[03/Feb/2023:01:42:40 +0100] 45.134.144.119 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET ///remote/fgt_lang?lang=/../../../..//////////dev/ HTTP/1.1" 325
[03/Feb/2023:01:42:46 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_27092022.zip HTTP/1.1" 403
[03/Feb/2023:01:47:30 +0100] 34.213.183.199 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/Feb/2023:01:48:00 +0100] 34.221.85.31 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 302
[03/Feb/2023:01:48:04 +0100] 34.221.85.31 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/Feb/2023:02:33:46 +0100] 109.107.166.170 - - "-" -
[03/Feb/2023:02:51:37 +0100] 109.107.166.170 - - "-" -
[03/Feb/2023:03:19:22 +0100] 132.148.166.136 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_26092022.zip HTTP/1.1" 427
[03/Feb/2023:04:48:29 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_24092022.zip HTTP/1.1" 394
[03/Feb/2023:05:12:27 +0100] 193.106.29.122 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.0" 388
[03/Feb/2023:05:34:23 +0100] 194.110.203.39 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_24092022.zip HTTP/1.1" 403
[03/Feb/2023:06:23:58 +0100] 194.110.203.47 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_23092022.zip HTTP/1.1" 403
[03/Feb/2023:07:26:24 +0100] 192.241.205.11 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:07:37:12 +0100] 66.249.69.48 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[03/Feb/2023:07:37:13 +0100] 66.249.69.46 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:07:40:03 +0100] 193.235.141.21 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[03/Feb/2023:09:17:01 +0100] 103.77.188.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /api/v2/cmdb/system/admin/admin HTTP/1.0" 407
[03/Feb/2023:10:01:31 +0100] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Feb/2023:11:05:38 +0100] 216.218.206.69 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:11:13:20 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/Feb/2023:11:13:49 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:11:14:10 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/Feb/2023:11:14:35 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[03/Feb/2023:11:15:08 +0100] 216.218.206.69 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/Feb/2023:11:18:24 +0100] 107.170.255.21 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[03/Feb/2023:11:21:18 +0100] 167.94.138.47 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Feb/2023:11:21:19 +0100] 167.94.138.47 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:11:21:19 +0100] 167.94.138.47 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Feb/2023:11:21:56 +0100] 216.218.206.69 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[03/Feb/2023:11:46:37 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_18092022.zip HTTP/1.1" 427
[03/Feb/2023:11:51:04 +0100] 167.94.146.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Feb/2023:11:51:04 +0100] 167.94.146.60 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:11:51:04 +0100] 167.94.146.60 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Feb/2023:11:57:36 +0100] 157.55.39.82 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 315
[03/Feb/2023:11:57:37 +0100] 157.55.39.82 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 315
[03/Feb/2023:11:57:46 +0100] 157.55.39.69 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 308
[03/Feb/2023:12:04:02 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_18092022.zip HTTP/1.1" 394
[03/Feb/2023:12:56:35 +0100] 138.246.253.24 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 403
[03/Feb/2023:13:06:51 +0100] 51.79.177.154 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/Feb/2023:13:06:55 +0100] 51.79.177.154 TLSv1.2 AES256-SHA "GET favicon.ico HTTP/1.1" 285
[03/Feb/2023:13:08:57 +0100] 185.180.143.13 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:14:02:04 +0100] 128.14.134.170 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:14:06:28 +0100] 194.110.203.41 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_16092022.zip HTTP/1.1" 394
[03/Feb/2023:14:21:57 +0100] 185.180.143.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:14:39:45 +0100] 45.55.66.207 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Feb/2023:14:39:46 +0100] 45.55.66.207 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 754
[03/Feb/2023:14:39:48 +0100] 45.55.66.207 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /favicon.ico HTTP/1.1" 1150
[03/Feb/2023:15:45:02 +0100] 170.64.166.17 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[03/Feb/2023:15:45:06 +0100] 170.64.166.17 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[03/Feb/2023:15:45:15 +0100] 170.64.166.17 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:15:50:24 +0100] 87.236.176.14 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/Feb/2023:15:53:09 +0100] 139.162.200.98 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[03/Feb/2023:15:59:55 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:16:21:45 +0100] 185.180.143.7 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:16:36:22 +0100] 185.180.143.77 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 295
[03/Feb/2023:16:37:40 +0100] 193.235.141.150 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[03/Feb/2023:16:49:38 +0100] 87.236.176.53 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:16:49:49 +0100] 87.236.176.101 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:16:57:28 +0100] 192.241.224.18 TLSv1.2 AES256-SHA "GET /actuator/health HTTP/1.1" 310
[03/Feb/2023:18:22:12 +0100] 34.107.105.30 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.0" 383
[03/Feb/2023:19:36:21 +0100] 198.199.112.86 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[03/Feb/2023:19:37:13 +0100] 205.210.31.30 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 385
[03/Feb/2023:20:29:47 +0100] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:20:47:36 +0100] 183.136.225.32 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/Feb/2023:20:51:04 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:20:51:26 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[03/Feb/2023:20:52:01 +0100] 183.136.225.32 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[03/Feb/2023:21:17:00 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 310
[03/Feb/2023:21:17:01 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 310
[03/Feb/2023:21:17:01 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 317
[03/Feb/2023:21:17:02 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 317
[03/Feb/2023:21:17:03 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 315
[03/Feb/2023:21:17:03 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 315
[03/Feb/2023:21:17:04 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 316
[03/Feb/2023:21:17:04 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 316
[03/Feb/2023:21:17:06 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 314
[03/Feb/2023:21:17:08 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 314
[03/Feb/2023:21:17:09 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 312
[03/Feb/2023:21:17:09 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 312
[03/Feb/2023:21:17:10 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 315
[03/Feb/2023:21:17:17 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 315
[03/Feb/2023:21:17:18 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 313
[03/Feb/2023:21:17:18 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 313
[03/Feb/2023:21:17:19 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 312
[03/Feb/2023:21:17:21 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 312
[03/Feb/2023:21:17:22 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 312
[03/Feb/2023:21:17:26 +0100] 109.237.98.53 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 312
[03/Feb/2023:21:18:41 +0100] 205.210.31.46 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 383
[03/Feb/2023:21:45:40 +0100] 185.180.143.6 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:22:43:04 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:22:48:29 +0100] 194.110.203.40 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_10092022.zip HTTP/1.1" 403
[03/Feb/2023:22:56:50 +0100] 162.142.125.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 383
[03/Feb/2023:22:56:51 +0100] 162.142.125.8 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:22:56:52 +0100] 162.142.125.8 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[03/Feb/2023:23:15:10 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_08092022.zip HTTP/1.1" 427
[03/Feb/2023:23:15:28 +0100] 162.142.125.213 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[03/Feb/2023:23:15:29 +0100] 162.142.125.213 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[04/Feb/2023:00:17:56 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_08092022.zip HTTP/1.1" 403
[04/Feb/2023:00:51:22 +0100] 35.233.62.116 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301