[15/Apr/2023:02:38:29 +0200] 34.222.48.163 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[15/Apr/2023:02:38:41 +0200] 35.92.43.236 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[15/Apr/2023:02:38:45 +0200] 35.92.43.236 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[15/Apr/2023:02:49:34 +0200] 128.14.134.170 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:03:49:40 +0200] 162.243.140.44 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[15/Apr/2023:03:55:01 +0200] 198.199.111.75 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[15/Apr/2023:03:57:51 +0200] 162.243.140.44 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[15/Apr/2023:05:12:25 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\": 1, \"method\": \"mining.subscribe\", \"params\": [\"cpuminer/2.5.1\"]}" 379
[15/Apr/2023:05:12:31 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\": 1, \"method\": \"mining.subscribe\", \"params\": [\"MinerName/1.0.0\", \"EthereumStratum/1.0.0\"]}" 379
[15/Apr/2023:05:12:36 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\":1,\"method\":\"eth_submitLogin\",\"worker\":\"eth1.0\",\"params\":[\"0xe0f7b2cc6cf17f47bc4d8af659d800afd6b51ba9\",\"x\"],\"jsonrpc\":\"2.0\"}" 379
[15/Apr/2023:05:12:47 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\":1,\"jsonrpc\":\"2.0\",\"method\":\"login\",\"params\":{\"login\":\"42ezfyhEek3KpiwJvcS1kcP898kUKRkCz1uDNVPX5VzoVhwDbheg6f5UGEwEZKh4iPD6kuibR8FAkAmb4ecR46vXRz9vqiC\",\"pass\":\"x\",\"agent\":\"XMRig/6.15.3 (Windows NT 10.0; Win64; x64) libuv/1.42.0 msvc/2019\",\"algo\":[\"cn/1\",\"cn/2\",\"cn/r\",\"cn/fast\",\"cn/half\",\"cn/xao\",\"cn/rto\",\"cn/rwz\",\"cn/zls\",\"cn/double\",\"cn/ccx\",\"cn-lite/1\",\"cn-heavy/0\",\"cn-heavy/tube\",\"cn-heavy/xhv\",\"cn-pico\",\"cn-pico/tlo\",\"cn/upx2\",\"rx/0\",\"rx/wow\",\"rx/arq\",\"rx/graft\",\"rx/sfx\",\"rx/keva\",\"argon2/chukwa\",\"argon2/chukwav2\",\"argon2/ninja\",\"astrobwt\"]}}" 379
[15/Apr/2023:05:12:54 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[15/Apr/2023:05:12:58 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[15/Apr/2023:05:13:03 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[15/Apr/2023:05:13:08 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /WuEL HTTP/1.1" 387
[15/Apr/2023:05:13:13 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET stager64 HTTP/1.1" 293
[15/Apr/2023:05:13:29 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /a HTTP/1.1" 302
[15/Apr/2023:05:13:32 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /download/file.ext HTTP/1.1" 313
[15/Apr/2023:05:13:35 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /SiteLoader HTTP/1.1" 307
[15/Apr/2023:05:13:44 +0200] 5.182.211.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /mPlayer HTTP/1.1" 306
[15/Apr/2023:05:45:33 +0200] 212.83.8.75 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:05:58:58 +0200] 182.138.158.246 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 383
[15/Apr/2023:05:59:41 +0200] 36.20.61.101 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/Apr/2023:06:03:18 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[15/Apr/2023:06:05:37 +0200] 159.203.224.15 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:06:12:20 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[15/Apr/2023:06:27:08 +0200] 20.100.168.244 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[15/Apr/2023:06:28:31 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[15/Apr/2023:06:28:47 +0200] 193.235.141.120 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[15/Apr/2023:06:35:17 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[15/Apr/2023:06:42:55 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[15/Apr/2023:06:57:16 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:07:08:24 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:07:29:49 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:07:52:43 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[15/Apr/2023:08:18:50 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET /geoserver HTTP/1.1" 305
[15/Apr/2023:08:31:31 +0200] 74.82.47.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:08:39:01 +0200] 74.82.47.4 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[15/Apr/2023:08:42:14 +0200] 74.82.47.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:08:44:38 +0200] 74.82.47.4 TLSv1.2 AES256-SHA "GET /geoserver/web/ HTTP/1.1" 309
[15/Apr/2023:08:45:29 +0200] 74.82.47.4 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[15/Apr/2023:10:34:16 +0200] 72.14.183.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:10:46:57 +0200] 205.210.31.95 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 398
[15/Apr/2023:11:02:49 +0200] 198.235.24.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 380
[15/Apr/2023:11:14:38 +0200] 198.235.24.96 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[15/Apr/2023:13:38:33 +0200] 71.6.135.131 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/Apr/2023:13:38:42 +0200] 71.6.135.131 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[15/Apr/2023:13:38:43 +0200] 71.6.135.131 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[15/Apr/2023:13:38:44 +0200] 71.6.135.131 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[15/Apr/2023:13:38:48 +0200] 71.6.135.131 TLSv1.2 AES256-SHA "quit" 379
[15/Apr/2023:13:38:48 +0200] 71.6.135.131 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[15/Apr/2023:13:38:49 +0200] 71.6.135.131 TLSv1.2 AES256-SHA "GET /sitemap.xml HTTP/1.1" 394
[15/Apr/2023:13:38:50 +0200] 71.6.135.131 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 407
[15/Apr/2023:13:38:51 +0200] 71.6.135.131 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[15/Apr/2023:13:38:54 +0200] 71.6.135.131 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[15/Apr/2023:15:35:31 +0200] 176.113.115.51 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v1" 394
[15/Apr/2023:15:41:51 +0200] 193.235.141.145 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[15/Apr/2023:17:15:31 +0200] 205.210.31.27 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[15/Apr/2023:18:25:13 +0200] 167.94.138.36 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:18:25:14 +0200] 167.94.138.36 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[15/Apr/2023:20:43:13 +0200] 104.248.86.236 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:21:31:12 +0200] 107.170.241.29 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[15/Apr/2023:22:49:15 +0200] 35.216.240.53 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:22:57:59 +0200] 43.158.213.246 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Apr/2023:22:58:23 +0200] 43.158.213.246 - - "-" -
[15/Apr/2023:23:40:52 +0200] 54.212.77.126 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[15/Apr/2023:23:41:19 +0200] 34.219.250.20 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[15/Apr/2023:23:59:08 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 379
[15/Apr/2023:23:59:12 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/Apr/2023:23:59:12 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET /.env HTTP/1.1" 304
[15/Apr/2023:23:59:12 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET /telescope/requests HTTP/1.1" 311
[15/Apr/2023:23:59:12 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET /info.php HTTP/1.1" 307
[15/Apr/2023:23:59:12 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[15/Apr/2023:23:59:12 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET /server-status HTTP/1.1" 308
[15/Apr/2023:23:59:13 +0200] 35.216.216.100 TLSv1.2 AES256-SHA "GET /config.json HTTP/1.1" 311
[16/Apr/2023:00:01:42 +0200] 198.199.118.141 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[16/Apr/2023:01:25:44 +0200] 54.202.235.6 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[16/Apr/2023:01:26:10 +0200] 54.149.219.208 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[16/Apr/2023:01:32:39 +0200] 34.79.42.172 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[16/Apr/2023:01:54:48 +0200] 152.89.196.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301