[18/Feb/2023:01:34:50 +0100] 78.128.114.26 - - "-" -
[18/Feb/2023:02:17:10 +0100] 51.158.108.77 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 381
[18/Feb/2023:02:20:54 +0100] 198.235.24.22 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[18/Feb/2023:02:34:21 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /harm_13022022.zip HTTP/1.1" 394
[18/Feb/2023:03:02:46 +0100] 128.1.248.26 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:03:02:57 +0100] 128.1.248.26 TLSv1.2 AES256-SHA "HEAD /icons/sphere1.png HTTP/1.1" -
[18/Feb/2023:04:09:26 +0100] 23.229.104.2 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:04:09:28 +0100] 23.229.104.2 TLSv1.2 AES256-SHA "GET /robots.txt HTTP/1.1" 308
[18/Feb/2023:04:09:30 +0100] 23.229.104.2 TLSv1.2 AES256-SHA "GET /ads.txt HTTP/1.1" 306
[18/Feb/2023:07:22:33 +0100] 198.235.24.182 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 377
[18/Feb/2023:07:25:22 +0100] 51.103.121.119 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /cgi-bin/luci HTTP/1.1" 395
[18/Feb/2023:08:07:27 +0100] 185.180.143.79 TLSv1.2 AES256-SHA "GET /cgi-bin/authLogin.cgi HTTP/1.1" 315
[18/Feb/2023:08:41:00 +0100] 192.241.211.13 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:09:44:53 +0100] 194.110.203.38 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_09022022.zip HTTP/1.1" 427
[18/Feb/2023:09:49:14 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[18/Feb/2023:09:49:14 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[18/Feb/2023:09:49:15 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[18/Feb/2023:09:49:15 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[18/Feb/2023:09:49:16 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[18/Feb/2023:09:49:16 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[18/Feb/2023:09:49:17 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[18/Feb/2023:09:49:17 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[18/Feb/2023:09:49:18 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[18/Feb/2023:09:49:18 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[18/Feb/2023:09:49:19 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[18/Feb/2023:09:49:19 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[18/Feb/2023:09:49:20 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[18/Feb/2023:09:49:20 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[18/Feb/2023:09:49:21 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[18/Feb/2023:09:49:21 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[18/Feb/2023:09:49:22 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[18/Feb/2023:09:49:22 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[18/Feb/2023:09:49:23 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[18/Feb/2023:09:49:24 +0100] 109.237.98.226 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[18/Feb/2023:10:32:28 +0100] 4.184.57.28 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 301
[18/Feb/2023:11:13:22 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_08022022.zip HTTP/1.1" 427
[18/Feb/2023:11:20:29 +0100] 64.62.197.14 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:11:30:32 +0100] 64.62.197.6 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 309
[18/Feb/2023:11:35:19 +0100] 64.62.197.3 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:11:36:39 +0100] 64.62.197.7 TLSv1.2 AES256-SHA "GET /.git/config HTTP/1.1" 310
[18/Feb/2023:12:01:46 +0100] 193.235.141.3 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 307
[18/Feb/2023:14:45:54 +0100] 128.14.141.34 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:15:21:49 +0100] 67.205.160.85 TLSv1.2 AES256-SHA "GET /ab2g HTTP/1.1" 304
[18/Feb/2023:15:21:50 +0100] 67.205.160.85 TLSv1.2 AES256-SHA "GET /ab2h HTTP/1.1" 304
[18/Feb/2023:15:21:54 +0100] 67.205.160.85 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:15:21:55 +0100] 67.205.160.85 TLSv1.2 AES256-SHA "GET /t4 HTTP/1.1" 302
[18/Feb/2023:16:00:48 +0100] 167.94.138.44 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:16:00:48 +0100] 167.94.138.44 TLSv1.2 AES256-SHA "PRI * HTTP/2.0" 379
[18/Feb/2023:16:56:50 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_05022022.zip HTTP/1.1" 427
[18/Feb/2023:18:51:33 +0100] 107.170.250.13 TLSv1.2 AES256-SHA "GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1" 328
[18/Feb/2023:19:49:17 +0100] 192.241.236.20 TLSv1.2 AES256-SHA "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 335
[18/Feb/2023:20:24:09 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_03022022.zip HTTP/1.1" 427
[18/Feb/2023:21:11:02 +0100] 194.110.203.42 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /klub_02022022.zip HTTP/1.1" 403
[18/Feb/2023:21:15:19 +0100] 193.235.141.127 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 306
[18/Feb/2023:22:03:06 +0100] 194.110.203.44 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_02022022.zip HTTP/1.1" 427
[18/Feb/2023:22:29:10 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:22:45:23 +0100] 60.217.75.70 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 301
[18/Feb/2023:22:57:36 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.env HTTP/1.1" 304
[18/Feb/2023:22:57:37 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.env HTTP/1.1" 304
[18/Feb/2023:22:57:37 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/credentials HTTP/1.1" 311
[18/Feb/2023:22:57:37 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/credentials HTTP/1.1" 311
[18/Feb/2023:22:57:38 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /.aws/config HTTP/1.1" 310
[18/Feb/2023:22:57:38 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /.aws/config HTTP/1.1" 310
[18/Feb/2023:22:57:39 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /aws/credentials HTTP/1.1" 310
[18/Feb/2023:22:57:39 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /aws/credentials HTTP/1.1" 310
[18/Feb/2023:22:57:40 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /credentials HTTP/1.1" 308
[18/Feb/2023:22:57:40 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /credentials HTTP/1.1" 308
[18/Feb/2023:22:57:41 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /test.php HTTP/1.1" 306
[18/Feb/2023:22:57:41 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /test.php HTTP/1.1" 306
[18/Feb/2023:22:57:42 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /laravel/.env HTTP/1.1" 309
[18/Feb/2023:22:57:42 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /laravel/.env HTTP/1.1" 309
[18/Feb/2023:22:57:43 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /demo/.env HTTP/1.1" 307
[18/Feb/2023:22:57:43 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /demo/.env HTTP/1.1" 307
[18/Feb/2023:22:57:44 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /web/.env HTTP/1.1" 307
[18/Feb/2023:22:57:44 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /web/.env HTTP/1.1" 307
[18/Feb/2023:22:57:44 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /phpinfo HTTP/1.1" 307
[18/Feb/2023:22:57:45 +0100] 109.237.97.180 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "POST /phpinfo HTTP/1.1" 307
[19/Feb/2023:00:17:12 +0100] 152.89.196.211 TLSv1.2 AES256-SHA "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 327
[19/Feb/2023:00:31:49 +0100] 198.235.24.37 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET / HTTP/1.1" 394
[19/Feb/2023:00:37:39 +0100] 35.89.66.145 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[19/Feb/2023:00:38:05 +0100] 34.216.147.37 TLSv1.2 AES256-SHA "GET /favicon.ico HTTP/1.1" 313
[19/Feb/2023:00:38:08 +0100] 34.216.147.37 TLSv1.2 AES256-SHA "GET / HTTP/1.1" 306
[19/Feb/2023:00:42:45 +0100] 194.110.203.45 TLSv1.2 DHE-RSA-AES256-GCM-SHA384 "GET /easyzumfuehrerschein_31012022.zip HTTP/1.1" 427