[01/Jan/2023:01:13:07 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/database.gz HTTP/1.1" 397
[01/Jan/2023:01:48:04 +0100] 35.163.166.254 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[01/Jan/2023:01:48:04 +0100] 35.92.12.116 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[01/Jan/2023:01:48:24 +0100] 54.190.59.183 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[01/Jan/2023:01:48:28 +0100] 54.190.59.183 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[01/Jan/2023:01:48:39 +0100] 52.42.130.92 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[01/Jan/2023:02:18:49 +0100] 167.71.204.184 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[01/Jan/2023:02:18:52 +0100] 167.71.204.184 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[01/Jan/2023:02:19:00 +0100] 167.71.204.184 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:02:21:55 +0100] 27.124.12.9 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /video/14080.html HTTP/1.1" 397
[01/Jan/2023:03:09:46 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/database.bz2 HTTP/1.1" 415
[01/Jan/2023:03:28:14 +0100] 18.144.29.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD /epa/scripts/win/nsepa_setup.exe HTTP/1.1" -
[01/Jan/2023:03:30:27 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/database.bz2 HTTP/1.1" 407
[01/Jan/2023:03:37:51 +0100] 157.55.39.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[01/Jan/2023:04:18:21 +0100] 45.142.182.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /_profiler/phpinfo HTTP/1.1" 400
[01/Jan/2023:05:23:38 +0100] 79.35.18.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 387
[01/Jan/2023:05:32:47 +0100] 94.102.61.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:06:04:43 +0100] 205.210.31.30 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[01/Jan/2023:06:16:52 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 310
[01/Jan/2023:06:16:52 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 310
[01/Jan/2023:06:16:53 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 317
[01/Jan/2023:06:16:53 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 317
[01/Jan/2023:06:16:54 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 315
[01/Jan/2023:06:16:58 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 315
[01/Jan/2023:06:16:58 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 316
[01/Jan/2023:06:16:59 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 316
[01/Jan/2023:06:17:00 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 314
[01/Jan/2023:06:17:00 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 314
[01/Jan/2023:06:17:01 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 312
[01/Jan/2023:06:17:01 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 312
[01/Jan/2023:06:17:02 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 315
[01/Jan/2023:06:17:02 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 315
[01/Jan/2023:06:17:03 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 313
[01/Jan/2023:06:17:03 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 313
[01/Jan/2023:06:17:04 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 312
[01/Jan/2023:06:17:05 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 312
[01/Jan/2023:06:17:05 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 312
[01/Jan/2023:06:17:06 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 312
[01/Jan/2023:06:20:06 +0100] 45.134.144.119 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET ///remote/fgt_lang?lang=/../../../..//////////dev/ HTTP/1.1" 325
[01/Jan/2023:06:29:17 +0100] 192.241.226.22 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:08:17:52 +0100] 34.223.93.13 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /owa/auth/logon.aspx HTTP/1.1" 402
[01/Jan/2023:08:18:29 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:08:21:35 +0100] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[01/Jan/2023:08:22:50 +0100] 94.102.61.8 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[01/Jan/2023:08:39:29 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/db.sql HTTP/1.1" 392
[01/Jan/2023:09:41:50 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[01/Jan/2023:09:45:01 +0100] 45.56.69.20 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:09:47:54 +0100] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:09:56:10 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[01/Jan/2023:10:38:27 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/dump.sql HTTP/1.1" 394
[01/Jan/2023:10:47:49 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[01/Jan/2023:10:48:23 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/dump.sql HTTP/1.1" 403
[01/Jan/2023:11:12:58 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/dump.sql HTTP/1.1" 411
[01/Jan/2023:11:31:33 +0100] 43.158.217.52 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:11:31:58 +0100] 43.158.217.52 - - "-" -
[01/Jan/2023:12:04:07 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[01/Jan/2023:12:21:15 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/dbdump.sql HTTP/1.1" 413
[01/Jan/2023:12:35:16 +0100] 107.170.231.10 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[01/Jan/2023:12:57:30 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[01/Jan/2023:13:23:08 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[01/Jan/2023:13:25:49 +0100] 157.55.39.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[01/Jan/2023:13:37:28 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[01/Jan/2023:13:50:46 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[01/Jan/2023:14:11:22 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost.sql HTTP/1.1" 408
[01/Jan/2023:14:47:23 +0100] 65.49.20.69 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:14:53:28 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:14:58:42 +0100] 65.49.20.69 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[01/Jan/2023:15:04:30 +0100] 65.49.20.69 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:15:06:23 +0100] 65.49.20.69 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[01/Jan/2023:15:12:34 +0100] 204.48.19.180 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[01/Jan/2023:15:17:36 +0100] 206.189.113.79 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 302
[01/Jan/2023:15:24:35 +0100] 164.92.117.240 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[01/Jan/2023:15:30:00 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:15:56:09 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[01/Jan/2023:16:14:46 +0100] 134.209.182.185 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[01/Jan/2023:16:14:46 +0100] 134.209.182.185 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[01/Jan/2023:16:14:48 +0100] 134.209.182.185 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:17:37:51 +0100] 139.59.212.82 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[01/Jan/2023:17:39:19 +0100] 139.59.212.82 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 304
[01/Jan/2023:17:45:41 +0100] 188.166.15.209 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[01/Jan/2023:17:47:49 +0100] 212.83.8.74 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[01/Jan/2023:17:48:47 +0100] 212.83.8.81 TLSv1.2 AES256-SHA "GET /owa HTTP/1.1" 386
[01/Jan/2023:18:03:28 +0100] 162.243.143.28 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[01/Jan/2023:18:43:08 +0100] 192.241.198.16 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[01/Jan/2023:19:48:50 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-db.sql HTTP/1.1" 419
[01/Jan/2023:20:53:26 +0100] 192.241.159.223 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[01/Jan/2023:20:55:36 +0100] 165.22.44.243 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 315
[01/Jan/2023:20:56:08 +0100] 146.190.124.39 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[01/Jan/2023:22:17:21 +0100] 54.149.55.131 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[01/Jan/2023:22:17:29 +0100] 35.164.142.245 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[01/Jan/2023:22:17:33 +0100] 35.164.142.245 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[01/Jan/2023:23:38:25 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-database.sql HTTP/1.1" 425
[01/Jan/2023:23:55:25 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-database.sql HTTP/1.1" 408
[02/Jan/2023:00:58:19 +0100] 34.76.158.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301