[05/Jan/2023:01:05:41 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[05/Jan/2023:01:11:23 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:01:11:48 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[05/Jan/2023:01:12:10 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[05/Jan/2023:01:54:35 +0100] 51.254.49.109 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 2946
[05/Jan/2023:01:54:41 +0100] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:02:13:29 +0100] 68.183.74.127 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[05/Jan/2023:02:13:29 +0100] 68.183.74.127 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[05/Jan/2023:02:13:30 +0100] 68.183.74.127 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:02:14:18 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost.sql.gz HTTP/1.1" 402
[05/Jan/2023:02:54:42 +0100] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:03:31:55 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[05/Jan/2023:03:35:06 +0100] 87.236.176.46 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[05/Jan/2023:04:13:03 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhostdb.sql.gz HTTP/1.1" 404
[05/Jan/2023:04:47:37 +0100] 176.58.124.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[05/Jan/2023:04:49:39 +0100] 192.241.213.72 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[05/Jan/2023:05:34:51 +0100] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[05/Jan/2023:06:30:32 +0100] 148.153.45.237 TLSv1.2 AES256-SHA "GET /vn2F HTTP/1.1" 305
[05/Jan/2023:06:30:34 +0100] 148.153.45.237 TLSv1.2 AES256-SHA "GET /ScFa HTTP/1.1" 304
[05/Jan/2023:06:30:35 +0100] 148.153.45.237 TLSv1.2 AES256-SHA "GET /aab8 HTTP/1.1" 304
[05/Jan/2023:06:30:38 +0100] 148.153.45.237 TLSv1.2 AES256-SHA "GET /aab9 HTTP/1.1" 304
[05/Jan/2023:06:36:11 +0100] 107.170.233.18 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:06:40:52 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 387
[05/Jan/2023:06:50:19 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost_db.sql.gz HTTP/1.1" 414
[05/Jan/2023:07:42:04 +0100] 45.142.182.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /core/.env HTTP/1.1" 392
[05/Jan/2023:07:57:49 +0100] 207.46.13.230 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[05/Jan/2023:07:57:49 +0100] 172.105.189.111 TLSv1.2 AES256-SHA "GET /owa/ HTTP/1.1" 304
[05/Jan/2023:07:57:50 +0100] 207.46.13.230 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 311
[05/Jan/2023:07:58:02 +0100] 157.55.39.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[05/Jan/2023:07:58:11 +0100] 172.105.189.111 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?a..foo.var/owa/?&Email=autodiscover/autodiscover.json?a..foo.var&Protocol=XYZ&FooProtocol=%50owershell HTTP/1.1" 378
[05/Jan/2023:08:16:44 +0100] 179.43.177.154 TLSv1.2 AES256-SHA "GET /.aws/credentials HTTP/1.1" 311
[05/Jan/2023:08:34:30 +0100] 192.241.203.6 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[05/Jan/2023:08:42:56 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-db.sql.gz HTTP/1.1" 405
[05/Jan/2023:09:20:48 +0100] 179.43.162.10 TLSv1.2 AES256-SHA "GET /config.yml HTTP/1.1" 310
[05/Jan/2023:09:31:48 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 404
[05/Jan/2023:09:48:36 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[05/Jan/2023:09:48:37 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /sdk HTTP/1.1" 386
[05/Jan/2023:09:48:37 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /nmaplowercheck1672908516 HTTP/1.1" 407
[05/Jan/2023:09:48:38 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /evox/about HTTP/1.1" 393
[05/Jan/2023:09:48:38 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1 HTTP/1.1" 388
[05/Jan/2023:09:48:39 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[05/Jan/2023:09:48:40 +0100] 103.187.190.23 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[05/Jan/2023:09:56:23 +0100] 185.189.182.234 TLSv1.2 AES256-SHA "GET /XDiW HTTP/1.1" 379
[05/Jan/2023:10:14:59 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost_database.sql.gz HTTP/1.1" 420
[05/Jan/2023:10:25:45 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[05/Jan/2023:10:31:39 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:10:32:02 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[05/Jan/2023:10:32:29 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[05/Jan/2023:11:37:52 +0100] 174.138.44.183 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[05/Jan/2023:11:37:53 +0100] 174.138.44.183 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[05/Jan/2023:11:37:57 +0100] 174.138.44.183 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:12:50:58 +0100] 185.180.143.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:13:19:58 +0100] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[05/Jan/2023:13:41:56 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-database.sql.gz HTTP/1.1" 420
[05/Jan/2023:13:42:25 +0100] 80.85.241.15 TLSv1.2 AES256-SHA "GET /phpmyadmin/index.php HTTP/1.1" 313
[05/Jan/2023:13:46:19 +0100] 185.180.143.71 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:13:46:25 +0100] 185.180.143.71 TLSv1.2 AES256-SHA "GET /api/jsonws/ HTTP/1.1" 309
[05/Jan/2023:13:46:41 +0100] 71.6.232.22 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:14:02:01 +0100] 103.123.1.17 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 374
[05/Jan/2023:14:29:58 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost_dump.sql.gz HTTP/1.1" 424
[05/Jan/2023:14:33:48 +0100] 184.105.247.195 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:14:45:00 +0100] 184.105.247.195 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[05/Jan/2023:14:49:19 +0100] 184.105.247.195 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:14:50:39 +0100] 184.105.247.195 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[05/Jan/2023:16:17:32 +0100] 103.153.254.110 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:16:45:30 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-dump.sql.gz HTTP/1.1" 407
[05/Jan/2023:17:20:39 +0100] 157.245.246.116 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[05/Jan/2023:17:20:41 +0100] 157.245.246.116 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[05/Jan/2023:17:20:45 +0100] 157.245.246.116 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:17:51:29 +0100] 157.55.39.65 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[05/Jan/2023:18:49:55 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[05/Jan/2023:18:49:56 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[05/Jan/2023:18:49:56 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[05/Jan/2023:18:49:57 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[05/Jan/2023:18:49:57 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[05/Jan/2023:18:49:57 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[05/Jan/2023:18:49:58 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[05/Jan/2023:18:49:58 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[05/Jan/2023:18:49:59 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[05/Jan/2023:18:49:59 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[05/Jan/2023:18:50:00 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[05/Jan/2023:18:50:00 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[05/Jan/2023:18:50:00 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[05/Jan/2023:18:50:01 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[05/Jan/2023:18:50:01 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[05/Jan/2023:18:50:02 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[05/Jan/2023:18:50:02 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[05/Jan/2023:18:50:03 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[05/Jan/2023:18:50:03 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[05/Jan/2023:18:50:04 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[05/Jan/2023:18:51:20 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhostbackup.sql.gz HTTP/1.1" 417
[05/Jan/2023:19:09:08 +0100] 107.170.255.9 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[05/Jan/2023:19:20:00 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[05/Jan/2023:19:38:28 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhostbackup.sql.gz HTTP/1.1" 425
[05/Jan/2023:20:18:20 +0100] 192.241.217.15 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[05/Jan/2023:20:37:05 +0100] 103.149.192.57 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:20:58:36 +0100] 138.197.136.122 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[05/Jan/2023:20:58:37 +0100] 138.197.136.122 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[05/Jan/2023:20:58:47 +0100] 138.197.136.122 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:20:59:05 +0100] 138.197.136.122 - - "-" -
[05/Jan/2023:21:54:21 +0100] 45.61.186.176 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[05/Jan/2023:22:07:44 +0100] 45.61.186.176 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[05/Jan/2023:22:24:33 +0100] 34.217.180.164 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[05/Jan/2023:22:25:31 +0100] 35.167.119.152 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[05/Jan/2023:22:28:57 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:22:40:15 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[05/Jan/2023:22:48:47 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[05/Jan/2023:22:56:25 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-backup.sql.gz HTTP/1.1" 409
[05/Jan/2023:23:12:53 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database/localhost-backup.sql.gz HTTP/1.1" 426
[05/Jan/2023:23:30:09 +0100] 89.248.165.52 - - "-" -
[06/Jan/2023:00:09:37 +0100] 107.170.252.8 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[06/Jan/2023:00:12:09 +0100] 162.243.136.18 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[06/Jan/2023:00:15:08 +0100] 162.243.132.20 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[06/Jan/2023:00:17:45 +0100] 34.209.212.208 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[06/Jan/2023:00:18:29 +0100] 54.202.217.176 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[06/Jan/2023:00:18:33 +0100] 54.202.217.176 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[06/Jan/2023:00:37:19 +0100] 34.78.6.216 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[06/Jan/2023:00:40:23 +0100] 165.154.48.129 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[06/Jan/2023:00:40:29 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315