[20/Mar/2023:01:04:20 +0100] 3.6.48.74 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[20/Mar/2023:01:04:22 +0100] 3.6.48.74 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /cacti/ HTTP/1.1" 305
[20/Mar/2023:01:10:12 +0100] 154.89.5.71 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:01:19:52 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:01:32:39 +0100] 35.88.219.255 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[20/Mar/2023:01:33:01 +0100] 52.35.199.110 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[20/Mar/2023:01:33:54 +0100] 54.244.105.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[20/Mar/2023:02:04:51 +0100] 198.199.94.57 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:03:17:01 +0100] 167.94.145.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:03:17:02 +0100] 167.94.145.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:03:17:02 +0100] 167.94.145.58 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[20/Mar/2023:03:27:33 +0100] 152.89.196.54 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[20/Mar/2023:03:32:20 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:04:14:29 +0100] 193.235.141.3 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[20/Mar/2023:04:34:50 +0100] 107.170.227.25 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[20/Mar/2023:05:16:02 +0100] 54.219.175.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[20/Mar/2023:05:36:14 +0100] 152.89.196.54 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[20/Mar/2023:06:56:41 +0100] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[20/Mar/2023:07:15:50 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[20/Mar/2023:08:13:16 +0100] 107.170.192.15 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[20/Mar/2023:08:15:58 +0100] 198.199.95.12 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[20/Mar/2023:08:20:20 +0100] 198.199.97.240 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[20/Mar/2023:09:41:09 +0100] 193.118.53.194 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:11:50:26 +0100] 54.36.148.222 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 315
[20/Mar/2023:11:50:28 +0100] 54.36.149.29 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 308
[20/Mar/2023:12:27:57 +0100] 170.130.165.82 TLSv1.2 AES256-SHA "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 341
[20/Mar/2023:12:27:59 +0100] 170.130.165.82 TLSv1.2 AES256-SHA "POST /owa/auth.owa HTTP/1.1" 308
[20/Mar/2023:12:28:01 +0100] 170.130.165.82 TLSv1.2 AES256-SHA "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 341
[20/Mar/2023:12:37:31 +0100] 65.49.20.66 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:12:44:43 +0100] 65.49.20.66 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[20/Mar/2023:12:48:08 +0100] 65.49.20.66 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:12:49:20 +0100] 65.49.20.66 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[20/Mar/2023:14:18:23 +0100] 71.6.232.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:15:05:44 +0100] 167.99.141.170 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:15:57:49 +0100] 43.128.225.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:15:58:19 +0100] 43.128.225.120 - - "-" -
[20/Mar/2023:15:58:26 +0100] 43.128.225.120 - - "-" -
[20/Mar/2023:16:00:13 +0100] 167.248.133.125 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:16:00:14 +0100] 167.248.133.125 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:16:00:15 +0100] 167.248.133.125 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[20/Mar/2023:16:15:11 +0100] 162.142.125.11 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:16:15:11 +0100] 162.142.125.11 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:16:15:12 +0100] 162.142.125.11 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[20/Mar/2023:17:04:16 +0100] 51.158.241.133 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[20/Mar/2023:17:04:17 +0100] 51.158.241.133 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[20/Mar/2023:18:09:33 +0100] 51.15.195.246 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 381
[20/Mar/2023:19:33:19 +0100] 198.199.106.198 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[20/Mar/2023:20:46:13 +0100] 167.71.18.193 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[20/Mar/2023:21:07:38 +0100] 35.204.64.71 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.0" 383
[20/Mar/2023:21:40:10 +0100] 27.124.12.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /fiction HTTP/1.1" 387
[20/Mar/2023:21:58:20 +0100] 104.168.204.140 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /ftpsync.settings HTTP/1.1" 393
[20/Mar/2023:22:30:36 +0100] 193.118.53.210 TLSv1.2 AES256-SHA "GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 330
[20/Mar/2023:22:41:52 +0100] 198.199.100.111 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[20/Mar/2023:23:05:48 +0100] 152.32.181.13 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:23:05:48 +0100] 152.32.181.13 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[20/Mar/2023:23:06:11 +0100] 152.32.181.13 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[20/Mar/2023:23:06:29 +0100] 152.32.181.13 TLSv1.2 AES256-SHA "GET /sitemap.xml HTTP/1.1" 309
[20/Mar/2023:23:14:13 +0100] 87.236.176.223 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:23:31:29 +0100] 167.71.18.193 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[20/Mar/2023:23:31:30 +0100] 167.71.18.193 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[20/Mar/2023:23:31:35 +0100] 167.71.18.193 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:23:31:36 +0100] 167.71.18.193 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[20/Mar/2023:23:39:26 +0100] 167.94.138.51 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[20/Mar/2023:23:39:26 +0100] 167.94.138.51 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[20/Mar/2023:23:39:27 +0100] 167.94.138.51 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[20/Mar/2023:23:58:58 +0100] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[21/Mar/2023:00:04:21 +0100] 152.89.196.54 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[21/Mar/2023:00:22:56 +0100] 152.89.196.54 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[21/Mar/2023:00:26:33 +0100] 18.237.15.180 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[21/Mar/2023:00:27:04 +0100] 35.163.27.245 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[21/Mar/2023:00:30:10 +0100] 152.89.196.54 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[21/Mar/2023:00:55:52 +0100] 34.77.127.183 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301