[03/May/2023:03:44:48 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[03/May/2023:03:44:49 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 300
[03/May/2023:03:44:52 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 298
[03/May/2023:03:44:53 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 300
[03/May/2023:03:44:56 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 304
[03/May/2023:03:44:57 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 307
[03/May/2023:03:44:59 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 307
[03/May/2023:03:44:59 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 304
[03/May/2023:03:45:01 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 303
[03/May/2023:03:45:02 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 306
[03/May/2023:03:45:04 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 306
[03/May/2023:03:45:04 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 303
[03/May/2023:03:45:05 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 304
[03/May/2023:03:45:07 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 306
[03/May/2023:03:45:09 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 304
[03/May/2023:03:45:09 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 306
[03/May/2023:03:45:12 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 302
[03/May/2023:03:45:13 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 304
[03/May/2023:03:45:13 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 304
[03/May/2023:03:45:16 +0200] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 302
[03/May/2023:04:15:06 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[03/May/2023:04:24:48 +0200] 161.35.176.15 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/May/2023:04:24:50 +0200] 161.35.176.15 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/May/2023:04:24:53 +0200] 161.35.176.15 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:04:24:54 +0200] 161.35.176.15 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[03/May/2023:04:24:55 +0200] 161.35.176.15 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/May/2023:04:27:01 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[03/May/2023:04:34:37 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[03/May/2023:04:59:40 +0200] 47.190.118.111 TLSv1.2 AES256-SHA "GET /back.tar.gz HTTP/1.1" 304
[03/May/2023:05:43:10 +0200] 183.159.229.114 TLSv1.2 AES256-SHA "GET /back.tar.gz HTTP/1.1" 316
[03/May/2023:06:15:45 +0200] 185.180.143.18 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:07:45:13 +0200] 161.35.233.14 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[03/May/2023:08:06:49 +0200] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/May/2023:08:50:18 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[03/May/2023:09:17:01 +0200] 77.74.177.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:09:18:38 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[03/May/2023:09:27:55 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[03/May/2023:09:33:40 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[03/May/2023:09:39:25 +0200] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[03/May/2023:09:45:42 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[03/May/2023:09:57:08 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:10:31:54 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:10:57:24 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[03/May/2023:10:59:45 +0200] 64.62.197.30 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:11:05:25 +0200] 64.62.197.28 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/May/2023:11:07:22 +0200] 64.62.197.27 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:11:08:35 +0200] 64.62.197.20 TLSv1.2 AES256-SHA "GET /geoserver/web/ HTTP/1.1" 309
[03/May/2023:11:08:52 +0200] 64.62.197.19 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[03/May/2023:11:10:52 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /geoserver HTTP/1.1" 305
[03/May/2023:11:17:51 +0200] 80.82.78.39 TLSv1.2 AES256-SHA "GET /login HTTP/1.1" 388
[03/May/2023:11:41:56 +0200] 167.94.146.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/May/2023:11:41:57 +0200] 167.94.146.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:11:41:57 +0200] 167.94.146.58 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/May/2023:12:04:14 +0200] 203.210.232.66 TLSv1.2 AES256-SHA "GET /backup.tar.gz HTTP/1.1" 306
[03/May/2023:12:48:45 +0200] 111.9.132.81 TLSv1.2 AES256-SHA "GET /backup.tar.gz HTTP/1.1" 317
[03/May/2023:13:54:35 +0200] 20.100.168.244 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/May/2023:14:59:12 +0200] 54.244.20.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/May/2023:14:59:39 +0200] 35.89.180.44 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[03/May/2023:14:59:46 +0200] 35.89.180.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/May/2023:15:42:51 +0200] 185.38.148.134 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "-" -
[03/May/2023:15:43:19 +0200] 185.38.148.134 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/May/2023:17:00:14 +0200] 51.158.98.24 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[03/May/2023:17:17:32 +0200] 167.248.133.36 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/May/2023:17:17:32 +0200] 167.248.133.36 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:17:17:33 +0200] 167.248.133.36 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/May/2023:17:27:47 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/May/2023:17:27:47 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[03/May/2023:17:27:47 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[03/May/2023:17:27:48 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[03/May/2023:17:27:48 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[03/May/2023:17:27:49 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[03/May/2023:17:27:49 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[03/May/2023:17:27:49 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[03/May/2023:17:27:50 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[03/May/2023:17:27:50 +0200] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[03/May/2023:17:50:44 +0200] 80.82.78.39 TLSv1.2 AES256-SHA "GET /CryptNet/Af/login HTTP/1.1" 449
[03/May/2023:17:51:17 +0200] 87.236.176.163 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/May/2023:17:56:09 +0200] 185.233.19.102 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/May/2023:19:14:56 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/May/2023:19:14:57 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[03/May/2023:19:14:57 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[03/May/2023:19:14:58 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[03/May/2023:19:14:58 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[03/May/2023:19:14:58 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[03/May/2023:19:14:59 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[03/May/2023:19:14:59 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[03/May/2023:19:15:00 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[03/May/2023:19:15:00 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[03/May/2023:19:19:48 +0200] 125.227.57.106 TLSv1.2 AES256-SHA "GET /backup.gz HTTP/1.1" 303
[03/May/2023:20:04:12 +0200] 108.16.239.228 TLSv1.2 AES256-SHA "GET /backup.gz HTTP/1.1" 315
[03/May/2023:20:51:25 +0200] 101.68.211.2 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[03/May/2023:20:53:02 +0200] 101.68.211.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[03/May/2023:20:53:23 +0200] 101.68.211.2 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[03/May/2023:20:54:13 +0200] 101.68.211.2 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 314
[03/May/2023:21:31:16 +0200] 162.243.131.17 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[03/May/2023:21:41:15 +0200] 40.68.5.205 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[03/May/2023:21:41:15 +0200] 40.68.5.205 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[03/May/2023:21:43:55 +0200] 71.6.134.232 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/May/2023:23:31:39 +0200] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 393
[03/May/2023:23:42:55 +0200] 128.1.248.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[04/May/2023:00:11:25 +0200] 198.199.96.218 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[04/May/2023:00:24:54 +0200] 137.226.113.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[04/May/2023:00:33:44 +0200] 193.235.141.7 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[04/May/2023:00:45:26 +0200] 51.15.251.143 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 393
[04/May/2023:01:24:38 +0200] 34.77.127.183 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[04/May/2023:01:38:35 +0200] 34.211.149.184 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[04/May/2023:01:39:16 +0200] 34.219.243.159 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[04/May/2023:01:39:22 +0200] 34.219.243.159 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[04/May/2023:01:49:23 +0200] 8.209.68.21 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dns-query?dns=WewBAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ HTTP/1.1" 339