[08/Dec/2022:01:05:09 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[08/Dec/2022:01:07:51 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:01:08:12 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[08/Dec/2022:01:08:53 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[08/Dec/2022:01:32:17 +0100] 167.248.133.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[08/Dec/2022:01:32:17 +0100] 167.248.133.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:01:32:18 +0100] 167.248.133.119 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[08/Dec/2022:01:32:58 +0100] 64.227.122.217 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:03:16:19 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.tgz HTTP/1.1" 410
[08/Dec/2022:03:54:31 +0100] 94.102.61.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[08/Dec/2022:04:30:49 +0100] 134.209.106.117 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dns-query?dns=DUIBAAABAAAAAAAABWJhaWR1A2NvbQAAAQAB HTTP/1.1" 338
[08/Dec/2022:04:30:52 +0100] 157.230.247.26 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /dns-query HTTP/1.1" 308
[08/Dec/2022:04:30:55 +0100] 207.148.77.182 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dns-query?name=baidu.com&type=A HTTP/1.1" 330
[08/Dec/2022:05:31:32 +0100] 192.241.208.82 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:05:46:46 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.bck HTTP/1.1" 402
[08/Dec/2022:06:19:23 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/databases.bck HTTP/1.1" 393
[08/Dec/2022:07:52:21 +0100] 167.99.69.198 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[08/Dec/2022:07:52:24 +0100] 167.99.69.198 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[08/Dec/2022:08:13:52 +0100] 192.241.192.229 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[08/Dec/2022:08:43:11 +0100] 208.100.26.235 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 298
[08/Dec/2022:08:46:47 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/db.php~ HTTP/1.1" 387
[08/Dec/2022:08:49:22 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /debug/default/view?panel=config HTTP/1.1" 325
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /.DS_Store HTTP/1.1" 307
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /info.php HTTP/1.1" 307
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /.env HTTP/1.1" 304
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "PUT /api/v2/cmdb/system/admin/admin HTTP/1.1" 319
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /server-status HTTP/1.1" 308
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /s/230313e2331313e29353e26383/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 366
[08/Dec/2022:08:49:25 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /telescope/requests HTTP/1.1" 311
[08/Dec/2022:08:49:26 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /api/search?folderIds=0 HTTP/1.1" 316
[08/Dec/2022:08:49:26 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /about HTTP/1.1" 305
[08/Dec/2022:08:49:26 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /v2/_catalog HTTP/1.1" 310
[08/Dec/2022:08:49:26 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 317
[08/Dec/2022:08:49:26 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /config.json HTTP/1.1" 311
[08/Dec/2022:08:49:26 +0100] 139.144.188.49 TLSv1.2 AES256-SHA "GET /login.action HTTP/1.1" 311
[08/Dec/2022:08:49:52 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /server-status HTTP/1.1" 396
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /nmaplowercheck1670485792 HTTP/1.1" 407
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /CSS/Miniweb.css HTTP/1.1" 398
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Portal0000.htm HTTP/1.1" 397
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "SSTP_DUPLEX_POST /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/ HTTP/1.1" 925
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Portal/Portal.mwsl HTTP/1.1" 401
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /scripts/WPnBr.dll HTTP/1.1" 400
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /YDHw HTTP/1.1" 387
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /pools/default/buckets HTTP/1.1" 404
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /docs/cplugError.html/ HTTP/1.1" 404
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /__Additional HTTP/1.1" 395
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /menu.aspx HTTP/1.1" 392
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1 HTTP/1.1" 388
[08/Dec/2022:08:49:53 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /sdk HTTP/1.1" 386
[08/Dec/2022:08:50:04 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[08/Dec/2022:08:50:27 +0100] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[08/Dec/2022:08:59:19 +0100] 163.172.176.137 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:09:26:53 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[08/Dec/2022:09:41:10 +0100] 43.153.10.221 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 500
[08/Dec/2022:09:54:16 +0100] 209.141.35.128 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[08/Dec/2022:09:54:16 +0100] 209.141.36.112 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[08/Dec/2022:09:54:16 +0100] 209.141.55.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:09:54:17 +0100] 205.185.116.89 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[08/Dec/2022:09:54:17 +0100] 209.141.33.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[08/Dec/2022:09:54:18 +0100] 209.141.33.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:09:54:19 +0100] 209.141.49.169 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[08/Dec/2022:09:54:19 +0100] 205.185.116.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:09:54:19 +0100] 209.141.36.231 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 305
[08/Dec/2022:09:54:20 +0100] 209.141.34.187 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[08/Dec/2022:09:54:21 +0100] 209.141.49.169 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 308
[08/Dec/2022:09:54:22 +0100] 209.141.41.193 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 305
[08/Dec/2022:09:54:29 +0100] 209.141.41.193 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[08/Dec/2022:10:04:33 +0100] 163.172.69.223 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[08/Dec/2022:10:17:41 +0100] 192.241.195.15 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[08/Dec/2022:11:00:19 +0100] 74.82.47.22 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:11:12:12 +0100] 74.82.47.18 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[08/Dec/2022:11:18:21 +0100] 74.82.47.46 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:11:20:08 +0100] 74.82.47.30 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[08/Dec/2022:11:44:54 +0100] 45.61.188.225 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET ///wp-login.php HTTP/1.1" 304
[08/Dec/2022:14:17:39 +0100] 87.236.176.36 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[08/Dec/2022:14:38:13 +0100] 40.77.167.106 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[08/Dec/2022:14:38:14 +0100] 40.77.167.106 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[08/Dec/2022:14:38:22 +0100] 207.46.13.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[08/Dec/2022:14:54:13 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[08/Dec/2022:15:05:39 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/db.php.bck HTTP/1.1" 407
[08/Dec/2022:17:37:49 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/db.php.bak HTTP/1.1" 407
[08/Dec/2022:20:09:12 +0100] 172.173.139.85 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[08/Dec/2022:20:09:12 +0100] 172.173.139.85 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[08/Dec/2022:20:26:52 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "PUT /api/v2/cmdb/system/admin/admin HTTP/1.1" 413
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /casa/nodes/thumbprints HTTP/1.1" 398
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /logon/LogonPoint/tmindex.html HTTP/1.1" 412
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aspnet-ajax/Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 434
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /rest/applinks/1.0/manifest HTTP/1.1" 409
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /autodiscover/autodiscover.json?@abc.com/owa/?&Email=autodiscover/autodiscover.json%3F@abc.com HTTP/1.1" 484
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ui/h5-vsan/rest/proxy/service/com.vmware.vsan.client.services.capability.VsanCapabilityProvider/getClusterCapabilityData HTTP/1.1" 503
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole/ HTTP/1.1" 374
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ HTTP/1.1" 498
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd HTTP/1.1" 458
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 422
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /ui/login.action HTTP/1.1" 391
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /secure/rest/applinks/1.0/manifest HTTP/1.1" 416
[08/Dec/2022:20:26:53 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /jira/rest/applinks/1.0/manifest HTTP/1.1" 414
[08/Dec/2022:20:26:54 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /confluence/rest/applinks/1.0/manifest HTTP/1.1" 420
[08/Dec/2022:20:26:54 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /bitbucket/rest/applinks/1.0/manifest HTTP/1.1" 419
[08/Dec/2022:20:26:54 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /bamboo/rest/applinks/1.0/manifest HTTP/1.1" 416
[08/Dec/2022:20:26:54 +0100] 5.39.220.78 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /crowd/rest/applinks/1.0/manifest HTTP/1.1" 415
[08/Dec/2022:20:47:13 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.php~ HTTP/1.1" 410
[08/Dec/2022:22:00:49 +0100] 138.197.169.98 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[08/Dec/2022:22:48:47 +0100] 157.55.39.170 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[08/Dec/2022:22:48:48 +0100] 157.55.39.170 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[08/Dec/2022:22:58:19 +0100] 198.235.24.33 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 386
[08/Dec/2022:23:03:53 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.bak HTTP/1.1" 409
[08/Dec/2022:23:06:18 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.bak HTTP/1.1" 401
[08/Dec/2022:23:08:31 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[09/Dec/2022:00:24:45 +0100] 192.241.209.114 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[09/Dec/2022:00:35:47 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[09/Dec/2022:00:39:23 +0100] 34.78.6.216 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301