[10/Dec/2022:01:44:27 +0100] 205.210.31.15 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[10/Dec/2022:02:06:00 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.gz HTTP/1.1" 408
[10/Dec/2022:02:17:14 +0100] 43.158.216.231 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:02:17:39 +0100] 43.158.216.231 - - "-" -
[10/Dec/2022:02:59:21 +0100] 3.26.196.126 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[10/Dec/2022:03:06:49 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[10/Dec/2022:03:06:49 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[10/Dec/2022:03:06:50 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[10/Dec/2022:03:06:50 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[10/Dec/2022:03:06:51 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[10/Dec/2022:03:06:51 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[10/Dec/2022:03:06:51 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[10/Dec/2022:03:06:52 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[10/Dec/2022:03:06:52 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[10/Dec/2022:03:06:53 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[10/Dec/2022:03:06:53 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[10/Dec/2022:03:06:54 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[10/Dec/2022:03:06:54 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[10/Dec/2022:03:06:55 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[10/Dec/2022:03:06:55 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[10/Dec/2022:03:06:56 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[10/Dec/2022:03:06:56 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[10/Dec/2022:03:06:57 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[10/Dec/2022:03:06:57 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[10/Dec/2022:03:06:57 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[10/Dec/2022:03:45:01 +0100] 23.90.160.130 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:03:45:07 +0100] 23.90.160.130 TLSv1.2 AES256-SHA "GET /showLogin.cc HTTP/1.1" 311
[10/Dec/2022:04:11:28 +0100] 205.210.31.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[10/Dec/2022:04:15:20 +0100] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:05:11:43 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:05:15:56 +0100] 185.246.221.235 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[10/Dec/2022:05:15:57 +0100] 185.246.221.235 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[10/Dec/2022:05:20:51 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.bz2 HTTP/1.1" 392
[10/Dec/2022:05:30:28 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.bz2 HTTP/1.1" 409
[10/Dec/2022:05:38:03 +0100] 192.241.195.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:05:52:06 +0100] 45.227.253.74 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[10/Dec/2022:06:03:42 +0100] 185.180.143.138 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:06:03:49 +0100] 185.180.143.138 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[10/Dec/2022:06:16:55 +0100] 205.210.31.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[10/Dec/2022:06:25:17 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[10/Dec/2022:07:18:28 +0100] 198.235.24.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[10/Dec/2022:07:18:33 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[10/Dec/2022:07:25:45 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:08:11:45 +0100] 192.241.206.199 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[10/Dec/2022:08:17:23 +0100] 192.241.209.121 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[10/Dec/2022:08:56:44 +0100] 147.182.184.167 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[10/Dec/2022:08:56:45 +0100] 147.182.184.167 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[10/Dec/2022:08:56:48 +0100] 147.182.184.167 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:09:33:01 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:10:13:26 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/database.bck HTTP/1.1" 392
[10/Dec/2022:10:33:44 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[10/Dec/2022:10:39:37 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:10:40:24 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[10/Dec/2022:12:31:36 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/db.sql HTTP/1.1" 386
[10/Dec/2022:14:07:59 +0100] 198.199.95.119 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[10/Dec/2022:14:25:42 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/dump.sql HTTP/1.1" 388
[10/Dec/2022:14:33:03 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/dump.sql HTTP/1.1" 405
[10/Dec/2022:14:36:04 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/dump.sql HTTP/1.1" 397
[10/Dec/2022:14:39:44 +0100] 139.59.82.213 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[10/Dec/2022:14:39:46 +0100] 139.59.82.213 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[10/Dec/2022:14:56:29 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[10/Dec/2022:15:22:58 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[10/Dec/2022:15:22:58 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[10/Dec/2022:15:22:58 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[10/Dec/2022:15:22:59 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[10/Dec/2022:15:22:59 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[10/Dec/2022:15:23:00 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[10/Dec/2022:15:23:00 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[10/Dec/2022:15:23:01 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[10/Dec/2022:15:23:01 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[10/Dec/2022:15:23:01 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[10/Dec/2022:15:23:02 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[10/Dec/2022:15:23:02 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[10/Dec/2022:15:23:03 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[10/Dec/2022:15:23:03 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[10/Dec/2022:15:23:04 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[10/Dec/2022:15:23:04 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[10/Dec/2022:15:23:05 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[10/Dec/2022:15:23:05 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[10/Dec/2022:15:23:06 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[10/Dec/2022:15:23:06 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[10/Dec/2022:15:33:03 +0100] 51.11.211.224 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /cgi-bin/luci HTTP/1.1" 395
[10/Dec/2022:16:16:38 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/dbdump.sql HTTP/1.1" 390
[10/Dec/2022:16:20:31 +0100] 107.189.5.137 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[10/Dec/2022:16:21:12 +0100] 198.235.24.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[10/Dec/2022:16:34:17 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/dbdump.sql HTTP/1.1" 399
[10/Dec/2022:16:35:35 +0100] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:17:05:29 +0100] 89.248.163.204 - - "-" -
[10/Dec/2022:17:29:08 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 387
[10/Dec/2022:17:48:31 +0100] 167.94.138.61 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[10/Dec/2022:17:48:33 +0100] 167.94.138.61 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:17:48:34 +0100] 167.94.138.61 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[10/Dec/2022:18:36:42 +0100] 205.210.31.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 386
[10/Dec/2022:19:23:35 +0100] 147.182.165.215 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[10/Dec/2022:19:23:36 +0100] 147.182.165.215 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[10/Dec/2022:19:24:07 +0100] 147.182.165.215 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[10/Dec/2022:20:28:50 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/localhostdb.sql HTTP/1.1" 412
[10/Dec/2022:21:00:15 +0100] 159.203.18.188 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[10/Dec/2022:21:00:17 +0100] 159.203.18.188 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[10/Dec/2022:21:00:25 +0100] 159.203.18.188 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:21:05:08 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[10/Dec/2022:21:14:21 +0100] 185.180.143.71 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:21:27:42 +0100] 198.235.24.139 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[10/Dec/2022:21:57:23 +0100] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:22:18:15 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/localhost_db.sql HTTP/1.1" 405
[10/Dec/2022:22:22:40 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /db/localhost_db.sql HTTP/1.1" 396
[10/Dec/2022:23:15:52 +0100] 185.193.125.189 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[10/Dec/2022:23:34:14 +0100] 93.159.230.87 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 302
[11/Dec/2022:00:40:27 +0100] 34.76.158.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301