[03/Mar/2023:02:44:43 +0100] 95.181.232.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/Mar/2023:02:44:43 +0100] 95.181.232.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[03/Mar/2023:04:37:16 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_26052022.zip HTTP/1.1" 396
[03/Mar/2023:04:44:05 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/Mar/2023:04:49:35 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[03/Mar/2023:04:57:42 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[03/Mar/2023:05:02:19 +0100] 185.142.236.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:05:02:24 +0100] 185.142.236.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:05:02:24 +0100] 185.142.236.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:05:02:25 +0100] 185.142.236.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:05:02:28 +0100] 185.142.236.34 TLSv1.2 AES256-SHA "quit" 379
[03/Mar/2023:05:02:28 +0100] 185.142.236.34 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[03/Mar/2023:05:02:28 +0100] 185.142.236.34 TLSv1.2 AES256-SHA "GET /sitemap.xml HTTP/1.1" 394
[03/Mar/2023:05:02:29 +0100] 185.142.236.34 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 407
[03/Mar/2023:05:02:29 +0100] 185.142.236.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[03/Mar/2023:05:02:31 +0100] 185.142.236.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:05:05:21 +0100] 162.142.125.9 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:05:05:21 +0100] 162.142.125.9 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:05:05:22 +0100] 162.142.125.9 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Mar/2023:05:40:38 +0100] 128.14.133.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:06:34:55 +0100] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:07:37:29 +0100] 185.165.190.17 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:07:37:38 +0100] 185.165.190.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:07:37:39 +0100] 185.165.190.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:07:37:39 +0100] 185.165.190.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:07:37:43 +0100] 185.165.190.17 TLSv1.2 AES256-SHA "quit" 379
[03/Mar/2023:07:37:45 +0100] 185.165.190.17 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[03/Mar/2023:07:37:45 +0100] 185.165.190.17 TLSv1.2 AES256-SHA "GET /sitemap.xml HTTP/1.1" 394
[03/Mar/2023:07:37:46 +0100] 185.165.190.17 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 407
[03/Mar/2023:07:37:47 +0100] 185.165.190.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[03/Mar/2023:07:37:50 +0100] 185.165.190.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[03/Mar/2023:07:45:15 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_22052022.zip HTTP/1.1" 413
[03/Mar/2023:07:55:13 +0100] 107.170.242.14 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[03/Mar/2023:08:32:48 +0100] 64.62.197.164 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:08:39:38 +0100] 64.62.197.163 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/Mar/2023:08:42:56 +0100] 64.62.197.161 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:08:44:13 +0100] 64.62.197.154 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[03/Mar/2023:09:09:25 +0100] 185.180.143.71 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:09:28:32 +0100] 139.144.154.235 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Mar/2023:09:29:08 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_21052022.zip HTTP/1.1" 413
[03/Mar/2023:09:39:57 +0100] 192.241.195.28 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:09:41:58 +0100] 185.189.182.234 TLSv1.2 AES256-SHA "GET /gOF` HTTP/1.1" 379
[03/Mar/2023:09:46:42 +0100] 106.75.186.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:09:46:54 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_21052022.zip HTTP/1.1" 396
[03/Mar/2023:09:48:44 +0100] 106.75.145.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:10:20:56 +0100] 128.14.209.162 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:10:55:13 +0100] 205.210.31.140 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[03/Mar/2023:10:55:13 +0100] 205.210.31.140 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[03/Mar/2023:11:18:27 +0100] 154.89.5.213 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:11:53:11 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/Mar/2023:11:53:11 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[03/Mar/2023:11:53:12 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[03/Mar/2023:11:53:12 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[03/Mar/2023:11:53:13 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[03/Mar/2023:11:53:14 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[03/Mar/2023:11:53:14 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[03/Mar/2023:11:53:15 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[03/Mar/2023:11:53:16 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[03/Mar/2023:11:53:16 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[03/Mar/2023:11:53:17 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[03/Mar/2023:11:53:17 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[03/Mar/2023:11:53:18 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[03/Mar/2023:11:53:19 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[03/Mar/2023:11:53:19 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[03/Mar/2023:11:53:20 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[03/Mar/2023:11:53:21 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[03/Mar/2023:11:53:21 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[03/Mar/2023:11:53:22 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[03/Mar/2023:11:53:22 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[03/Mar/2023:11:53:23 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin/.env HTTP/1.1" 308
[03/Mar/2023:11:53:24 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /admin/.env HTTP/1.1" 308
[03/Mar/2023:11:53:24 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backend/.env HTTP/1.1" 310
[03/Mar/2023:11:53:25 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /backend/.env HTTP/1.1" 310
[03/Mar/2023:11:53:26 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /app/.env HTTP/1.1" 307
[03/Mar/2023:11:53:26 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /app/.env HTTP/1.1" 307
[03/Mar/2023:12:04:29 +0100] 205.210.31.167 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[03/Mar/2023:12:13:22 +0100] 159.203.208.16 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[03/Mar/2023:12:35:29 +0100] 208.100.26.237 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[03/Mar/2023:12:39:54 +0100] 91.122.53.173 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/HEAD HTTP/1.1" 403
[03/Mar/2023:12:40:56 +0100] 139.144.148.36 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Mar/2023:13:10:05 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_19052022.zip HTTP/1.1" 396
[03/Mar/2023:13:18:01 +0100] 20.119.235.87 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/Mar/2023:13:18:02 +0100] 20.119.235.87 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[03/Mar/2023:14:06:05 +0100] 104.131.68.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Mar/2023:14:06:08 +0100] 104.131.68.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 754
[03/Mar/2023:14:06:09 +0100] 104.131.68.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 1150
[03/Mar/2023:15:27:31 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_18052022.zip HTTP/1.1" 413
[03/Mar/2023:15:44:19 +0100] 193.235.141.120 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[03/Mar/2023:15:47:05 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_17052022.zip HTTP/1.1" 405
[03/Mar/2023:16:29:29 +0100] 171.13.14.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/Mar/2023:17:25:12 +0100] 128.14.134.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:17:49:32 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_17052022.zip HTTP/1.1" 413
[03/Mar/2023:18:33:35 +0100] 198.199.115.67 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[03/Mar/2023:18:59:33 +0100] 104.248.195.248 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Mar/2023:18:59:33 +0100] 104.248.195.248 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/Mar/2023:18:59:35 +0100] 104.248.195.248 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:18:59:35 +0100] 104.248.195.248 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[03/Mar/2023:19:19:17 +0100] 205.210.31.129 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/Mar/2023:19:52:54 +0100] 128.14.209.162 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:20:10:34 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_15052022.zip HTTP/1.1" 396
[03/Mar/2023:20:36:13 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_15052022.zip HTTP/1.1" 413
[03/Mar/2023:21:21:41 +0100] 79.110.62.172 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[03/Mar/2023:22:05:32 +0100] 45.55.0.13 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[03/Mar/2023:22:08:29 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_14052022.zip HTTP/1.1" 413
[03/Mar/2023:22:17:44 +0100] 167.248.133.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Mar/2023:22:17:44 +0100] 167.248.133.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Mar/2023:22:17:45 +0100] 167.248.133.120 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Mar/2023:22:18:47 +0100] 54.162.183.195 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Mar/2023:22:27:00 +0100] 54.203.188.112 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/Mar/2023:22:27:15 +0100] 35.91.75.55 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[03/Mar/2023:22:27:17 +0100] 35.93.138.61 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/Mar/2023:22:30:39 +0100] 35.86.152.77 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/Mar/2023:22:31:14 +0100] 54.71.177.180 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[03/Mar/2023:22:50:27 +0100] 24.142.190.18 TLSv1.2 AES256-SHA "GET /cgi-bin/login?LD_DEBUG=files HTTP/1.1" 325
[03/Mar/2023:23:06:05 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_13052022.zip HTTP/1.1" 396
[03/Mar/2023:23:44:03 +0100] 109.74.206.107 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[04/Mar/2023:00:15:15 +0100] 18.236.159.98 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[04/Mar/2023:00:16:37 +0100] 54.70.16.174 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[04/Mar/2023:00:34:42 +0100] 34.77.127.183 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[04/Mar/2023:00:38:08 +0100] 199.195.249.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /ztp/cgi-bin/handler HTTP/1.1" 315
[04/Mar/2023:00:45:53 +0100] 193.235.141.134 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306