[15/May/2023:03:31:45 +0200] 85.208.136.158 TLSv1.2 AES256-SHA "GET /ajax/api/user/save HTTP/1.1" 312
[15/May/2023:05:26:50 +0200] 35.84.142.82 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[15/May/2023:05:29:11 +0200] 5.34.182.213 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[15/May/2023:05:42:59 +0200] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[15/May/2023:05:50:24 +0200] 35.212.72.131 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "" 379
[15/May/2023:06:50:59 +0200] 23.251.102.74 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:07:57:36 +0200] 193.235.141.135 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[15/May/2023:08:49:34 +0200] 34.118.151.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.0" 383
[15/May/2023:08:53:58 +0200] 139.59.29.70 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[15/May/2023:09:28:55 +0200] 185.233.19.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/May/2023:09:52:07 +0200] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[15/May/2023:09:59:51 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[15/May/2023:09:59:52 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[15/May/2023:09:59:52 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[15/May/2023:09:59:53 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[15/May/2023:09:59:53 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[15/May/2023:09:59:54 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[15/May/2023:09:59:54 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[15/May/2023:09:59:54 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[15/May/2023:09:59:55 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[15/May/2023:09:59:55 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[15/May/2023:10:10:31 +0200] 64.62.197.111 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:10:34:19 +0200] 45.33.6.80 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:11:15:19 +0200] 43.158.218.124 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:11:15:43 +0200] 43.158.218.124 - - "-" -
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /default.jhtml HTTP/1.1" 396
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /server-status HTTP/1.1" 396
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /scripts/WPnBr.dll HTTP/1.1" 400
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /nmaplowercheck1684142654 HTTP/1.1" 407
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/HEAD HTTP/1.1" 392
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Portal0000.htm HTTP/1.1" 397
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /gKw3 HTTP/1.1" 387
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Portal/Portal.mwsl HTTP/1.1" 401
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /indice.cgi HTTP/1.1" 393
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /pools/default/buckets HTTP/1.1" 404
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /sdk HTTP/1.1" 386
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /HNAP1 HTTP/1.1" 388
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.1" -
[15/May/2023:11:24:14 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "SSTP_DUPLEX_POST /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/ HTTP/1.1" 925
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /__Additional HTTP/1.1" 395
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /docs/cplugError.html/ HTTP/1.1" 404
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /?=PHPE9568F36-D428-11d2-A769-00AA001ACF42 HTTP/1.1" 424
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.asp HTTP/1.1" 391
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /pools HTTP/1.1" 388
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /CSS/Miniweb.css HTTP/1.1" 398
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000 HTTP/1.1" 424
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /menu.cgi HTTP/1.1" 391
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /main.asp HTTP/1.1" 391
[15/May/2023:11:24:15 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[15/May/2023:11:24:16 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /inicio.jsa HTTP/1.1" 393
[15/May/2023:11:24:16 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 394
[15/May/2023:11:24:16 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.jhtml HTTP/1.1" 394
[15/May/2023:11:24:16 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /base.shtml HTTP/1.1" 393
[15/May/2023:11:24:17 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /main.pl HTTP/1.1" 390
[15/May/2023:11:24:17 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /inicio.jsp HTTP/1.1" 393
[15/May/2023:11:24:17 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[15/May/2023:11:24:17 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /indice.jsp HTTP/1.1" 393
[15/May/2023:11:24:17 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /indice.html HTTP/1.1" 394
[15/May/2023:11:24:18 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /localstart.php HTTP/1.1" 397
[15/May/2023:11:24:18 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.jsp HTTP/1.1" 392
[15/May/2023:11:24:18 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.jsp HTTP/1.1" 391
[15/May/2023:11:24:19 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /indice.jhtml HTTP/1.1" 395
[15/May/2023:11:24:19 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.shtml HTTP/1.1" 393
[15/May/2023:11:24:19 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /main.shtml HTTP/1.1" 393
[15/May/2023:11:24:20 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 393
[15/May/2023:11:24:20 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /readme.txt HTTP/1.1" 393
[15/May/2023:11:24:20 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /start.pl HTTP/1.1" 391
[15/May/2023:11:24:21 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.cgi HTTP/1.1" 392
[15/May/2023:11:24:21 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /base.html HTTP/1.1" 392
[15/May/2023:11:24:21 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.php HTTP/1.1" 392
[15/May/2023:11:24:21 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /start.cgi HTTP/1.1" 392
[15/May/2023:11:24:22 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /home.cgi HTTP/1.1" 391
[15/May/2023:11:24:22 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /localstart.jsa HTTP/1.1" 397
[15/May/2023:11:24:22 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /indice.php HTTP/1.1" 393
[15/May/2023:11:24:23 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /indice.pl HTTP/1.1" 392
[15/May/2023:11:24:23 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.html HTTP/1.1" 393
[15/May/2023:11:24:23 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /main.html HTTP/1.1" 392
[15/May/2023:11:24:24 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.shtml HTTP/1.1" 394
[15/May/2023:11:24:24 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.cfm HTTP/1.1" 392
[15/May/2023:11:24:24 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /admin.asp HTTP/1.1" 392
[15/May/2023:11:24:24 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /localstart.aspx HTTP/1.1" 398
[15/May/2023:11:24:46 +0200] 109.74.204.123 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "-" -
[15/May/2023:11:44:56 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[15/May/2023:11:45:19 +0200] 15.235.33.21 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[15/May/2023:12:04:44 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[15/May/2023:12:51:48 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[15/May/2023:13:06:04 +0200] 47.74.90.127 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dns-query?dns=SssBAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ HTTP/1.1" 339
[15/May/2023:13:11:14 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:13:11:46 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /sugar_version.json HTTP/1.1" 313
[15/May/2023:13:12:24 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /solr/ HTTP/1.1" 304
[15/May/2023:13:13:06 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /webfig/ HTTP/1.1" 307
[15/May/2023:13:13:53 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:13:13:55 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "HEAD /icons/sphere1.png HTTP/1.1" -
[15/May/2023:13:13:55 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:13:13:57 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /remote/login HTTP/1.1" 309
[15/May/2023:13:13:59 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /admin/ HTTP/1.1" 305
[15/May/2023:13:14:00 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /owa/ HTTP/1.1" 304
[15/May/2023:13:14:02 +0200] 45.156.129.2 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?a..foo.var/owa/?&Email=autodiscover/autodiscover.json?a..foo.var&Protocol=XYZ&FooProtocol=%50owershell HTTP/1.1" 378
[15/May/2023:13:18:45 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "POST /mifs/.;/services/LogService HTTP/1.1" 318
[15/May/2023:13:30:24 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[15/May/2023:13:59:40 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[15/May/2023:14:40:15 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /_ignition/execute-solution HTTP/1.1" 319
[15/May/2023:14:51:39 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:15:16:05 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:15:23:44 +0200] 162.243.136.16 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[15/May/2023:15:33:47 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:15:45:59 +0200] 192.241.228.23 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:15:46:24 +0200] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[15/May/2023:15:49:15 +0200] 198.199.98.36 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[15/May/2023:15:54:56 +0200] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[15/May/2023:15:56:06 +0200] 162.142.125.225 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/May/2023:15:56:06 +0200] 162.142.125.225 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:15:56:07 +0200] 162.142.125.225 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[15/May/2023:16:03:30 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[15/May/2023:16:04:54 +0200] 185.197.195.126 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[15/May/2023:16:04:54 +0200] 185.197.195.126 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[15/May/2023:16:09:10 +0200] 216.218.206.67 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:16:14:51 +0200] 45.12.253.198 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[15/May/2023:16:17:03 +0200] 34.67.136.168 TLSv1.2 AES256-SHA "-" -
[15/May/2023:16:17:03 +0200] 159.223.159.179 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[15/May/2023:16:17:04 +0200] 159.223.159.179 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[15/May/2023:16:17:08 +0200] 159.223.159.179 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:16:17:09 +0200] 159.223.159.179 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[15/May/2023:16:17:10 +0200] 159.223.159.179 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[15/May/2023:16:17:37 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /geoserver HTTP/1.1" 305
[15/May/2023:16:17:53 +0200] 216.218.206.67 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[15/May/2023:16:18:38 +0200] 159.65.120.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/May/2023:16:20:39 +0200] 216.218.206.67 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:16:23:30 +0200] 216.218.206.67 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[15/May/2023:16:30:16 +0200] 167.248.133.52 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[15/May/2023:16:30:16 +0200] 167.248.133.52 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:16:30:17 +0200] 167.248.133.52 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[15/May/2023:16:50:10 +0200] 35.92.222.83 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[15/May/2023:16:50:30 +0200] 35.88.213.62 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[15/May/2023:16:50:34 +0200] 35.88.213.62 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[15/May/2023:17:08:14 +0200] 51.159.111.112 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[15/May/2023:17:08:15 +0200] 51.159.111.112 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 309
[15/May/2023:17:29:19 +0200] 142.93.203.30 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /Electron/download/windows/\\Program%20Files\\3CX%20Phone%20System\\Data\\DB\\base\\16384\\16393 HTTP/1.0" 479
[15/May/2023:18:06:15 +0200] 167.248.133.38 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:18:06:16 +0200] 167.248.133.38 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[15/May/2023:18:54:46 +0200] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[15/May/2023:19:07:13 +0200] 193.235.141.157 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[15/May/2023:21:25:27 +0200] 192.241.217.47 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[15/May/2023:22:54:07 +0200] 45.79.181.94 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/May/2023:23:31:20 +0200] 212.30.33.183 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[15/May/2023:23:31:22 +0200] 212.30.33.146 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[16/May/2023:00:44:28 +0200] 107.170.192.15 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[16/May/2023:00:50:46 +0200] 162.243.145.13 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[16/May/2023:00:51:47 +0200] 198.199.111.75 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[16/May/2023:01:46:38 +0200] 34.208.151.164 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[16/May/2023:01:47:15 +0200] 35.90.137.18 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[16/May/2023:01:56:47 +0200] 34.76.158.233 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301