[14/Nov/2022:01:36:39 +0100] 54.202.167.11 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[14/Nov/2022:01:37:15 +0100] 35.90.194.42 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[14/Nov/2022:01:37:20 +0100] 35.90.194.42 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[14/Nov/2022:02:06:53 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.at-db.sql.tar HTTP/1.1" 395
[14/Nov/2022:02:13:35 +0100] 154.89.5.210 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 383
[14/Nov/2022:02:21:10 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein.com-db.sql.tar HTTP/1.1" 429
[14/Nov/2022:02:28:17 +0100] 106.75.133.83 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 383
[14/Nov/2022:02:35:00 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub.kornland.at-db.sql.tar HTTP/1.1" 413
[14/Nov/2022:02:45:15 +0100] 152.32.155.235 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[14/Nov/2022:02:48:02 +0100] 71.6.232.24 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:03:19:26 +0100] 185.180.143.11 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:03:19:28 +0100] 185.180.143.11 TLSv1.2 AES256-SHA "GET /webfig/ HTTP/1.1" 307
[14/Nov/2022:03:19:31 +0100] 185.180.143.11 TLSv1.2 AES256-SHA "GET /solr/ HTTP/1.1" 304
[14/Nov/2022:04:17:02 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub.kornland.at_database.sql.tar HTTP/1.1" 419
[14/Nov/2022:04:25:39 +0100] 192.241.210.170 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[14/Nov/2022:04:42:55 +0100] 192.241.201.179 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:05:05:05 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.at_database.sql.tar HTTP/1.1" 401
[14/Nov/2022:05:27:23 +0100] 167.248.133.117 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[14/Nov/2022:05:27:24 +0100] 167.248.133.117 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:05:27:24 +0100] 167.248.133.117 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[14/Nov/2022:05:34:13 +0100] 64.62.197.199 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:05:36:30 +0100] 35.86.237.36 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[14/Nov/2022:05:43:24 +0100] 64.62.197.211 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[14/Nov/2022:05:47:46 +0100] 64.62.197.205 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:05:48:49 +0100] 64.62.197.202 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[14/Nov/2022:06:05:21 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:06:17:39 +0100] 106.75.178.244 TLSv1.2 AES256-SHA "POST /t5 HTTP/1.1" 302
[14/Nov/2022:06:45:45 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub.kornland.at-database.sql.tar HTTP/1.1" 419
[14/Nov/2022:06:51:34 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.at-database.sql.tar HTTP/1.1" 401
[14/Nov/2022:07:15:51 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[14/Nov/2022:07:16:15 +0100] 4.233.106.66 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[14/Nov/2022:07:16:15 +0100] 4.233.106.66 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[14/Nov/2022:07:43:53 +0100] 45.79.204.46 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:08:16:56 +0100] 167.71.182.188 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[14/Nov/2022:08:32:57 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein.com_dump.sql.tar HTTP/1.1" 431
[14/Nov/2022:08:36:45 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.at_dump.sql.tar HTTP/1.1" 397
[14/Nov/2022:08:45:24 +0100] 192.241.211.109 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[14/Nov/2022:11:03:34 +0100] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /robots.txt HTTP/1.1" 395
[14/Nov/2022:11:03:34 +0100] 81.209.177.16 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[14/Nov/2022:12:24:14 +0100] 188.166.167.239 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[14/Nov/2022:12:24:14 +0100] 188.166.167.239 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[14/Nov/2022:12:24:15 +0100] 188.166.167.239 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:12:38:06 +0100] 20.93.16.5 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[14/Nov/2022:12:38:06 +0100] 20.93.16.5 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[14/Nov/2022:13:11:05 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.atbackup.sql.tar HTTP/1.1" 398
[14/Nov/2022:13:13:18 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[14/Nov/2022:13:59:07 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[14/Nov/2022:14:19:29 +0100] 157.245.67.63 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[14/Nov/2022:14:40:38 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.at_backup.sql.tar HTTP/1.1" 399
[14/Nov/2022:14:54:09 +0100] 167.71.182.188 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[14/Nov/2022:15:50:55 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /actuator/gateway/routes HTTP/1.1" 315
[14/Nov/2022:16:15:35 +0100] 172.105.161.142 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:16:26:20 +0100] 134.122.125.36 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[14/Nov/2022:16:26:21 +0100] 134.122.125.36 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[14/Nov/2022:16:26:24 +0100] 134.122.125.36 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:16:30:51 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm.at-backup.sql.tar HTTP/1.1" 399
[14/Nov/2022:16:43:00 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub.kornland.at-backup.sql.tar HTTP/1.1" 417
[14/Nov/2022:17:11:27 +0100] 77.74.177.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 302
[14/Nov/2022:17:41:30 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backupklub.kornland.at.sql.tar HTTP/1.1" 416
[14/Nov/2022:17:57:20 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backupharm.at.sql.tar HTTP/1.1" 398
[14/Nov/2022:18:12:28 +0100] 93.159.230.88 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 302
[14/Nov/2022:18:17:45 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[14/Nov/2022:19:12:22 +0100] 77.74.177.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 302
[14/Nov/2022:19:20:54 +0100] 179.43.177.154 TLSv1.2 AES256-SHA "GET /.s3cfg HTTP/1.1" 306
[14/Nov/2022:19:26:26 +0100] 194.180.48.125 TLSv1.2 AES256-SHA "GET /docker-compose.yml HTTP/1.1" 312
[14/Nov/2022:19:50:45 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\": 1, \"method\": \"mining.subscribe\", \"params\": [\"cpuminer/2.5.1\"]}" 379
[14/Nov/2022:19:50:46 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\": 1, \"method\": \"mining.subscribe\", \"params\": [\"MinerName/1.0.0\", \"EthereumStratum/1.0.0\"]}" 379
[14/Nov/2022:19:50:47 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\":1,\"method\":\"eth_submitLogin\",\"worker\":\"eth1.0\",\"params\":[\"0x16820192e155172f95c7c784436bc2429e999715\",\"x\"],\"jsonrpc\":\"2.0\"}" 379
[14/Nov/2022:19:50:48 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "{\"id\":1,\"jsonrpc\":\"2.0\",\"method\":\"login\",\"params\":{\"login\":\"4BAfCFy3KQdY1dwWommmVhAFf7ct9PumNBGjruW3G62GdZ9Gr7Mfu7W3yCjQbvgwDFVhiQ7iATPsM2sgCZtBzTq7HeTaaj4\",\"pass\":\"x\",\"agent\":\"XMRig/6.15.3 (Windows NT 10.0; Win64; x64) libuv/1.42.0 msvc/2019\",\"algo\":[\"cn/1\",\"cn/2\",\"cn/r\",\"cn/fast\",\"cn/half\",\"cn/xao\",\"cn/rto\",\"cn/rwz\",\"cn/zls\",\"cn/double\",\"cn/ccx\",\"cn-lite/1\",\"cn-heavy/0\",\"cn-heavy/tube\",\"cn-heavy/xhv\",\"cn-pico\",\"cn-pico/tlo\",\"cn/upx2\",\"rx/0\",\"rx/wow\",\"rx/arq\",\"rx/graft\",\"rx/sfx\",\"rx/keva\",\"argon2/chukwa\",\"argon2/chukwav2\",\"argon2/ninja\",\"astrobwt\"]}}" 379
[14/Nov/2022:19:50:49 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[14/Nov/2022:19:50:52 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[14/Nov/2022:19:55:50 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST / HTTP/1.1" 301
[14/Nov/2022:19:55:51 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /WuEL HTTP/1.1" 387
[14/Nov/2022:19:55:51 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /a HTTP/1.1" 302
[14/Nov/2022:19:56:38 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /download/file.ext HTTP/1.1" 313
[14/Nov/2022:19:56:38 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /SiteLoader HTTP/1.1" 307
[14/Nov/2022:19:56:39 +0100] 185.213.175.12 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /mPlayer HTTP/1.1" 306
[14/Nov/2022:21:18:43 +0100] 178.128.218.190 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[14/Nov/2022:21:18:46 +0100] 178.128.218.190 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[14/Nov/2022:21:18:54 +0100] 178.128.218.190 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[14/Nov/2022:21:30:06 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup_klub.kornland.at.sql.tar HTTP/1.1" 417
[14/Nov/2022:22:05:45 +0100] 167.99.213.114 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[14/Nov/2022:22:16:35 +0100] 128.14.133.58 TLSv1.2 AES256-SHA "GET /Telerik.Web.UI.WebResource.axd?type=rau HTTP/1.1" 330
[14/Nov/2022:22:16:54 +0100] 34.219.6.3 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[14/Nov/2022:22:39:49 +0100] 40.77.167.4 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 304
[14/Nov/2022:23:35:21 +0100] 165.154.5.236 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[15/Nov/2022:00:13:57 +0100] 35.233.62.116 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[15/Nov/2022:00:29:47 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /database.zip HTTP/1.1" 406
[15/Nov/2022:00:33:38 +0100] 34.219.240.119 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[15/Nov/2022:00:34:11 +0100] 35.85.52.147 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[15/Nov/2022:00:34:16 +0100] 35.85.52.147 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[15/Nov/2022:00:47:55 +0100] 194.110.203.60 TLSv1.2 AES256-SHA "GET /solr/ HTTP/1.1" 304