[17/Nov/2022:01:00:00 +0100] 44.200.85.193 TLSv1.2 AES256-SHA "GET /99vu HTTP/1.1" 305
[17/Nov/2022:01:06:22 +0100] 194.55.186.126 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[17/Nov/2022:01:22:14 +0100] 34.219.179.6 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[17/Nov/2022:02:39:22 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[17/Nov/2022:02:39:40 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /manage/account/login HTTP/1.1" 316
[17/Nov/2022:02:39:58 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /admin/index.html HTTP/1.1" 312
[17/Nov/2022:02:40:17 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /index.html HTTP/1.1" 308
[17/Nov/2022:02:40:34 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:02:40:53 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[17/Nov/2022:02:41:11 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /manage/account/login HTTP/1.1" 316
[17/Nov/2022:02:41:29 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /admin/index.html HTTP/1.1" 312
[17/Nov/2022:02:41:46 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET /index.html HTTP/1.1" 308
[17/Nov/2022:02:42:05 +0100] 35.178.235.131 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:02:42:40 +0100] 128.14.133.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:03:40:08 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerscheindb.zip HTTP/1.1" 420
[17/Nov/2022:03:46:38 +0100] 51.77.247.119 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /_profiler/phpinfo HTTP/1.1" 400
[17/Nov/2022:03:53:09 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[17/Nov/2022:04:07:54 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harmdb.zip HTTP/1.1" 387
[17/Nov/2022:04:32:24 +0100] 192.241.208.180 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[17/Nov/2022:04:55:17 +0100] 31.42.176.68 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v2/cmdb/system/admin HTTP/1.1" 318
[17/Nov/2022:05:00:01 +0100] 192.241.212.54 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:05:20:46 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_db.zip HTTP/1.1" 421
[17/Nov/2022:05:48:58 +0100] 193.118.53.210 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:06:08:51 +0100] 194.180.48.125 TLSv1.2 AES256-SHA "GET /explore HTTP/1.1" 306
[17/Nov/2022:06:22:00 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_db.zip HTTP/1.1" 397
[17/Nov/2022:06:32:10 +0100] 192.241.206.154 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[17/Nov/2022:07:04:36 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm-db.zip HTTP/1.1" 388
[17/Nov/2022:07:32:36 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[17/Nov/2022:07:33:30 +0100] 192.241.209.99 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[17/Nov/2022:07:38:26 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:07:39:01 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[17/Nov/2022:07:39:16 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[17/Nov/2022:07:43:41 +0100] 68.183.193.109 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[17/Nov/2022:07:43:43 +0100] 68.183.193.109 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[17/Nov/2022:07:43:47 +0100] 68.183.193.109 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:07:52:31 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[17/Nov/2022:08:10:13 +0100] 113.78.216.161 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 388
[17/Nov/2022:08:10:21 +0100] 113.78.216.161 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:08:20:45 +0100] 83.136.32.58 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "HEAD / HTTP/1.0" -
[17/Nov/2022:08:53:48 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_database.zip HTTP/1.1" 394
[17/Nov/2022:09:05:14 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 331
[17/Nov/2022:10:36:31 +0100] 192.241.192.196 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[17/Nov/2022:10:44:55 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein-database.zip HTTP/1.1" 427
[17/Nov/2022:10:55:42 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP21 HTTP/1.1" 390
[17/Nov/2022:11:11:39 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm-database.zip HTTP/1.1" 394
[17/Nov/2022:11:22:48 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[17/Nov/2022:11:55:32 +0100] 184.105.139.118 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:12:05:56 +0100] 184.105.139.82 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[17/Nov/2022:12:11:57 +0100] 184.105.139.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:12:12:38 +0100] 184.105.139.110 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[17/Nov/2022:12:29:11 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_dump.zip HTTP/1.1" 399
[17/Nov/2022:12:52:01 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "-" -
[17/Nov/2022:12:53:46 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_dump.zip HTTP/1.1" 423
[17/Nov/2022:13:11:31 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 298
[17/Nov/2022:13:11:33 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 298
[17/Nov/2022:13:11:34 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 304
[17/Nov/2022:13:11:35 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 304
[17/Nov/2022:13:11:36 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 303
[17/Nov/2022:13:11:38 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 303
[17/Nov/2022:13:11:39 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 304
[17/Nov/2022:13:11:40 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 304
[17/Nov/2022:13:11:41 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 302
[17/Nov/2022:13:11:42 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 302
[17/Nov/2022:13:11:44 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 300
[17/Nov/2022:13:11:45 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 300
[17/Nov/2022:13:11:47 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 303
[17/Nov/2022:13:11:48 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 303
[17/Nov/2022:13:11:50 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 301
[17/Nov/2022:13:11:51 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 301
[17/Nov/2022:13:11:53 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 300
[17/Nov/2022:13:11:54 +0100] 185.83.146.154 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 300
[17/Nov/2022:14:18:27 +0100] 140.224.65.237 TLSv1.2 AES256-SHA "GET / HTTP/1.0" 388
[17/Nov/2022:14:18:29 +0100] 140.224.65.237 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:16:14:06 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harmbackup.zip HTTP/1.1" 391
[17/Nov/2022:17:42:29 +0100] 44.228.128.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 316
[17/Nov/2022:17:42:31 +0100] 44.228.128.181 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.git/config HTTP/1.1" 316
[17/Nov/2022:17:53:13 +0100] 194.110.203.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_backup.zip HTTP/1.1" 392
[17/Nov/2022:17:54:02 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_backup.zip HTTP/1.1" 425
[17/Nov/2022:18:01:24 +0100] 193.235.141.173 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 295
[17/Nov/2022:18:13:08 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /console/ HTTP/1.1" 307
[17/Nov/2022:18:16:44 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_backup.zip HTTP/1.1" 401
[17/Nov/2022:18:40:09 +0100] 128.14.133.58 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:18:48:13 +0100] 89.248.163.204 - - "-" -
[17/Nov/2022:19:50:28 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub-backup.zip HTTP/1.1" 401
[17/Nov/2022:20:14:24 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "POST /Autodiscover/Autodiscover.xml HTTP/1.1" 315
[17/Nov/2022:20:43:47 +0100] 193.118.53.210 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:21:02:26 +0100] 152.32.150.177 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[17/Nov/2022:21:13:12 +0100] 223.111.175.6 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:21:56:49 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[17/Nov/2022:22:07:56 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:22:08:17 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[17/Nov/2022:22:08:38 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[17/Nov/2022:22:20:17 +0100] 35.87.199.75 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:20:35 +0100] 35.90.106.85 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[17/Nov/2022:22:20:39 +0100] 35.90.106.85 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:24:17 +0100] 54.190.76.184 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:24:45 +0100] 54.191.235.223 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:25:20 +0100] 18.236.204.48 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[17/Nov/2022:22:26:05 +0100] 18.236.76.160 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:26:37 +0100] 54.188.211.181 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:29:04 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[17/Nov/2022:22:29:15 +0100] 54.245.166.73 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:29:47 +0100] 35.87.226.239 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[17/Nov/2022:22:29:52 +0100] 54.188.211.181 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:31:10 +0100] 34.220.143.227 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:31:29 +0100] 54.188.211.181 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 307
[17/Nov/2022:22:31:40 +0100] 44.234.60.38 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 314
[17/Nov/2022:22:43:58 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backupharm.zip HTTP/1.1" 391
[17/Nov/2022:23:15:01 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /backup-harm.zip HTTP/1.1" 392
[17/Nov/2022:23:36:51 +0100] 185.7.214.218 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession HTTP/1.1" 452
[17/Nov/2022:23:42:07 +0100] 192.241.208.64 TLSv1.2 AES256-SHA "GET /version HTTP/1.1" 305
[17/Nov/2022:23:52:21 +0100] 128.1.248.42 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Nov/2022:00:11:02 +0100] 35.195.93.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[18/Nov/2022:00:38:02 +0100] 165.227.120.68 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[18/Nov/2022:00:38:03 +0100] 165.227.120.68 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[18/Nov/2022:00:38:07 +0100] 165.227.120.68 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301