] 34.215.183.1 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[03/Nov/2022:22:10:44 +0100] 34.215.183.1 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/Nov/2022:22:15:40 +0100] 192.241.200.104 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[03/Nov/2022:22:38:45 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /blog/wp-config.php.bak HTTP/1.1" 399
[03/Nov/2022:23:42:19 +0100] 167.94.138.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Nov/2022:23:42:19 +0100] 167.94.138.119 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[04/Nov/2022:00:11:46 +0100] 157.245.81.91 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[04/Nov/2022:00:11:47 +0100] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[04/Nov/2022:00:13:46 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wordpress/wp-config.php~ HTTP/1.1" 410
[04/Nov/2022:00:24:10 +0100] 34.76.96.55 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[04/Nov/2022:00:37:43 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /wordpress/wp-config.php~ HTTP/1.1" 418
[04/Nov/2022:00:53:50 +0100] 205.210.31.185 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377