[13/Apr/2023:03:39:11 +0200] 74.82.47.5 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:04:46:39 +0200] 107.170.240.23 TLSv1.2 AES256-SHA "GET /ReportServer HTTP/1.1" 307
[13/Apr/2023:05:33:42 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:05:47:32 +0200] 192.241.222.28 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 305
[13/Apr/2023:05:49:04 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[13/Apr/2023:05:54:10 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[13/Apr/2023:06:02:22 +0200] 107.170.228.25 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:06:03:26 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[13/Apr/2023:06:32:33 +0200] 95.179.241.62 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:06:36:33 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[13/Apr/2023:06:36:34 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[13/Apr/2023:06:36:34 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[13/Apr/2023:06:36:34 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[13/Apr/2023:06:36:35 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[13/Apr/2023:06:36:35 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[13/Apr/2023:06:36:36 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[13/Apr/2023:06:36:36 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[13/Apr/2023:06:36:37 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[13/Apr/2023:06:36:37 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[13/Apr/2023:07:13:51 +0200] 167.94.146.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[13/Apr/2023:07:13:51 +0200] 167.94.146.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:07:13:51 +0200] 167.94.146.58 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[13/Apr/2023:07:17:24 +0200] 101.68.211.2 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 381
[13/Apr/2023:07:23:49 +0200] 101.68.211.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[13/Apr/2023:07:24:13 +0200] 101.68.211.2 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 305
[13/Apr/2023:07:24:56 +0200] 101.68.211.2 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 304
[13/Apr/2023:07:49:30 +0200] 176.113.115.51 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v1" 394
[13/Apr/2023:08:34:20 +0200] 185.180.143.136 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:08:34:31 +0200] 185.180.143.136 TLSv1.2 AES256-SHA "HEAD /icons/sphere1.png HTTP/1.1" -
[13/Apr/2023:08:58:36 +0200] 149.28.118.137 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:09:43:06 +0200] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 387
[13/Apr/2023:09:46:32 +0200] 193.235.141.11 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[13/Apr/2023:09:48:48 +0200] 208.83.234.224 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:10:20:56 +0200] 65.20.70.24 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:10:22:03 +0200] 185.136.171.162 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[13/Apr/2023:10:22:03 +0200] 185.136.171.162 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[13/Apr/2023:10:30:34 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[13/Apr/2023:10:33:11 +0200] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[13/Apr/2023:10:36:11 +0200] 68.183.56.148 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[13/Apr/2023:10:36:12 +0200] 68.183.56.148 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[13/Apr/2023:10:36:16 +0200] 68.183.56.148 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:10:36:17 +0200] 68.183.56.148 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[13/Apr/2023:10:36:18 +0200] 68.183.56.148 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[13/Apr/2023:10:56:46 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[13/Apr/2023:11:01:49 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[13/Apr/2023:11:19:20 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[13/Apr/2023:11:23:46 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[13/Apr/2023:11:27:29 +0200] 207.148.119.21 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:11:35:43 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:11:45:40 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:12:06:00 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:12:14:59 +0200] 64.176.7.63 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:12:37:06 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[13/Apr/2023:12:53:20 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /geoserver HTTP/1.1" 305
[13/Apr/2023:13:15:55 +0200] 139.84.232.165 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:13:15:59 +0200] 139.180.170.247 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:13:23:28 +0200] 202.182.111.56 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[13/Apr/2023:13:31:50 +0200] 20.100.168.244 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[13/Apr/2023:15:58:47 +0200] 117.62.218.192 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:16:56:36 +0200] 167.94.145.57 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[13/Apr/2023:16:56:36 +0200] 167.94.145.57 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:16:56:36 +0200] 167.94.145.57 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[13/Apr/2023:17:55:04 +0200] 134.122.135.54 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /92eb5ffee6.php?a=274 HTTP/1.1" 403
[13/Apr/2023:18:31:02 +0200] 36.156.22.4 TLSv1.2 AES256-SHA "-" -
[13/Apr/2023:18:31:08 +0200] 36.156.22.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:18:31:19 +0200] 36.156.22.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:18:52:06 +0200] 192.241.234.12 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[13/Apr/2023:22:11:44 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /s/230313e2331313e29353e26383/_/;/META-INF/maven/com.atlassian.jira/jira-webapp-dist/pom.properties HTTP/1.1" 366
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /telescope/requests HTTP/1.1" 311
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /debug/default/view?panel=config HTTP/1.1" 325
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /.DS_Store HTTP/1.1" 307
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /.env HTTP/1.1" 304
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /.vscode/sftp.json HTTP/1.1" 313
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 317
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /server-status HTTP/1.1" 308
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /info.php HTTP/1.1" 307
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /config.json HTTP/1.1" 311
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /login.action HTTP/1.1" 311
[13/Apr/2023:22:11:45 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /v2/_catalog HTTP/1.1" 310
[13/Apr/2023:22:11:46 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /about HTTP/1.1" 305
[13/Apr/2023:22:11:46 +0200] 139.144.150.8 TLSv1.2 AES256-SHA "GET /api/search?folderIds=0 HTTP/1.1" 316
[13/Apr/2023:22:47:02 +0200] 45.79.128.205 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:22:56:58 +0200] 74.235.89.6 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[13/Apr/2023:22:56:58 +0200] 74.235.89.6 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[13/Apr/2023:23:28:59 +0200] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[13/Apr/2023:23:47:48 +0200] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 404
[13/Apr/2023:23:59:57 +0200] 192.241.206.81 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[14/Apr/2023:01:43:03 +0200] 205.210.31.34 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[14/Apr/2023:01:43:33 +0200] 34.78.249.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[14/Apr/2023:01:45:26 +0200] 176.113.115.51 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v1" 394
[14/Apr/2023:01:49:48 +0200] 51.222.253.6 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 304
[14/Apr/2023:01:49:52 +0200] 54.36.149.10 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 297