[17/May/2023:02:27:16 +0200] 194.59.165.249 TLSv1.2 AES256-SHA "GET /.well-known/security.txt HTTP/1.1" 312
[17/May/2023:02:27:17 +0200] 194.59.165.249 TLSv1.2 AES256-SHA "GET /security.txt HTTP/1.1" 304
[17/May/2023:03:16:30 +0200] 178.128.243.134 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:03:23:01 +0200] 170.64.134.120 TLSv1.2 AES256-SHA "GET /aaa9 HTTP/1.1" 304
[17/May/2023:03:23:15 +0200] 170.64.134.120 TLSv1.2 AES256-SHA "GET /aab8 HTTP/1.1" 304
[17/May/2023:03:23:30 +0200] 170.64.134.120 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:03:23:43 +0200] 35.92.218.68 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[17/May/2023:03:24:43 +0200] 35.92.218.68 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 295
[17/May/2023:03:49:48 +0200] 167.94.138.33 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[17/May/2023:03:49:49 +0200] 167.94.138.33 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:03:49:50 +0200] 167.94.138.33 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[17/May/2023:04:11:01 +0200] 185.233.19.22 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[17/May/2023:04:20:47 +0200] 87.236.176.67 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:05:01:52 +0200] 202.184.44.126 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[17/May/2023:05:01:54 +0200] 202.184.44.126 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[17/May/2023:05:09:42 +0200] 146.190.166.168 TLSv1.2 AES256-SHA "GET /aaa9 HTTP/1.1" 304
[17/May/2023:05:09:54 +0200] 146.190.166.168 TLSv1.2 AES256-SHA "GET /aab8 HTTP/1.1" 304
[17/May/2023:05:10:08 +0200] 146.190.166.168 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:06:10:44 +0200] 47.90.254.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /dns-query?dns=mA4BAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ HTTP/1.1" 340
[17/May/2023:06:20:35 +0200] 47.90.254.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /dns-query HTTP/1.1" 308
[17/May/2023:06:47:11 +0200] 167.248.133.33 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[17/May/2023:06:47:11 +0200] 167.248.133.33 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:06:47:21 +0200] 167.248.133.33 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[17/May/2023:08:40:28 +0200] 185.189.182.234 TLSv1.2 AES256-SHA "GET /kBgH HTTP/1.1" 379
[17/May/2023:08:43:54 +0200] 74.82.47.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:08:46:43 +0200] 161.35.233.14 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[17/May/2023:08:53:57 +0200] 74.82.47.2 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[17/May/2023:08:57:07 +0200] 74.82.47.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:09:12:52 +0200] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[17/May/2023:09:25:36 +0200] 93.159.230.89 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:09:36:11 +0200] 51.222.253.14 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 304
[17/May/2023:09:36:12 +0200] 54.36.148.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 297
[17/May/2023:09:39:41 +0200] 144.91.106.14 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[17/May/2023:09:42:55 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[17/May/2023:10:02:59 +0200] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[17/May/2023:10:25:16 +0200] 51.222.253.4 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 302
[17/May/2023:10:25:18 +0200] 54.36.149.17 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[17/May/2023:11:08:20 +0200] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[17/May/2023:11:43:51 +0200] 208.100.26.243 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 297
[17/May/2023:12:09:56 +0200] 162.142.125.226 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[17/May/2023:12:09:57 +0200] 162.142.125.226 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:12:09:57 +0200] 162.142.125.226 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[17/May/2023:12:49:45 +0200] 198.199.97.240 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx HTTP/1.1" 314
[17/May/2023:12:52:54 +0200] 162.243.136.18 TLSv1.2 AES256-SHA "GET /owa/auth/x.js HTTP/1.1" 310
[17/May/2023:12:54:33 +0200] 192.241.211.44 TLSv1.2 AES256-SHA "GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application HTTP/1.1" 348
[17/May/2023:14:34:27 +0200] 51.158.118.231 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[17/May/2023:14:42:33 +0200] 185.180.143.189 TLSv1.2 AES256-SHA "GET /owa/ HTTP/1.1" 304
[17/May/2023:14:43:02 +0200] 185.180.143.189 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?a..foo.var/owa/?&Email=autodiscover/autodiscover.json?a..foo.var&Protocol=XYZ&FooProtocol=%50owershell HTTP/1.1" 378
[17/May/2023:15:25:12 +0200] 192.241.231.28 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[17/May/2023:15:45:04 +0200] 162.243.148.14 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:15:50:41 +0200] 193.235.141.7 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[17/May/2023:16:00:56 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "-" -
[17/May/2023:18:19:48 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "-" -
[17/May/2023:21:22:30 +0200] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[17/May/2023:21:32:52 +0200] 152.89.196.144 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[17/May/2023:22:17:55 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/May/2023:22:18:13 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /dummy404file.html HTTP/1.1" 312
[17/May/2023:22:18:31 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /config/default.json HTTP/1.1" 315
[17/May/2023:22:18:49 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /config.json HTTP/1.1" 310
[17/May/2023:22:19:07 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /config/config.json HTTP/1.1" 312
[17/May/2023:22:19:25 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /credentials/config.json HTTP/1.1" 317
[17/May/2023:22:19:43 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /.env.bak HTTP/1.1" 307
[17/May/2023:22:20:01 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /.env.production HTTP/1.1" 311
[17/May/2023:22:20:19 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /.env.example HTTP/1.1" 310
[17/May/2023:22:20:37 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /api/.env HTTP/1.1" 306
[17/May/2023:22:20:55 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /sendgrid.env HTTP/1.1" 309
[17/May/2023:22:21:13 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /.env HTTP/1.1" 304
[17/May/2023:22:21:31 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /.ENV HTTP/1.1" 305
[17/May/2023:22:21:49 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /SENDGRID.ENV HTTP/1.1" 312
[17/May/2023:22:22:07 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /assets/app.config.json HTTP/1.1" 316
[17/May/2023:22:22:25 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /config.php.bak HTTP/1.1" 312
[17/May/2023:22:22:43 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /settings.php.bak HTTP/1.1" 312
[17/May/2023:22:23:01 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /wp-config.php.bak HTTP/1.1" 314
[17/May/2023:22:23:19 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /settings.py HTTP/1.1" 309
[17/May/2023:22:23:37 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /app/settings.py HTTP/1.1" 311
[17/May/2023:22:23:55 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /django/settings.py HTTP/1.1" 314
[17/May/2023:22:24:13 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /settings/settings.py HTTP/1.1" 311
[17/May/2023:22:24:31 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /web/settings/settings.py HTTP/1.1" 312
[17/May/2023:22:24:49 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /credentials.json HTTP/1.1" 311
[17/May/2023:22:25:07 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /assets/credentials.json HTTP/1.1" 315
[17/May/2023:22:25:25 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /environment.rb HTTP/1.1" 309
[17/May/2023:22:25:43 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /config/environment.rb HTTP/1.1" 315
[17/May/2023:22:26:01 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /redmine/config/environment.rb HTTP/1.1" 320
[17/May/2023:22:26:19 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /config.rb HTTP/1.1" 308
[17/May/2023:22:26:37 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /API/.env HTTP/1.1" 307
[17/May/2023:22:26:55 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /admin/.env HTTP/1.1" 307
[17/May/2023:22:27:13 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /app/.env HTTP/1.1" 306
[17/May/2023:22:27:31 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /application/.env HTTP/1.1" 311
[17/May/2023:22:27:49 +0200] 141.255.166.90 TLSv1.2 AES256-SHA "GET /apps/.env HTTP/1.1" 307
[17/May/2023:22:40:05 +0200] 162.243.141.12 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[17/May/2023:22:40:09 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[17/May/2023:22:40:09 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[17/May/2023:22:40:10 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[17/May/2023:22:40:10 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[17/May/2023:22:40:11 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[17/May/2023:22:40:11 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[17/May/2023:22:40:12 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[17/May/2023:22:40:12 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[17/May/2023:22:40:12 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[17/May/2023:22:40:13 +0200] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[17/May/2023:22:51:00 +0200] 137.226.113.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[17/May/2023:22:58:05 +0200] 213.6.253.70 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[18/May/2023:00:34:28 +0200] 193.37.69.152 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[18/May/2023:00:53:15 +0200] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 391
[18/May/2023:00:53:16 +0200] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 381
[18/May/2023:00:54:08 +0200] 94.102.61.90 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/May/2023:00:56:57 +0200] 183.136.225.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[18/May/2023:01:08:39 +0200] 193.235.141.133 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[18/May/2023:01:42:17 +0200] 13.71.128.118 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[18/May/2023:01:47:36 +0200] 35.195.93.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301