[07/Dec/2022:01:50:25 +0100] 54.244.197.234 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[07/Dec/2022:01:50:53 +0100] 35.91.6.174 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[07/Dec/2022:01:50:58 +0100] 35.91.6.174 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[07/Dec/2022:03:39:44 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/easyzumfuehrerschein_backup.sql HTTP/1.1" 428
[07/Dec/2022:03:39:55 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/klub_backup.sql HTTP/1.1" 404
[07/Dec/2022:03:54:55 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/harm_backup.sql HTTP/1.1" 395
[07/Dec/2022:04:19:51 +0100] 94.102.61.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:05:06:33 +0100] 205.210.31.156 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[07/Dec/2022:05:18:03 +0100] 207.154.200.192 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Dec/2022:05:21:11 +0100] 192.241.196.120 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[07/Dec/2022:05:26:58 +0100] 192.241.198.9 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[07/Dec/2022:05:29:49 +0100] 192.241.202.90 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[07/Dec/2022:05:30:47 +0100] 192.241.195.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:05:31:39 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Dec/2022:05:45:51 +0100] 205.210.31.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[07/Dec/2022:06:21:27 +0100] 128.14.133.58 TLSv1.2 AES256-SHA "GET /admin/ HTTP/1.1" 305
[07/Dec/2022:06:31:12 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/harm_backup.sql.gz HTTP/1.1" 398
[07/Dec/2022:06:41:49 +0100] 192.241.201.85 TLSv1.2 AES256-SHA "GET /ReportServer HTTP/1.1" 307
[07/Dec/2022:06:46:26 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/klub_backup.sql.gz HTTP/1.1" 407
[07/Dec/2022:06:53:33 +0100] 192.241.200.98 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 305
[07/Dec/2022:07:08:29 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/easyzumfuehrerschein_backup.sql.gz HTTP/1.1" 431
[07/Dec/2022:07:19:04 +0100] 162.142.125.210 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[07/Dec/2022:07:19:04 +0100] 162.142.125.210 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:07:19:05 +0100] 162.142.125.210 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[07/Dec/2022:07:39:34 +0100] 64.62.197.240 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:07:47:30 +0100] 64.62.197.233 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[07/Dec/2022:07:51:34 +0100] 64.62.197.234 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:07:52:36 +0100] 64.62.197.229 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[07/Dec/2022:08:00:06 +0100] 45.9.110.186 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Dec/2022:08:08:25 +0100] 192.241.205.227 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[07/Dec/2022:08:28:03 +0100] 185.189.182.234 TLSv1.2 AES256-SHA "GET /YaF\\ HTTP/1.1" 379
[07/Dec/2022:09:30:25 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/easyzumfuehrerschein.com_MySQL.sql HTTP/1.1" 431
[07/Dec/2022:09:40:23 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/klub.kornland.at_MySQL.sql HTTP/1.1" 415
[07/Dec/2022:10:06:11 +0100] 192.241.212.158 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[07/Dec/2022:11:06:12 +0100] 205.210.31.27 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 380
[07/Dec/2022:12:17:17 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/easyzumfuehrerschein_MySQL.sql HTTP/1.1" 427
[07/Dec/2022:12:19:10 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/klub_MySQL.sql HTTP/1.1" 403
[07/Dec/2022:12:49:04 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[07/Dec/2022:13:15:59 +0100] 103.127.158.166 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 296
[07/Dec/2022:13:15:59 +0100] 103.127.158.166 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 296
[07/Dec/2022:13:55:27 +0100] 128.14.209.242 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:14:15:51 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[07/Dec/2022:14:34:06 +0100] 183.136.225.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Dec/2022:14:34:27 +0100] 183.136.225.9 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[07/Dec/2022:14:49:21 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Dec/2022:14:55:55 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:14:56:17 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[07/Dec/2022:14:56:42 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[07/Dec/2022:14:56:43 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 298
[07/Dec/2022:14:56:43 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 304
[07/Dec/2022:14:56:44 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 304
[07/Dec/2022:14:56:45 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 303
[07/Dec/2022:14:56:45 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 303
[07/Dec/2022:14:56:46 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 304
[07/Dec/2022:14:56:46 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 304
[07/Dec/2022:14:56:47 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 302
[07/Dec/2022:14:56:47 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 302
[07/Dec/2022:14:56:48 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 300
[07/Dec/2022:14:56:49 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 300
[07/Dec/2022:14:56:49 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 303
[07/Dec/2022:14:56:50 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 303
[07/Dec/2022:14:56:50 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 301
[07/Dec/2022:14:56:51 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 301
[07/Dec/2022:14:56:51 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 300
[07/Dec/2022:14:56:52 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 300
[07/Dec/2022:14:56:52 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 300
[07/Dec/2022:14:56:53 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 300
[07/Dec/2022:14:58:46 +0100] 181.214.206.186 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[07/Dec/2022:15:32:46 +0100] 193.118.53.210 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:15:36:53 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[07/Dec/2022:15:36:53 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[07/Dec/2022:15:36:54 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[07/Dec/2022:15:36:54 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[07/Dec/2022:15:36:55 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[07/Dec/2022:15:36:55 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[07/Dec/2022:15:36:56 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[07/Dec/2022:15:36:56 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[07/Dec/2022:15:36:57 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[07/Dec/2022:15:36:57 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[07/Dec/2022:15:36:58 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[07/Dec/2022:15:36:58 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[07/Dec/2022:15:36:59 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[07/Dec/2022:15:36:59 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[07/Dec/2022:15:37:00 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[07/Dec/2022:15:37:00 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[07/Dec/2022:15:37:01 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[07/Dec/2022:15:37:01 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[07/Dec/2022:15:37:02 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[07/Dec/2022:15:37:02 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[07/Dec/2022:16:02:17 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.sql HTTP/1.1" 393
[07/Dec/2022:16:47:34 +0100] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /casa/nodes/thumbprints HTTP/1.1" 398
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /autodiscover/autodiscover.json?@abc.com/owa/?&Email=autodiscover/autodiscover.json%3F@abc.com HTTP/1.1" 484
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole/ HTTP/1.1" 374
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /rest/applinks/1.0/manifest HTTP/1.1" 409
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aspnet-ajax/Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 434
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 458
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ui/h5-vsan/rest/proxy/service/com.vmware.vsan.client.services.capability.VsanCapabilityProvider/getClusterCapabilityData HTTP/1.1" 503
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /logon/LogonPoint/tmindex.html HTTP/1.1" 412
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 498
[07/Dec/2022:17:02:52 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "PUT /api/v2/cmdb/system/admin/admin HTTP/1.1" 413
[07/Dec/2022:17:02:53 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /ui/login.action HTTP/1.1" 391
[07/Dec/2022:17:02:53 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 422
[07/Dec/2022:17:02:53 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /secure/rest/applinks/1.0/manifest HTTP/1.1" 416
[07/Dec/2022:17:02:53 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /jira/rest/applinks/1.0/manifest HTTP/1.1" 414
[07/Dec/2022:17:02:54 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /confluence/rest/applinks/1.0/manifest HTTP/1.1" 420
[07/Dec/2022:17:02:55 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /bitbucket/rest/applinks/1.0/manifest HTTP/1.1" 419
[07/Dec/2022:17:02:55 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /bamboo/rest/applinks/1.0/manifest HTTP/1.1" 416
[07/Dec/2022:17:02:56 +0100] 45.33.65.249 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /crowd/rest/applinks/1.0/manifest HTTP/1.1" 415
[07/Dec/2022:17:03:41 +0100] 34.94.69.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.0" 383
[07/Dec/2022:18:24:51 +0100] 104.244.75.243 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET ///wp-login.php HTTP/1.1" 304
[07/Dec/2022:18:49:24 +0100] 69.10.40.142 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[07/Dec/2022:19:37:17 +0100] 20.94.40.182 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[07/Dec/2022:19:53:21 +0100] 3.95.27.182 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[07/Dec/2022:19:53:21 +0100] 3.95.27.182 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[07/Dec/2022:19:53:21 +0100] 3.95.27.182 TLSv1.2 AES256-SHA "GET /99vt HTTP/1.1" 304
[07/Dec/2022:19:53:21 +0100] 3.95.27.182 TLSv1.2 AES256-SHA "GET /aaaaaaaaaaaaaaaaaaaaaaaaaqr HTTP/1.1" 306
[07/Dec/2022:19:53:21 +0100] 3.95.27.182 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:19:53:23 +0100] 3.95.27.182 TLSv1.2 AES256-SHA "GET /99vu HTTP/1.1" 305
[07/Dec/2022:20:59:57 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.tar HTTP/1.1" 402
[07/Dec/2022:23:03:22 +0100] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[07/Dec/2022:23:26:29 +0100] 170.64.142.81 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[07/Dec/2022:23:26:32 +0100] 170.64.142.81 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[07/Dec/2022:23:26:41 +0100] 170.64.142.81 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[07/Dec/2022:23:43:37 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[07/Dec/2022:23:51:21 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.tar.gz HTTP/1.1" 405
[07/Dec/2022:23:55:08 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.tar.gz HTTP/1.1" 413
[08/Dec/2022:00:02:27 +0100] 103.149.192.82 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:00:25:56 +0100] 34.78.6.216 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[08/Dec/2022:00:39:27 +0100] 137.226.113.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[08/Dec/2022:00:58:23 +0100] 198.199.94.162 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328