LeakIX - Host 104.21.24.129

Host 104.21.24.129

United States

CLOUDFLARENET

Software information

cloudflare

tcp/443 tcp/80 tcp/8443

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 104.21.24.129
Domain: practolib.com
Port: 443
URL: https://practolib.com

First seen 2023-05-26 16:59
Last seen 2026-02-05 21:31
Open for 986 days
- Severity: critical
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228868199a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gmaiuri:MM34j8yf2eLS-BM5Lmfm@git.lnsh.in/practolib/practolib-website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-02-05 21:31
  
  305 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.218.237
Domain: eraplay89red.online
Port: 443
URL: https://eraplay89red.online

First seen 2025-02-14 11:02
Last seen 2026-02-04 04:39
Open for 354 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df139a1678

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/white
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/qr
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/va
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/Maintenance/gameMT
/template/alpha/desktop/assets/7winbet/img/Maintenance/games
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook

Found on 2026-02-04 04:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c8ee05d8b8ee05d8b6d0b3c2b5ae4df5b8f99131bdfdaadbd

Found 124 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-30 19:58

Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45e7880e7d12ff5e81f47e5999206d7535

Found 30 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-28 15:58

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87726028bc72d1f19bf6cd740c7288741009

Found 11 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/web.config

Found on 2025-11-26 18:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df143f7f6e

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot

Found on 2025-11-22 18:27

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193dd5522a3d95d73832101a8d379d81292

Found 36 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-16 10:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b4254f9024ff9259f4f01f0310b01a7f46

Found 40 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-08 22:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df2728235f

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg

Found on 2025-11-08 22:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df431456ef

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino

Found on 2025-11-07 02:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df81606fa7

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/white
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/qr
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/va
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak

Found on 2025-11-03 12:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3dff993b044

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/white
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata

Found on 2025-10-30 15:44

Severity: medium
Fingerprint: 5f32cf5d6962f09c2d9d96002d9d960017d08b18e5887b208f2546c491751e6e

Found 109 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-10-15 11:17

Severity: medium
Fingerprint: 5f32cf5d6962f09c88c2190688c219061d32035ec632256a9804734eadc3f10c

Found 107 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-10-13 11:55

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3dfc70f6c7c

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88

Found on 2025-10-08 21:50

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd53ac2c85bb142a19dd6321012ce2ec5c

Found 38 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-08-23 02:21

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d4047824166c30944d691044893c6860b1ce9d8d

Found 35 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-03-03 02:01

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 104.21.24.129
Domain: preview-cms.woo-hoo.ae
Port: 443
URL: https://preview-cms.woo-hoo.ae

First seen 2025-12-17 04:19
Last seen 2026-02-02 10:28
Open for 47 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3cac1da9f290bb12d9538c48a62f331d673df38b2
```
GraphQL introspection enabled at /graphql
Types: 16 (by kind: ENUM: 2, INPUT_OBJECT: 1, OBJECT: 9, SCALAR: 4)
Operations:
- Query: Query | fields: admins, content, contents
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0
```
  Found on 2026-02-02 10:28
  
  21.4 kBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.21.24.129
Domain: preview-cms.woo-hoo.ae
Port: 443
URL: https://preview-cms.woo-hoo.ae

First seen 2025-10-23 08:02
Last seen 2026-02-02 10:28
Open for 102 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-02-02 10:28
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: calendy.kuppy.tech
Port: 80
URL: http://calendy.kuppy.tech

First seen 2025-08-30 22:05
Last seen 2026-01-23 14:19
Open for 145 days

Severity: high
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b71fcbc2ac9519001c58b7533073cd9406

Found 128 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/fontawesome-free/css
/assets/admin/plugins/fontawesome-free/webfonts
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-ui/external
/assets/admin/plugins/jquery-ui/images
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jsgrid/demos
/assets/admin/plugins/jsgrid/i18n
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/overlayScrollbars/css
/assets/admin/plugins/overlayScrollbars/js
/assets/admin/plugins/popper
/assets/admin/plugins/popper/esm
/assets/admin/plugins/popper/umd
/assets/admin/plugins/select2
/assets/admin/plugins/select2/css
/assets/admin/plugins/select2/js
/assets/admin/plugins/summernote
/assets/admin/plugins/summernote/font
/assets/admin/plugins/summernote/lang
/assets/admin/plugins/summernote/plugin
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/front/css
/assets/front/font
/assets/front/fonts
/assets/front/fonts/bootstrap
/assets/front/fonts/bootstrap/fonts
/assets/front/fonts/fontello
/assets/front/fonts/simpleline
/assets/front/img
/assets/front/img/404.jpg
/assets/front/img/apple-touch-icon-114x114.html
/assets/front/img/apple-touch-icon-72x72.html
/assets/front/img/apple-touch-icon.html
/assets/front/img/avatar.png
/assets/front/img/base_bg_4_3.png
/assets/front/img/blank.gif
/assets/front/img/checkmark.png
/assets/front/img/close.png
/assets/front/img/default.jpg
/assets/front/img/get_started.svg
/assets/front/img/link.png
/assets/front/img/link1.png
/assets/front/img/loading.gif
/assets/front/img/message.png
/assets/front/img/next.png
/assets/front/img/not-found.png
/assets/front/img/payment.svg
/assets/front/img/plan.svg
/assets/front/img/prev.png
/assets/front/img/schedule.png
/assets/front/img/side-menu_bg-1.png
/assets/front/img/subscribe-block_bg.svg
/assets/front/img/vericla-cover.png
/assets/front/img/vericlcover.jpg
/assets/front/img/website.png
/assets/front/img/work.svg
/assets/front/js
/assets/front/js/aos.js
/assets/front/js/daterangepicker.js
/assets/front/js/jquery.cookieMessage.min.js
/assets/front/js/lightbox.js
/assets/front/js/moment.min.js

Found on 2026-01-23 14:19

Severity: high
Fingerprint: 5f32cf5d6962f09c016b87d4016b87d4964ce5cb178ea01db8a760c311782900

Found 105 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/fontawesome-free/css
/assets/admin/plugins/fontawesome-free/webfonts
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-ui/external
/assets/admin/plugins/jquery-ui/images
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jsgrid/demos
/assets/admin/plugins/jsgrid/i18n
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/overlayScrollbars/css
/assets/admin/plugins/overlayScrollbars/js
/assets/admin/plugins/popper
/assets/admin/plugins/popper/esm
/assets/admin/plugins/popper/umd
/assets/admin/plugins/select2
/assets/admin/plugins/select2/css
/assets/admin/plugins/select2/js
/assets/admin/plugins/summernote
/assets/admin/plugins/summernote/font
/assets/admin/plugins/summernote/lang
/assets/admin/plugins/summernote/plugin
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/front/css
/assets/front/font
/assets/front/fonts
/assets/front/fonts/bootstrap
/assets/front/fonts/bootstrap/fonts
/assets/front/fonts/fontello
/assets/front/fonts/simpleline
/assets/front/img
/assets/front/js
/assets/front/libs
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2026-01-02 14:59

Severity: high
Fingerprint: 5f32cf5d6962f09c1e3ea8c61e3ea8c696ad3605703db3131636b40d9db73bc7

Found 86 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/fontawesome-free/css
/assets/admin/plugins/fontawesome-free/webfonts
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-ui/external
/assets/admin/plugins/jquery-ui/images
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jsgrid/demos
/assets/admin/plugins/jsgrid/i18n
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-12-28 22:06

Severity: high
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bc547abd331098a9852b5ecbede5af3dcd

Found 22 files trough .DS_Store spidering:

/application
/assets
/docs
/install
/install/admin.php
/install/assets
/install/assets/css
/install/assets/img
/install/assets/img/bg1.png
/install/assets/img/logo.png
/install/assets/js
/install/config
/install/database.php
/install/folder-permissions.php
/install/includes
/install/index.php
/install/intro.php
/install/sql
/system
/updates
/uploads
/vendor

Found on 2025-12-24 15:59

Severity: high
Fingerprint: 5f32cf5d6962f09c6e6dc6946e6dc694a087ae0b6088e5ddfe1191836b3ae7cb

Found 84 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/fontawesome-free/css
/assets/admin/plugins/fontawesome-free/webfonts
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-ui/external
/assets/admin/plugins/jquery-ui/images
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-12-22 19:15

Severity: high
Fingerprint: 5f32cf5d6962f09c62fb79d662fb79d6ee2267355c193c23edccba7dca35f91c

Found 95 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/fontawesome-free/css
/assets/admin/plugins/fontawesome-free/webfonts
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-ui/external
/assets/admin/plugins/jquery-ui/images
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jsgrid/demos
/assets/admin/plugins/jsgrid/i18n
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/overlayScrollbars/css
/assets/admin/plugins/overlayScrollbars/js
/assets/admin/plugins/popper
/assets/admin/plugins/popper/esm
/assets/admin/plugins/popper/umd
/assets/admin/plugins/select2
/assets/admin/plugins/select2/css
/assets/admin/plugins/select2/js
/assets/admin/plugins/summernote
/assets/admin/plugins/summernote/font
/assets/admin/plugins/summernote/lang
/assets/admin/plugins/summernote/plugin
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-12-18 18:27

Severity: high
Fingerprint: 5f32cf5d6962f09cfb7dc6fdfb7dc6fdc4dadba257fbb43e8c401f56b35cf231

Found 74 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-12-01 15:53

Severity: high
Fingerprint: 5f32cf5d6962f09c2a0815492a0815494bf8bb26f37e84a21c9ba92ac73cc133

Found 70 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-11-29 01:29

Severity: high
Fingerprint: 5f32cf5d6962f09c5a2cc21a5a2cc21aade4c2a12b6d3cafceac76f9f637ad8a

Found 82 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/fontawesome-free/css
/assets/admin/plugins/fontawesome-free/webfonts
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-11-27 05:40

Severity: high
Fingerprint: 5f32cf5d6962f09ca728a86fa728a86f0e9956c495f7c8d4c50dc84853341eaf

Found 76 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-11-16 15:59

Severity: high
Fingerprint: 5f32cf5d6962f09cee671e0bee671e0b8b5b3e582a241148154aaa3c07021331

Found 72 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-11-10 12:45

Severity: high
Fingerprint: 5f32cf5d6962f09ca29b58f1a29b58f16539d40e69e13a2adbc4205276714b31

Found 78 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-10-14 23:51

Severity: high
Fingerprint: 5f32cf5d6962f09cef4a0ce8ef4a0ce862876797f14afc99af14c1af350050ad

Found 80 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/admin/plugins/bootstrap
/assets/admin/plugins/bootstrap-colorpicker_off
/assets/admin/plugins/bootstrap-colorpicker_off/css
/assets/admin/plugins/bootstrap-colorpicker_off/js
/assets/admin/plugins/bootstrap-switch
/assets/admin/plugins/bootstrap-switch/css
/assets/admin/plugins/bootstrap-switch/js
/assets/admin/plugins/bs-custom-file-input
/assets/admin/plugins/datatables
/assets/admin/plugins/datatables-bs4
/assets/admin/plugins/datatables-bs4/css
/assets/admin/plugins/datatables-bs4/js
/assets/admin/plugins/datatables-responsive
/assets/admin/plugins/datatables-responsive/css
/assets/admin/plugins/datatables-responsive/js
/assets/admin/plugins/daterangepicker
/assets/admin/plugins/daterangepicker/example
/assets/admin/plugins/daterangepicker/website
/assets/admin/plugins/fontawesome-free
/assets/admin/plugins/icheck-bootstrap
/assets/admin/plugins/jquery
/assets/admin/plugins/jquery-knob
/assets/admin/plugins/jquery-mapael
/assets/admin/plugins/jquery-mousewheel
/assets/admin/plugins/jquery-ui
/assets/admin/plugins/jquery-validation
/assets/admin/plugins/jqvmap
/assets/admin/plugins/jsgrid
/assets/admin/plugins/jszip
/assets/admin/plugins/line-icons
/assets/admin/plugins/moment
/assets/admin/plugins/overlayScrollbars
/assets/admin/plugins/popper
/assets/admin/plugins/select2
/assets/admin/plugins/summernote
/assets/admin/plugins/sweetalert2
/assets/admin/plugins/sweetalert2-theme-bootstrap-4
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-10-12 17:03

Severity: medium
Fingerprint: 5f32cf5d6962f09cccd847a3ccd847a3ea984250374ee6c06e5f06943f5522c6

Found 43 files trough .DS_Store spidering:

/application
/assets
/assets/admin
/assets/admin/css
/assets/admin/css/adminlte.css.map
/assets/admin/css/adminlte.min.css
/assets/admin/css/adminlte.min.css.map
/assets/admin/css/alt
/assets/admin/css/bootstrap-rtl.min.css
/assets/admin/css/bootstrap-rtl.min.css.map
/assets/admin/css/bootstrap-tagsinput.css
/assets/admin/css/custom-rtl.css
/assets/admin/css/nice-select.css
/assets/admin/css/sweet-alert.css
/assets/admin/css/timepicki.css
/assets/admin/files
/assets/admin/fonts
/assets/admin/images
/assets/admin/images/landing1.png
/assets/admin/img
/assets/admin/js
/assets/admin/js/adminlte.js.map
/assets/admin/js/adminlte.min.js
/assets/admin/js/adminlte.min.js.map
/assets/admin/js/bootstrap-tagsinput.min.js
/assets/admin/js/bootstrap-tagsinput.min.js.map
/assets/admin/js/demo.js
/assets/admin/js/nice-select.min.js
/assets/admin/js/pages
/assets/admin/js/sweet-alert.min.js
/assets/admin/js/timepicki.js
/assets/admin/js/validation.js
/assets/admin/plugins
/assets/embed
/assets/front
/assets/images
/assets/pwa
/docs
/install
/system
/updates
/uploads
/vendor

Found on 2025-09-11 09:03

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: xh315.cc
Port: 80
URL: http://xh315.cc

First seen 2026-01-01 17:17
Last seen 2026-01-23 12:01
Open for 21 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87723895af61cd42b26629229826d7fb797e
```
Found 11 files trough .DS_Store spidering:

/imgs
/imgs/android_btn.png
/imgs/bg.png
/imgs/continue_btn.png
/imgs/corp.png
/imgs/faviconk8.ico
/imgs/ios_btn.png
/imgs/logo.png
/imgs/sponsors-1.png
/imgs/sponsors-2.png
/imgs/sponsors-3.png
```
  Found on 2026-01-23 12:01
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: phsugar.my
Port: 443
URL: https://phsugar.my

First seen 2025-11-17 16:10
Last seen 2025-11-21 12:05
Open for 3 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d239a86d2995353cb4acfbf33aae

Found 128 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/moneyComing
/assets/moneyComing/img
/assets/moneyComing/img/10000x.png
/assets/moneyComing/img/all_money.png
/assets/moneyComing/img/app_pg.png
/assets/moneyComing/img/app_pg_button.png
/assets/moneyComing/img/back.png
/assets/moneyComing/img/banner1_tag.png
/assets/moneyComing/img/bet_image.png
/assets/moneyComing/img/big_win.png
/assets/moneyComing/img/button_icons.png
/assets/moneyComing/img/ccbg.png
/assets/moneyComing/img/diss_win.png
/assets/moneyComing/img/flash_bomb.png
/assets/moneyComing/img/frame_1.png
/assets/moneyComing/img/frame_2.png
/assets/moneyComing/img/has_win.png
/assets/moneyComing/img/layout_pg.png
/assets/moneyComing/img/light_a.png
/assets/moneyComing/img/light_b.png
/assets/moneyComing/img/light_c.png
/assets/moneyComing/img/light_d.png
/assets/moneyComing/img/light_e.png
/assets/moneyComing/img/light_f.png
/assets/moneyComing/img/light_g.png
/assets/moneyComing/img/light_h.png
/assets/moneyComing/img/line_five.png
/assets/moneyComing/img/line_one.png
/assets/moneyComing/img/line_zero.png
/assets/moneyComing/img/loading.png
/assets/moneyComing/img/loading_banner1.png
/assets/moneyComing/img/loading_banner2.png
/assets/moneyComing/img/lock_line.png
/assets/moneyComing/img/lock_plus.png
/assets/moneyComing/img/mega_win.png
/assets/moneyComing/img/money_coming.png
/assets/moneyComing/img/money_coming_bg.png
/assets/moneyComing/img/money_ff.png
/assets/moneyComing/img/numbers.png
/assets/moneyComing/img/numbers1.png
/assets/moneyComing/img/reflective.png
/assets/moneyComing/img/roulette.png
/assets/moneyComing/img/solt.png
/assets/moneyComing/img/solt_frame.png
/assets/moneyComing/img/special.png
/assets/moneyComing/img/stop_icon.png
/assets/moneyComing/img/super_win.png
/assets/moneyComing/json
/assets/moneyComing/json/all_money.json
/assets/moneyComing/json/bet_image.json
/assets/moneyComing/json/button_icons.json
/assets/moneyComing/json/money_coming_bg.json
/assets/moneyComing/json/numbers.json
/assets/moneyComing/json/numbers1.json
/assets/moneyComing/json/roulette.json
/assets/moneyComing/json/solt.json
/assets/moneyComing/json/special.json
/index.html
/maintain
/otherGames
/otherGames/crazyEight
/otherGames/crazyEight/css
/otherGames/crazyEight/js
/otherGames/crazyEight/js/lib
/otherGames/crazyEight/js/social
/otherGames/crazyEight/play.html
/otherGames/crazyEight/sounds
/otherGames/crazyEight/sprites
/otherGames/crazyEight/sprites/_oButBlue.png
/otherGames/crazyEight/sprites/_oButGreen.png
/otherGames/crazyEight/sprites/_oButRed.png
/otherGames/crazyEight/sprites/_oButYellow.png
/otherGames/crazyEight/sprites/arrow.png
/otherGames/crazyEight/sprites/audio_icon.png
/otherGames/crazyEight/sprites/bg_game.jpg
/otherGames/crazyEight/sprites/bg_menu.jpg
/otherGames/crazyEight/sprites/bg_select_players.jpg
/otherGames/crazyEight/sprites/bg_tooltip.png
/otherGames/crazyEight/sprites/but_action_cards.png
/otherGames/crazyEight/sprites/but_draw_one.png
/otherGames/crazyEight/sprites/but_exit.png
/otherGames/crazyEight/sprites/but_exit_big.png
/otherGames/crazyEight/sprites/but_fullscreen.png
/otherGames/crazyEight/sprites/but_home.png
/otherGames/crazyEight/sprites/but_info.png
/otherGames/crazyEight/sprites/but_keep_drawing.png
/otherGames/crazyEight/sprites/but_next.png
/otherGames/crazyEight/sprites/but_normal_mode.png
/otherGames/crazyEight/sprites/but_p2.png
/otherGames/crazyEight/sprites/but_p3.png
/otherGames/crazyEight/sprites/but_p4.png
/otherGames/crazyEight/sprites/but_play.png
/otherGames/crazyEight/sprites/but_restart.png
/otherGames/crazyEight/sprites/but_show.png
/otherGames/crazyEight/sprites/but_skip.png
/otherGames/crazyEight/sprites/but_uno.png
/otherGames/crazyEight/sprites/but_yes_big.png
/otherGames/crazyEight/sprites/cards0.png
/otherGames/crazyEight/sprites/cards1.png
/otherGames/crazyEight/sprites/change_clockwise.png
/otherGames/crazyEight/sprites/change_color.png
/otherGames/crazyEight/sprites/cloud.png
/otherGames/crazyEight/sprites/colors.png
/otherGames/crazyEight/sprites/credits_panel.png
/otherGames/crazyEight/sprites/ctl_logo.png
/otherGames/crazyEight/sprites/cup_icon.png
/otherGames/crazyEight/sprites/draw_2.png
/otherGames/crazyEight/sprites/draw_4.png
/otherGames/crazyEight/sprites/finger.png
/otherGames/crazyEight/sprites/info_label.png
/otherGames/crazyEight/sprites/line_players.png
/otherGames/crazyEight/sprites/local_but.png
/otherGames/crazyEight/sprites/logo_menu.png
/otherGames/crazyEight/sprites/msg_box.png
/otherGames/crazyEight/sprites/multiplayer_but.png

Found on 2025-11-21 12:05

Severity: medium
Fingerprint: 5f32cf5d6962f09c5a2cc21a5a2cc21a447b07b68210cf6ae188de491493ce2b

Found 82 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/moneyComing
/assets/moneyComing/img
/assets/moneyComing/img/10000x.png
/assets/moneyComing/img/all_money.png
/assets/moneyComing/img/app_pg.png
/assets/moneyComing/img/app_pg_button.png
/assets/moneyComing/img/back.png
/assets/moneyComing/img/banner1_tag.png
/assets/moneyComing/img/bet_image.png
/assets/moneyComing/img/big_win.png
/assets/moneyComing/img/button_icons.png
/assets/moneyComing/img/ccbg.png
/assets/moneyComing/img/diss_win.png
/assets/moneyComing/img/flash_bomb.png
/assets/moneyComing/img/frame_1.png
/assets/moneyComing/img/frame_2.png
/assets/moneyComing/img/has_win.png
/assets/moneyComing/img/layout_pg.png
/assets/moneyComing/img/light_a.png
/assets/moneyComing/img/light_b.png
/assets/moneyComing/img/light_c.png
/assets/moneyComing/img/light_d.png
/assets/moneyComing/img/light_e.png
/assets/moneyComing/img/light_f.png
/assets/moneyComing/img/light_g.png
/assets/moneyComing/img/light_h.png
/assets/moneyComing/img/line_five.png
/assets/moneyComing/img/line_one.png
/assets/moneyComing/img/line_zero.png
/assets/moneyComing/img/loading.png
/assets/moneyComing/img/loading_banner1.png
/assets/moneyComing/img/loading_banner2.png
/assets/moneyComing/img/lock_line.png
/assets/moneyComing/img/lock_plus.png
/assets/moneyComing/img/mega_win.png
/assets/moneyComing/img/money_coming.png
/assets/moneyComing/img/money_coming_bg.png
/assets/moneyComing/img/money_ff.png
/assets/moneyComing/img/numbers.png
/assets/moneyComing/img/numbers1.png
/assets/moneyComing/img/reflective.png
/assets/moneyComing/img/roulette.png
/assets/moneyComing/img/solt.png
/assets/moneyComing/img/solt_frame.png
/assets/moneyComing/img/special.png
/assets/moneyComing/img/stop_icon.png
/assets/moneyComing/img/super_win.png
/assets/moneyComing/json
/assets/moneyComing/json/all_money.json
/assets/moneyComing/json/bet_image.json
/assets/moneyComing/json/button_icons.json
/assets/moneyComing/json/money_coming_bg.json
/assets/moneyComing/json/numbers.json
/assets/moneyComing/json/numbers1.json
/assets/moneyComing/json/roulette.json
/assets/moneyComing/json/solt.json
/assets/moneyComing/json/special.json
/index.html
/maintain
/otherGames
/otherGames/crazyEight
/otherGames/crazyEight/css
/otherGames/crazyEight/js
/otherGames/crazyEight/js/lib
/otherGames/crazyEight/js/social
/otherGames/crazyEight/play.html
/otherGames/crazyEight/sounds
/otherGames/crazyEight/sprites
/pwa-sw.js

Found on 2025-11-17 16:10

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.24.129
Domain: osiriscasino.ca
Port: 443
URL: https://osiriscasino.ca

First seen 2025-11-17 21:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31389d22e3389d22e343f68b32

Apache Status

Apache Server Status for osiriscasino.ca (via 127.0.0.1)

Server Version: Apache/2.4.62 (AlmaLinux) mpm-itk/2.4.7-04 OpenSSL/3.2.2 PHP/7.4.33
Server MPM: prefork
Server Built: Jan 10 2025 00:00:00

Current Time: Monday, 17-Nov-2025 21:44:00 UTC
Restart Time: Monday, 17-Nov-2025 15:19:54 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  6 hours 24 minutes 5 seconds
Server load: 0.77 0.36 0.27
Total accesses: 2035721 - Total Traffic: 7.2 GB - Total Duration: 1305942213
CPU Usage: u3.47 s16.19 cu16725.7 cs37303 - 235% CPU load
88.3 requests/sec - 325.8 kB/second - 3776 B/request - 641.513 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 10 idle workers
_____............................_.W...._......_..._._..........
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-315840050/3198/49106_
0.000596245090.015.08104.74
89.208.97.185http/1.1bierbaronnen.nl:8081GET /content.php HTTP/1.0

1-316959170/1789/46851_
0.0104978623400.09.6496.83
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.0

2-317121630/1562/49298_
0.000985605510.08.8699.69
89.208.97.185http/1.1casinoadrenaline.win:8081GET /play/sport HTTP/1.0

3-318139960/91/47775_
0.0104782189500.00.6489.57
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /wp-admin/css/colors/midnight/wp-login.php HTTP/1.0

4-318186660/35/41198_
0.01013681257420.00.1081.51
89.208.97.185http/1.1slotum-casino.com:8081HEAD /new/ HTTP/1.0

5-3-0/0/43591.
0.004761074556910.00.0086.20
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

6-3-0/0/40343.
0.004654085899210.00.0077.63
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

7-3-0/0/38598.
0.004785074248150.00.0075.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

8-3-0/0/36074.
0.004689072418510.00.0065.65
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

9-3-0/0/34051.
0.004795070768990.00.0063.25
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

10-3-0/0/31093.
0.004762062024570.00.0050.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

11-3-0/0/41649.
0.004601075068060.00.0078.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

12-3-0/0/30603.
0.004781060122470.00.0049.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

13-3-0/0/34990.
0.004857072807410.00.0061.36
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

14-3-0/0/40615.
0.004841079723620.00.0083.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

15-3-0/0/23842.
0.004899062897580.00.0044.54
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

16-3-0/0/26981.
0.004776067875520.00.0046.74
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

17-3-0/0/38140.
0.004788093447300.00.0082.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

18-3-0/0/27933.
0.004725063872100.00.0048.35
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

19-3-0/0/19279.
0.004786064652770.00.0038.72
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

20-3-0/0/21634.
0.004919066097810.00.0043.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

21-3-0/0/28916.
0.004934063793620.00.0050.99
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

22-3-0/0/19958.
0.004884066531690.00.0039.37
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

23-3-0/0/23310.
0.004787066013780.00.0044.22
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

24-3-0/0/21096.
0.004783059886600.00.0040.69
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

25-3-0/0/16927.
0.004732065490620.00.0037.80
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

26-3-0/0/15890.
0.004780061611710.00.0035.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

27-3-0/0/14540.
0.004782061342570.00.0034.58
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

28-3-0/0/19080.
0.004817073976080.00.0043.87
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

29-3-0/0/19415.
0.004794063193680.00.0038.53
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

30-3-0/0/15615.
0.004878059992180.00.0036.05
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

31-3-0/0/21321.
0.004683062341120.00.0041.64
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

32-3-0/0/20159.
0.005068058868620.00.0042.33
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

33-315149150/3673/18631_
0.000270365850.016.9352.05
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

34-3-0/0/13764.
0.004772061881400.00.0034.56
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

35-315149440/3630/11978W
0.020072006500.017.2544.84
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /server-status HTTP/1.0

36-3-0/0/10092.
0.004624065060340.00.0029.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

37-3-0/0/11921.
0.004190071702740.00.0032.82
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

38-3-0/0/8678.
0.004753065478380.00.0028.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

39-3-0/0/8252.
0.004806061140900.00.0028.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

40-315149530/3639/17896_
0.0107773355940.017.5451.28
89.208.97.185http/1.1casinofest.ca:8081GET / HTTP/1.0

41-3-0/0/10760.
0.005032062018500.00.0030.16
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

42-3-0/0/8524.
0.004949054605590.00.0029.18
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

43-3-0/0/11971.
0.004714067803220.00.0031.71
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

44-3-0/0/11523.
0.004616070572320.00.0031.07
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

45-3-0/0/7888.
0.004673070698310.00.0026.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

46-3-0/0/11513.
0.005038062597620.00.0031.24
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

47-315151470/3641/11529_
0.01012276490890.016.3242.72
89.208.97.185http/1.17-bet.casino:8081GET /function/function.php HTTP/1.0

48-3-0/0/6406.
0.005078053783160.00.0026.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

49-3-0/0/6010.
0.004842059983260.00.0024.96
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

50-3-0/0/9294.
0.002263059986350.00.0033.38
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

51-315151560/3613/8417_
0.0205665439800.016.9842.18
89.208.97.185http/1.1casinofest.ca:8081GET /debug/default/view?panel=config HTTP/1.0

52-3-0/0/6704.
0.004704

Found on 2025-11-17 21:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31389d22e3389d22e38f3d7da3

Apache Status

Apache Server Status for osiriscasino.ca (via 127.0.0.1)

Server Version: Apache/2.4.62 (AlmaLinux) mpm-itk/2.4.7-04 OpenSSL/3.2.2 PHP/7.4.33
Server MPM: prefork
Server Built: Jan 10 2025 00:00:00

Current Time: Monday, 17-Nov-2025 21:43:57 UTC
Restart Time: Monday, 17-Nov-2025 15:19:54 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  6 hours 24 minutes 2 seconds
Server load: 0.40 0.28 0.25
Total accesses: 2035574 - Total Traffic: 7.2 GB - Total Duration: 1305928865
CPU Usage: u3.47 s16.19 cu16725.7 cs37303 - 235% CPU load
88.3 requests/sec - 325.8 kB/second - 3776 B/request - 641.553 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 7 idle workers
__W__............................_.W...._......_...W.W..........
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-315840050/3186/49094_
0.02021496233620.015.04104.70
89.208.97.185http/1.1playio.co.at:8081GET /.git/config HTTP/1.0

1-316959170/1776/46838_
0.0104878609520.09.5596.74
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /autoload_classmap.php HTTP/1.0

2-317121630/1550/49286W
0.000085591150.08.7999.62
89.208.97.185http/1.1casinofest.ca:8081GET /config.json HTTP/1.0

3-318139960/78/47762_
0.000282174920.00.5689.50
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-318186660/22/41185_
0.0204881244100.00.0681.46
89.208.97.185http/1.1casinofest.ca:8081POST /php-cgi/php-cgi.exe?%ADd+cgi.force_redirect%3D0+%ADd+disa

5-3-0/0/43591.
0.004759074556910.00.0086.20
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

6-3-0/0/40343.
0.004652085899210.00.0077.63
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

7-3-0/0/38598.
0.004783074248150.00.0075.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

8-3-0/0/36074.
0.004687072418510.00.0065.65
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

9-3-0/0/34051.
0.004793070768990.00.0063.25
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

10-3-0/0/31093.
0.004760062024570.00.0050.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

11-3-0/0/41649.
0.004599075068060.00.0078.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

12-3-0/0/30603.
0.004779060122470.00.0049.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

13-3-0/0/34990.
0.004855072807410.00.0061.36
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

14-3-0/0/40615.
0.004839079723620.00.0083.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

15-3-0/0/23842.
0.004897062897580.00.0044.54
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

16-3-0/0/26981.
0.004774067875520.00.0046.74
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

17-3-0/0/38140.
0.004786093447300.00.0082.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

18-3-0/0/27933.
0.004723063872100.00.0048.35
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

19-3-0/0/19279.
0.004784064652770.00.0038.72
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

20-3-0/0/21634.
0.004916066097810.00.0043.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

21-3-0/0/28916.
0.004931063793620.00.0050.99
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

22-3-0/0/19958.
0.004882066531690.00.0039.37
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

23-3-0/0/23310.
0.004785066013780.00.0044.22
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

24-3-0/0/21096.
0.004781059886600.00.0040.69
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

25-3-0/0/16927.
0.004730065490620.00.0037.80
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

26-3-0/0/15890.
0.004778061611710.00.0035.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

27-3-0/0/14540.
0.004780061342570.00.0034.58
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

28-3-0/0/19080.
0.004815073976080.00.0043.87
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

29-3-0/0/19415.
0.004792063193680.00.0038.53
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

30-3-0/0/15615.
0.004876059992180.00.0036.05
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

31-3-0/0/21321.
0.004681062341120.00.0041.64
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

32-3-0/0/20159.
0.005065058868620.00.0042.33
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

33-315149150/3660/18618_
0.0101870354720.016.8551.97
89.208.97.185http/1.17-bet.casino:8081GET /edit.php HTTP/1.0

34-3-0/0/13764.
0.004770061881400.00.0034.56
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

35-315149440/3617/11965W
0.020071994620.017.1644.75
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /server-status HTTP/1.0

36-3-0/0/10092.
0.004622065060340.00.0029.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

37-3-0/0/11921.
0.004187071702740.00.0032.82
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

38-3-0/0/8678.
0.004751065478380.00.0028.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

39-3-0/0/8252.
0.004804061140900.00.0028.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

40-315149530/3624/17881_
0.0004973345820.017.5151.25
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /wp-includes/classwithtostring.php HTTP/1.0

41-3-0/0/10760.
0.005029062018500.00.0030.16
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

42-3-0/0/8524.
0.004946054605590.00.0029.18
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

43-3-0/0/11971.
0.004712067803220.00.0031.71
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

44-3-0/0/11523.
0.004614070572320.00.0031.07
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

45-3-0/0/7888.
0.004671070698310.00.0026.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

46-3-0/0/11513.
0.005035062597620.00.0031.24
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

47-315151470/3627/11515_
0.000376478780.016.2842.68
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /v2/_catalog HTTP/1.0

48-3-0/0/6406.
0.005075053783160.00.0026.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

49-3-0/0/6010.
0.004840059983260.00.0024.96
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

50-3-0/0/9294.
0.002260059986350.00.0033.38
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

51-315151560/3599/8403W
0.000065430250.016.9242.11
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /wp-content/blue.php HTTP/1.0

52-3-0/0/6704.
0.00470

Found on 2025-11-17 21:43

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.24.129
Domain: osiriscasino.ca
Port: 80
URL: http://osiriscasino.ca

First seen 2025-11-17 21:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31389d22e3389d22e388ea5c90

Apache Status

Apache Server Status for osiriscasino.ca (via 127.0.0.1)

Server Version: Apache/2.4.62 (AlmaLinux) mpm-itk/2.4.7-04 OpenSSL/3.2.2 PHP/7.4.33
Server MPM: prefork
Server Built: Jan 10 2025 00:00:00

Current Time: Monday, 17-Nov-2025 21:43:54 UTC
Restart Time: Monday, 17-Nov-2025 15:19:54 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  6 hours 23 minutes 59 seconds
Server load: 0.40 0.28 0.25
Total accesses: 2035390 - Total Traffic: 7.2 GB - Total Duration: 1305912306
CPU Usage: u3.46 s16.19 cu16725.7 cs37303 - 235% CPU load
88.3 requests/sec - 325.8 kB/second - 3776 B/request - 641.603 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 8 idle workers
_____............................W._....W......W..._._..........
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-315840050/3169/49077_
0.0104896214910.014.99104.65
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /components/com_jea/views/form/tmpl/size.php HTTP/1.0

1-316959170/1757/46819_
0.0205078596870.09.5196.70
89.208.97.185http/1.1casinofest.ca:8081GET /swagger-ui.html HTTP/1.0

2-317121630/1533/49269_
0.01017085582090.08.7699.59
89.208.97.185http/1.1catterymadisonslove.nl:8081GET /xp.php%20 HTTP/1.0

3-318139960/62/47746_
0.0104482159990.00.4989.43
89.208.97.185http/1.1casinofest.ca:8081POST /graphql/api HTTP/1.0

4-318186660/4/41167_
0.0204981232700.00.0081.41
89.208.97.185http/1.1casinofest.ca:8081POST /api/graphql HTTP/1.0

5-3-0/0/43591.
0.004756074556910.00.0086.20
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

6-3-0/0/40343.
0.004649085899210.00.0077.63
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

7-3-0/0/38598.
0.004780074248150.00.0075.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

8-3-0/0/36074.
0.004684072418510.00.0065.65
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

9-3-0/0/34051.
0.004790070768990.00.0063.25
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

10-3-0/0/31093.
0.004757062024570.00.0050.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

11-3-0/0/41649.
0.004596075068060.00.0078.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

12-3-0/0/30603.
0.004776060122470.00.0049.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

13-3-0/0/34990.
0.004852072807410.00.0061.36
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

14-3-0/0/40615.
0.004836079723620.00.0083.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

15-3-0/0/23842.
0.004894062897580.00.0044.54
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

16-3-0/0/26981.
0.004771067875520.00.0046.74
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

17-3-0/0/38140.
0.004783093447300.00.0082.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

18-3-0/0/27933.
0.004720063872100.00.0048.35
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

19-3-0/0/19279.
0.004781064652770.00.0038.72
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

20-3-0/0/21634.
0.004913066097810.00.0043.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

21-3-0/0/28916.
0.004928063793620.00.0050.99
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

22-3-0/0/19958.
0.004879066531690.00.0039.37
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

23-3-0/0/23310.
0.004782066013780.00.0044.22
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

24-3-0/0/21096.
0.004778059886600.00.0040.69
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

25-3-0/0/16927.
0.004727065490620.00.0037.80
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

26-3-0/0/15890.
0.004775061611710.00.0035.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

27-3-0/0/14540.
0.004777061342570.00.0034.58
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

28-3-0/0/19080.
0.004812073976080.00.0043.87
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

29-3-0/0/19415.
0.004789063193680.00.0038.53
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

30-3-0/0/15615.
0.004873059992180.00.0036.05
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

31-3-0/0/21321.
0.004678062341120.00.0041.64
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

32-3-0/0/20159.
0.005062058868620.00.0042.33
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

33-315149150/3643/18601W
0.000070336450.016.8151.93
89.208.97.185http/1.17-bet.casino:8081GET /build.php HTTP/1.0

34-3-0/0/13764.
0.004767061881400.00.0034.56
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

35-315149440/3600/11948_
0.000271981850.017.1044.69
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

36-3-0/0/10092.
0.004619065060340.00.0029.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

37-3-0/0/11921.
0.004184071702740.00.0032.82
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

38-3-0/0/8678.
0.004748065478380.00.0028.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

39-3-0/0/8252.
0.004801061140900.00.0028.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

40-315149530/3607/17864W
0.000073331570.017.4251.16
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /server-status HTTP/1.0

41-3-0/0/10760.
0.005026062018500.00.0030.16
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

42-3-0/0/8524.
0.004943054605590.00.0029.18
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

43-3-0/0/11971.
0.004709067803220.00.0031.71
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

44-3-0/0/11523.
0.004611070572320.00.0031.07
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

45-3-0/0/7888.
0.004668070698310.00.0026.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

46-3-0/0/11513.
0.005032062597620.00.0031.24
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

47-315151470/3610/11498W
0.000076462380.016.2142.61
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /templates/beez/index.php HTTP/1.0

48-3-0/0/6406.
0.005072053783160.00.0026.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

49-3-0/0/6010.
0.004837059983260.00.0024.96
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

50-3-0/0/9294.
0.002257059986350.00.0033.38
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

51-315151560/3584/8388_
0.0004865412450.016.8542.04
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /images/class-config.php HTTP/1.0

52-3-0/0/6704.
0.004699

Found on 2025-11-17 21:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31389d22e3389d22e3e2b7bdb5

Apache Status

Apache Server Status for osiriscasino.ca (via 127.0.0.1)

Server Version: Apache/2.4.62 (AlmaLinux) mpm-itk/2.4.7-04 OpenSSL/3.2.2 PHP/7.4.33
Server MPM: prefork
Server Built: Jan 10 2025 00:00:00

Current Time: Monday, 17-Nov-2025 21:43:56 UTC
Restart Time: Monday, 17-Nov-2025 15:19:54 UTC
Parent Server Config. Generation: 4
Parent Server MPM Generation: 3
Server uptime:  6 hours 24 minutes 1 second
Server load: 0.40 0.28 0.25
Total accesses: 2035510 - Total Traffic: 7.2 GB - Total Duration: 1305922994
CPU Usage: u3.49 s16.19 cu16725.7 cs37303 - 235% CPU load
88.3 requests/sec - 325.8 kB/second - 3776 B/request - 641.57 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 6 idle workers
_R___............................_.W....W......W...W._..........
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-315840050/3180/49088_
0.0204996226980.015.01104.68
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /wp-includes/assets/husky301.php HTTP/1.0

1-316959170/1769/46831R
0.0104878606240.09.5396.72
89.208.97.185http/1.1casinofest.ca:8081GET /debug/default/view?panel=config HTTP/1.0

2-317121630/1545/49281_
0.0004985588090.08.7899.61
89.208.97.185http/1.1casinofest.ca:8081GET /v2/_catalog HTTP/1.0

3-318139960/73/47757_
0.0105482169350.00.5489.48
89.208.97.185http/1.1casinofest.ca:8081POST /php-cgi/php-cgi.exe?%ADd+cgi.force_redirect%3D0+%ADd+disa

4-318186660/16/41179_
0.000281239530.00.0581.45
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /api/swagger.json HTTP/1.0

5-3-0/0/43591.
0.004758074556910.00.0086.20
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

6-3-0/0/40343.
0.004651085899210.00.0077.63
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

7-3-0/0/38598.
0.004782074248150.00.0075.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

8-3-0/0/36074.
0.004686072418510.00.0065.65
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

9-3-0/0/34051.
0.004792070768990.00.0063.25
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

10-3-0/0/31093.
0.004759062024570.00.0050.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

11-3-0/0/41649.
0.004598075068060.00.0078.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

12-3-0/0/30603.
0.004778060122470.00.0049.77
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

13-3-0/0/34990.
0.004854072807410.00.0061.36
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

14-3-0/0/40615.
0.004838079723620.00.0083.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

15-3-0/0/23842.
0.004896062897580.00.0044.54
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

16-3-0/0/26981.
0.004773067875520.00.0046.74
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

17-3-0/0/38140.
0.004785093447300.00.0082.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

18-3-0/0/27933.
0.004722063872100.00.0048.35
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

19-3-0/0/19279.
0.004783064652770.00.0038.72
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

20-3-0/0/21634.
0.004915066097810.00.0043.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

21-3-0/0/28916.
0.004930063793620.00.0050.99
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

22-3-0/0/19958.
0.004881066531690.00.0039.37
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

23-3-0/0/23310.
0.004784066013780.00.0044.22
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

24-3-0/0/21096.
0.004780059886600.00.0040.69
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

25-3-0/0/16927.
0.004729065490620.00.0037.80
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

26-3-0/0/15890.
0.004777061611710.00.0035.66
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

27-3-0/0/14540.
0.004779061342570.00.0034.58
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

28-3-0/0/19080.
0.004814073976080.00.0043.87
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

29-3-0/0/19415.
0.004791063193680.00.0038.53
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

30-3-0/0/15615.
0.004875059992180.00.0036.05
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

31-3-0/0/21321.
0.004680062341120.00.0041.64
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

32-3-0/0/20159.
0.005064058868620.00.0042.33
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

33-315149150/3654/18612_
0.0104870347800.016.8351.95
89.208.97.185http/1.1casinofest.ca:8081GET /v2/api-docs HTTP/1.0

34-3-0/0/13764.
0.004769061881400.00.0034.56
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

35-315149440/3611/11959W
0.000071989050.017.1144.70
89.208.97.185http/1.1catterymadisonslove.nl:8081GET /admin/user_data.php HTTP/1.0

36-3-0/0/10092.
0.004621065060340.00.0029.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

37-3-0/0/11921.
0.004186071702740.00.0032.82
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

38-3-0/0/8678.
0.004750065478380.00.0028.48
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

39-3-0/0/8252.
0.004803061140900.00.0028.79
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

40-315149530/3617/17874W
0.010073341710.017.5151.25
89.208.97.185http/1.1robinhoodbingo.casino:8081GET /wp.php HTTP/1.0

41-3-0/0/10760.
0.005028062018500.00.0030.16
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

42-3-0/0/8524.
0.004945054605590.00.0029.18
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

43-3-0/0/11971.
0.004711067803220.00.0031.71
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

44-3-0/0/11523.
0.004613070572320.00.0031.07
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

45-3-0/0/7888.
0.004670070698310.00.0026.94
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

46-3-0/0/11513.
0.005034062597620.00.0031.24
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

47-315151470/3621/11509W
0.010076472430.016.2742.67
89.208.97.185http/1.1casinofest.ca:8081GET /v3/api-docs HTTP/1.0

48-3-0/0/6406.
0.005074053783160.00.0026.59
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

49-3-0/0/6010.
0.004839059983260.00.0024.96
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

50-3-0/0/9294.
0.002259059986350.00.0033.38
127.0.0.1http/1.1fgfoxcasino.co.uk:8081OPTIONS * HTTP/1.0

51-315151560/3594/8398W
0.020065422920.016.8942.09
89.208.97.185http/1.1fgfoxcasino.co.uk:8081GET /server-status HTTP/1.0

52-3-0/0/6704.
0.0047010

Found on 2025-11-17 21:43

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: waucml.com
Port: 443
URL: https://waucml.com

First seen 2025-07-02 00:47
- Severity: low
  Fingerprint: 5f32cf5d6962f09c31c2f0b631c2f0b6c2601584de0b94643ed5ee3f3087ab1c
```
Found 28 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-07-02 00:47
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.218.237
Domain: kare4444.online
Port: 80
URL: http://kare4444.online

First seen 2024-10-07 21:09
Last seen 2025-04-22 06:32
Open for 196 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d239a86d2995353cb4acfbf33aae

Found 128 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/moneyComing
/assets/moneyComing/img
/assets/moneyComing/img/10000x.png
/assets/moneyComing/img/all_money.png
/assets/moneyComing/img/app_pg.png
/assets/moneyComing/img/app_pg_button.png
/assets/moneyComing/img/back.png
/assets/moneyComing/img/banner1_tag.png
/assets/moneyComing/img/bet_image.png
/assets/moneyComing/img/big_win.png
/assets/moneyComing/img/button_icons.png
/assets/moneyComing/img/ccbg.png
/assets/moneyComing/img/diss_win.png
/assets/moneyComing/img/flash_bomb.png
/assets/moneyComing/img/frame_1.png
/assets/moneyComing/img/frame_2.png
/assets/moneyComing/img/has_win.png
/assets/moneyComing/img/layout_pg.png
/assets/moneyComing/img/light_a.png
/assets/moneyComing/img/light_b.png
/assets/moneyComing/img/light_c.png
/assets/moneyComing/img/light_d.png
/assets/moneyComing/img/light_e.png
/assets/moneyComing/img/light_f.png
/assets/moneyComing/img/light_g.png
/assets/moneyComing/img/light_h.png
/assets/moneyComing/img/line_five.png
/assets/moneyComing/img/line_one.png
/assets/moneyComing/img/line_zero.png
/assets/moneyComing/img/loading.png
/assets/moneyComing/img/loading_banner1.png
/assets/moneyComing/img/loading_banner2.png
/assets/moneyComing/img/lock_line.png
/assets/moneyComing/img/lock_plus.png
/assets/moneyComing/img/mega_win.png
/assets/moneyComing/img/money_coming.png
/assets/moneyComing/img/money_coming_bg.png
/assets/moneyComing/img/money_ff.png
/assets/moneyComing/img/numbers.png
/assets/moneyComing/img/numbers1.png
/assets/moneyComing/img/reflective.png
/assets/moneyComing/img/roulette.png
/assets/moneyComing/img/solt.png
/assets/moneyComing/img/solt_frame.png
/assets/moneyComing/img/special.png
/assets/moneyComing/img/stop_icon.png
/assets/moneyComing/img/super_win.png
/assets/moneyComing/json
/assets/moneyComing/json/all_money.json
/assets/moneyComing/json/bet_image.json
/assets/moneyComing/json/button_icons.json
/assets/moneyComing/json/money_coming_bg.json
/assets/moneyComing/json/numbers.json
/assets/moneyComing/json/numbers1.json
/assets/moneyComing/json/roulette.json
/assets/moneyComing/json/solt.json
/assets/moneyComing/json/special.json
/index.html
/maintain
/otherGames
/otherGames/crazyEight
/otherGames/crazyEight/css
/otherGames/crazyEight/js
/otherGames/crazyEight/js/lib
/otherGames/crazyEight/js/social
/otherGames/crazyEight/play.html
/otherGames/crazyEight/sounds
/otherGames/crazyEight/sprites
/otherGames/crazyEight/sprites/_oButBlue.png
/otherGames/crazyEight/sprites/_oButGreen.png
/otherGames/crazyEight/sprites/_oButRed.png
/otherGames/crazyEight/sprites/_oButYellow.png
/otherGames/crazyEight/sprites/arrow.png
/otherGames/crazyEight/sprites/audio_icon.png
/otherGames/crazyEight/sprites/bg_game.jpg
/otherGames/crazyEight/sprites/bg_menu.jpg
/otherGames/crazyEight/sprites/bg_select_players.jpg
/otherGames/crazyEight/sprites/bg_tooltip.png
/otherGames/crazyEight/sprites/but_action_cards.png
/otherGames/crazyEight/sprites/but_draw_one.png
/otherGames/crazyEight/sprites/but_exit.png
/otherGames/crazyEight/sprites/but_exit_big.png
/otherGames/crazyEight/sprites/but_fullscreen.png
/otherGames/crazyEight/sprites/but_home.png
/otherGames/crazyEight/sprites/but_info.png
/otherGames/crazyEight/sprites/but_keep_drawing.png
/otherGames/crazyEight/sprites/but_next.png
/otherGames/crazyEight/sprites/but_normal_mode.png
/otherGames/crazyEight/sprites/but_p2.png
/otherGames/crazyEight/sprites/but_p3.png
/otherGames/crazyEight/sprites/but_p4.png
/otherGames/crazyEight/sprites/but_play.png
/otherGames/crazyEight/sprites/but_restart.png
/otherGames/crazyEight/sprites/but_show.png
/otherGames/crazyEight/sprites/but_skip.png
/otherGames/crazyEight/sprites/but_uno.png
/otherGames/crazyEight/sprites/but_yes_big.png
/otherGames/crazyEight/sprites/cards0.png
/otherGames/crazyEight/sprites/cards1.png
/otherGames/crazyEight/sprites/change_clockwise.png
/otherGames/crazyEight/sprites/change_color.png
/otherGames/crazyEight/sprites/cloud.png
/otherGames/crazyEight/sprites/colors.png
/otherGames/crazyEight/sprites/credits_panel.png
/otherGames/crazyEight/sprites/ctl_logo.png
/otherGames/crazyEight/sprites/cup_icon.png
/otherGames/crazyEight/sprites/draw_2.png
/otherGames/crazyEight/sprites/draw_4.png
/otherGames/crazyEight/sprites/finger.png
/otherGames/crazyEight/sprites/info_label.png
/otherGames/crazyEight/sprites/line_players.png
/otherGames/crazyEight/sprites/local_but.png
/otherGames/crazyEight/sprites/logo_menu.png
/otherGames/crazyEight/sprites/msg_box.png
/otherGames/crazyEight/sprites/multiplayer_but.png

Found on 2025-04-22 06:32

Severity: medium
Fingerprint: 5f32cf5d6962f09c5a2cc21a5a2cc21a447b07b68210cf6ae188de491493ce2b

Found 82 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/moneyComing
/assets/moneyComing/img
/assets/moneyComing/img/10000x.png
/assets/moneyComing/img/all_money.png
/assets/moneyComing/img/app_pg.png
/assets/moneyComing/img/app_pg_button.png
/assets/moneyComing/img/back.png
/assets/moneyComing/img/banner1_tag.png
/assets/moneyComing/img/bet_image.png
/assets/moneyComing/img/big_win.png
/assets/moneyComing/img/button_icons.png
/assets/moneyComing/img/ccbg.png
/assets/moneyComing/img/diss_win.png
/assets/moneyComing/img/flash_bomb.png
/assets/moneyComing/img/frame_1.png
/assets/moneyComing/img/frame_2.png
/assets/moneyComing/img/has_win.png
/assets/moneyComing/img/layout_pg.png
/assets/moneyComing/img/light_a.png
/assets/moneyComing/img/light_b.png
/assets/moneyComing/img/light_c.png
/assets/moneyComing/img/light_d.png
/assets/moneyComing/img/light_e.png
/assets/moneyComing/img/light_f.png
/assets/moneyComing/img/light_g.png
/assets/moneyComing/img/light_h.png
/assets/moneyComing/img/line_five.png
/assets/moneyComing/img/line_one.png
/assets/moneyComing/img/line_zero.png
/assets/moneyComing/img/loading.png
/assets/moneyComing/img/loading_banner1.png
/assets/moneyComing/img/loading_banner2.png
/assets/moneyComing/img/lock_line.png
/assets/moneyComing/img/lock_plus.png
/assets/moneyComing/img/mega_win.png
/assets/moneyComing/img/money_coming.png
/assets/moneyComing/img/money_coming_bg.png
/assets/moneyComing/img/money_ff.png
/assets/moneyComing/img/numbers.png
/assets/moneyComing/img/numbers1.png
/assets/moneyComing/img/reflective.png
/assets/moneyComing/img/roulette.png
/assets/moneyComing/img/solt.png
/assets/moneyComing/img/solt_frame.png
/assets/moneyComing/img/special.png
/assets/moneyComing/img/stop_icon.png
/assets/moneyComing/img/super_win.png
/assets/moneyComing/json
/assets/moneyComing/json/all_money.json
/assets/moneyComing/json/bet_image.json
/assets/moneyComing/json/button_icons.json
/assets/moneyComing/json/money_coming_bg.json
/assets/moneyComing/json/numbers.json
/assets/moneyComing/json/numbers1.json
/assets/moneyComing/json/roulette.json
/assets/moneyComing/json/solt.json
/assets/moneyComing/json/special.json
/index.html
/maintain
/otherGames
/otherGames/crazyEight
/otherGames/crazyEight/css
/otherGames/crazyEight/js
/otherGames/crazyEight/js/lib
/otherGames/crazyEight/js/social
/otherGames/crazyEight/play.html
/otherGames/crazyEight/sounds
/otherGames/crazyEight/sprites
/pwa-sw.js

Found on 2025-04-03 22:35

Severity: medium
Fingerprint: 5f32cf5d6962f09cef4a0ce8ef4a0ce8da7f78b8ebd88d9cc68e595b05e00527

Found 80 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/moneyComing
/assets/moneyComing/img
/assets/moneyComing/img/10000x.png
/assets/moneyComing/img/all_money.png
/assets/moneyComing/img/app_pg.png
/assets/moneyComing/img/app_pg_button.png
/assets/moneyComing/img/back.png
/assets/moneyComing/img/banner1_tag.png
/assets/moneyComing/img/bet_image.png
/assets/moneyComing/img/big_win.png
/assets/moneyComing/img/button_icons.png
/assets/moneyComing/img/ccbg.png
/assets/moneyComing/img/diss_win.png
/assets/moneyComing/img/flash_bomb.png
/assets/moneyComing/img/frame_1.png
/assets/moneyComing/img/frame_2.png
/assets/moneyComing/img/has_win.png
/assets/moneyComing/img/layout_pg.png
/assets/moneyComing/img/light_a.png
/assets/moneyComing/img/light_b.png
/assets/moneyComing/img/light_c.png
/assets/moneyComing/img/light_d.png
/assets/moneyComing/img/light_e.png
/assets/moneyComing/img/light_f.png
/assets/moneyComing/img/light_g.png
/assets/moneyComing/img/light_h.png
/assets/moneyComing/img/line_five.png
/assets/moneyComing/img/line_one.png
/assets/moneyComing/img/line_zero.png
/assets/moneyComing/img/loading.png
/assets/moneyComing/img/loading_banner1.png
/assets/moneyComing/img/loading_banner2.png
/assets/moneyComing/img/lock_line.png
/assets/moneyComing/img/lock_plus.png
/assets/moneyComing/img/mega_win.png
/assets/moneyComing/img/money_coming.png
/assets/moneyComing/img/money_coming_bg.png
/assets/moneyComing/img/money_ff.png
/assets/moneyComing/img/numbers.png
/assets/moneyComing/img/numbers1.png
/assets/moneyComing/img/reflective.png
/assets/moneyComing/img/roulette.png
/assets/moneyComing/img/solt.png
/assets/moneyComing/img/solt_frame.png
/assets/moneyComing/img/special.png
/assets/moneyComing/img/stop_icon.png
/assets/moneyComing/img/super_win.png
/assets/moneyComing/json
/assets/moneyComing/json/all_money.json
/assets/moneyComing/json/bet_image.json
/assets/moneyComing/json/button_icons.json
/assets/moneyComing/json/money_coming_bg.json
/assets/moneyComing/json/numbers.json
/assets/moneyComing/json/numbers1.json
/assets/moneyComing/json/roulette.json
/assets/moneyComing/json/solt.json
/assets/moneyComing/json/special.json
/index.html
/maintain
/otherGames
/otherGames/crazyEight
/otherGames/crazyEight/css
/otherGames/crazyEight/js
/otherGames/crazyEight/play.html
/otherGames/crazyEight/sounds
/otherGames/crazyEight/sprites
/pwa-sw.js

Found on 2025-04-03 12:09

Severity: high
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d239a86d2995353cb4ace5e20df2

Found 128 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/cashback
/assets/cashback/free.png
/assets/cashback/money.png
/assets/common
/assets/common/auto.c092991.png
/assets/common/badge.png
/assets/common/battle.mp3
/assets/common/battle.png
/assets/common/bets.png
/assets/common/bonus.png
/assets/common/bonus_1.png
/assets/common/bonus_dialog_bg.png
/assets/common/bottom_logo.svg
/assets/common/category_all.png
/assets/common/category_fishing.png
/assets/common/category_house.png
/assets/common/category_live.png
/assets/common/category_slot.png
/assets/common/category_special.png
/assets/common/chat.png
/assets/common/companies
/assets/common/coupon_pic.png
/assets/common/cursor.svg
/assets/common/default_avatar.png
/assets/common/face_recognition.png
/assets/common/facebook_logo.png
/assets/common/finance
/assets/common/finance/buyCrypto.png
/assets/common/finance/cryptoDeposit.png
/assets/common/finance/cryptoWithdraw.png
/assets/common/finance/interest.png
/assets/common/finger.png
/assets/common/game.svg
/assets/common/game_maintenance.svg
/assets/common/gameRecommend
/assets/common/gameRecommend/bg.png
/assets/common/gameRecommend/borderBg.png
/assets/common/gameRecommend/p.png
/assets/common/gameRecommend/progress.png
/assets/common/gameRecommend/progressBg.png
/assets/common/gift.png
/assets/common/gold.png
/assets/common/google_cloud.png
/assets/common/google_delete.png
/assets/common/google_introduction.png
/assets/common/google_lock.png
/assets/common/google_share.png
/assets/common/google_shield.png
/assets/common/googlePlay.svg
/assets/common/hand_click.png
/assets/common/home.png
/assets/common/image157.png
/assets/common/income.png
/assets/common/invite.png
/assets/common/invitedPerson.png
/assets/common/menu_turntable_bg.png
/assets/common/newUserInfo
/assets/common/newUserInfo/bg.png
/assets/common/newUserInfo/mobileBg.png
/assets/common/newUserInfo/money.png
/assets/common/notice.mp3
/assets/common/notice_animation.png
/assets/common/one.svg
/assets/common/placeholder.svg
/assets/common/poily.png
/assets/common/promo_btn.png
/assets/common/promo_chest.png
/assets/common/rebates.png
/assets/common/reCAPTCHA.svg
/assets/common/recharge_pic.svg
/assets/common/rules
/assets/common/rules/ball_step1.png
/assets/common/rules/crash_step1.png
/assets/common/rules/crash_step2.png
/assets/common/rules/dice_step1.png
/assets/common/rules/dice_step2.png
/assets/common/rules/double_step1.png
/assets/common/rules/double_step2.png
/assets/common/rules/fruitBoumb_step1.png
/assets/common/rules/keno_step1.png
/assets/common/rules/keno_step2.png
/assets/common/rules/limbo_step1.png
/assets/common/rules/limbo_step2.png
/assets/common/rules/luckycolour_step1.png
/assets/common/rules/luckycolour_step2.png
/assets/common/rules/mines_step1.png
/assets/common/rules/mines_step2.png
/assets/common/rules/plinko_step1.png
/assets/common/rules/plinko_step2.png
/assets/common/rules/ring_step1.png
/assets/common/rules/ring_step2.png
/assets/common/rules/rowdouble_step1.gif
/assets/common/rules/stairs_step1.png
/assets/common/rules/stairs_step2.png
/assets/common/rules/stairs_step3.png
/assets/common/rules/tower_step1.png
/assets/common/rules/tower_step2.png
/assets/common/rules/tower_step3.png
/assets/common/salary.png
/assets/common/service.svg
/assets/common/share.png
/assets/common/sms.png
/assets/common/statistics.png
/assets/common/taskItemBg.png
/assets/common/three.svg
/assets/common/titleBg.png
/assets/common/two.svg
/assets/common/vip_all_box_bg.png
/assets/common/vip_all_divider_bg.png
/assets/common/vip_all_header.png
/assets/common/vip_all_rank_bg.png
/assets/common/vip_level_bg.png
/assets/common/wallet.gif
/assets/crash
/assets/design

Found on 2025-03-22 10:39

Severity: high
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d239a86d2995353cb4ac4b2dfa3a

Found 128 files trough .DS_Store spidering:

/assets
/assets/ball
/assets/ball/ballFive.png
/assets/ball/ballFour.png
/assets/ball/ballOne.png
/assets/ball/ballSeven.png
/assets/ball/ballSix.png
/assets/ball/ballThree.png
/assets/ball/ballTwo.png
/assets/ball/lose.mp3
/assets/ball/pop.mp3
/assets/ball/spin.mp3
/assets/ball/win.mp3
/assets/cashback
/assets/cashback/free.png
/assets/cashback/money.png
/assets/common
/assets/common/auto.c092991.png
/assets/common/badge.png
/assets/common/battle.mp3
/assets/common/battle.png
/assets/common/bets.png
/assets/common/bonus.png
/assets/common/bonus_1.png
/assets/common/bonus_dialog_bg.png
/assets/common/bottom_logo.svg
/assets/common/category_all.png
/assets/common/category_fishing.png
/assets/common/category_house.png
/assets/common/category_live.png
/assets/common/category_slot.png
/assets/common/category_special.png
/assets/common/chat.png
/assets/common/companies
/assets/common/coupon_pic.png
/assets/common/cursor.svg
/assets/common/default_avatar.png
/assets/common/facebook_logo.png
/assets/common/finance
/assets/common/finance/buyCrypto.png
/assets/common/finance/cryptoDeposit.png
/assets/common/finance/cryptoWithdraw.png
/assets/common/finance/interest.png
/assets/common/finger.png
/assets/common/game.svg
/assets/common/game_maintenance.svg
/assets/common/gameRecommend
/assets/common/gameRecommend/bg.png
/assets/common/gameRecommend/borderBg.png
/assets/common/gameRecommend/p.png
/assets/common/gameRecommend/progress.png
/assets/common/gameRecommend/progressBg.png
/assets/common/gift.png
/assets/common/gold.png
/assets/common/google_cloud.png
/assets/common/google_delete.png
/assets/common/google_introduction.png
/assets/common/google_lock.png
/assets/common/google_share.png
/assets/common/googlePlay.svg
/assets/common/hand_click.png
/assets/common/home.png
/assets/common/image157.png
/assets/common/income.png
/assets/common/invite.png
/assets/common/invitedPerson.png
/assets/common/menu_turntable_bg.png
/assets/common/newUserInfo
/assets/common/newUserInfo/bg.png
/assets/common/newUserInfo/mobileBg.png
/assets/common/newUserInfo/money.png
/assets/common/notice.mp3
/assets/common/notice_animation.png
/assets/common/one.svg
/assets/common/placeholder.svg
/assets/common/poily.png
/assets/common/promo_btn.png
/assets/common/promo_chest.png
/assets/common/rebates.png
/assets/common/reCAPTCHA.svg
/assets/common/recharge_pic.svg
/assets/common/rules
/assets/common/rules/ball_step1.png
/assets/common/rules/crash_step1.png
/assets/common/rules/crash_step2.png
/assets/common/rules/dice_step1.png
/assets/common/rules/dice_step2.png
/assets/common/rules/double_step1.png
/assets/common/rules/double_step2.png
/assets/common/rules/fruitBoumb_step1.png
/assets/common/rules/keno_step1.png
/assets/common/rules/keno_step2.png
/assets/common/rules/limbo_step1.png
/assets/common/rules/limbo_step2.png
/assets/common/rules/luckycolour_step1.png
/assets/common/rules/luckycolour_step2.png
/assets/common/rules/mines_step1.png
/assets/common/rules/mines_step2.png
/assets/common/rules/plinko_step1.png
/assets/common/rules/plinko_step2.png
/assets/common/rules/ring_step1.png
/assets/common/rules/ring_step2.png
/assets/common/rules/rowdouble_step1.gif
/assets/common/rules/stairs_step1.png
/assets/common/rules/stairs_step2.png
/assets/common/rules/stairs_step3.png
/assets/common/rules/tower_step1.png
/assets/common/rules/tower_step2.png
/assets/common/rules/tower_step3.png
/assets/common/salary.png
/assets/common/service.svg
/assets/common/share.png
/assets/common/sms.png
/assets/common/statistics.png
/assets/common/taskItemBg.png
/assets/common/three.svg
/assets/common/titleBg.png
/assets/common/two.svg
/assets/common/vip_all_box_bg.png
/assets/common/vip_all_divider_bg.png
/assets/common/vip_all_header.png
/assets/common/vip_all_rank_bg.png
/assets/common/vip_level_bg.png
/assets/common/wallet.gif
/assets/crash
/assets/design
/assets/dice
/assets/double

Found on 2024-11-02 01:18

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: c42bwtz.top
Port: 80
URL: http://c42bwtz.top

First seen 2025-03-07 02:43
Last seen 2025-03-26 19:16
Open for 19 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b77ef067ffe60b3e85077cd005
```
Found 5 files trough .DS_Store spidering:

/assets
/img
/img/avatar
/img/error
/img/goods
```
  Found on 2025-03-26 19:16
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: c42bwtz.top
Port: 443
URL: https://c42bwtz.top

First seen 2025-03-07 02:43
Last seen 2025-03-20 10:31
Open for 13 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b77ef067ffe60b3e85077cd005
```
Found 5 files trough .DS_Store spidering:

/assets
/img
/img/avatar
/img/error
/img/goods
```
  Found on 2025-03-20 10:31
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: jeqewao.space
Port: 443
URL: https://jeqewao.space

First seen 2024-07-24 21:26
Last seen 2025-02-06 05:16
Open for 196 days

Severity: medium
Fingerprint: 5f32cf5d6962f09cccd847a3ccd847a327151e2d369d34d6acb327840d05e074

Found 43 files trough .DS_Store spidering:

/b.html
/b_assets
/b_assets/images
/b_assets/images/1.png
/b_assets/images/17.png
/b_assets/images/2.png
/b_assets/images/3.png
/b_assets/images/4.png
/b_assets/images/5.png
/b_assets/images/6.png
/b_assets/images/aar.svg
/b_assets/images/av1.png
/b_assets/images/av10.png
/b_assets/images/av13.png
/b_assets/images/av2.png
/b_assets/images/av3.png
/b_assets/images/av4.png
/b_assets/images/av5.jpg
/b_assets/images/av7.png
/b_assets/images/av8.png
/b_assets/images/big.jpg
/b_assets/images/box_c_2.png
/b_assets/images/box_d.png
/b_assets/images/dec.jpg
/b_assets/images/doc.png
/b_assets/images/fit.jpg
/b_assets/images/fit2.png
/b_assets/images/fitonormal.png
/b_assets/images/happy-dance.gif
/b_assets/images/mob.jpg
/b_assets/images/prod-img.png
/b_assets/images/r1.png
/b_assets/images/r2.jpeg
/b_assets/images/r2.jpg
/b_assets/images/r3.jpeg
/b_assets/images/r4.jpeg
/b_assets/images/r5.jpeg
/b_assets/images/r6.jpeg
/b_assets/images/r6.png
/b_assets/images/r7.jpeg
/b_assets/jquery.js
/b_assets/script.js
/b_assets/style.css

Found on 2025-02-06 05:16

Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
Found on 2024-08-26 04:34

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: survey.emacsin.com
Port: 443
URL: https://survey.emacsin.com

First seen 2024-03-21 23:11
Last seen 2024-10-09 00:22
Open for 201 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2024-10-09 00:22
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: dapil-2.emacsin.com
Port: 443
URL: https://dapil-2.emacsin.com

First seen 2023-10-05 17:05
Last seen 2024-10-08 05:17
Open for 368 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2024-10-08 05:17
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.218.237
Domain: bwwp.ca
Port: 443
URL: https://bwwp.ca

First seen 2024-02-24 20:27
Last seen 2024-07-02 16:17
Open for 128 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7f83c6b18

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 02-Jul-2024 16:17:03 UTC
Restart Time: Monday, 17-Jun-2024 19:58:46 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  14 days 20 hours 18 minutes 17 seconds
Server load: 0.51 0.52 0.57
Total accesses: 12463277 - Total Traffic: 9.0 GB
CPU Usage: u63.67 s92.69 cu0 cs0 - .0122% CPU load
9.72 requests/sec - 7.4 kB/second - 775 B/request
14 requests currently being processed, 3 idle workers
_K_.KKKKKW..KKK._KK.K.K.........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-04073120/8/605482_
0.370170.00.01446.13
10.161.117.187172.17.0.3:80GET /rss.php HTTP/1.1

1-04072981/85/601643K
1.341121.10.06446.03
10.161.117.218172.17.0.3:80GET /client_secrets.json HTTP/1.1

2-04073260/0/588829_
0.2702820.00.00437.98
10.161.117.187172.17.0.3:80NULL

3-0-0/0/584617.
3.022300.00.00431.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

4-04073072/28/585683K
0.660111.60.02433.67
10.161.117.192172.17.0.3:80GET / HTTP/1.1

5-04071772/209/573801K
3.060111.30.15425.35
10.161.117.158172.17.0.3:80GET /wp-includes/js/tinymce/skins/lightgray/fonts/about.php HTT

6-040730068/103/572969K
1.470949.60.07425.01
10.161.117.218172.17.0.3:80GET /.tmb/wp-login.php HTTP/1.1

7-04073091/32/558014K
0.610100.80.02411.20
10.161.117.192172.17.0.3:80GET /wp-content/uploads/2016/11/final-logo2.png HTTP/1.1

8-04072511/82/560674K
1.351110.70.06416.60
10.161.117.253172.17.0.3:80GET / HTTP/1.1

9-04073140/20/539172W
0.53000.00.01399.44
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

10-0-0/0/544977.
1.536110.00.00402.56
10.161.117.192172.17.0.3:80HEAD / HTTP/1.1

11-0-0/0/528847.
0.503800.00.00392.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-04073151/31/514736K
0.60190.70.02381.38
10.161.117.192172.17.0.3:80GET / HTTP/1.1

13-04072801/73/502221K
1.151230.80.04373.17
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

14-04073161/23/486325K
0.970111.10.01360.49
10.161.117.218172.17.0.3:80GET /user-config.json HTTP/1.1

15-0-0/0/471146.
2.5939110.00.00349.07
10.161.117.218172.17.0.3:80GET /favicon.ico HTTP/1.1

16-04072820/39/457637_
0.700170.00.02338.84
10.161.117.218172.17.0.3:80NULL

17-04073171/25/434365K
0.584101.10.02320.91
10.161.117.218172.17.0.3:80GET /70/creation-site-vitrine HTTP/1.1

18-04073031/65/402512K
1.043120.80.04297.29
10.161.117.158172.17.0.3:80GET / HTTP/1.1

19-0-0/0/372807.
0.3129120.00.00275.21
10.161.117.158172.17.0.3:80NULL

20-04072371/122/332743K
1.840111.00.09245.47
10.161.117.187172.17.0.3:80GET / HTTP/1.1

21-0-0/0/304867.
0.4310200.00.00224.92
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-04073058/68/257415K
1.150116.00.06188.99
10.161.117.218172.17.0.3:80GET /wp-content/plugins/core/include.php HTTP/1.1

23-0-0/0/215742.
0.46236110.00.00158.86
10.161.117.158172.17.0.3:80NULL

24-0-0/0/178888.
0.40242130.00.00131.29
10.161.117.253172.17.0.3:80HEAD /home HTTP/1.1

25-0-0/0/153711.
0.4119800.00.00113.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/123051.
0.28269130.00.0090.30
10.161.117.253172.17.0.3:80NULL

27-0-0/0/93782.
0.291898130.00.0069.11
10.161.117.218172.17.0.3:80GET / HTTP/1.1

28-0-0/0/74647.
0.51287400.00.0055.19
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/58802.
0.422880120.00.0043.97
10.161.117.253172.17.0.3:80NULL

30-0-0/0/49027.
0.46295200.00.0035.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/34260.
0.60293700.00.0025.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/27272.
0.302941160.00.0020.09
10.161.117.253

33-0-0/0/16079.
0.002959300.00.0011.83
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/13035.
2.142939000.00.009.49
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/8889.
0.4533526130.00.006.50
10.161.117.187

36-0-0/0/4928.
0.333359800.00.003.67
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/4363.
0.333361600.00.003.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/3001.
0.283360800.00.002.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/3629.
0.25336182590.00.002.68
10.161.117.187172.17.0.3:80NULL

40-0-0/0/2612.
1.563316000.00.001.98
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/1611.
0.8333392120.00.001.21
10.161.117.187172.17.0.3:80GET / HTTP/1.1

42-0-0/0/2155.
0.273361500.00.001.55
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/3103.
1.463334900.00.002.29
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/1419.
0.59407206160.00.001.05
10.161.117.253

45-0-0/0/1097.
1.8740706110.00.000.78
10.161.117.192172.17.0.3:80GET / HTTP/1.1

46-0-0/0/1094.
0.2640705120.00.000.79
10.161.117.218172.17.0.3:80NULL

47-0-0/0/833.
2.3640652210.00.000.62
10.161.117.192172.17.0.3:80GET / HTTP/1.1

48-0-0/0/905.
0.294080400.00.000.66
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/819.
0.441650564730.00.000.61
10.161.117.253172.17.0.3:80GET /atomlib.php HTTP/1.1

50-0-0/0/167.
0.2716504100.00.000.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/104.
0.241933072580.00.000.08
10.161.117.158172.17.0.3:80GET / HTTP/1.1

52-0-0/0/53.
0.9019329112270.00.000.05
10.161.117.192172.17.0.3:80GET / HTTP/1.1

53-0-0/0/164.
2.04193259150.00.000.12
10.161.117.158172.17.0.3:80NULL

54-0-0/0/64.
1.7419311700.00.000.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/170.
0.301933063130.00.000.12
10.161.117.187172.17.0.3:80NULL

56-0-0/0/68.
1.0119326300.00.000.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/66.
2.5119317800.00.000.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/30.
2.34193261130.00.000.03
10.161.117.253172.17.0.3:80GET / HTTP/1.1

59-0-0/0/173.
2.2919327300.00.000.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/14.
3.29193269130.00.000.01
10.161.117.158172.17.0.3:80NULL

61-0-0/0/268.
2.24193283130.00.000.19
10.161.117.218172.17.0.3:80GET / HTTP/1.1

62-0-0/0/26.
2.79193221130.00.000.02
10.161.117.192172.17.0.3:80NULL

Found on 2024-07-02 16:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b760382eb1

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 30-Jun-2024 20:51:20 UTC
Restart Time: Monday, 17-Jun-2024 19:57:05 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  13 days 54 minutes 14 seconds
Server load: 1.26 1.06 0.86
Total accesses: 11447866 - Total Traffic: 8.3 GB
CPU Usage: u35.2 s3.99 cu0 cs0 - .00348% CPU load
10.2 requests/sec - 7.7 kB/second - 775 B/request
8 requests currently being processed, 9 idle workers
KK_K.__._K_.K_..K.W_C__.........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03615811/540/555743K
3.71270.90.40409.22
10.161.117.158172.17.0.3:80GET / HTTP/1.1

1-03617531/3/547320K
0.23090.80.00405.99
10.161.117.218172.17.0.3:80GET / HTTP/1.1

2-03616410/264/546111_
1.90090.00.19403.63
10.161.117.187

3-03617551/3/538498K
0.21261.00.00398.19
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

4-0-0/0/534933.
0.202770.00.00397.11
10.161.117.218172.17.0.3:80NULL

5-03617450/102/524890_
1.02060.00.10389.68
10.161.117.218172.17.0.3:80NULL

6-03616670/203/519658_
1.59270.00.15384.79
10.161.117.218172.17.0.3:80POST /wp-cron.php?doing_wp_cron=1719780677.37924790382385253906

7-0-0/0/518445.
0.263100.00.00383.90
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

8-03616570/161/499047_
1.29170.00.13370.43
10.161.117.158172.17.0.3:80GET / HTTP/1.1

9-036168764/199/500207K
1.470746.50.14367.89
10.161.117.192172.17.0.3:80GET /wp-includes/customize/themes.php HTTP/1.1

10-03617320/11/488614_
0.27270.00.01360.56
10.161.117.192172.17.0.3:80NULL

11-0-0/0/477054.
0.212400.00.00353.29
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-03617151/16/472407K
0.31171.10.02348.69
10.161.117.192172.17.0.3:80GET /wp-admin/maint/about.php HTTP/1.1

13-03617470/7/457582_
0.28090.00.00337.90
10.161.117.187172.17.0.3:80GET /360 HTTP/1.1

14-0-0/0/444126.
0.213060.00.00328.97
10.161.117.158172.17.0.3:80NULL

15-0-0/0/435212.
0.21282390.00.00321.35
10.161.117.218172.17.0.3:80NULL

16-03617361/9/418169K
0.25160.90.01309.70
10.161.117.253172.17.0.3:80GET /wp-admin/images/admin.php HTTP/1.1

17-0-0/0/399090.
0.232970.00.00294.36
10.161.117.218172.17.0.3:80GET /wp-content/uploads/2014/09/scripts/images/responsive/heade

18-03616890/40/375160W
0.46000.00.04277.98
10.161.117.187172.17.0.3:80GET /server-status HTTP/1.1

19-03617490/4/339550_
0.24260.00.00250.56
10.161.117.187172.17.0.3:80GET / HTTP/1.1

20-03617381/9/320304C
0.27050.90.01236.59
10.161.117.158172.17.0.3:80NULL

21-03617500/6/278849_
0.26070.00.01205.79
10.161.117.158

22-03617510/4/247473_
0.24170.00.00182.76
10.161.117.158172.17.0.3:80NULL

23-0-0/0/208845.
0.2476080.00.00154.16
10.161.117.253

24-0-0/0/170142.
0.227592320.00.00125.84
10.161.117.253172.17.0.3:80NULL

25-0-0/0/134432.
0.3170760.00.0099.56
10.161.117.253172.17.0.3:80GET / HTTP/1.0

26-0-0/0/112925.
0.0077400.00.0082.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/84471.
0.9268970.00.0061.57
10.161.117.187172.17.0.3:80NULL

28-0-0/0/73893.
0.4573800.00.0054.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/56601.
1.31188800.00.0041.52
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/48238.
0.77799380.00.0035.38
10.161.117.218172.17.0.3:80GET / HTTP/1.1

31-0-0/0/31531.
0.2281312310.00.0023.03
10.161.117.218172.17.0.3:80NULL

32-0-0/0/24223.
0.22813000.00.0017.78
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/17372.
0.26867270.00.0012.44
10.161.117.218

34-0-0/0/12603.
0.27867300.00.009.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/5453.
0.2087082110.00.004.07
10.161.117.187172.17.0.3:80NULL

36-0-0/0/3076.
0.2187152250.00.002.33
10.161.117.158172.17.0.3:80GET / HTTP/1.1

37-0-0/0/3011.
0.25869460.00.002.23
10.161.117.187172.17.0.3:80NULL

38-0-0/0/3483.
0.30863500.00.002.56
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/2171.
0.22870460.00.001.59
10.161.117.253172.17.0.3:80GET / HTTP/1.1

40-0-0/0/1337.
0.22868900.00.001.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/1996.
0.25869600.00.001.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/2461.
1.69841000.00.001.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/2613.
1.76856470.00.001.96
10.161.117.158172.17.0.3:80GET /content.php HTTP/1.1

44-0-0/0/2238.
0.27866290.00.001.72
10.161.117.253172.17.0.3:80GET / HTTP/1.1

45-0-0/0/1242.
0.21869300.00.000.91
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/1520.
0.27865900.00.001.08
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/271.
0.22869700.00.000.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/1053.
0.26867190.00.000.71
10.161.117.187172.17.0.3:80GET / HTTP/1.1

49-0-0/0/77.
0.00871300.00.000.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/69.
0.233694600.00.000.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/206.
0.233696100.00.000.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/51.
0.003697500.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/126.
0.723667870.00.000.10
10.161.117.253172.17.0.3:80GET / HTTP/1.1

54-0-0/0/26.
0.243695060.00.000.02
10.161.117.192172.17.0.3:80NULL

55-0-0/0/48.
0.233697190.00.000.03
10.161.117.192172.17.0.3:80GET / HTTP/1.1

56-0-0/0/170.
0.283691960.00.000.13
10.161.117.192172.17.0.3:80NULL

57-0-0/0/11.
0.2536971150.00.000.01
10.161.117.187172.17.0.3:80GET / HTTP/1.1

58-0-0/0/38.
0.21369672250.00.000.03
10.161.117.187172.17.0.3:80NULL

59-0-0/0/188.
1.413659300.00.000.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/157.
0.913693700.00.000.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/49.
0.343691800.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

62-0-0/0/303.
0.663684190.00.000.22
10.161.117.218172.17.0.3:80NULL

63-0-0/0/100.
0.763687400.00.000.08
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

64-0</

Found on 2024-06-30 20:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7549c7627

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 28-Jun-2024 23:05:19 UTC
Restart Time: Monday, 17-Jun-2024 19:57:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 days 3 hours 7 minutes 29 seconds
Server load: 0.61 0.66 0.77
Total accesses: 9772402 - Total Traffic: 7.1 GB
CPU Usage: u51.03 s6.75 cu0 cs0 - .00601% CPU load
10.2 requests/sec - 7.7 kB/second - 775 B/request
9 requests currently being processed, 6 idle workers
__KWK_.KK_..C.._K_...KC.........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03143010/79/467312_
1.18290.00.06347.34
10.161.117.158172.17.0.3:80GET /wp-content/plugins/royal-elementor-addons/readme.txt HTTP/

1-03143520/43/459291_
0.801120.00.03341.98
10.161.117.158172.17.0.3:80NULL

2-03143981/26/459270K
0.662110.90.02341.57
10.161.117.253172.17.0.3:80GET / HTTP/1.1

3-03144040/3/454919W
0.33000.00.00336.55
10.161.117.187172.17.0.3:80GET /server-status HTTP/1.1

4-03143922/13/451456K
0.470131.80.01333.15
10.161.117.192172.17.0.3:80POST /wp-json/tdw/save_css HTTP/1.1

5-03143710/15/442536_
0.46100.00.01327.94
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

6-0-0/0/427023.
3.7124180.00.00317.12
10.161.117.218172.17.0.3:80GET /gallery/oeuvres-en-lien/cap/234/le-retour-d-un-dieu HTTP/1

7-03144001/12/435599K
0.441111.00.01323.01
10.161.117.158172.17.0.3:80GET /.env HTTP/1.1

8-03143541/55/425755K
0.924121.30.04315.43
10.161.117.187172.17.0.3:80GET /resources/Services/Services/About-Us/specialeventsprojects

9-03143730/32/417914_
0.701160.00.03307.86
10.161.117.218172.17.0.3:80GET /gallery/oeuvres-en-lien/cap/165/barrage HTTP/1.1

10-0-0/0/414977.
1.684700.00.00307.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

11-0-0/0/408021.
0.30603120.00.00300.96
10.161.117.158172.17.0.3:80NULL

12-03143121/45/394567C
0.861220.80.04291.05
10.161.117.218172.17.0.3:80NULL

13-0-0/0/386328.
1.895800.00.00286.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

14-0-0/0/382004.
0.353200.00.00281.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

15-03143940/9/367634_
0.373120.00.01272.61
10.161.117.192172.17.0.3:80GET / HTTP/1.1

16-03143951/11/354217K
0.412120.90.01261.48
10.161.117.187172.17.0.3:80GET /forum.php?action=oakley-probation-polarized-Sale-Up-to-80%

17-03143600/39/328866_
0.712110.00.03243.16
10.161.117.158172.17.0.3:80NULL

18-0-0/0/312506.
0.3634190.00.00232.29
10.161.117.192172.17.0.3:80NULL

19-0-0/0/301321.
1.892500.00.00221.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-0-0/0/275024.
0.4057110.00.00202.13
10.161.117.158172.17.0.3:80GET /wp-content/plugins/apikey1/ HTTP/1.1

21-03143631/21/242237K
0.550110.90.02178.63
10.161.117.158172.17.0.3:80GET / HTTP/1.1

22-03143971/10/215264C
0.430130.80.01157.43
10.161.117.187172.17.0.3:80NULL

23-0-0/0/179988.
2.55113140.00.00133.01
10.161.117.187172.17.0.3:80NULL

24-0-0/0/154091.
0.5778110.00.00112.60
10.161.117.158172.17.0.3:80NULL

25-0-0/0/125833.
0.417600.00.0092.59
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/106929.
0.49436150.00.0078.93
10.161.117.192172.17.0.3:80NULL

27-0-0/0/83648.
0.68383100.00.0061.29
10.161.117.218172.17.0.3:80NULL

28-0-0/0/65960.
0.3548400.00.0048.68
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/57380.
3.0825200.00.0041.66
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/44454.
0.284832940.00.0032.68
10.161.117.158172.17.0.3:80GET /robots.txt HTTP/1.1

31-0-0/0/36957.
1.5678600.00.0027.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/25645.
0.33783160.00.0018.81
10.161.117.187172.17.0.3:80GET / HTTP/1.1

33-0-0/0/17229.
1.6674000.00.0012.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/10065.
0.53682110.00.007.38
10.161.117.218172.17.0.3:80NULL

35-0-0/0/9146.
0.0078900.00.006.57
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/6706.
0.32246200.00.004.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/3753.
0.37243400.00.002.76
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/3109.
0.39243580.00.002.34
10.161.117.158172.17.0.3:80GET /wp-content/plugins/royal-elementor-addons/readme.txt HTTP/

39-0-0/0/2738.
0.33246500.00.001.97
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1880.
1.6315590140.00.001.40
10.161.117.253

41-0-0/0/1358.
0.421565500.00.000.96
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/1714.
0.33157223480.00.001.26
10.161.117.158172.17.0.3:80GET /cms/wp-admin/install.php HTTP/1.1

43-0-0/0/2674.
1.4715714150.00.001.99
10.161.117.218172.17.0.3:80GET / HTTP/1.1

44-0-0/0/1639.
0.001573300.00.001.19
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/606.
0.551562600.00.000.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/773.
0.401567900.00.000.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/969.
0.27157192960.00.000.68
10.161.117.253

48-0-0/0/1555.
0.3915698120.00.001.14
10.161.117.218172.17.0.3:80NULL

49-0-0/0/227.
0.503846300.00.000.17
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/51.
0.0019776100.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/205.
0.43209949110.00.000.14
10.161.117.192172.17.0.3:80NULL

52-0-0/0/319.
0.8920981300.00.000.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/92.
0.44350065120.00.000.06
10.161.117.218172.17.0.3:80GET /ckeditor/plugins/fileman/php/upload.php HTTP/1.0

54-0-0/0/35.
0.3443352100.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/8.
0.38433488120.00.000.01
10.161.117.192172.17.0.3:80NULL

56-0-0/0/3.
0.3343352600.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/4.
0.3343350900.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/4.
0.3343351200.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/1.
0.0043354200.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/12.
0.45433470120.00.000.01
10.161.117.218172.17.0.3:80GET /pack.tar.gz HTTP/1.1

61-0-0/0/9.
0.4543348900.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

62-0-0/0/3.
0.72433519150.00.000.00
10.161.117.158

Found on 2024-06-28 23:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b73aae5510

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 27-Jun-2024 10:04:32 UTC
Restart Time: Monday, 17-Jun-2024 19:57:50 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 14 hours 6 minutes 41 seconds
Server load: 0.95 0.82 0.81
Total accesses: 8145359 - Total Traffic: 5.9 GB
CPU Usage: u86.81 s7.1 cu0 cs0 - .0113% CPU load
9.83 requests/sec - 7.4 kB/second - 774 B/request
12 requests currently being processed, 4 idle workers
_CKKKKCKKWK_K_......K..._.......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02708410/0/392711_
1.03000.00.00291.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

1-02708351/6/393861C
0.351160.90.01291.03
10.161.117.192172.17.0.3:80NULL

2-02708051/34/378921K
0.721100.60.03281.21
10.161.117.187172.17.0.3:80GET / HTTP/1.1

3-02708231/48/375919K
0.840120.80.04278.17
10.161.117.158172.17.0.3:80GET /.env HTTP/1.1

4-027078775/231/376779K
2.9701359.50.18278.32
10.161.117.253172.17.0.3:80GET /my-sites.php HTTP/1.1

5-02707941/234/370275K
3.04180.90.17274.69
10.161.117.192172.17.0.3:80GET / HTTP/1.1

6-02708261/31/375674C
0.65090.50.02277.47
10.161.117.218172.17.0.3:80NULL

7-02707191/547/365797K
6.553130.90.39269.63
10.161.117.218172.17.0.3:80GET / HTTP/1.1

8-02708361/4/359293K
0.352120.80.00266.15
10.161.117.158172.17.0.3:80GET / HTTP/1.1

9-02708290/22/355576W
0.59000.00.02262.68
10.161.117.158172.17.0.3:80GET /server-status HTTP/1.1

10-02708061/139/344335K
1.900120.90.10254.36
10.161.117.187172.17.0.3:80GET / HTTP/1.1

11-02708300/118/341135_
1.650110.00.08252.06
10.161.117.218172.17.0.3:80GET /qfunctions.php HTTP/1.1

12-02707224/344/335228K
4.26082.90.24247.61
10.161.117.253172.17.0.3:80GET /userfuns.php HTTP/1.1

13-02707550/226/337019_
2.960110.00.16249.40
10.161.117.187172.17.0.3:80GET /admin/fileman/asp_net/main.ashx?a=UPLOAD HTTP/1.0

14-0-0/0/312767.
0.4513150.00.00230.64
10.161.117.253172.17.0.3:80GET /.env HTTP/1.1

15-0-0/0/310283.
0.68130200.00.00230.77
10.161.117.158172.17.0.3:80GET /admin/fileman/asp_net/main.ashx?a=UPLOAD HTTP/1.0

16-0-0/0/292489.
0.6817900.00.00216.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

17-0-0/0/285869.
0.70232100.00.00210.17
10.161.117.218172.17.0.3:80NULL

18-0-0/0/264192.
0.45181160.00.00193.68
10.161.117.253172.17.0.3:80GET / HTTP/1.1

19-0-0/0/247738.
4.685110.00.00182.69
10.161.117.253172.17.0.3:80GET /admin/fileman/asp_net/main.ashx?a=UPLOAD HTTP/1.0

20-02707921/48/221267K
0.914150.90.04163.04
10.161.117.158172.17.0.3:80GET /wp-content/ HTTP/1.1

21-0-0/0/204882.
6.5533200.00.00151.49
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-0-0/0/164003.
2.67350140.00.00120.80
10.161.117.158172.17.0.3:80GET / HTTP/1.1

23-0-0/0/144493.
0.5931500.00.00106.68
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-02707110/604/122803_
7.220110.00.4489.63
10.161.117.158172.17.0.3:80GET /collections/collections-at-a-glance/marguerite+deep-orange

25-0-0/0/92459.
1.48254190.00.0068.17
10.161.117.192172.17.0.3:80NULL

26-0-0/0/81144.
2.95333130.00.0059.86
10.161.117.253172.17.0.3:80GET /Automotive/891920-evan-fischer-tailgate-handle-compatible-

27-0-0/0/66104.
1.96171180.00.0048.47
10.161.117.253172.17.0.3:80GET /wp-includes/js/tinymce/skins/lightgray/ HTTP/1.1

28-0-0/0/54204.
0.3034900.00.0039.61
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/45524.
0.3133800.00.0033.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/35009.
0.32342120.00.0025.13
10.161.117.187

31-0-0/0/23999.
0.62204200.00.0017.27
10.161.117.192172.17.0.3:80GET /feed/ HTTP/1.1

32-0-0/0/16627.
0.311486130.00.0011.91
10.161.117.253172.17.0.3:80NULL

33-0-0/0/15649.
2.183183150.00.0011.33
10.161.117.187172.17.0.3:80GET / HTTP/1.1

34-0-0/0/10047.
1.646403120.00.007.12
10.161.117.158172.17.0.3:80HEAD /index.php/admin/public/%20login.html HTTP/1.1

35-0-0/0/6537.
0.39668000.00.004.76
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/5194.
0.53927600.00.003.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/2537.
0.311010800.00.001.87
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/2554.
4.30987900.00.001.87
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/2290.
1.401536900.00.001.62
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/2100.
2.631532900.00.001.57
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/1537.
0.311546100.00.001.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/1514.
1.0015227220.00.001.18
10.161.117.253172.17.0.3:80NULL

43-0-0/0/705.
0.3654424100.00.000.58
10.161.117.253172.17.0.3:80NULL

44-0-0/0/904.
0.32130561110.00.000.68
10.161.117.218172.17.0.3:80GET /ckeditor/fileman/php/upload.php HTTP/1.0

45-0-0/0/738.
0.5013048900.00.000.53
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/459.
0.36130565130.00.000.36
10.161.117.253172.17.0.3:80NULL

47-0-0/0/1035.
0.3513055700.00.000.73
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/1577.
0.6013045300.00.001.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/187.
0.45216846130.00.000.13
10.161.117.158172.17.0.3:80GET /ckeditor/plugins/fileman/php/upload.php HTTP/1.0

50-0-0/0/80.
0.8321672700.00.000.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/17.
0.3621685000.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/11.
0.2921688500.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/55.
0.8321680600.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/23.
0.292168873010.00.000.02
10.161.117.253172.17.0.3:80GET / HTTP/1.1

55-0-0/0/43.
0.2921686700.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/16.
0.3521687100.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/28.
0.0021689400.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/18.
0.3621684700.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/16.
0.3521684900.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/18.
0.0021689300.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/26.
0.35216865160.00.000.02
10.161.117.192172.17.0.3:80NULL

62-0

Found on 2024-06-27 10:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b776d20b12

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 27-Jun-2024 10:04:40 UTC
Restart Time: Monday, 17-Jun-2024 19:57:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 14 hours 6 minutes 50 seconds
Server load: 1.21 0.87 0.83
Total accesses: 8178957 - Total Traffic: 5.9 GB
CPU Usage: u66.37 s8.08 cu0 cs0 - .00899% CPU load
9.87 requests/sec - 7.5 kB/second - 775 B/request
14 requests currently being processed, 11 idle workers
KKKKK__KK__KKKK_____CWK__.......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02708161/321/397362K
4.093200.80.24295.62
10.161.117.253172.17.0.3:80GET / HTTP/1.1

1-02708401/6/385319K
0.392141.10.01286.75
10.161.117.253172.17.0.3:80GET / HTTP/1.1

2-027080748/76/384135K
1.190934.90.06285.98
10.161.117.218172.17.0.3:80GET /wp-includes/type.php HTTP/1.1

3-02708281/14/382792K
0.461141.10.01282.85
10.161.117.218172.17.0.3:80GET / HTTP/1.1

4-02708241/39/381696K
0.744120.90.03281.78
10.161.117.158172.17.0.3:80GET / HTTP/1.1

5-02708440/3/375802_
0.351100.00.00278.20
10.161.117.158172.17.0.3:80GET /collections/collections-at-a-glance/nectarines+green-carna

6-02708170/154/360298_
2.070120.00.12267.36
10.161.117.192172.17.0.3:80NULL

7-02708468/8/367492K
0.390115.70.01272.21
10.161.117.218172.17.0.3:80GET /img/about.php HTTP/1.1

8-027083345/56/359527K
0.9601231.90.04265.90
10.161.117.187172.17.0.3:80GET /images/images.php HTTP/1.1

9-02708380/5/354024_
0.361120.00.00260.84
10.161.117.192172.17.0.3:80GET /wp-content/uploads/2017/11/007-1024x683.jpg HTTP/1.1

10-02708390/57/348629_
1.080190.00.04258.02
10.161.117.253172.17.0.3:80NULL

11-02708474/4/343954K
0.33072.70.00253.75
10.161.117.218172.17.0.3:80GET /static/ws/facet-browse/bundle.421e099d72c3ea25f5386bd7d213

12-02708091/143/330591K
2.023110.90.10244.11
10.161.117.218172.17.0.3:80GET /server HTTP/1.1

13-02707771/272/323000K
3.481141.10.19239.62
10.161.117.218172.17.0.3:80GET /history/ HTTP/1.1

14-027073629/305/318278K
3.8331527.30.22234.90
10.161.117.218172.17.0.3:80GET /default.asp?pid=9111443&wireid=00038_Siemens_Canada_Donati

15-02708480/1/307693_
0.3113180.00.00227.88
10.161.117.158172.17.0.3:80GET / HTTP/1.1

16-02708490/1/293828_
0.2702840.00.00217.16
10.161.117.187172.17.0.3:80GET /js/vendor/js/js/vendor/css/js/vendor/js/vendor/css/templat

17-02708220/43/274903_
0.81060.00.03203.37
10.161.117.192172.17.0.3:80NULL

18-02708100/123/261589_
1.701110.00.09194.70
10.161.117.218172.17.0.3:80NULL

19-02708500/1/249403_
0.3103290.00.00183.80
10.161.117.158172.17.0.3:80GET / HTTP/1.0

20-02708511/1/229594C
0.00000.20.00168.52
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

21-02708520/0/199148W
0.00000.00.00147.04
10.161.117.158172.17.0.3:80GET /server-status HTTP/1.1

22-02708121/188/173913K
2.493172.60.14127.27
10.161.117.192172.17.0.3:80GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1

23-02708010/239/146893_
3.16190.00.18108.45
10.161.117.192172.17.0.3:80NULL

24-02708020/228/124044_
2.960130.00.1790.56
10.161.117.218172.17.0.3:80NULL

25-0-0/0/103308.
1.7630140.00.0075.97
10.161.117.158172.17.0.3:80GET /admin/fileman/asp_net/main.ashx?a=UPLOAD HTTP/1.0

26-0-0/0/84873.
0.341753540.00.0062.51
10.161.117.218172.17.0.3:80NULL

27-0-0/0/67963.
0.40178120.00.0049.58
10.161.117.158172.17.0.3:80HEAD /home HTTP/1.1

28-0-0/0/55329.
0.3194700.00.0040.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/46284.
0.3194800.00.0033.68
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/37764.
0.31159100.00.0027.75
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/31391.
0.3115933240.00.0022.87
10.161.117.218172.17.0.3:80NULL

32-0-0/0/21743.
1.77143400.00.0015.89
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/13584.
1.611512120.00.009.94
10.161.117.192172.17.0.3:80NULL

34-0-0/0/7718.
0.382097150.00.005.67
10.161.117.158172.17.0.3:80NULL

35-0-0/0/8022.
3.691601110.00.005.75
10.161.117.158172.17.0.3:80NULL

36-0-0/0/5489.
1.95191890.00.003.99
10.161.117.192172.17.0.3:80GET /wp-content/themes/include.php HTTP/1.1

37-0-0/0/3480.
0.31213700.00.002.55
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/2887.
0.296451200.00.002.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/2533.
0.306451700.00.001.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1438.
0.26645242790.00.001.07
10.161.117.192172.17.0.3:80GET /wp-includes/PHPMailer/ HTTP/1.1

41-0-0/0/1324.
0.356448300.00.000.94
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/1427.
4.0664253130.00.001.06
10.161.117.158172.17.0.3:80GET /js/ckeditor/fileman/php/upload.php HTTP/1.0

43-0-0/0/2442.
1.826439200.00.001.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/1282.
0.326449900.00.000.93
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/576.
0.006452300.00.000.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/727.
0.3964472120.00.000.51
10.161.117.253172.17.0.3:80NULL

47-0-0/0/716.
0.3664506140.00.000.51
10.161.117.187172.17.0.3:80GET / HTTP/1.1

48-0-0/0/1206.
0.34645143530.00.000.86
10.161.117.158172.17.0.3:80GET /sendgrid/.env HTTP/1.1

49-0-0/0/209.
0.716443300.00.000.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/51.
0.006452200.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/205.
0.4376710110.00.000.14
10.161.117.192172.17.0.3:80NULL

52-0-0/0/319.
0.897657400.00.000.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/92.
0.44216826120.00.000.06
10.161.117.218172.17.0.3:80GET /ckeditor/plugins/fileman/php/upload.php HTTP/1.0

54-0-0/0/35.
0.3430028200.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/8.
0.38300249120.00.000.01
10.161.117.192172.17.0.3:80NULL

56-0-0/0/3.
0.3330028700.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/4.
0.3330027000.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/4.
0.3330027300.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/1.
0.0030030300.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/12.
0.45300231120.00.000.01
10.161.117.218172.17.0.3:80GET /pack.tar.gz HTTP/1.1

61-0-0/0/9.
0.4530025000

Found on 2024-06-27 10:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7e32a8143

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 26-Jun-2024 14:21:52 UTC
Restart Time: Monday, 17-Jun-2024 19:57:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 days 18 hours 24 minutes 2 seconds
Server load: 0.56 0.62 0.67
Total accesses: 7126885 - Total Traffic: 5.2 GB
CPU Usage: u75.51 s8.76 cu0 cs0 - .0111% CPU load
9.41 requests/sec - 7.1 kB/second - 776 B/request
14 requests currently being processed, 6 idle workers
K_.KKK_._KKW__CK.K.KKK...K_.....................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-024851611/271/351132K
3.4511112.20.20261.49
10.161.117.158172.17.0.3:80GET /da-web/libs/html-diff/contact HTTP/1.1

1-02485540/40/337507_
0.801140.00.03251.77
10.161.117.192172.17.0.3:80GET /watch-generator/yellow/flowers-of-roma/black/473/56/363/0/

2-0-0/0/338403.
0.54400.00.00252.47
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

3-02485831/29/339101K
0.643161.00.02251.22
10.161.117.192172.17.0.3:80GET / HTTP/1.1

4-02485691/63/333843K
1.131130.90.07247.01
10.161.117.253172.17.0.3:80GET / HTTP/1.1

5-02485561/42/331283K
0.793120.90.03245.65
10.161.117.218172.17.0.3:80GET / HTTP/1.1

6-02485590/38/314514_
0.720140.00.03233.76
10.161.117.187172.17.0.3:80GET /js/ckeditor/fileman/php/upload.php HTTP/1.0

7-0-0/0/323576.
0.579120.00.00240.11
10.161.117.158172.17.0.3:80GET /.git/config HTTP/1.1

8-02485680/24/315228_
0.620110.00.02233.89
10.161.117.187

9-02485611/125/312193K
2.041121.00.09230.18
10.161.117.158172.17.0.3:80GET /.vscode/sftp.json HTTP/1.1

10-024858585/124/302465K
1.7701359.70.09224.55
10.161.117.253172.17.0.3:80GET /wp-includes/SimplePie/ HTTP/1.1

11-02485920/74/301318W
1.09000.00.05222.32
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

12-02485930/110/289309_
1.64060.00.09214.14
10.161.117.253172.17.0.3:80GET /view-source: HTTP/1.1

13-02486110/8/284315_
0.362130.00.01211.45
10.161.117.187172.17.0.3:80GET / HTTP/1.1

14-02485731/23/277196C
0.601120.70.02205.33
10.161.117.192172.17.0.3:80NULL

15-024852292/422/267861K
5.1501064.60.30198.98
10.161.117.187172.17.0.3:80GET /wp-includes/fonts/plugins.php HTTP/1.1

16-0-0/0/256733.
1.2617120.00.00189.76
10.161.117.192

17-024857426/31/237562K
0.6901524.50.03175.89
10.161.117.158172.17.0.3:80GET /?r=UmVmOiBoYW5uaW5nLm1lICMzNSBAMTQ0NzQwNzgxMg== HTTP/1.1

18-0-0/0/227211.
0.283100.00.00169.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-024857522/144/215692K
1.9401416.00.11159.24
10.161.117.253172.17.0.3:80GET /wp-content/plugins/display-posts-shortcode/ HTTP/1.1

20-02485991/8/198697K
0.390110.80.01146.13
10.161.117.192172.17.0.3:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

21-02486001/27/171446K
0.590140.90.01126.69
10.161.117.218172.17.0.3:80GET /.env HTTP/1.1

22-0-0/0/149382.
2.172110.00.00109.43
10.161.117.218172.17.0.3:80GET /misc/ajax.js HTTP/1.1

23-0-0/0/121980.
2.47800.00.0090.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/103844.
0.38000.00.0076.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-024860354/57/82701K
0.9401239.50.0460.83
10.161.117.253172.17.0.3:80GET /wp-scr1pts.php HTTP/1.1

26-02486040/6/70406_
0.372120.00.0151.76
10.161.117.218172.17.0.3:80NULL

27-0-0/0/59044.
0.33508140.00.0043.12
10.161.117.158172.17.0.3:80NULL

28-0-0/0/47638.
0.80328140.00.0035.34
10.161.117.218172.17.0.3:80GET /view-source: HTTP/1.1

29-0-0/0/39029.
0.3949300.00.0028.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/34279.
0.3151200.00.0025.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/25350.
0.3251400.00.0018.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/17960.
0.32510130.00.0013.10
10.161.117.218172.17.0.3:80GET /sendgrid/.env HTTP/1.1

33-0-0/0/11014.
0.335183570.00.008.15
10.161.117.192172.17.0.3:80NULL

34-0-0/0/6215.
2.10281130.00.004.59
10.161.117.187

35-0-0/0/6210.
0.375756100.00.004.46
10.161.117.187172.17.0.3:80GET /administrator/index.php HTTP/1.1

36-0-0/0/4333.
0.585767130.00.003.16
10.161.117.192172.17.0.3:80GET /wp-content/uploads/2018/12/ HTTP/1.1

37-0-0/0/3341.
2.765663120.00.002.45
10.161.117.187172.17.0.3:80GET /index.php?m=vod-search-pg-92-wd-%E5%89%A7%E6%83%85.html HT

38-0-0/0/2884.
3.19535500.00.002.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/2531.
0.44574600.00.001.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1437.
3.455567110.00.001.06
10.161.117.187172.17.0.3:80GET /assets/autoload_classmap.php HTTP/1.1

41-0-0/0/1317.
0.325795200.00.000.93
10.161.117.253172.17.0.3:80GET /galerie/oeuvres-en-lien/cap/85/6 HTTP/1.1

42-0-0/0/1104.
2.185563160.00.000.82
10.161.117.187172.17.0.3:80GET /blog/wp-content/plugins/translator/translator.php?l=is&u=h

43-0-0/0/2303.
4.615525140.00.001.74
10.161.117.192172.17.0.3:80GET /galerie/oeuvres-en-lien/oeuvre/328/faro HTTP/1.1

44-0-0/0/1278.
0.00580300.00.000.93
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/575.
0.37578300.00.000.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/717.
0.32579000.00.000.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/713.
0.355784170.00.000.51
10.161.117.187172.17.0.3:80GET / HTTP/1.1

48-0-0/0/1205.
8.30511300.00.000.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/176.
0.33578500.00.000.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/50.
0.365780130.00.000.04
10.161.117.192172.17.0.3:80GET / HTTP/1.1

51-0-0/0/205.
0.435742110.00.000.14
10.161.117.192172.17.0.3:80NULL

52-0-0/0/319.
0.89560600.00.000.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/92.
0.44145857120.00.000.06
10.161.117.218172.17.0.3:80GET /ckeditor/plugins/fileman/php/upload.php HTTP/1.0

54-0-0/0/35.
0.3422931400.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/8.
0.38229281120.00.000.01
10.161.117.192172.17.0.3:80NULL

56-0-0/0/3.
0.3322931900.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/4.
0.3322930200.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/4.
0.3322930500.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/1.
0.0022933500.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/12.
0.45229263120.00.000.01
10.161.117.218172.17.0.3:80GET /pack.tar.gz HTTP/1.1

6

Found on 2024-06-26 14:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b711cbb75a

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 24-Jun-2024 16:05:48 UTC
Restart Time: Monday, 17-Jun-2024 19:57:50 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 days 20 hours 7 minutes 58 seconds
Server load: 0.49 0.65 0.60
Total accesses: 5238929 - Total Traffic: 3.8 GB
CPU Usage: u44.97 s4.94 cu0 cs0 - .00845% CPU load
8.87 requests/sec - 6.7 kB/second - 775 B/request
16 requests currently being processed, 5 idle workers
KCCKKK_W__C_KK..KK.C....._..K.K..C..............................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01956741/21/255116K
0.520121.00.02189.50
10.161.117.187172.17.0.3:80GET /site/wp-content/themes/evidens-dark/redir.php?u=https://po

1-01956761/7/255947C
0.400101.00.01189.69
10.161.117.192172.17.0.3:80NULL

2-01956771/6/245957C
0.340100.70.00183.18
10.161.117.187172.17.0.3:80NULL

3-01955871/205/243819K
2.713111.00.13181.28
10.161.117.218172.17.0.3:80GET /telescope/requests HTTP/1.1

4-01956871/3/245834K
0.330130.80.00182.13
10.161.117.192172.17.0.3:80GET /alfanew.php HTTP/1.1

5-01956792/6/241589K
0.360111.90.01179.98
10.161.117.253172.17.0.3:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-01956810/8/243787_
0.400120.00.01180.34
10.161.117.158172.17.0.3:80GET /assets/editor/fileman/php/upload.php HTTP/1.0

7-01956280/25/237846W
0.62000.00.02175.17
10.161.117.158172.17.0.3:80GET /server-status HTTP/1.1

8-01956890/4/235120_
0.391110.00.00174.56
10.161.117.187172.17.0.3:80HEAD /restore/www.sql HTTP/1.1

9-01956900/1/228790_
0.2903040.00.00170.20
10.161.117.192172.17.0.3:80NULL

10-01956911/2/221896C
0.310101.10.00164.01
10.161.117.158172.17.0.3:80NULL

11-01956920/1/218635_
0.3403620.00.00161.60
10.161.117.187172.17.0.3:80GET / HTTP/1.1

12-019560447/115/216510K
1.6721533.70.08160.19
10.161.117.187172.17.0.3:80GET /wp-content/fonts/ HTTP/1.1

13-01956123/109/217195K
1.503153.00.08161.22
10.161.117.253172.17.0.3:80GET /?rest_route=/wp/v2/users/ HTTP/1.1

14-0-0/0/203603.
0.4583100.00.00149.84
10.161.117.192172.17.0.3:80NULL

15-0-0/0/200702.
0.894500.00.00149.62
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

16-01956301/150/188711K
1.994161.00.10139.62
10.161.117.187172.17.0.3:80GET /s/33e27393e2431313e2838313/_/;/META-INF/maven/com.atlassia

17-01956471/56/182847K
0.954141.00.04134.71
10.161.117.218172.17.0.3:80GET /Search/Index.aspx?kwd=%E8%80%90%E8%85%90%E8%9A%80%E7%94%B5

18-0-0/0/168272.
1.4262140.00.00123.69
10.161.117.253172.17.0.3:80GET / HTTP/1.1

19-01955851/185/153741C
2.431121.10.10113.51
10.161.117.218172.17.0.3:80NULL

20-0-0/0/138436.
0.4544150.00.00102.42
10.161.117.187172.17.0.3:80GET /wp-content/plugins/press/wp-class.php HTTP/1.1

21-0-0/0/130079.
0.348000.00.0096.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-0-0/0/99578.
3.9547140.00.0073.15
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

23-0-0/0/88950.
0.32793410.00.0065.49
10.161.117.218

24-0-0/0/73067.
0.317500.00.0053.32
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-01956580/19/55131_
0.610140.00.0240.28
10.161.117.187172.17.0.3:80HEAD /mysql.sql HTTP/1.1

26-0-0/0/47931.
0.307800.00.0035.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/44004.
0.482500.00.0032.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

28-01956611/34/36883K
0.710141.00.0326.84
10.161.117.218172.17.0.3:80GET /v2/_catalog HTTP/1.1

29-0-0/0/30854.
0.471800.00.0022.73
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-01956631/27/23065K
0.613161.00.0316.50
10.161.117.253172.17.0.3:80GET /config.json HTTP/1.1

31-0-0/0/15691.
0.4153130.00.0011.29
10.161.117.218172.17.0.3:80GET /about HTTP/1.1

32-0-0/0/11575.
0.3374140.00.008.23
10.161.117.187172.17.0.3:80GET /galerie/artiste/793/une-epoque-manquee HTTP/1.1

33-019566617/32/9226C
0.6801110.50.026.64
10.161.117.253172.17.0.3:80GET /wp-content/plugins/press/ HTTP/1.1

34-0-0/0/6413.
0.308100.00.004.43
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/4751.
0.3222268110.00.003.46
10.161.117.253

36-0-0/0/2725.
0.6322240160.00.001.80
10.161.117.187172.17.0.3:80GET / HTTP/1.1

37-0-0/0/1771.
0.30222623100.00.001.32
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

38-0-0/0/1449.
0.002226700.00.001.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/1179.
0.292224500.00.000.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1691.
1.802208600.00.001.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/1369.
0.33222653430.00.001.04
10.161.117.253172.17.0.3:80GET / HTTP/1.1

42-0-0/0/883.
0.29222543020.00.000.67
10.161.117.187172.17.0.3:80GET / HTTP/1.0

43-0-0/0/677.
0.002226600.00.000.56
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/891.
0.452218800.00.000.67
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/679.
0.432224100.00.000.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/429.
0.322224200.00.000.34
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/1030.
0.30222643140.00.000.73
10.161.117.253172.17.0.3:80GET / HTTP/1.1

48-0-0/0/1550.
0.003961500.00.001.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/175.
0.433953800.00.000.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/30.
0.4759265100.00.000.03
10.161.117.218172.17.0.3:80GET /wp-includes/js/tinymce/plugins/wpdialogs/ HTTP/1.1

51-0-0/0/10.
0.365933500.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/9.
0.325933700.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/4.
0.005937600.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/22.
0.5159284100.00.000.02
10.161.117.158172.17.0.3:80NULL

55-0-0/0/40.
0.3359361110.00.000.03
10.161.117.158172.17.0.3:80GET /wp-includes/SimplePie/Content/Type/ HTTP/1.1

56-0-0/0/10.
0.3559331120.00.000.01
10.161.117.158172.17.0.3:80GET /ads.txt HTTP/1.1

57-0-0/0/27.
0.545925000.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/11.
0.365932500.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/10.
0.305935900.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/17.
0.345933600.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/23.
0.335934800.0

Found on 2024-06-24 16:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7d1b0c712

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 22-Jun-2024 17:39:32 UTC
Restart Time: Monday, 17-Jun-2024 19:57:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 21 hours 41 minutes 43 seconds
Server load: 0.87 0.63 0.54
Total accesses: 4038130 - Total Traffic: 2.9 GB
CPU Usage: u36.52 s2.78 cu0 cs0 - .00928% CPU load
9.53 requests/sec - 7.2 kB/second - 773 B/request
10 requests currently being processed, 8 idle workers
_KKKCKK._._...K.K._K.___....W_..................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01376510/9/196202_
0.381110.00.01145.53
10.161.117.218172.17.0.3:80NULL

1-013767425/27/188218K
0.5801318.00.02139.76
10.161.117.218172.17.0.3:80GET /wordpress/wp-includes/IXR/allez.php HTTP/1.1

2-01376301/16/187396K
0.513121.30.02138.37
10.161.117.253172.17.0.3:80GET / HTTP/1.1

3-01376751/2/188209K
0.324141.00.00139.30
10.161.117.187172.17.0.3:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-01376761/1/184267C
0.2712840.90.00136.51
10.161.117.158172.17.0.3:80NULL

5-013763113/31/187368K
0.6501311.70.03138.58
10.161.117.158172.17.0.3:80GET /home HTTP/1.1

6-01376231/20/175487K
0.562100.90.02130.06
10.161.117.158172.17.0.3:80GET /.env HTTP/1.1

7-0-0/0/183719.
1.532700.00.00136.09
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

8-01375990/40/179504_
0.781180.00.04132.29
10.161.117.253172.17.0.3:80GET / HTTP/1.0

9-0-0/0/174477.
2.342600.00.00128.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

10-01376010/29/172097_
0.620110.00.03127.07
10.161.117.187

11-0-0/0/171893.
0.2929110.00.00126.40
10.161.117.187172.17.0.3:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

12-0-0/0/160980.
0.312000.00.00119.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

13-0-0/0/159888.
0.292300.00.00118.41
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

14-01376251/132/156585K
1.991140.90.13115.80
10.161.117.192172.17.0.3:80GET /about HTTP/1.1

15-0-0/0/152645.
5.6319140.00.00113.03
10.161.117.253

16-013763671/81/145989K
1.2401441.40.05107.33
10.161.117.253172.17.0.3:80GET /wp-content/plugins/WordPressCore/include.php HTTP/1.1

17-0-0/0/137678.
0.3321230.00.00100.97
10.161.117.187172.17.0.3:80GET /search/?q=tragedi%20jika HTTP/1.1

18-01376270/19/130194_
0.521110.00.0297.29
10.161.117.187172.17.0.3:80NULL

19-01376371/48/125754K
0.861140.90.0392.60
10.161.117.187172.17.0.3:80GET / HTTP/1.1

20-0-0/0/114015.
0.28332950.00.0084.06
10.161.117.187172.17.0.3:80NULL

21-01376390/14/101863_
0.460170.00.0174.73
10.161.117.253

22-01376400/30/90085_
0.651110.00.0265.37
10.161.117.253172.17.0.3:80NULL

23-01376590/6/68555_
0.361110.00.0150.62
10.161.117.253172.17.0.3:80NULL

24-0-0/0/61431.
0.662400.00.0044.59
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0-0/0/50366.
0.303100.00.0036.64
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/42355.
0.003500.00.0030.77
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/34002.
0.512500.00.0024.51
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

28-01376630/7/26965W
0.38000.00.0119.70
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

29-01376640/6/20611_
0.380140.00.0114.88
10.161.117.253

30-0-0/0/20282.
0.3122110.00.0014.63
10.161.117.158172.17.0.3:80GET /wp-content/plugins/wp-donate/readme.txt HTTP/1.1

31-0-0/0/15301.
0.3475700.00.0011.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/9267.
0.32183000.00.006.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/6779.
0.36181200.00.004.89
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/3030.
0.38181500.00.002.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/3208.
0.311848150.00.002.25
10.161.117.158172.17.0.3:80GET /ads.txt HTTP/1.1

36-0-0/0/2475.
0.00186200.00.001.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/1635.
0.341833110.00.001.23
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

38-0-0/0/1585.
0.301846120.00.001.16
10.161.117.187172.17.0.3:80NULL

39-0-0/0/868.
0.95164700.00.000.61
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/303.
0.351831100.00.000.23
10.161.117.218172.17.0.3:80GET / HTTP/1.0

41-0-0/0/733.
0.33184200.00.000.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/202.
0.31183400.00.000.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/889.
0.31184000.00.000.64
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/971.
2.981590130.00.000.69
10.161.117.158

45-0-0/0/97.
0.28184100.00.000.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/516.
0.00185500.00.000.35
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/422.
0.393437400.00.000.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/196.
0.545546200.00.000.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/34.
0.34209056110.00.000.03
10.161.117.158172.17.0.3:80NULL

50-0-0/0/7.
0.32209087120.00.000.01
10.161.117.253172.17.0.3:80NULL

51-0-0/0/162.
1.1620893900.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/261.
3.2020866700.00.000.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/76.
0.88208941110.00.000.05
10.161.117.187172.17.0.3:80GET / HTTP/1.1

54-0-0/0/32.
0.3220909800.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/1.
0.0026553400.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-22 17:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b759580b06

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 22-Jun-2024 04:25:16 UTC
Restart Time: Monday, 17-Jun-2024 19:58:14 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 8 hours 27 minutes 2 seconds
Server load: 0.57 0.63 0.58
Total accesses: 3678095 - Total Traffic: 2.7 GB
CPU Usage: u36.44 s2.98 cu0 cs0 - .0105% CPU load
9.78 requests/sec - 7.4 kB/second - 773 B/request
16 requests currently being processed, 4 idle workers
WKKKKKKKCKKK___K_KK....K........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01219930/33/176860W
0.69000.00.03130.92
10.161.117.192172.17.0.3:80GET /server-status HTTP/1.1

1-01219991/15/172904K
0.553170.60.01127.30
10.161.117.253172.17.0.3:80GET /api/v1/info/instance-id HTTP/1.1

2-01220231/1/170875K
0.3223341.20.00126.61
10.161.117.218172.17.0.3:80GET /?fbclid=PAZXh0bgNhZW0CMTEAAaYXfszNmRDSrQjzMVRej7khDvdVcMgA

3-01220071/9/171660K
0.444120.90.01126.64
10.161.117.218172.17.0.3:80GET / HTTP/1.1

4-01220011/18/170086K
0.551110.80.02125.78
10.161.117.158172.17.0.3:80GET /index.php?option=com_acym&ctrl=frontmails&task=setNewIconS

5-01220021/115/169775K
1.623151.00.08126.62
10.161.117.187172.17.0.3:80GET / HTTP/1.1

6-01220241/1/167133K
0.3313440.90.00123.39
10.161.117.187172.17.0.3:80GET /.well-knownold/ HTTP/1.1

7-01219291/57/159386K
1.012130.90.05118.58
10.161.117.218172.17.0.3:80GET / HTTP/1.1

8-01220081/8/155122C
0.391120.90.01115.34
10.161.117.192172.17.0.3:80NULL

9-01220101/8/154830K
0.400170.60.01114.91
10.161.117.187172.17.0.3:80GET /api/v1/info/instance-id HTTP/1.1

10-01219211/454/152682K
5.723151.10.34113.13
10.161.117.253172.17.0.3:80GET / HTTP/1.1

11-01220251/1/157521K
0.3113271.20.00116.00
10.161.117.253172.17.0.3:80GET /calendar/action~oneday/exact_date~1511596800/request_forma

12-01220260/1/153649_
0.3203320.00.00113.48
10.161.117.218172.17.0.3:80GET / HTTP/1.1

13-01219260/67/149014_
1.120130.00.06109.77
10.161.117.218172.17.0.3:80GET / HTTP/1.1

14-01220270/0/143492_
0.501120.00.00106.32
10.161.117.253

15-01218411/239/134950K
3.104182.00.17100.10
10.161.117.218172.17.0.3:80GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1

16-01220280/1/132100_
0.3303430.00.0097.64
10.161.117.253172.17.0.3:80GET /.well-known/acme-challenge/preflight HTTP/1.1

17-01219835/31/126094K
0.674154.40.0292.37
10.161.117.187172.17.0.3:80POST /wp-json/tdw/save_css HTTP/1.1

18-01220291/1/123336K
0.2702941.00.0091.00
10.161.117.218172.17.0.3:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-0-0/0/110854.
0.566300.00.0081.89
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-0-0/0/108283.
0.7411600.00.0079.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

21-0-0/0/89490.
0.3515400.00.0065.95
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-0-0/0/80213.
0.4311200.00.0058.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

23-01219871/38/66632K
0.761121.00.0348.43
10.161.117.192172.17.0.3:80GET /v2/_catalog HTTP/1.1

24-0-0/0/58372.
0.0016300.00.0041.85
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0-0/0/50019.
0.47948120.00.0036.68
10.161.117.158172.17.0.3:80GET /wso112233.php HTTP/1.1

26-0-0/0/35523.
0.641238120.00.0025.81
10.161.117.187172.17.0.3:80GET /robots.txt HTTP/1.1

27-0-0/0/31070.
0.3313683590.00.0022.44
10.161.117.218172.17.0.3:80HEAD / HTTP/1.1

28-0-0/0/27960.
0.00137200.00.0020.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/22232.
0.52128000.00.0016.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/15686.
2.581115140.00.0011.27
10.161.117.218172.17.0.3:80GET /wp-content/plugins/google-seo-rank/README.txt HTTP/1.1

31-0-0/0/11133.
1.02103100.00.008.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/8436.
1.691780110.00.006.06
10.161.117.187172.17.0.3:80NULL

33-0-0/0/5212.
0.42186900.00.003.76
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/3113.
0.30777300.00.002.22
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/3635.
1.607748100.00.002.56
10.161.117.218172.17.0.3:80GET /wp-content/shell20211028.php HTTP/1.1

36-0-0/0/2862.
0.53777500.00.001.98
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/1226.
0.64776100.00.000.90
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/790.
0.41775600.00.000.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/703.
1.65735900.00.000.53
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/332.
0.3578493610.00.000.25
10.161.117.187172.17.0.3:80NULL

41-0-0/0/750.
0.58780600.00.000.55
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/133.
0.53777400.00.000.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/612.
0.337844150.00.000.41
10.161.117.253172.17.0.3:80HEAD / HTTP/1.1

44-0-0/0/411.
0.43780890.00.000.25
10.161.117.218172.17.0.3:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

45-0-0/0/48.
0.30783600.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/47.
0.41783500.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/143.
0.00785200.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/255.
0.0028166400.00.000.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/367.
0.32281647130.00.000.23
10.161.117.253172.17.0.3:80GET /item.php HTTP/1.1

50-0-0/0/16.
0.302816533130.00.000.01
10.161.117.192

51-0-0/0/22.
0.53281640100.00.000.01
10.161.117.218172.17.0.3:80GET /wp-content/themes/pridmag/ HTTP/1.1

52-0-0/0/29.
0.32281648120.00.000.03
10.161.117.218172.17.0.3:80NULL

53-0-0/0/16.
0.42281589120.00.000.01
10.161.117.253

54-0-0/0/1.
0.322816583350.00.000.00
10.161.117.218172.17.0.3:80GET /robots.txt HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-22 04:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b738e7a4b0

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 22-Jun-2024 04:25:15 UTC
Restart Time: Monday, 17-Jun-2024 19:57:06 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 8 hours 28 minutes 9 seconds
Server load: 0.55 0.71 0.73
Total accesses: 3679624 - Total Traffic: 2.6 GB
CPU Usage: u21.95 s1.53 cu0 cs0 - .00624% CPU load
9.78 requests/sec - 7.4 kB/second - 771 B/request
15 requests currently being processed, 3 idle workers
K_CKKC_KKK.K.KK_K..KWK..........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01224291/4/176622K
0.22050.40.00129.72
10.161.117.253172.17.0.3:80OPTIONS /SGF-UserFolders HTTP/1.1

1-01224310/1/174088_
0.2102210.00.00129.14
10.161.117.187172.17.0.3:80NULL

2-01224341/2/170342C
0.21070.80.00125.88
10.161.117.158172.17.0.3:80GET /wp-json/?rest_route=/wp/v2/USERS HTTP/1.1

3-01223691/140/171181K
1.07060.90.10125.88
10.161.117.218172.17.0.3:80GET /about HTTP/1.1

4-01223911/25/168811K
0.36060.80.02124.64
10.161.117.187172.17.0.3:80GET /themes.php HTTP/1.1

5-01223681/237/165042C
1.71160.90.16121.94
10.161.117.158172.17.0.3:80NULL

6-01224070/32/165635_
0.38060.00.02123.31
10.161.117.187172.17.0.3:80NULL

7-01223831/113/167620K
0.91271.00.07123.27
10.161.117.253172.17.0.3:80GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.

8-01224351/2/163518K
0.24260.90.00120.77
10.161.117.187172.17.0.3:80GET / HTTP/1.1

9-01224361/1/161954K
0.2112191.10.00118.96
10.161.117.253172.17.0.3:80GET /index/function.php HTTP/1.1

10-0-0/0/159343.
0.424470.00.00117.74
10.161.117.187

11-01224101/111/151996K
0.90060.80.08112.68
10.161.117.192172.17.0.3:80GET / HTTP/1.1

12-0-0/0/149988.
0.254500.00.00110.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

13-01224031/25/149687K
0.36061.00.02110.03
10.161.117.192172.17.0.3:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

14-01223781/37/141516K
0.47171.00.03105.09
10.161.117.158172.17.0.3:80GET / HTTP/1.1

15-01224050/15/138502_
0.32070.00.01102.59
10.161.117.192172.17.0.3:80NULL

16-012241537/42/132763K
0.480621.90.0297.58
10.161.117.187172.17.0.3:80GET /wp-admin/images/wp-settings.php HTTP/1.1

17-0-0/0/128197.
0.234300.00.0094.32
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

18-0-0/0/124041.
0.683900.00.0091.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-01223371/255/110916K
1.812110.60.1682.04
10.161.117.218172.17.0.3:80GET /api/v1/info/instance-id HTTP/1.1

20-01224170/8/107466W
0.26000.00.0178.81
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

21-01224181/8/91082K
0.26071.10.0166.25
10.161.117.187172.17.0.3:80GET /wp-ver.php HTTP/1.1

22-0-0/0/78243.
0.2032100.00.0057.58
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

23-0-0/0/70197.
0.2626600.00.0051.34
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/50614.
0.2131500.00.0036.85
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0-0/0/47951.
0.22168900.00.0034.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/37495.
0.21169200.00.0026.88
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/29221.
0.40154000.00.0021.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

28-0-0/0/22247.
0.38155860.00.0016.13
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

29-0-0/0/19663.
0.70136290.00.0014.11
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

30-0-0/0/14007.
0.2116972230.00.0010.08
10.161.117.158172.17.0.3:80GET / HTTP/1.1

31-0-0/0/9996.
0.40169300.00.007.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/9638.
0.32174600.00.007.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/4636.
0.26181800.00.003.39
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/3319.
0.23181600.00.002.41
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/2780.
0.2118352220.00.001.97
10.161.117.253172.17.0.3:80NULL

36-0-0/0/1795.
0.41763790.00.001.31
10.161.117.253172.17.0.3:80GET / HTTP/1.1

37-0-0/0/1090.
0.41757800.00.000.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/771.
0.272095660.00.000.53
10.161.117.192172.17.0.3:80GET /5271258f32-content/ HTTP/1.0

39-0-0/0/210.
0.002101100.00.000.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/500.
0.232098600.00.000.37
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/894.
0.262098890.00.000.66
10.161.117.218172.17.0.3:80GET /ads.txt HTTP/1.1

42-0-0/0/1460.
0.002101000.00.001.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/427.
0.212099800.00.000.31
10.161.117.218

44-0-0/0/545.
0.232098700.00.000.38
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/207.
0.212100300.00.000.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/457.
0.3520913100.00.000.30
10.161.117.192172.17.0.3:80NULL

47-0-0/0/163.
0.232099260.00.000.13
10.161.117.192172.17.0.3:80GET /ads.txt HTTP/1.1

48-0-0/0/229.
0.762053780.00.000.18
10.161.117.187172.17.0.3:80GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1

49-0-0/0/78.
0.232098470.00.000.05
10.161.117.158172.17.0.3:80NULL

50-0-0/0/1.
0.0035756900.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/455.
3.1635701200.00.000.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/25.
0.3535751460.00.000.02
10.161.117.158172.17.0.3:80NULL


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-22 04:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b77ccde48d

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 20-Jun-2024 23:29:47 UTC
Restart Time: Monday, 17-Jun-2024 19:57:05 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 3 hours 32 minutes 41 seconds
Server load: 0.42 0.52 0.63
Total accesses: 3086626 - Total Traffic: 2.2 GB
CPU Usage: u20.13 s1.45 cu0 cs0 - .00793% CPU load
11.3 requests/sec - 8.4 kB/second - 762 B/request
6 requests currently being processed, 9 idle workers
..WK_..__._CK_C._.__K...._......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0-0/0/144914.
0.30070.00.00104.83
10.161.117.158172.17.0.3:80NULL

1-0-0/0/143170.
0.34880.00.00104.16
10.161.117.192172.17.0.3:80NULL

2-0903670/54/141667W
0.54000.00.05102.55
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

3-0904411/6/140112K
0.24160.90.00101.99
10.161.117.192172.17.0.3:80GET /ss.php HTTP/1.1

4-0904080/41/141765_
0.45070.00.03103.63
10.161.117.158172.17.0.3:80GET / HTTP/1.1

5-0-0/0/137068.
0.77900.00.0099.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

6-0-0/0/134450.
0.35400.00.0097.90
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

7-0904490/3/134125_
0.23080.00.0098.17
10.161.117.158172.17.0.3:80GET / HTTP/1.1

8-0904210/51/130063_
0.51020.00.0494.99
10.161.117.187172.17.0.3:80POST /index.php?%ADd+cgi.force_redirect%3d0+%ADd+cgi.redirect_s

9-0-0/0/131167.
0.2072180.00.0094.54
10.161.117.218172.17.0.3:80NULL

10-0904510/3/128178_
0.23260.00.0092.81
10.161.117.253172.17.0.3:80NULL

11-0904241/24/123065C
0.34061.10.0290.11
10.161.117.192172.17.0.3:80GET / HTTP/1.1

12-0904521/4/125170K
0.23471.00.0091.26
10.161.117.158172.17.0.3:80GET /v2/_catalog HTTP/1.1

13-0904310/25/120972_
0.37060.00.0287.90
10.161.117.187172.17.0.3:80NULL

14-0903081/121/119202C
0.960100.90.1086.78
10.161.117.158172.17.0.3:80GET /robots.txt HTTP/1.1

15-0-0/0/115581.
1.12500.00.0084.39
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

16-0904320/24/111942_
0.35280.00.0281.65
10.161.117.253172.17.0.3:80GET / HTTP/1.1

17-0-0/0/109794.
0.22360.00.0080.11
10.161.117.192172.17.0.3:80GET /hello.world HTTP/1.1

18-0904540/2/98917_
0.2212390.00.0172.00
10.161.117.253172.17.0.3:80NULL

19-0903920/124/97997_
1.05120.00.1171.31
10.161.117.253172.17.0.3:80POST /hello.world?%ADd+cgi.force_redirect%3d0+%ADd+cgi.redirect

20-0904551/3/90920K
0.2132081.10.0065.66
10.161.117.187172.17.0.3:80GET /da-epic-theme/themes/da-white/_wmos/js/_homepage.js HTTP/1

21-0-0/0/78605.
0.349260.00.0056.97
10.161.117.192

22-0-0/0/75871.
0.3312270.00.0054.96
10.161.117.187172.17.0.3:80NULL

23-0-0/0/61346.
0.46680.00.0044.74
10.161.117.158172.17.0.3:80GET / HTTP/1.1

24-0-0/0/52471.
0.5511370.00.0037.77
10.161.117.187

25-0903970/235/40454_
1.77260.00.1929.16
10.161.117.187

26-0-0/0/35747.
0.358480.00.0025.69
10.161.117.253172.17.0.3:80GET / HTTP/1.1

27-0-0/0/27112.
0.2217270.00.0019.38
10.161.117.218172.17.0.3:80NULL

28-0-0/0/22909.
0.2532400.00.0016.61
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/16561.
0.2234590.00.0012.11
10.161.117.192172.17.0.3:80NULL

30-0-0/0/15515.
0.2235660.00.0011.23
10.161.117.218172.17.0.3:80GET / HTTP/1.1

31-0-0/0/9911.
0.58161370.00.007.26
10.161.117.218172.17.0.3:80NULL

32-0-0/0/9462.
0.41155100.00.006.80
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/7348.
0.2016962250.00.005.17
10.161.117.158172.17.0.3:80GET /blog/wp-content/plugins/translator/translator.php?l=is&u=h

34-0-0/0/5226.
0.43159770.00.003.69
10.161.117.218172.17.0.3:80GET / HTTP/1.1

35-0-0/0/2361.
0.85526960.00.001.72
10.161.117.158172.17.0.3:80GET /wp-includes/Requests/Response/ HTTP/1.1

36-0-0/0/1076.
0.485123100.00.000.72
10.161.117.158172.17.0.3:80NULL

37-0-0/0/814.
0.23527100.00.000.57
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/1259.
0.21529070.00.000.92
10.161.117.218172.17.0.3:80GET /robots.txt HTTP/1.1

39-0-0/0/630.
0.30522000.00.000.42
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/232.
0.00530000.00.000.17
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/38.
0.23527070.00.000.03
10.161.117.187

42-0-0/0/291.
0.21527900.00.000.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/200.
0.36519800.00.000.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/314.
0.24528200.00.000.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/319.
0.2152972290.00.000.24
10.161.117.253172.17.0.3:80POST / HTTP/1.1

46-0-0/0/239.
1.617465900.00.000.19
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/67.
0.628580000.00.000.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/5.
0.2419204570.00.000.00
10.161.117.187172.17.0.3:80NULL

49-0-0/0/4.
0.2319206000.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-20 23:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7e4af2b64

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 18-Jun-2024 17:39:12 UTC
Restart Time: Monday, 17-Jun-2024 19:58:14 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  21 hours 40 minutes 58 seconds
Server load: 0.92 0.81 0.78
Total accesses: 1175422 - Total Traffic: 834.8 MB
CPU Usage: u60.19 s4.18 cu0 cs0 - .0825% CPU load
15.1 requests/sec - 11.0 kB/second - 744 B/request
11 requests currently being processed, 5 idle workers
__._KK.KK_CWKKK...._.....K....K.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0276850/13/52322_
0.461110.00.0137.35
10.161.117.192172.17.0.3:80NULL

1-0276870/5/48136_
0.400160.00.0033.90
10.161.117.158172.17.0.3:80GET /betmg_fullscreen.aspx?cart=NOCE1512 HTTP/1.1

2-0-0/0/48083.
0.30173150.00.0034.12
10.161.117.192

3-0276890/6/49476_
0.370140.00.0135.39
10.161.117.253172.17.0.3:80GET / HTTP/1.1

4-02766328/36/50039K
0.6901018.00.0235.00
10.161.117.218172.17.0.3:80GET //wp-content/dropdown.php HTTP/1.1

5-0276141/152/47308K
2.210110.90.1533.77
10.161.117.218172.17.0.3:80GET / HTTP/1.1

6-0-0/0/50037.
2.851800.00.0035.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

7-0276461/140/44721K
1.961140.90.1031.85
10.161.117.192172.17.0.3:80GET / HTTP/1.1

8-0276901/5/45273K
0.382100.90.0132.62
10.161.117.192172.17.0.3:80GET / HTTP/1.1

9-0276620/11/46751_
0.430100.00.0133.06
10.161.117.158172.17.0.3:80GET / HTTP/1.1

10-02764815/33/45113C
0.730119.20.0232.34
10.161.117.187172.17.0.3:80GET /wp-includes/sitemaps/providers/ HTTP/1.1

11-0276910/6/47305W
0.39000.00.0033.35
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

12-0276181/160/45049K
2.291110.90.1632.61
10.161.117.253172.17.0.3:80GET /wp-admin/maint/index.php HTTP/1.1

13-0276921/5/47276K
0.352120.90.0033.28
10.161.117.253172.17.0.3:80GET /wp-admin/network/index.php HTTP/1.1

14-0276191/150/44991K
2.313140.90.1132.38
10.161.117.192172.17.0.3:80GET /wp-includes/js/admin.php HTTP/1.1

15-0-0/0/37567.
0.301500.00.0026.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

16-0-0/0/40745.
0.491300.00.0028.91
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

17-0-0/0/41309.
1.2042160.00.0029.24
10.161.117.218172.17.0.3:80NULL

18-0-0/0/41259.
0.384600.00.0029.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-0276660/9/39529_
0.430100.00.0128.46
10.161.117.192172.17.0.3:80GET / HTTP/1.0

20-0-0/0/36139.
0.3530120.00.0025.81
10.161.117.187172.17.0.3:80GET / HTTP/1.1

21-0-0/0/32809.
2.645160.00.0023.23
10.161.117.158

22-0-0/0/30349.
0.344100.00.0021.49
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

23-0-0/0/27521.
0.004900.00.0019.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/26363.
0.004700.00.0018.38
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0275951/170/22678K
2.321131.10.1416.15
10.161.117.253172.17.0.3:80GET / HTTP/1.1

26-0-0/0/17104.
0.4423800.00.0012.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/16158.
0.44230100.00.0011.39
10.161.117.158172.17.0.3:80GET /.well-known/cf-custom-hostname-challenge/63db9189-23a4-4cd

28-0-0/0/10999.
2.274400.00.007.80
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/11833.
0.5521100.00.008.26
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0276001/155/7817K
2.164131.10.115.42
10.161.117.158172.17.0.3:80GET / HTTP/1.1

31-0-0/0/6455.
0.3227600.00.004.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/4741.
0.3027213130.00.003.35
10.161.117.158172.17.0.3:80GET / HTTP/1.1

33-0-0/0/2774.
2.622570120.00.001.96
10.161.117.192172.17.0.3:80NULL

34-0-0/0/2314.
4.80486000.00.001.62
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/2439.
1.644915100.00.001.67
10.161.117.187172.17.0.3:80NULL

36-0-0/0/2071.
4.694725110.00.001.45
10.161.117.218172.17.0.3:80GET / HTTP/1.1

37-0-0/0/305.
0.297965110.00.000.22
10.161.117.158172.17.0.3:80GET / HTTP/1.1

38-0-0/0/475.
0.3514847100.00.000.30
10.161.117.218172.17.0.3:80NULL

39-0-0/0/189.
0.401483100.00.000.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/105.
0.461483900.00.000.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/287.
3.161456900.00.000.22
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/4.
0.001485800.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/532.
6.321431600.00.000.34
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/366.
4.4014588110.00.000.21
10.161.117.187172.17.0.3:80GET / HTTP/1.1

45-0-0/0/31.
0.31148523480.00.000.02
10.161.117.158172.17.0.3:80NULL

46-0-0/0/2.
0.34148573760.00.000.00
10.161.117.192172.17.0.3:80GET / HTTP/1.1

47-0-0/0/138.
1.7014698110.00.000.10
10.161.117.192172.17.0.3:80NULL

48-0-0/0/135.
1.841469800.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-18 17:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b79fb3472b

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 16-Jun-2024 18:48:25 UTC
Restart Time: Wednesday, 05-Jun-2024 17:50:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 days 58 minutes 18 seconds
Server load: 1.06 1.18 1.11
Total accesses: 10874405 - Total Traffic: 7.7 GB
CPU Usage: u88.11 s7.33 cu0 cs0 - .01% CPU load
11.4 requests/sec - 8.5 kB/second - 763 B/request
29 requests currently being processed, 5 idle workers
CKKKK_K_W_KKKKKKK__KKCKKKKKKKKC.KK...K..........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02426601/76/433226C
1.190141.00.06317.26
10.161.117.158172.17.0.3:80NULL

1-024269411/22/424224K
0.560911.40.02310.28
10.161.117.187172.17.0.3:80GET /Pay_Index.html HTTP/1.1

2-02426671/22/417345K
0.563100.90.02305.89
10.161.117.192172.17.0.3:80GET / HTTP/1.1

3-02426351/137/421869K
1.973170.90.10307.60
10.161.117.192172.17.0.3:80GET / HTTP/1.1

4-02425641/164/408938K
2.19280.90.13299.83
10.161.117.218172.17.0.3:80GET / HTTP/1.1

5-02427150/2/402702_
0.330130.00.00294.82
10.161.117.192172.17.0.3:80NULL

6-024262731/165/408090K
2.230831.50.13298.47
10.161.117.192172.17.0.3:80GET /user/reg.php HTTP/1.1

7-02426700/20/404166_
0.530110.00.02296.48
10.161.117.253172.17.0.3:80GET / HTTP/1.1

8-02426950/106/397692W
1.58000.00.07290.53
10.161.117.192172.17.0.3:80GET /server-status HTTP/1.1

9-02426730/113/398594_
1.640150.00.08290.99
10.161.117.253172.17.0.3:80GET /sobre-nosotros HTTP/1.1

10-02426481/228/390688K
2.992140.90.17285.52
10.161.117.187172.17.0.3:80GET / HTTP/1.1

11-024267462/66/384094K
1.050961.90.06280.14
10.161.117.187172.17.0.3:80GET /public/static/index/picture/img_33.png HTTP/1.1

12-02426102/358/375870K
4.56194.30.24273.40
10.161.117.187172.17.0.3:80GET /favicon.ico HTTP/1.1

13-02427161/3/361268K
0.343100.90.01262.11
10.161.117.253172.17.0.3:80GET / HTTP/1.1

14-02426971/108/355898K
1.613130.90.07256.06
10.161.117.192172.17.0.3:80GET /wp-content/themes/about.php HTTP/1.1

15-02425501/208/350425K
2.704111.10.13264.33
10.161.117.192172.17.0.3:80GET /wp-login.php HTTP/1.1

16-02426981/15/332975K
0.530120.90.01240.60
10.161.117.187172.17.0.3:80GET /wp-content/themes/index.php HTTP/1.1

17-02426990/104/329517_
1.560150.00.07238.16
10.161.117.218172.17.0.3:80GET /media/com_acym/css/libraries/foundation_email.min.css HTTP

18-02426550/225/318569_
2.900120.00.13228.87
10.161.117.158172.17.0.3:80GET //vendor/phpunit/phpunit/phpunit.xsd HTTP/1.1

19-02427171/6/310824K
0.360151.10.01222.68
10.161.117.192172.17.0.3:80GET /assets/plugins/jquery-file-upload/server/php/ HTTP/1.1

20-02427001/9/299008K
0.460201.20.01215.25
10.161.117.158172.17.0.3:80GET /gallery/oeuvres-en-lien/oeuvre/1742/pot-de-seville HTTP/1.

21-02423801/534/295937C
6.570130.60.37212.58
10.161.117.192172.17.0.3:80NULL

22-024267861/70/280269K
1.100936.70.04201.56
10.161.117.158172.17.0.3:80GET /wp-admin/includes/cloud.php HTTP/1.1

23-02427281/1/270008K
0.3233490.90.00193.87
10.161.117.158172.17.0.3:80GET / HTTP/1.1

24-024251764/523/252081K
6.3301046.90.38181.23
10.161.117.253172.17.0.3:80GET /wp-includes/block-patterns/ HTTP/1.1

25-02427321/1/227737K
0.3023200.90.00165.08
10.161.117.218172.17.0.3:80GET /wp-includes/SimplePie/index.php HTTP/1.1

26-02425181/398/207550K
4.913160.90.28151.10
10.161.117.218172.17.0.3:80GET / HTTP/1.1

27-02427011/106/193716K
1.514130.90.08139.91
10.161.117.158172.17.0.3:80GET / HTTP/1.1

28-024270258/60/172476W
0.970034.30.04124.52
10.161.117.192172.17.0.3:80GET /plugin.php HTTP/1.1

29-02427031/17/154365K
0.503150.90.01112.14
10.161.117.253172.17.0.3:80GET / HTTP/1.1

30-02427041/8/136792C
0.39091.00.01109.43
10.161.117.187172.17.0.3:80NULL

31-0-0/0/122460.
0.3529120.00.0089.21
10.161.117.158172.17.0.3:80GET / HTTP/1.1

32-02427061/10/109864K
0.420100.80.0179.50
10.161.117.218172.17.0.3:80GET / HTTP/1.1

33-02427071/17/91520K
0.48081.00.0266.41
10.161.117.253172.17.0.3:80GET /debug/default/view?panel=config HTTP/1.1

34-0-0/0/80014.
0.923500.00.0057.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/70799.
0.3517700.00.0051.52
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/56040.
1.5016480.00.0041.07
10.161.117.158172.17.0.3:80GET / HTTP/1.1

37-02426181/340/50917K
4.283131.10.2637.61
10.161.117.158172.17.0.3:80GET / HTTP/1.1

38-0-0/0/37157.
0.72153180.00.0027.08
10.161.117.218172.17.0.3:80GET /blog/wp-content/plugins/translator/translator.php?l=is&u=h

39-0-0/0/27376.
0.649700.00.0019.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/21890.
0.32200130.00.0016.17
10.161.117.192172.17.0.3:80GET / HTTP/1.1

41-0-0/0/20750.
4.052340140.00.0015.55
10.161.117.192

42-0-0/0/14910.
0.00249700.00.0011.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/11114.
0.33519000.00.008.41
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/8613.
2.14506100.00.006.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/4692.
0.3052083160.00.003.36
10.161.117.253172.17.0.3:80GET /wp-login.php HTTP/1.1

46-0-0/0/4204.
0.40516100.00.002.92
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/3467.
0.32519470.00.002.50
10.161.117.192172.17.0.3:80GET /wp-login.php HTTP/1.1

48-0-0/0/2146.
1.59513900.00.001.56
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/2826.
0.345195120.00.002.03
10.161.117.187172.17.0.3:80GET / HTTP/1.1

50-0-0/0/3241.
0.35515400.00.002.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/1239.
0.34518200.00.000.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/1927.
2.785034150.00.001.43
10.161.117.187172.17.0.3:80NULL

53-0-0/0/3023.
2.87500200.00.002.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/1161.
0.00520600.00.000.84
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/1609.
0.31519600.00.001.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/1281.
0.40518000.00.000.88
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/972.
2.714913160.00.000.71
10.161.117.158172.17.0.3:80NULL

58-0-0/0/945.
0.335198140.00.000.68
10.161.117.192172.17.0.3:80GET /about.php HTTP/1.1

59-0-0/0/562.
0.32518780.00.000.36
10.161.117.187172.17.0.3:80GET / HTTP/1.1

60-0-0/0/79.
0.00520500.0</

Found on 2024-06-16 18:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b756c2f7d1

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 12-Jun-2024 15:41:20 UTC
Restart Time: Wednesday, 05-Jun-2024 10:14:21 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 days 5 hours 26 minutes 59 seconds
Server load: 1.44 1.19 1.14
Total accesses: 3878595 - Total Traffic: 2.8 GB
CPU Usage: u43.38 s3.26 cu0 cs0 - .00747% CPU load
6.21 requests/sec - 4849 B/second - 780 B/request
25 requests currently being processed, 4 idle workers
KKKKKKKKKKK_KC.___...KKCKKKK..K...KK..KW........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01046991/11/155544K
0.28060.80.01118.23
10.161.117.253172.17.0.3:80GET /e/data/js/ajax.js HTTP/1.1

1-01044981/301/153256K
2.12451.00.22116.62
10.161.117.187172.17.0.3:80GET /wp-content/plugins/email-posts-to-subscribers/readme.txt H

2-01047191/2/153720K
0.21170.80.00117.33
10.161.117.218172.17.0.3:80GET /data/admin/allowurl.txt HTTP/1.1

3-010462850/178/151581K
1.350735.90.13115.98
10.161.117.187172.17.0.3:80GET /wp-admin/images/im/ HTTP/1.1

4-01047201/1/148880K
0.2222350.90.00114.03
10.161.117.158172.17.0.3:80GET /078cd2e393-gallery/ HTTP/1.1

5-010468232/45/150128K
0.490823.40.03114.75
10.161.117.158172.17.0.3:80GET /WordPress/ HTTP/1.1

6-01046841/14/146359K
0.28070.60.01111.28
10.161.117.187172.17.0.3:80HEAD / HTTP/1.1

7-01046161/325/143937K
2.23381.10.24109.62
10.161.117.192172.17.0.3:80GET /wp-content/plugins/include.php HTTP/1.1

8-01047211/1/147486K
0.2122390.90.00112.53
10.161.117.253172.17.0.3:80GET /mesembryanthemum-gelato-mix-12-4-paks/broccoli-packpro-12-

9-010468535/44/138808K
0.480726.40.03104.88
10.161.117.218172.17.0.3:80GET /moon.php HTTP/1.1

10-01046482/211/140316K
1.56071.90.15105.49
10.161.117.253172.17.0.3:80GET / HTTP/1.1

11-01046180/101/135806_
0.85070.00.08102.63
10.161.117.192172.17.0.3:80GET / HTTP/1.1

12-01045481/285/127643K
2.05060.70.2096.43
10.161.117.192172.17.0.3:80GET / HTTP/1.1

13-01046971/11/119152C
0.28171.10.0188.52
10.161.117.158172.17.0.3:80NULL

14-0-0/0/111311.
0.232700.00.0082.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

15-01046880/12/109670_
0.28070.00.0180.27
10.161.117.218172.17.0.3:80GET / HTTP/1.1

16-01047010/11/106461_
0.28070.00.0178.12
10.161.117.218172.17.0.3:80GET /catalog/Category/JMTSCU/Cleaning-Equipment/Scrubbers-Auto-

17-01047030/8/108669_
0.25060.00.0179.15
10.161.117.192172.17.0.3:80GET /wp-admin/css/colors/coffee/index.php HTTP/1.1

18-0-0/0/97829.
1.813260.00.0070.64
10.161.117.253172.17.0.3:80NULL

19-0-0/0/98940.
0.24970.00.0071.93
10.161.117.158172.17.0.3:80GET / HTTP/1.1

20-0-0/0/98576.
1.333000.00.0071.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

21-01046441/26/94569K
0.37271.00.0269.27
10.161.117.187172.17.0.3:80GET /.vscode/sftp.json HTTP/1.1

22-010468964/175/95197K
1.310846.00.1369.15
10.161.117.187172.17.0.3:80GET /it/ HTTP/1.1

23-01046901/121/93797C
0.94070.80.0867.80
10.161.117.192172.17.0.3:80NULL

24-01046911/35/88724K
0.42071.00.0364.25
10.161.117.187172.17.0.3:80GET /v2/_catalog HTTP/1.1

25-010465159/78/86450K
0.710836.30.0563.50
10.161.117.158172.17.0.3:80GET /wp-content/plugins/Cache/Cache.php HTTP/1.1

26-01047055/107/78796K
0.88063.70.0857.67
10.161.117.192172.17.0.3:80GET /wp-content/themes/lightspeed/framework/_scripts/valums_upl

27-01046461/33/72537K
0.43270.90.0352.69
10.161.117.253172.17.0.3:80GET /data/admin/allowurl.txt HTTP/1.1

28-0-0/0/71209.
0.241300.00.0051.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/63897.
0.241770.00.0046.60
10.161.117.253

30-01047081/8/59473K
0.26060.80.0143.18
10.161.117.158172.17.0.3:80GET / HTTP/1.1

31-0-0/0/54646.
0.221200.00.0039.69
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/48164.
0.9711200.00.0035.08
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/39172.
0.4110780.00.0028.52
10.161.117.253172.17.0.3:80GET / HTTP/1.1

34-01046551/123/32068K
1.01361.10.0923.38
10.161.117.187172.17.0.3:80GET /picard-de-beaumont-foley/label--3597161?lang=fr_CA HTTP/1.

35-01044261/381/32893K
2.59070.80.2923.57
10.161.117.218172.17.0.3:80GET /data/admin/allowurl.txt HTTP/1.1

36-0-0/0/28196.
0.238300.00.0020.53
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/17978.
1.031400.00.0012.92
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-010465823/45/19412K
0.510716.30.0414.21
10.161.117.192172.17.0.3:80GET /small.php HTTP/1.1

39-01045840/239/13509W
1.73000.00.189.85
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

40-0-0/0/10513.
1.0418970.00.007.60
10.161.117.187172.17.0.3:80GET / HTTP/1.1

41-0-0/0/8139.
0.6122760.00.006.11
10.161.117.158

42-0-0/0/6610.
1.4419870.00.004.84
10.161.117.158172.17.0.3:80NULL

43-0-0/0/3311.
0.2518400.00.002.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/3370.
1.152500.00.002.39
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/2275.
0.9116000.00.001.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/1960.
0.8216600.00.001.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/1137.
0.3714890.00.000.92
10.161.117.192172.17.0.3:80GET / HTTP/1.1

48-0-0/0/563.
0.2220960.00.000.41
10.161.117.218172.17.0.3:80GET / HTTP/1.1

49-0-0/0/762.
0.2121400.00.000.58
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/420.
0.2619560.00.000.32
10.161.117.158172.17.0.3:80GET / HTTP/1.1

51-0-0/0/1305.
0.8219260.00.000.98
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

52-0-0/0/215.
0.0022800.00.000.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/1085.
1.0211300.00.000.76
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/570.
0.26194100.00.000.38
10.161.117.187172.17.0.3:80POST /alfacgiapi/perl.alfa HTTP/1.1

55-0-0/0/279.
0.951319400.00.000.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/316.
0.771314500.00.000.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/132.
0.221643600.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/16.
0.202526000.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/48.
0.402516100.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/469.
0.242522860.00.000.34
10.161.117.253172.17.0.3:80GET / HTTP/1.1

61

Found on 2024-06-12 15:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b70c25de0c

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 10-Jun-2024 16:59:40 UTC
Restart Time: Wednesday, 05-Jun-2024 10:14:21 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 days 6 hours 45 minutes 19 seconds
Server load: 0.34 0.39 0.45
Total accesses: 443580 - Total Traffic: 390.8 MB
CPU Usage: u9.26 s.71 cu0 cs0 - .00218% CPU load
.972 requests/sec - 898 B/second - 923 B/request
3 requests currently being processed, 7 idle workers
__.K__.W_K.__...................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0302110/52/36616_
0.58280.00.0532.42
10.161.117.187172.17.0.3:80NULL

1-0302430/4/36106_
0.24190.00.0031.85
10.161.117.253172.17.0.3:80GET / HTTP/1.1

2-0-0/0/36077.
0.469700.00.0031.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

3-0302181/52/35257K
0.60280.90.0431.14
10.161.117.218172.17.0.3:80GET / HTTP/1.1

4-0302410/12/34261_
0.30280.00.0130.21
10.161.117.187172.17.0.3:80HEAD /wordpress/ HTTP/1.1

5-0302120/55/33405_
0.64160.00.0529.46
10.161.117.187

6-0-0/0/32862.
0.424570.00.0028.94
10.161.117.158172.17.0.3:80GET / HTTP/1.1

7-0302420/12/32574W
0.29000.00.0128.81
10.161.117.187172.17.0.3:80GET /server-status HTTP/1.1

8-0302280/34/30893_
0.45690.00.0327.24
10.161.117.187172.17.0.3:80NULL

9-0301612/130/28582K
1.17471.70.1225.17
10.161.117.192172.17.0.3:80GET /locations/london/hampstead/images/home/images/main/scripts

10-0-0/0/27039.
0.0019400.00.0023.78
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

11-0302360/14/25824_
0.32180.00.0122.71
10.161.117.192172.17.0.3:80GET /about-us/news-media/monkeymedia-software-to-hold-next-webi

12-0302370/18/20049_
0.33270.00.0217.58
10.161.117.192172.17.0.3:80NULL

13-0-0/0/12746.
0.0019200.00.0011.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

14-0-0/0/7531.
0.4227970.00.006.58
10.161.117.158172.17.0.3:80HEAD / HTTP/1.1

15-0-0/0/5775.
0.2655690.00.005.09
10.161.117.158

16-0-0/0/3861.
0.206472180.00.003.33
10.161.117.192172.17.0.3:80NULL

17-0-0/0/1445.
0.21738400.00.001.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

18-0-0/0/648.
0.241045360.00.000.55
10.161.117.218172.17.0.3:80GET / HTTP/1.1

19-0-0/0/369.
0.271677800.00.000.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-0-0/0/162.
0.744120370.00.000.13
10.161.117.218172.17.0.3:80GET / HTTP/1.1

21-0-0/0/267.
0.364183000.00.000.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-0-0/0/161.
0.324196860.00.000.14
10.161.117.158172.17.0.3:80GET / HTTP/1.1

23-0-0/0/562.
0.224210160.00.000.51
10.161.117.253172.17.0.3:80NULL

24-0-0/0/366.
0.224210500.00.000.32
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0-0/0/96.
0.2320356500.00.000.09
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/3.
0.0020360700.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/43.
0.4820614180.00.000.04
10.161.117.187172.17.0.3:80GET / HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-10 16:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7ddd5ed1a

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 08-Jun-2024 16:59:29 UTC
Restart Time: Wednesday, 05-Jun-2024 10:13:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 6 hours 46 minutes 24 seconds
Server load: 0.11 0.36 0.36
Total accesses: 276347 - Total Traffic: 241.7 MB
CPU Usage: u17.23 s1.35 cu0 cs0 - .00655% CPU load
.974 requests/sec - 893 B/second - 917 B/request
3 requests currently being processed, 7 idle workers
K__._.KW._._..._._..............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0200201/16/22654K
0.802111.20.0219.91
10.161.117.253172.17.0.3:80GET /jillian-michael-khimaira-farm-wedding/ HTTP/1.1

1-0200320/4/22283_
0.354140.00.0019.46
10.161.117.218172.17.0.3:80NULL

2-0200260/11/21991_
0.471130.00.0119.25
10.161.117.218172.17.0.3:80GET / HTTP/1.1

3-0-0/0/21320.
0.5811100.00.0018.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

4-0200270/10/21343_
0.730110.00.0118.67
10.161.117.218172.17.0.3:80GET / HTTP/1.1

5-0-0/0/21014.
1.1211590.00.0018.42
10.161.117.253

6-0200051/20/19727K
0.874150.50.0217.30
10.161.117.187172.17.0.3:80HEAD / HTTP/1.1

7-0199910/29/19901W
1.02000.00.0217.40
10.161.117.187172.17.0.3:80GET /server-status HTTP/1.1

8-0-0/0/19380.
1.8311400.00.0016.93
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

9-0198980/114/18163_
2.212120.00.1015.92
10.161.117.158

10-0-0/0/16039.
1.6311200.00.0013.98
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

11-0199970/21/15275_
0.533250.00.0213.37
10.161.117.158172.17.0.3:80GET / HTTP/1.1

12-0-0/0/12629.
0.6119900.00.0011.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

13-0-0/0/8091.
0.0019800.00.007.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

14-0-0/0/4864.
0.766600.00.004.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

15-0200110/15/4857_
0.405170.00.024.32
10.161.117.187

16-0-0/0/3273.
0.0019700.00.002.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

17-0200130/18/1731_
0.85190.00.011.48
10.161.117.158172.17.0.3:80NULL

18-0-0/0/1145.
0.0019600.00.001.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-0-0/0/264.
0.003022200.00.000.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-0-0/0/96.
0.59337406190.00.000.08
10.161.117.218172.17.0.3:80NULL

21-0-0/0/43.
0.57337395920.00.000.03
10.161.117.192172.17.0.3:80NULL

22-0-0/0/23.
0.593372900.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

23-0-0/0/81.
0.634589500.00.000.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/104.
0.574568100.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0-0/0/35.
0.404581100.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/20.
0.4745810150.00.000.02
10.161.117.218

27-0-0/0/1.
0.0019001300.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-08 16:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7a545b5d7

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 04-Jun-2024 17:34:38 UTC
Restart Time: Monday, 03-Jun-2024 17:04:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 30 minutes 11 seconds
Server load: 0.90 0.84 0.83
Total accesses: 440396 - Total Traffic: 352.2 MB
CPU Usage: u30.42 s2.24 cu0 cs0 - .037% CPU load
4.99 requests/sec - 4186 B/second - 838 B/request
9 requests currently being processed, 9 idle workers
K__KK__.__.CK.KW_C__K...........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0263851/3/23210K
0.480190.80.0018.53
10.161.117.158172.17.0.3:80GET /robots.txt HTTP/1.1

1-0263020/38/23593_
0.812190.00.0318.91
10.161.117.187172.17.0.3:80NULL

2-0263700/13/22392_
0.533110.00.0118.03
10.161.117.187172.17.0.3:80GET / HTTP/1.0

3-0263861/3/22562K
0.654151.20.0018.13
10.161.117.253172.17.0.3:80GET /?fbclid=PAZXh0bgNhZW0CMTEAAaa2UUnHzJXcQ29f4euPdegfbeT1W_8v

4-0263871/4/22250K
0.301180.90.0017.60
10.161.117.187172.17.0.3:80GET /assets/responsive/3rdparty/bootstrap/css/all.css?pageToken

5-0263880/3/21332_
0.693180.00.0016.98
10.161.117.187172.17.0.3:80GET / HTTP/1.1

6-0263890/2/21608_
0.422150.00.0017.17
10.161.117.253

7-0-0/0/20497.
0.7742220.00.0016.27
10.161.117.218172.17.0.3:80NULL

8-0263610/13/21361_
0.781210.00.0116.90
10.161.117.253172.17.0.3:80NULL

9-0263390/27/19016_
0.591160.00.0215.44
10.161.117.187172.17.0.3:80NULL

10-0-0/0/20682.
0.2641120.00.0016.53
10.161.117.158172.17.0.3:80NULL

11-0263631/15/19091C
0.63000.20.0115.33
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-02636467/78/18039K
1.5601249.50.0614.81
10.161.117.218172.17.0.3:80GET /ws.php HTTP/1.1

13-0-0/0/17657.
0.3844100.00.0014.16
10.161.117.192172.17.0.3:80GET //wp-content/plugins/fix/up.php HTTP/1.1

14-0263111/38/18315K
0.764151.10.0314.78
10.161.117.218172.17.0.3:80GET /ini.php HTTP/1.1

15-0263760/8/17087W
0.36000.00.0113.48
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

16-0263520/26/17932_
0.592190.00.0214.29
10.161.117.158

17-0263531/29/16205C
0.941240.50.0212.89
10.161.117.187172.17.0.3:80NULL

18-0263540/28/14745_
0.810150.00.0211.82
10.161.117.253172.17.0.3:80NULL

19-0263550/21/12253_
0.513170.00.029.76
10.161.117.253

20-02637768/72/11126K
1.690941.30.048.97
10.161.117.192172.17.0.3:80GET /wp-content/plugins/seoo/wsoyanz.php HTTP/1.1

21-0-0/0/8482.
4.2912500.00.006.81
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-0-0/0/8220.
0.222952340.00.006.64
10.161.117.158172.17.0.3:80NULL

23-0-0/0/5948.
1.0133800.00.004.70
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/4391.
0.99403100.00.003.40
10.161.117.218172.17.0.3:80GET / HTTP/1.1

25-0-0/0/3599.
0.234712400.00.002.86
10.161.117.187172.17.0.3:80NULL

26-0-0/0/2031.
0.0047600.00.001.61
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/2151.
0.62470120.00.001.65
10.161.117.192172.17.0.3:80NULL

28-0-0/0/1381.
1.00313110.00.001.10
10.161.117.158172.17.0.3:80GET / HTTP/1.1

29-0-0/0/805.
0.4238200.00.000.62
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/450.
0.272306100.00.000.39
10.161.117.158172.17.0.3:80GET /robots.txt HTTP/1.0

31-0-0/0/409.
0.302258100.00.000.35
10.161.117.158172.17.0.3:80NULL

32-0-0/0/315.
2.00365200.00.000.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/311.
0.52590800.00.000.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/135.
0.335890100.00.000.11
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

35-0-0/0/83.
0.00933400.00.000.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/213.
0.379264170.00.000.17
10.161.117.253172.17.0.3:80NULL

37-0-0/0/32.
0.34929700.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/175.
0.53924500.00.000.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/38.
0.84912600.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/77.
0.2293282340.00.000.07
10.161.117.187172.17.0.3:80NULL

41-0-0/0/12.
0.729265120.00.000.01
10.161.117.253172.17.0.3:80GET /updates.php HTTP/1.1

42-0-0/0/3.
0.00933300.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/36.
0.29929000.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/49.
0.31931900.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/7.
0.71930300.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/8.
0.31929200.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/82.
1.3157624160.00.000.07
10.161.117.192172.17.0.3:80NULL


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-06-04 17:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318629b4188629b418d849c8f1

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.2)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 02-Jun-2024 17:31:05 UTC
Restart Time: Wednesday, 15-May-2024 08:55:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  18 days 8 hours 35 minutes 33 seconds
Server load: 0.39 0.51 0.51
Total accesses: 9110639 - Total Traffic: 7.0 GB
CPU Usage: u32.8 s2.44 cu0 cs0 - .00222% CPU load
5.74 requests/sec - 4728 B/second - 823 B/request
18 requests currently being processed, 4 idle workers
K_KKKKKK........K.....K..K...........KWKK.K._..._......_.....KKK
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-04407961/244/482047K
1.79360.70.16377.89
10.161.117.218172.17.0.2:80GET /robots.txt HTTP/1.1

1-04409490/9/468672_
0.27070.00.01368.06
10.161.117.218172.17.0.2:80GET /wp-includes/IXR/index.php HTTP/1.1

2-044084815/45/471039K
0.510610.70.04369.63
10.161.117.192172.17.0.2:80GET /wp-content/plugins/ph-file-manager/wp-file.php HTTP/1.1

3-04409601/2/467452K
0.21460.90.00366.14
10.161.117.218172.17.0.2:80GET /wp-includes/ID3/index.php HTTP/1.1

4-04409511/9/455633K
0.26061.10.01358.03
10.161.117.253172.17.0.2:80GET / HTTP/1.1

5-04409522/7/447890K
0.25371.60.01352.59
10.161.117.158172.17.0.2:80GET /2014/08/images/main/social/handlers/scripts/apps/images/ho

6-04409531/10/451272K
0.29280.90.01354.40
10.161.117.192172.17.0.2:80GET /e/DoInfo/AddInfo.php HTTP/1.1

7-04409611/1/435782K
0.2102190.90.00342.77
10.161.117.187172.17.0.2:80GET /plt-increase-course-frequency-major-cities-2016/images/mai

8-0-0/0/435320.
0.276700.00.00342.16
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

9-0-0/0/420416.
1.369780.00.00331.03
10.161.117.192172.17.0.2:80GET / HTTP/1.0

10-0-0/0/423011.
0.229260.00.00331.43
10.161.117.253172.17.0.2:80GET /wordpress HTTP/1.1

11-0-0/0/412041.
0.591300.00.00323.40
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

12-0-0/0/402318.
0.769000.00.00316.78
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

13-0-0/0/389991.
1.047380.00.00304.90
10.161.117.158172.17.0.2:80NULL

14-0-0/0/369651.
0.416460.00.00289.81
10.161.117.218172.17.0.2:80NULL

15-0-0/0/352200.
0.718070.00.00276.70
10.161.117.253172.17.0.2:80GET /robots.txt HTTP/1.1

16-044087411/128/336149K
1.05057.90.11263.44
10.161.117.187172.17.0.2:80GET /wp-content/plugins/forminator/addons/pro/ HTTP/1.1

17-0-0/0/306322.
0.2910700.00.00240.29
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

18-0-0/0/281167.
0.366800.00.00220.44
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

19-0-0/0/250712.
0.238700.00.00196.42
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

20-0-0/0/221501.
0.679880.00.00174.35
10.161.117.187172.17.0.2:80GET /ads.txt HTTP/1.1

21-0-0/0/186073.
0.956370.00.00145.00
10.161.117.253172.17.0.2:80GET / HTTP/1.0

22-04407911/178/139309K
1.39061.10.14109.15
10.161.117.158172.17.0.2:80GET / HTTP/1.1

23-0-0/0/108540.
0.247660.00.0086.26
10.161.117.192172.17.0.2:80NULL

24-0-0/0/83570.
0.279580.00.0065.43
10.161.117.218172.17.0.2:80NULL

25-04408611/32/69123K
0.44190.90.0354.07
10.161.117.158172.17.0.2:80GET /fuschia-swingtime-red-white-hb/firefly-sun-hb-combo/viola-

26-0-0/0/52258.
0.288500.00.0040.72
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

27-0-0/0/41144.
0.2110600.00.0032.67
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

28-0-0/0/34024.
0.2210960.00.0026.63
10.161.117.192172.17.0.2:80GET /wp-includes/PHPMailer/index.php HTTP/1.1

29-0-0/0/26238.
0.351790.00.0020.35
10.161.117.187172.17.0.2:80GET /metronic/assets/global/plugins/jquery-file-upload/server/p

30-0-0/0/21663.
0.219400.00.0016.91
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

31-0-0/0/16575.
0.2210400.00.0012.96
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

32-0-0/0/9679.
0.21108100.00.007.75
10.161.117.253172.17.0.2:80NULL

33-0-0/0/8298.
0.229180.00.006.48
10.161.117.187172.17.0.2:80GET /case/%E5%8C%BB%E7%99%82%E3%81%AB%E9%96%A2%E3%81%99%E3%82%8

34-0-0/0/6679.
0.2410200.00.005.32
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

35-0-0/0/5081.
0.257960.00.004.00
10.161.117.158172.17.0.2:80NULL

36-0-0/0/3333.
0.266670.00.002.65
10.161.117.187172.17.0.2:80GET /robots.txt HTTP/1.1

37-04409166/21/2168K
0.36274.90.021.70
10.161.117.218172.17.0.2:80GET /tag/pub-licence/page/3/images/responsive/header/images/res

38-04409170/30/1654W
0.42000.00.031.36
10.161.117.192172.17.0.2:80GET /server-status HTTP/1.1

39-044091859/71/1965K
0.690748.70.061.57
10.161.117.158172.17.0.2:80GET /tag/late-night-pubs/images/home/scripts/images/home/01_Per

40-04409193/19/1445K
0.34072.60.021.14
10.161.117.253172.17.0.2:80GET /skills-and-training/dps-training/scripts/images/main/socia

41-0-0/0/1290.
0.2210500.00.001.08
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

42-04409213/23/791K
0.37072.30.020.66
10.161.117.253172.17.0.2:80GET /30/29/01/1.htm HTTP/1.1

43-0-0/0/1079.
0.247400.00.000.88
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

44-04409230/22/1515_
0.37080.00.021.20
10.161.117.218172.17.0.2:80NULL

45-0-0/0/995.
0.266560.00.000.81
10.161.117.158172.17.0.2:80GET /ads.txt HTTP/1.1

46-0-0/0/1420.
0.2111070.00.001.13
10.161.117.187172.17.0.2:80GET /e/install/index.php?enews=setdb&f=4 HTTP/1.1

47-0-0/0/808.
0.247780.00.000.64
10.161.117.158172.17.0.2:80GET /ads.txt HTTP/1.1

48-04409270/22/255_
0.37180.00.020.23
10.161.117.187172.17.0.2:80NULL

49-0-0/0/215.
0.258860.00.000.19
10.161.117.192172.17.0.2:80NULL

50-0-0/0/444.
0.209300.00.000.32
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

51-0-0/0/449.
0.249970.00.000.38
10.161.117.192172.17.0.2:80GET /robots.txt HTTP/1.1

52-0-0/0/166.
0.211002350.00.000.14
10.161.117.192

53-0-0/0/80.
0.247800.00.000.07
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

54-0-0/0/87.
0.228970.00.000.08
10.161.117.192172.17.0.2:80GET /robots.txt HTTP/1.1

55-04409340/116/142_
0.96160.00.080.11
10.161.117.187172.17.0.2:80NULL

56-0-0/0/40.
0.238100.00.000.04
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

57-0-0/0/49.
0.323660.00.000.04
10.161.117.218172.17.0.2:80GET / HTTP/1.1

58-0-0/0/30.
0.248480.00.000.03
10.161.117.218172.17.0.2:80GET /wp-includes/fonts/index.php HTTP/1.1

59-0-0/0/36.
0.257100.00.000.04
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

60-0-0/0/57.
0.302500.00.000.05
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

61-0440940<

Found on 2024-06-02 17:31

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b78ebf2aae

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 01-Jun-2024 13:50:45 UTC
Restart Time: Wednesday, 15-May-2024 09:09:54 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  17 days 4 hours 40 minutes 50 seconds
Server load: 0.46 0.56 0.61
Total accesses: 8567131 - Total Traffic: 6.6 GB
CPU Usage: u50.42 s12.3 cu0 cs0 - .00422% CPU load
5.77 requests/sec - 4734 B/second - 820 B/request
17 requests currently being processed, 12 idle workers
.__KKKKK.K_K__KK__C._C__K_W_KCKK................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0-0/0/451420.
0.570100.00.00354.19
10.161.117.158172.17.0.3:80NULL

1-04123530/7/446593_
0.402100.00.01350.10
10.161.117.187172.17.0.3:80NULL

2-04123340/35/438673_
1.03000.00.03344.55
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

3-04121891/123/447434K
1.961141.00.11350.37
10.161.117.253172.17.0.3:80GET /sitemap HTTP/1.1

4-04121591/243/430167K
3.700140.80.21337.53
10.161.117.218172.17.0.3:80GET / HTTP/1.1

5-04122925/89/424841K
1.721144.10.07331.64
10.161.117.218172.17.0.3:80GET /tag/nottingham/images/main/social/images/main/images/main/

6-04122361/79/418414K
1.690160.90.07326.63
10.161.117.253172.17.0.3:80GET /locations/east-midlands/nottingham/images/responsive/heade

7-04123551/2/412635K
0.271141.20.00324.16
10.161.117.218172.17.0.3:80GET /projects/gallery/articles/gallery/about/projects/contact/ 

8-0-0/0/414960.
0.893110.00.00324.99
10.161.117.218172.17.0.3:80NULL

9-04123561/3/406218K
0.280151.00.00317.80
10.161.117.192172.17.0.3:80GET /v2/_catalog HTTP/1.1

10-04122820/49/390130_
1.201170.00.04305.61
10.161.117.253172.17.0.3:80NULL

11-04123371/21/385500K
0.521110.90.02301.66
10.161.117.192172.17.0.3:80GET /wp-includes/sitemaps/index.php HTTP/1.1

12-04123570/2/380488_
0.6306620.00.00297.97
10.161.117.158172.17.0.3:80GET / HTTP/1.1

13-04123580/1/360337_
0.2302460.00.00282.12
10.161.117.192172.17.0.3:80NULL

14-04123391/13/343992K
0.754141.00.01270.24
10.161.117.253172.17.0.3:80GET /config.json HTTP/1.1

15-04123171/25/330035K
0.674110.80.02258.50
10.161.117.187172.17.0.3:80GET /tag/fake-booze/images/responsive/header/images/main/social

16-04123590/1/316400_
0.5025420.00.00247.52
10.161.117.187172.17.0.3:80NULL

17-04123600/1/290745_
0.4114230.00.00227.12
10.161.117.192172.17.0.3:80NULL

18-04123431/14/265083C
0.572190.60.01207.26
10.161.117.187172.17.0.3:80NULL

19-0-0/0/235761.
0.86100.00.00184.40
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-04123610/1/205981_
0.2312370.00.00160.86
10.161.117.158172.17.0.3:80NULL

21-04123621/1/169886C
0.2212340.90.00132.98
10.161.117.192172.17.0.3:80NULL

22-04123630/1/132131_
0.5806140.00.00103.62
10.161.117.218172.17.0.3:80NULL

23-04123640/1/105612_
0.5906230.00.0081.88
10.161.117.253172.17.0.3:80NULL

24-04123241/19/79728K
0.454170.90.0262.01
10.161.117.253172.17.0.3:80GET /telescope/requests HTTP/1.1

25-04123650/2/58149_
0.46200.00.0045.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-04123660/1/49092W
0.62000.00.0038.49
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

27-04123480/16/40257_
0.662100.00.0131.32
10.161.117.187172.17.0.3:80NULL

28-04123491/15/34763K
0.794101.20.0126.99
10.161.117.192172.17.0.3:80GET /imdbpicks/hollywood-power-couples/rg3319700224/mediaviewer

29-04123671/1/24068C
0.4004190.90.0018.91
10.161.117.192172.17.0.3:80NULL

30-04123681/1/18246K
0.6046251.10.0014.19
10.161.117.218172.17.0.3:80GET /wp-login.php HTTP/1.1

31-04123691/1/12632K
0.4644771.00.009.89
10.161.117.253172.17.0.3:80GET / HTTP/1.1

32-0-0/0/8723.
0.8089800.00.006.75
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/7106.
0.0094100.00.005.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/5452.
0.692151600.00.004.42
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/3438.
0.612155600.00.002.68
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/3806.
1.242540400.00.002.91
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/3352.
1.8225505150.00.002.55
10.161.117.253172.17.0.3:80NULL

38-0-0/0/1694.
3.002509700.00.001.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/1297.
1.2810870000.00.001.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1188.
0.311736983280.00.000.96
10.161.117.253172.17.0.3:80NULL

41-0-0/0/1468.
0.0017370300.00.001.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/1127.
0.7217349700.00.000.88
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/982.
0.2617369500.00.000.75
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/885.
0.64173678130.00.000.65
10.161.117.187172.17.0.3:80NULL

45-0-0/0/1466.
0.601737026240.00.001.17
10.161.117.192172.17.0.3:80GET /catalog/p/TEB1200-EA/PRO-LINK-Pro-Formance-Energy-On-The-R

46-0-0/0/780.
1.14173461160.00.000.63
10.161.117.218172.17.0.3:80GET /magmi/web/download_file.php?file=../../app/etc/local.xml H

47-0-0/0/894.
0.2518568500.00.000.67
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/618.
0.72185631180.00.000.46
10.161.117.192172.17.0.3:80NULL

49-0-0/0/883.
0.31185688190.00.000.66
10.161.117.253172.17.0.3:80GET /plus/ad_js.php HTTP/1.1

50-0-0/0/50.
0.0018570200.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/340.
0.3228252100.00.000.29
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/192.
0.78282463100.00.000.15
10.161.117.158172.17.0.3:80GET / HTTP/1.1

53-0-0/0/30.
0.5928254200.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/36.
0.3142783400.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/74.
0.73427805140.00.000.07
10.161.117.218172.17.0.3:80NULL

56-0-0/0/65.
0.51427734250.00.000.06
10.161.117.253172.17.0.3:80GET /blog/?feed=rss2 HTTP/1.1

57-0-0/0/28.
0.4242783870.00.000.03
10.161.117.218172.17.0.3:80NULL

58-0-0/0/33.
0.8642776100.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/24.
0.9742779800.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/25.
0.4542778660.00.000.02
10.161.117.158172.17.0.3:80NULL

61-0-0/0/15.
0.31427812120.00.000.01
10.161.117.192172.17.0.3:80NULL

Found on 2024-06-01 13:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318729b5ed8729b5ed31c747a4

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.5)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 30-May-2024 19:57:57 UTC
Restart Time: Wednesday, 15-May-2024 08:55:34 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 days 11 hours 2 minutes 22 seconds
Server load: 0.79 0.99 1.05
Total accesses: 7805100 - Total Traffic: 6.0 GB
CPU Usage: u62.54 s60.02 cu0 cs0 - .00918% CPU load
5.84 requests/sec - 4793 B/second - 820 B/request
18 requests currently being processed, 6 idle workers
KKKKK_KWK_KKK_KK_K_KK_KK........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03687141/11/417454K
0.434110.70.01326.02
10.161.117.187172.17.0.5:80GET /phpmyadmin2018/index.php?lang=en HTTP/1.1

1-03686661/137/406766K
1.870121.00.10317.91
10.161.117.218172.17.0.5:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-03686041/76/400673K
1.212110.70.06313.69
10.161.117.218172.17.0.5:80GET /phpMyAdmin-5/index.php?lang=en HTTP/1.1

3-03687209/14/392398K
0.490126.30.01308.47
10.161.117.218172.17.0.5:80GET /wp-includes/js/tinymce/plugins/compat3x/css/ HTTP/1.1

4-03687181/7/391496K
0.402130.80.01307.29
10.161.117.158172.17.0.5:80GET /2014/09/02/images/responsive/header/images/main/social/lin

5-03686670/135/386739_
1.880110.00.10303.76
10.161.117.218172.17.0.5:80GET / HTTP/1.1

6-03686861/31/384378K
0.692120.80.03300.71
10.161.117.187172.17.0.5:80GET /phpMyAdmin-5.1.2/index.php?lang=en HTTP/1.1

7-03687320/0/382217W
0.45000.00.00299.80
10.161.117.192172.17.0.5:80GET /server-status HTTP/1.1

8-03686971/16/375715K
0.494140.70.01294.09
10.161.117.218172.17.0.5:80GET /db/websql/index.php?lang=en HTTP/1.1

9-03687220/5/363657_
0.31170.00.00284.90
10.161.117.218172.17.0.5:80NULL

10-03687251/3/354881K
0.303130.70.00278.40
10.161.117.158172.17.0.5:80GET /phpmyadmin1/index.php?lang=en HTTP/1.1

11-03686581/153/350301K
2.093110.80.12274.57
10.161.117.158172.17.0.5:80GET /phpMyAdmin-5.1.1/index.php?lang=en HTTP/1.1

12-03686591/230/340296K
2.993111.10.16267.60
10.161.117.253172.17.0.5:80GET /da-epic-theme/themes/da-white/_wmos/js/_homepage.js HTTP/1

13-03687260/4/323385_
0.331110.00.00252.41
10.161.117.192172.17.0.5:80NULL

14-036869461/79/310462K
1.1801044.20.06243.06
10.161.117.253172.17.0.5:80GET /wp-content/plugins/ccx/ HTTP/1.1

15-03687281/3/306809K
0.312121.10.00239.36
10.161.117.192172.17.0.5:80GET /da-epic-theme/themes/da-caribbean/_wmos/js/jquery.transit.

16-03687290/1/282347_
0.3113300.00.00220.64
10.161.117.253172.17.0.5:80NULL

17-03686401/89/265932K
1.431111.00.07207.44
10.161.117.158172.17.0.5:80GET /about HTTP/1.1

18-03686410/50/239840_
0.95190.00.04186.99
10.161.117.187172.17.0.5:80NULL

19-03686961/26/221549K
0.570111.20.02171.74
10.161.117.187172.17.0.5:80GET /projects/design/products-services/design/products-services

20-03687021/18/193033K
0.522181.20.02150.40
10.161.117.253172.17.0.5:80POST /wp-login.php HTTP/1.1

21-03687300/1/149979_
0.3003130.00.00117.23
10.161.117.187172.17.0.5:80NULL

22-03687311/2/126556K
0.2933050.80.0098.05
10.161.117.253172.17.0.5:80GET / HTTP/1.1

23-03686781/222/93645K
2.892161.00.1673.29
10.161.117.158172.17.0.5:80GET /fr/Maison-%C3%A0-%C3%A9tages-Rue-Hyppolite-Denaut-La-Prair

24-0-0/0/72828.
0.5110890.00.0056.14
10.161.117.253172.17.0.5:80NULL

25-0-0/0/55942.
0.0019500.00.0043.30
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

26-0-0/0/48077.
0.6531700.00.0037.13
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

27-0-0/0/36003.
1.81402120.00.0028.25
10.161.117.187172.17.0.5:80NULL

28-0-0/0/31376.
0.0040500.00.0024.52
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

29-0-0/0/22339.
0.5168800.00.0017.47
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

30-0-0/0/20385.
0.5893600.00.0015.71
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

31-0-0/0/14016.
0.351064120.00.0010.81
10.161.117.158172.17.0.5:80NULL

32-0-0/0/8929.
0.3110783640.00.007.05
10.161.117.187172.17.0.5:80NULL

33-0-0/0/9427.
0.49270800.00.007.19
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

34-0-0/0/4348.
0.52270100.00.003.43
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

35-0-0/0/3128.
2.16248900.00.002.46
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

36-0-0/0/2051.
0.362810100.00.001.66
10.161.117.187172.17.0.5:80GET /robots.txt HTTP/1.1

37-0-0/0/1284.
1.10254700.00.001.04
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

38-0-0/0/1414.
1.642699600.00.001.29
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

39-0-0/0/1634.
0.3727075140.00.001.29
10.161.117.192172.17.0.5:80NULL

40-0-0/0/958.
0.3127071120.00.000.76
10.161.117.192172.17.0.5:80GET / HTTP/1.1

41-0-0/0/1651.
0.352708000.00.001.28
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

42-0-0/0/675.
0.3927027140.00.000.59
10.161.117.218172.17.0.5:80GET /ultius/environmental-problems-term-paper/ HTTP/1.1

43-0-0/0/935.
0.3527079110.00.000.76
10.161.117.192172.17.0.5:80GET / HTTP/1.0

44-0-0/0/437.
0.3227052190.00.000.36
10.161.117.253172.17.0.5:80GET / HTTP/1.1

45-0-0/0/1068.
0.342704600.00.000.87
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

46-0-0/0/734.
1.0026759120.00.000.60
10.161.117.187172.17.0.5:80GET /wp-admin HTTP/1.1

47-0-0/0/891.
0.3427039120.00.000.70
10.161.117.218172.17.0.5:80GET //wp-admin/css/wp-login.php HTTP/1.1

48-0-0/0/606.
0.002708500.00.000.53
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

49-0-0/0/558.
0.3327072140.00.000.44
10.161.117.192172.17.0.5:80NULL

50-0-0/0/327.
0.322707700.00.000.28
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

51-0-0/0/178.
0.282704900.00.000.16
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

52-0-0/0/185.
0.432699100.00.000.17
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

53-0-0/0/234.
1.622692900.00.000.20
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

54-0-0/0/62.
0.3727038140.00.000.06
10.161.117.192

55-0-0/0/90.
0.3327051130.00.000.09
10.161.117.187172.17.0.5:80NULL

56-0-0/0/115.
0.302706600.00.000.10
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

57-0-0/0/168.
0.002708400.00.000.13
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

58-0-0/0/67.
0.322703100.00.000.06
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

59-0-0/0/77.
0.342704090.00.000.07
10.161.117.253172.17.0.5:80NULL

60-0-0/0/22.
0.30270693190.00.000.02
10.161.117.253172.17.0.5:80NULL

<

Found on 2024-05-30 19:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7ce045bbc

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 29-May-2024 17:28:24 UTC
Restart Time: Wednesday, 15-May-2024 09:09:53 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  14 days 8 hours 18 minutes 30 seconds
Server load: 0.50 0.74 0.73
Total accesses: 7275430 - Total Traffic: 5.5 GB
CPU Usage: u42.81 s3.17 cu0 cs0 - .00371% CPU load
5.87 requests/sec - 4799 B/second - 817 B/request
8 requests currently being processed, 7 idle workers
KK._..KK__WK_..K..._.K_..._.....................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03390021/4/378193K
0.272110.80.00295.54
10.161.117.158172.17.0.3:80GET /.env HTTP/1.1

1-03388281/89/382560K
1.770171.10.07297.99
10.161.117.253172.17.0.3:80GET / HTTP/1.1

2-0-0/0/379393.
0.77300.00.00296.84
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

3-03390070/5/378539_
0.620130.00.00295.72
10.161.117.218172.17.0.3:80GET /.well-known/acme-challenge/xtIEB7_t0j5mvAcY0MTu79gNZSzI7ax

4-0-0/0/365043.
0.811500.00.00285.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

5-0-0/0/363788.
0.891100.00.00283.81
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

6-03390081/6/353849K
0.684120.80.01276.61
10.161.117.187172.17.0.3:80GET /wp-admin/ HTTP/1.1

7-03390091/3/358446K
0.540120.80.00280.52
10.161.117.192172.17.0.3:80GET /selling-alcohol-at-a-charity-fundraising-event/styles/apps

8-03390100/4/341628_
0.661160.00.00267.21
10.161.117.218172.17.0.3:80NULL

9-03390110/3/339680_
0.640120.00.00265.11
10.161.117.187172.17.0.3:80NULL

10-03390120/3/342069W
0.65000.00.00265.86
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

11-03390131/4/326692K
0.64391.10.00254.41
10.161.117.218172.17.0.3:80GET /?portfolio=vestibulum-ante HTTP/1.1

12-03388380/73/309059_
1.352160.00.06241.10
10.161.117.218172.17.0.3:80NULL

13-0-0/0/305151.
0.895800.00.00238.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

14-0-0/0/291566.
0.6188110.00.00227.34
10.161.117.192172.17.0.3:80NULL

15-03389241/33/288182K
1.070110.90.03224.96
10.161.117.187172.17.0.3:80GET /server HTTP/1.1

16-0-0/0/261911.
0.8225130.00.00204.22
10.161.117.158172.17.0.3:80GET / HTTP/1.1

17-0-0/0/248215.
0.958600.00.00193.64
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

18-0-0/0/232612.
0.608300.00.00180.68
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-03388670/45/200857_
1.20080.00.04155.83
10.161.117.187172.17.0.3:80GET /wp-content/themes/twentystd/index.php HTTP/1.1

20-0-0/0/163688.
0.695600.00.00127.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

21-03389651/32/141753K
0.742110.80.03110.03
10.161.117.253172.17.0.3:80GET / HTTP/1.1

22-03389700/17/110902_
0.793120.00.0186.34
10.161.117.192172.17.0.3:80GET / HTTP/1.0

23-0-0/0/88494.
0.7355170.00.0068.62
10.161.117.187172.17.0.3:80POST /wp-json/litespeed/v1/cdn_status HTTP/1.1

24-0-0/0/72536.
0.7536160.00.0055.96
10.161.117.253172.17.0.3:80GET / HTTP/1.1

25-0-0/0/52327.
0.755400.00.0040.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-03389310/128/41601_
2.061170.00.1032.22
10.161.117.187172.17.0.3:80GET /modlogan/ HTTP/1.0

27-0-0/0/35307.
0.4333140.00.0027.55
10.161.117.187172.17.0.3:80GET /search/?q=complexes HTTP/1.1

28-0-0/0/27303.
0.7528150.00.0020.98
10.161.117.192172.17.0.3:80NULL

29-0-0/0/23958.
0.732600.00.0018.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/18300.
0.009400.00.0014.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/11200.
0.59896190.00.008.79
10.161.117.218172.17.0.3:80NULL

32-0-0/0/8732.
0.373000.00.006.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/6982.
0.831400.00.005.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/4828.
0.009200.00.003.78
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/4045.
0.23932440.00.003.10
10.161.117.187172.17.0.3:80GET / HTTP/1.1

36-0-0/0/2481.
0.773800.00.001.94
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/1884.
0.601717000.00.001.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/1340.
0.261716100.00.001.09
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/801.
0.22171642400.00.000.64
10.161.117.187172.17.0.3:80NULL

40-0-0/0/1365.
0.23171602380.00.001.04
10.161.117.187

41-0-0/0/1573.
0.6117148100.00.001.16
10.161.117.253172.17.0.3:80GET / HTTP/1.1

42-0-0/0/742.
0.831707100.00.000.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/879.
0.001717900.00.000.70
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/894.
0.7521792130.00.000.72
10.161.117.253172.17.0.3:80GET /ads.txt HTTP/1.1

45-0-0/0/379.
0.622188200.00.000.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/660.
0.7136365100.00.000.51
10.161.117.218172.17.0.3:80NULL

47-0-0/0/766.
0.263638400.00.000.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/340.
0.583639100.00.000.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/258.
0.723635800.00.000.22
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/306.
1.303606900.00.000.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/168.
0.687406600.00.000.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/316.
0.457408500.00.000.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/116.
0.647951800.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/26.
0.35181682110.00.000.02
10.161.117.253172.17.0.3:80NULL

55-0-0/0/257.
0.4518164300.00.000.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/56.
0.65181701110.00.000.05
10.161.117.187172.17.0.3:80NULL

57-0-0/0/161.
2.1618148000.00.000.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/6.
0.251817192640.00.000.01
10.161.117.187172.17.0.3:80NULL

59-0-0/0/37.
1.0118159200.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/22.
0.4518165100.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/27.
0.0018172400.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

62-0-0/0/167.
2.3418141200.00.000.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

63-0-0/0/3.
0.27181722

Found on 2024-05-29 17:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b774faa95f

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 28-May-2024 14:35:14 UTC
Restart Time: Wednesday, 15-May-2024 08:55:30 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  13 days 5 hours 39 minutes 44 seconds
Server load: 0.25 0.50 0.62
Total accesses: 6780705 - Total Traffic: 5.2 GB
CPU Usage: u35.09 s6.26 cu0 cs0 - .00362% CPU load
5.93 requests/sec - 4846 B/second - 817 B/request
6 requests currently being processed, 10 idle workers
_K_W_K_K___..K..._.K_._.........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03027420/43/363971_
0.851150.00.04283.12
10.161.117.187172.17.0.3:80NULL

1-03028271/2/354315K
0.324110.70.00277.14
10.161.117.187172.17.0.3:80GET / HTTP/1.1

2-03027470/38/353549_
0.750100.00.03276.06
10.161.117.192172.17.0.3:80NULL

3-03028200/9/351689W
0.39000.00.01274.65
10.161.117.218172.17.0.3:80GET /server-status HTTP/1.1

4-03028330/1/346133_
0.3023130.00.00269.98
10.161.117.218172.17.0.3:80GET /robots.txt HTTP/1.1

5-03028281/4/343990K
0.330100.70.00268.63
10.161.117.253172.17.0.3:80GET /program/index.php?lang=en HTTP/1.1

6-03028060/19/335688_
0.521120.00.02262.25
10.161.117.253172.17.0.3:80HEAD /blog/home/feed/ HTTP/1.1

7-03027841/21/334224K
0.551181.10.02260.64
10.161.117.218172.17.0.3:80GET /fw.php HTTP/1.1

8-03028290/3/328737_
0.31090.00.00256.76
10.161.117.253172.17.0.3:80NULL

9-03028300/2/318703_
0.322130.00.00248.83
10.161.117.218172.17.0.3:80NULL

10-03027870/24/316564_
0.612130.00.02246.05
10.161.117.158172.17.0.3:80HEAD / HTTP/1.1

11-0-0/0/307045.
0.662400.00.00240.22
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-0-0/0/300510.
0.50800.00.00234.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

13-03027311/45/291722K
0.870120.70.04227.95
10.161.117.218172.17.0.3:80GET /admin/sysadmin/index.php?lang=en HTTP/1.1

14-0-0/0/272634.
0.5455120.00.00213.20
10.161.117.187

15-0-0/0/259934.
0.385100.00.00203.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

16-0-0/0/252392.
0.4239140.00.00196.30
10.161.117.187172.17.0.3:80NULL

17-03028140/16/229418_
0.460100.00.01178.10
10.161.117.218172.17.0.3:80NULL

18-0-0/0/214976.
0.43700.00.00167.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-030277025/56/187010K
0.9201018.00.04144.32
10.161.117.253172.17.0.3:80GET /wp-includes/update-meta.php HTTP/1.1

20-03028160/7/156990_
0.381150.00.01122.12
10.161.117.158172.17.0.3:80NULL

21-0-0/0/125670.
0.53500.00.0097.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-03028180/8/97135_
0.420210.00.0175.29
10.161.117.192

23-0-0/0/76040.
0.379120.00.0058.70
10.161.117.158172.17.0.3:80GET /doc.php HTTP/1.1

24-0-0/0/57576.
0.841000.00.0044.38
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-0-0/0/41588.
0.0023400.00.0032.19
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/33632.
0.31756140.00.0025.94
10.161.117.158172.17.0.3:80GET / HTTP/1.1

27-0-0/0/27157.
1.13446120.00.0021.27
10.161.117.218172.17.0.3:80GET / HTTP/1.1

28-0-0/0/21495.
0.5465700.00.0016.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/19574.
0.6860300.00.0015.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/12214.
0.297493050.00.009.64
10.161.117.253

31-0-0/0/8553.
0.34752140.00.006.79
10.161.117.192172.17.0.3:80GET / HTTP/1.1

32-0-0/0/7715.
0.49694140.00.005.88
10.161.117.218172.17.0.3:80GET / HTTP/1.1

33-0-0/0/5821.
0.0076000.00.004.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/4006.
0.3610194100.00.003.06
10.161.117.158172.17.0.3:80GET /assets/admin/global/plugins/jquery-file-upload/server/php/

35-0-0/0/2400.
0.4816881130.00.001.90
10.161.117.218172.17.0.3:80POST /wp-login.php HTTP/1.1

36-0-0/0/3148.
0.2916949110.00.002.45
10.161.117.187172.17.0.3:80GET / HTTP/1.1

37-0-0/0/2818.
0.001696100.00.002.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/1229.
0.301695200.00.001.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/1378.
0.371692180.00.001.04
10.161.117.218172.17.0.3:80GET /ads.txt HTTP/1.1

40-0-0/0/1887.
0.7416684110.00.001.44
10.161.117.218172.17.0.3:80NULL

41-0-0/0/1788.
0.32169553500.00.001.40
10.161.117.187172.17.0.3:80NULL

42-0-0/0/1050.
0.491683600.00.000.81
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/605.
0.3016947110.00.000.49
10.161.117.218172.17.0.3:80GET /ads.txt HTTP/1.1

44-0-0/0/1038.
0.001696000.00.000.84
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/808.
0.321694800.00.000.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/820.
0.751675500.00.000.67
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/452.
0.30169543210.00.000.42
10.161.117.192172.17.0.3:80NULL

48-0-0/0/714.
0.3416942170.00.000.55
10.161.117.187172.17.0.3:80GET /robots.txt HTTP/1.1

49-0-0/0/524.
1.861684900.00.000.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/159.
0.391691400.00.000.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/128.
0.001695900.00.000.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/293.
2.5084518140.00.000.38
10.161.117.158172.17.0.3:80GET / HTTP/1.1

53-0-0/0/108.
0.578479200.00.000.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/441.
1.258466700.00.000.35
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/38.
0.315773553380.00.000.04
10.161.117.218172.17.0.3:80NULL

56-0-0/0/75.
0.3657734300.00.000.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/38.
0.41577311140.00.000.03
10.161.117.158172.17.0.3:80GET /wp-content/plugins/wp-meteor/readme.txt HTTP/1.1

58-0-0/0/53.
0.4857727500.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/39.
0.94114282400.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/9.
0.42114293900.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/29.
0.69114280500.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

62-0-0/0/115.
1.95114280800.00.000.09
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

63-0-0/0/30.
0.78114288000.00.00<

Found on 2024-05-28 14:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7fa227cb0

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 27-May-2024 13:57:02 UTC
Restart Time: Wednesday, 15-May-2024 09:09:53 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 days 4 hours 47 minutes 9 seconds
Server load: 1.11 0.65 0.56
Total accesses: 6264630 - Total Traffic: 4.8 GB
CPU Usage: u36.47 s2.96 cu0 cs0 - .00374% CPU load
5.94 requests/sec - 4852 B/second - 816 B/request
8 requests currently being processed, 8 idle workers
KC_K__...._..K.......WKK___._K..................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02754691/26/331561K
0.551200.80.02258.81
10.161.117.253172.17.0.3:80GET /dps/national-diploma-designated-premises-supervisor/script

1-02754891/119/334245C
1.940100.80.09260.01
10.161.117.192172.17.0.3:80NULL

2-02754900/16/330407_
0.442120.00.01258.41
10.161.117.253172.17.0.3:80NULL

3-02755131/6/330787K
0.282151.00.00257.94
10.161.117.158172.17.0.3:80GET / HTTP/1.1

4-02754910/16/321742_
0.521210.00.01251.09
10.161.117.187172.17.0.3:80NULL

5-02754750/21/317958_
0.613100.00.02247.92
10.161.117.253

6-0-0/0/310187.
0.6121110.00.00242.13
10.161.117.253172.17.0.3:80NULL

7-0-0/0/314016.
0.27700.00.00244.83
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

8-0-0/0/299769.
0.4710100.00.00234.04
10.161.117.192172.17.0.3:80GET /axis2/ HTTP/1.1

9-0-0/0/296667.
0.431400.00.00231.36
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

10-02755030/10/300859_
0.470260.00.01233.36
10.161.117.218172.17.0.3:80GET / HTTP/1.0

11-0-0/0/284442.
0.341300.00.00221.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-0-0/0/266474.
1.75400.00.00207.77
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

13-02755051/11/262885K
0.362131.00.01204.99
10.161.117.187172.17.0.3:80GET /images/ HTTP/1.1

14-0-0/0/253664.
0.231500.00.00197.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

15-0-0/0/252520.
0.241800.00.00196.72
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

16-0-0/0/224702.
0.6111100.00.00175.08
10.161.117.158172.17.0.3:80GET /.env HTTP/1.1

17-0-0/0/215053.
0.631200.00.00167.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

18-0-0/0/199255.
1.10900.00.00154.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-0-0/0/169820.
0.002200.00.00131.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-0-0/0/135933.
0.59800.00.00105.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

21-02754840/20/114954W
0.84000.00.0288.88
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

22-02755233/5/90829K
0.283122.30.0070.46
10.161.117.218172.17.0.3:80GET / HTTP/1.1

23-02755241/5/69196K
0.664140.80.0053.44
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

24-02754870/19/55773_
0.483140.00.0242.83
10.161.117.187

25-02755250/3/39084_
0.311110.00.0029.98
10.161.117.192172.17.0.3:80NULL

26-02755260/4/31810_
0.511120.00.0024.59
10.161.117.192172.17.0.3:80GET / HTTP/1.1

27-0-0/0/26101.
0.59196490.00.0020.32
10.161.117.218172.17.0.3:80GET / HTTP/1.1

28-02755280/3/18776_
0.601110.00.0014.42
10.161.117.218172.17.0.3:80NULL

29-02755291/3/17065K
0.623111.10.0013.07
10.161.117.218172.17.0.3:80GET /admin/controller/extension/extension/ HTTP/1.1

30-0-0/0/12552.
0.50996800.00.009.78
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/8134.
0.3610040140.00.006.40
10.161.117.192172.17.0.3:80NULL

32-0-0/0/5578.
0.321464300.00.004.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/4856.
0.001466000.00.003.59
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/3079.
0.30146533220.00.002.39
10.161.117.192172.17.0.3:80NULL

35-0-0/0/2832.
0.641465200.00.002.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/1219.
0.8414578170.00.000.97
10.161.117.187172.17.0.3:80NULL

37-0-0/0/1181.
2.045235300.00.000.89
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/997.
0.6452451130.00.000.79
10.161.117.218172.17.0.3:80GET /.env HTTP/1.1

39-0-0/0/433.
0.265245900.00.000.36
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1224.
0.255244600.00.000.93
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/1268.
0.59524686110.00.000.93
10.161.117.192172.17.0.3:80GET /samsung-chromebook-xe303c12-a01us-google-chrome-os-2gb-1-7

42-0-0/0/631.
0.8652308130.00.000.53
10.161.117.218172.17.0.3:80NULL

43-0-0/0/773.
0.595246400.00.000.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/413.
0.6952414120.00.000.35
10.161.117.218172.17.0.3:80GET / HTTP/1.1

45-0-0/0/280.
0.5252435150.00.000.22
10.161.117.192172.17.0.3:80NULL

46-0-0/0/463.
2.0452309110.00.000.35
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

47-0-0/0/612.
0.575244000.00.000.52
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/254.
0.905238800.00.000.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/204.
0.005246700.00.000.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/228.
0.615243900.00.000.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/145.
0.6652438180.00.000.11
10.161.117.187172.17.0.3:80NULL

52-0-0/0/266.
0.285245300.00.000.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/99.
0.585244900.00.000.08
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/18.
0.601808836220.00.000.01
10.161.117.218172.17.0.3:80GET / HTTP/1.1

55-0-0/0/242.
0.7918085900.00.000.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/52.
1.3148835900.00.000.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/16.
0.8248854900.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/5.
0.31488632140.00.000.01
10.161.117.218172.17.0.3:80POST / HTTP/1.1

59-0-0/0/5.
0.6748864100.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/5.
0.68488638130.00.000.00
10.161.117.192172.17.0.3:80GET /wp-content/themes/twentystd/ HTTP/1.1

61-0-0/0/26.
0.9448851300.00.000.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

62-0-0/0/5.
0.39488636150.00.000.00
10.161.117.158172.17.0.3:80NULL

63-0-0/0/1.
0.554886605850.00.000.00
10.161.117.158

Found on 2024-05-27 13:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318729b5ed8729b5edf7ad7935

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.5)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 26-May-2024 06:18:41 UTC
Restart Time: Wednesday, 15-May-2024 08:55:35 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 days 21 hours 23 minutes 6 seconds
Server load: 0.91 1.13 1.25
Total accesses: 5496684 - Total Traffic: 4.2 GB
CPU Usage: u63.11 s46.72 cu0 cs0 - .0117% CPU load
5.84 requests/sec - 4781 B/second - 818 B/request
12 requests currently being processed, 4 idle workers
_WK_KKKKK_KK.K_K..K.............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02458930/222/291756_
2.91100.00.17228.77
10.161.117.187

1-02457820/417/295737W
5.17000.00.34231.01
10.161.117.218172.17.0.5:80GET /server-status HTTP/1.1

2-02459261/10/294576K
0.390120.80.01230.85
10.161.117.158172.17.0.5:80GET / HTTP/1.1

3-02459280/11/288766_
0.411130.00.01225.62
10.161.117.218172.17.0.5:80POST / HTTP/1.1

4-02459171/18/283613K
0.511121.30.01221.78
10.161.117.253172.17.0.5:80POST /wp-json/litespeed/v1/cdn_status HTTP/1.1

5-02458201/284/282380K
3.673110.80.22220.12
10.161.117.158172.17.0.5:80GET / HTTP/1.1

6-02459181/17/274906K
0.471110.80.02214.96
10.161.117.192172.17.0.5:80GET / HTTP/1.1

7-02459191/14/270655K
0.450110.90.01211.16
10.161.117.253172.17.0.5:80GET /server HTTP/1.1

8-02459355/9/260829K
0.390133.70.01204.47
10.161.117.253172.17.0.5:80GET /wp-content/themes/signify/firkon.php HTTP/1.1

9-02459360/0/256869_
0.54070.00.00201.18
10.161.117.158172.17.0.5:80NULL

10-02459201/56/260431K
1.012131.00.06203.45
10.161.117.158172.17.0.5:80GET /index.cfm?show=203&quote=C5Z&futures=yes&time=%7Bts%20'201

11-024591458/71/255299K
1.1001341.90.05198.52
10.161.117.158172.17.0.5:80GET /wp-includes/repeater.php HTTP/1.1

12-0-0/0/242106.
0.6761110.00.00188.50
10.161.117.192172.17.0.5:80GET /.well-known/wso112233.php HTTP/1.1

13-02458551/296/238311K
3.662111.30.23185.46
10.161.117.192172.17.0.5:80GET /wp-content/plugins/wp-ver.php HTTP/1.1

14-02459150/21/218793_
0.551120.00.02171.76
10.161.117.253172.17.0.5:80GET /wp-conflg.php HTTP/1.1

15-02459211/20/211038K
0.583140.70.02164.39
10.161.117.218172.17.0.5:80GET / HTTP/1.1

16-0-0/0/200335.
0.007900.00.00156.21
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

17-0-0/0/191049.
0.0016700.00.00148.77
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

18-02459081/27/172359K
0.61291.10.02134.37
10.161.117.187172.17.0.5:80GET / HTTP/1.1

19-0-0/0/147190.
0.52166120.00.00114.10
10.161.117.158

20-0-0/0/125280.
2.7272800.00.0096.95
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

21-0-0/0/100861.
0.41678120.00.0078.64
10.161.117.192172.17.0.5:80GET /catalog/product_compare/add/product/3205/uenc/aHR0cDovL2J1

22-0-0/0/76055.
1.73110100.00.0058.84
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

23-0-0/0/61427.
0.381201140.00.0047.54
10.161.117.218172.17.0.5:80NULL

24-0-0/0/46284.
0.29123300.00.0035.91
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

25-0-0/0/33396.
0.631056110.00.0025.75
10.161.117.253172.17.0.5:80NULL

26-0-0/0/24317.
0.00124300.00.0019.25
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

27-0-0/0/22372.
0.53120400.00.0017.58
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

28-0-0/0/16555.
0.3212383570.00.0013.02
10.161.117.253

29-0-0/0/14099.
0.83936120.00.0010.74
10.161.117.187172.17.0.5:80GET /shared/trained/ HTTP/1.1

30-0-0/0/10685.
0.341227130.00.008.34
10.161.117.253172.17.0.5:80GET /.well-known/acme-challenge/LVVJQOPF9NW5H650RW6CK7D0U-389AN

31-0-0/0/7199.
0.30342000.00.005.46
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

32-0-0/0/3725.
0.533319110.00.003.11
10.161.117.192172.17.0.5:80GET /custom-windows-gaylord-mi-49735/ HTTP/1.1

33-0-0/0/2435.
0.28342300.00.001.89
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

34-0-0/0/2466.
0.39342900.00.001.87
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

35-0-0/0/1366.
0.33342200.00.001.07
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

36-0-0/0/827.
0.37342100.00.000.63
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

37-0-0/0/397.
0.393413110.00.000.34
10.161.117.253172.17.0.5:80NULL

38-0-0/0/996.
0.343419180.00.000.78
10.161.117.218172.17.0.5:80NULL

39-0-0/0/611.
0.35342800.00.000.53
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

40-0-0/0/718.
0.983156120.00.000.55
10.161.117.192172.17.0.5:80NULL

41-0-0/0/562.
0.33343400.00.000.47
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

42-0-0/0/1155.
0.313415120.00.000.87
10.161.117.158

43-0-0/0/509.
0.3623053140.00.000.42
10.161.117.158172.17.0.5:80NULL

44-0-0/0/388.
0.602290700.00.000.32
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

45-0-0/0/189.
0.396692500.00.000.17
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

46-0-0/0/480.
0.4166955110.00.000.39
10.161.117.187172.17.0.5:80NULL

47-0-0/0/639.
1.546692700.00.000.49
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

48-0-0/0/115.
0.386696500.00.000.10
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

49-0-0/0/103.
0.3666940100.00.000.09
10.161.117.187172.17.0.5:80GET / HTTP/1.1

50-0-0/0/283.
0.476695000.00.000.22
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

51-0-0/0/59.
0.336696700.00.000.05
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

52-0-0/0/563.
0.4166954130.00.000.43
10.161.117.253

53-0-0/0/288.
0.376693600.00.000.21
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

54-0-0/0/123.
0.5666956120.00.000.12
10.161.117.218172.17.0.5:80NULL

55-0-0/0/228.
0.566685600.00.000.18
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

56-0-0/0/418.
0.3766930120.00.000.31
10.161.117.158172.17.0.5:80NULL

57-0-0/0/84.
0.406695800.00.000.08
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

58-0-0/0/119.
0.6366959110.00.000.10
10.161.117.187172.17.0.5:80NULL

59-0-0/0/58.
0.446693700.00.000.05
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

60-0-0/0/158.
0.6766919100.00.000.12
10.161.117.187172.17.0.5:80GET /.env HTTP/1.1

61-0-0/0/74.
0.626693400.00.000.07
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

62-0-0/0/277.
3.25374298140.00.000.19
10.161.117.187172.17.0.5:80POST /wp-json/litespeed/v

Found on 2024-05-26 06:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318629b4188629b41867bc7ce0

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.2)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 25-May-2024 04:56:24 UTC
Restart Time: Wednesday, 15-May-2024 08:55:31 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 20 hours 52 seconds
Server load: 0.40 0.46 0.45
Total accesses: 4827220 - Total Traffic: 3.7 GB
CPU Usage: u25.66 s3.28 cu0 cs0 - .00341% CPU load
5.68 requests/sec - 4666 B/second - 821 B/request
12 requests currently being processed, 5 idle workers
KK__WK_K_K_KKKKKK...............................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02205181/30/264253K
0.40261.20.03207.12
10.161.117.158172.17.0.2:80GET / HTTP/1.1

1-02205571/11/259386K
0.28170.90.01202.98
10.161.117.158172.17.0.2:80GET /network.php HTTP/1.1

2-02205580/8/253674_
0.24070.00.01199.19
10.161.117.158

3-02205430/114/252302_
1.05070.00.12197.96
10.161.117.218172.17.0.2:80GET //wp-aa.php HTTP/1.1

4-02205691/2/253647W
0.20000.90.00199.02
10.161.117.253172.17.0.2:80GET /server-status HTTP/1.1

5-022053840/59/248661K
0.620844.60.06195.77
10.161.117.158172.17.0.2:80GET /wp-includes/blocks/freeform/wp-signup.php HTTP/1.1

6-02205330/26/245334_
0.38060.00.02193.06
10.161.117.192172.17.0.2:80NULL

7-022047643/98/239048K
0.890630.80.08187.52
10.161.117.158172.17.0.2:80GET /fw.php HTTP/1.1

8-02205700/2/230232_
0.20070.00.00182.16
10.161.117.253

9-02205321/29/233928K
0.40470.70.03182.92
10.161.117.218172.17.0.2:80GET /wp-content/plugins/wp-automatic/css/style.css HTTP/1.1

10-02204900/146/229567_
1.20060.00.11179.30
10.161.117.187172.17.0.2:80GET /robots.txt HTTP/1.1

11-02205535/15/218612K
0.30063.60.01171.88
10.161.117.192172.17.0.2:80GET /wp-includes/Text/Diff/Engine/admin.php HTTP/1.1

12-02205711/2/216853K
0.21060.90.00170.10
10.161.117.218172.17.0.2:80GET /about HTTP/1.1

13-02205541/12/207635K
0.27180.80.01162.27
10.161.117.158172.17.0.2:80GET / HTTP/1.1

14-02205721/2/198095K
0.21281.10.00155.26
10.161.117.187172.17.0.2:80GET /public/assets/jquery-file-upload/server/php/index.php?file

15-02205551/14/188562K
0.30371.10.01147.38
10.161.117.192172.17.0.2:80GET / HTTP/1.1

16-02205351/47/172850K
0.54061.00.04135.26
10.161.117.218172.17.0.2:80GET /_all_dbs HTTP/1.1

17-0-0/0/159423.
0.006900.00.00124.43
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

18-0-0/0/147731.
0.4113300.00.00115.35
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

19-0-0/0/127082.
0.2415500.00.0099.13
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

20-0-0/0/110003.
0.434600.00.0085.69
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

21-0-0/0/82782.
0.3238300.00.0064.52
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

22-0-0/0/68029.
0.9932060.00.0052.45
10.161.117.192172.17.0.2:80GET /wp-includes/ HTTP/1.1

23-0-0/0/48796.
0.2149070.00.0037.54
10.161.117.218172.17.0.2:80NULL

24-0-0/0/36915.
1.7819100.00.0028.54
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

25-0-0/0/28937.
0.2048770.00.0022.33
10.161.117.158172.17.0.2:80GET / HTTP/1.1

26-0-0/0/24800.
0.0049400.00.0019.29
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

27-0-0/0/19755.
0.2744060.00.0015.18
10.161.117.253172.17.0.2:80NULL

28-0-0/0/12804.
0.2248900.00.0010.00
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

29-0-0/0/10886.
1.1027400.00.008.18
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

30-0-0/0/8205.
0.3041500.00.006.36
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

31-0-0/0/6711.
0.3634900.00.005.19
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

32-0-0/0/5286.
0.001826600.00.004.08
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

33-0-0/0/2645.
0.221824980.00.002.05
10.161.117.218172.17.0.2:80GET / HTTP/1.1

34-0-0/0/3085.
0.211824100.00.002.47
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

35-0-0/0/1152.
0.221825270.00.000.93
10.161.117.158172.17.0.2:80GET / HTTP/1.1

36-0-0/0/757.
0.22182441180.00.000.63
10.161.117.253172.17.0.2:80NULL

37-0-0/0/894.
0.001826500.00.000.73
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

38-0-0/0/867.
0.221824270.00.000.72
10.161.117.187172.17.0.2:80GET / HTTP/1.1

39-0-0/0/1129.
0.001826400.00.001.09
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

40-0-0/0/524.
0.201825100.00.000.44
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

41-0-0/0/399.
0.19182582100.00.000.31
10.161.117.253172.17.0.2:80NULL

42-0-0/0/672.
0.2118247450.00.000.52
10.161.117.158172.17.0.2:80GET /admin/controller/extension/extension/ HTTP/1.1

43-0-0/0/608.
0.001826300.00.000.47
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

44-0-0/0/454.
0.231998000.00.000.37
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

45-0-0/0/1142.
0.351990100.00.000.88
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

46-0-0/0/328.
0.002002000.00.000.26
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

47-0-0/0/77.
0.224163100.00.000.06
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

48-0-0/0/90.
0.224164500.00.000.07
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

49-0-0/0/119.
0.2225597600.00.000.10
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

50-0-0/0/219.
0.2225598180.00.000.18
10.161.117.192172.17.0.2:80GET /catalog/product_compare/add/product/5780/uenc/aHR0cDovL2J1

51-0-0/0/58.
0.2325599270.00.000.05
10.161.117.187172.17.0.2:80GET / HTTP/1.1

52-0-0/0/22.
0.2425597470.00.000.02
10.161.117.187172.17.0.2:80GET /?sucurianticache=1443195459 HTTP/1.1

53-0-0/0/150.
1.0125584570.00.000.12
10.161.117.192172.17.0.2:80GET / HTTP/1.1

54-0-0/0/80.
0.2125599800.00.000.07
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

55-0-0/0/67.
0.0025600400.00.000.06
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

56-0-0/0/185.
0.2428337600.00.000.15
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

57-0-0/0/55.
0.4128322000.00.000.05
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

58-0-0/0/37.
0.2184790770.00.000.04
10.161.117.253172.17.0.2:80NULL

59-0-0/0/25.
0.0084791400.00.000.02
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

60-0-0/0/29.
0.2184790500.00.000.03
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

61-0-0/0/97.
0.2184790060.00.000.09
10.161.117.187172.17.0.2:80NULL

62-0-0/0/35.
0.2284901500.00.000.03
127.0.0.1172.

Found on 2024-05-25 04:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b73c18c7dd

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 24-May-2024 13:35:00 UTC
Restart Time: Wednesday, 15-May-2024 08:55:30 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 4 hours 39 minutes 30 seconds
Server load: 1.03 0.88 0.70
Total accesses: 4486642 - Total Traffic: 3.4 GB
CPU Usage: u59.49 s7.7 cu0 cs0 - .00846% CPU load
5.65 requests/sec - 4640 B/second - 821 B/request
13 requests currently being processed, 4 idle workers
K.KKKKKK_K_._KK._W.K.K..........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02071511/17/242285K
0.461140.80.02189.74
10.161.117.192172.17.0.3:80GET /status HTTP/1.1

1-0-0/0/239421.
0.6421130.00.00188.59
10.161.117.187172.17.0.3:80NULL

2-020711792/99/236301K
1.4401154.60.06185.07
10.161.117.218172.17.0.3:80GET /img/about.php HTTP/1.1

3-02070021/518/237156K
6.393111.00.37186.19
10.161.117.192172.17.0.3:80GET /cn/%E5%85%B3%E4%BA%8E%E6%88%91%E4%BB%AC/%E9%87%8C%E7%A8%8B

4-02071181/26/230673K
0.583121.00.02180.62
10.161.117.158172.17.0.3:80GET / HTTP/1.1

5-02071281/123/231249K
1.730121.30.09181.59
10.161.117.253172.17.0.3:80POST /wp-json/litespeed/v1/cdn_status HTTP/1.1

6-02071631/7/223539K
0.371111.00.01175.83
10.161.117.187172.17.0.3:80GET / HTTP/1.1

7-02071521/15/221114K
0.490131.00.01173.82
10.161.117.187172.17.0.3:80GET / HTTP/1.1

8-02070900/121/219651_
1.721120.00.11172.52
10.161.117.192172.17.0.3:80GET /index.php?option=com_search&Itemid=1&searchword=%22%3Becho

9-02071531/15/209082K
0.483120.90.02163.94
10.161.117.187172.17.0.3:80GET /new/wp-admin/install.php HTTP/1.1

10-02071570/7/209333_
0.411150.00.01163.54
10.161.117.187172.17.0.3:80NULL

11-0-0/0/205872.
0.292200.00.00161.73
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-02071650/5/200145_
0.380120.00.01156.78
10.161.117.158172.17.0.3:80NULL

13-02071541/16/195933K
0.50290.80.01153.26
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.1

14-02070951/37/178131K
0.763121.00.03140.30
10.161.117.192172.17.0.3:80GET /admin.php HTTP/1.1

15-0-0/0/172993.
0.4159140.00.00135.81
10.161.117.187

16-02071560/18/167784_
0.501120.00.01131.08
10.161.117.192

17-02071080/138/148323W
1.93000.00.10115.98
10.161.117.187172.17.0.3:80GET /server-status HTTP/1.1

18-0-0/0/138375.
0.334500.00.00108.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-02070632/77/121677K
1.261101.90.0694.35
10.161.117.187172.17.0.3:80GET /Bugatti_Ausrei%C3%9Ffutterbeige_Gore_Tex_mit_Mantel_l1cKFu

20-0-0/0/99320.
0.3317800.00.0077.72
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

21-02071101/59/80552K
0.951100.70.0562.78
10.161.117.158172.17.0.3:80GET /phpMyAdmin-5.1.3/index.php?lang=en HTTP/1.1

22-0-0/0/59929.
0.44280150.00.0046.53
10.161.117.158172.17.0.3:80GET /search/?q=%D8%AA%D8%A7%D8%A8%D8%B9%D9%8A%D9%86%D8%8C HTTP/

23-0-0/0/51096.
3.604600.00.0039.59
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/36044.
0.68580120.00.0027.80
10.161.117.218172.17.0.3:80NULL

25-0-0/0/27243.
0.3560600.00.0021.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-0-0/0/21167.
0.39603120.00.0016.40
10.161.117.158172.17.0.3:80GET / HTTP/1.1

27-0-0/0/17769.
0.0061300.00.0013.84
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

28-0-0/0/13964.
0.2861100.00.0010.90
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/12969.
0.69484110.00.0010.11
10.161.117.192172.17.0.3:80GET /sakums?b=1&css=1&gads=2019&gf=219&lbu=113280&page=1&pp HTT

30-0-0/0/8800.
1.9535000.00.007.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/6062.
0.44545110.00.004.79
10.161.117.253172.17.0.3:80NULL

32-0-0/0/4329.
2.02409130.00.003.32
10.161.117.218172.17.0.3:80GET /gallery/oeuvres-en-lien/oeuvre/2314/fragile-force HTTP/1.1

33-0-0/0/3397.
0.0061500.00.002.65
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/3072.
7.381415890.00.002.28
10.161.117.187172.17.0.3:80GET /wp-content/themes/twenty/ HTTP/1.1

35-0-0/0/1967.
0.3615169110.00.001.53
10.161.117.158

36-0-0/0/1945.
0.345144500.00.001.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/1670.
0.4551398130.00.001.30
10.161.117.158172.17.0.3:80NULL

38-0-0/0/498.
1.1451146110.00.000.42
10.161.117.187172.17.0.3:80NULL

39-0-0/0/521.
1.875126900.00.000.43
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/996.
1.585135800.00.000.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/575.
0.5251362130.00.000.48
10.161.117.253172.17.0.3:80GET /catalog/product_compare/add/product/5276/uenc/aHR0cDovL2J1

42-0-0/0/509.
0.005147800.00.000.42
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/394.
0.315147100.00.000.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/313.
0.30514733180.00.000.26
10.161.117.158172.17.0.3:80GET /ads.txt HTTP/1.1

45-0-0/0/425.
0.30514663220.00.000.33
10.161.117.158172.17.0.3:80GET /ads.txt HTTP/1.1

46-0-0/0/333.
0.31514723300.00.000.31
10.161.117.218172.17.0.3:80NULL

47-0-0/0/216.
0.30514763190.00.000.19
10.161.117.158172.17.0.3:80GET /robots.txt HTTP/1.1

48-0-0/0/70.
0.3551468110.00.000.06
10.161.117.187172.17.0.3:80NULL

49-0-0/0/158.
0.331040153590.00.000.16
10.161.117.253172.17.0.3:80GET / HTTP/1.1

50-0-0/0/121.
0.3210400400.00.000.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/93.
0.271040082960.00.000.09
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

52-0-0/0/101.
0.3610399200.00.000.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/81.
0.321040073450.00.000.07
10.161.117.192172.17.0.3:80NULL

54-0-0/0/359.
4.2222785400.00.000.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/38.
0.312281413380.00.000.04
10.161.117.218172.17.0.3:80NULL

56-0-0/0/75.
0.3622812900.00.000.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/38.
0.41228097140.00.000.03
10.161.117.158172.17.0.3:80GET /wp-content/plugins/wp-meteor/readme.txt HTTP/1.1

58-0-0/0/53.
0.4822806100.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/39.
0.9479361100.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/9.
0.4279372600.00.000.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/29.
0.6979359200.00.000.03
127.0.0.1

Found on 2024-05-24 13:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318629b4188629b4186da50f1d

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.2)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 23-May-2024 12:58:03 UTC
Restart Time: Wednesday, 15-May-2024 08:55:31 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 days 4 hours 2 minutes 31 seconds
Server load: 0.64 0.62 0.59
Total accesses: 3758684 - Total Traffic: 2.9 GB
CPU Usage: u40.57 s4.37 cu0 cs0 - .00637% CPU load
5.33 requests/sec - 4398 B/second - 825 B/request
11 requests currently being processed, 5 idle workers
KW..KK.KKK_._.KK.K.._K__........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01784301/8/211023K
0.27270.80.01166.12
10.161.117.218172.17.0.2:80GET /emergency.php HTTP/1.1

1-01783910/70/207814W
0.69000.00.07162.96
10.161.117.253172.17.0.2:80GET /server-status HTTP/1.1

2-0-0/0/199328.
2.10700.00.00157.75
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

3-0-0/0/200882.
0.432000.00.00158.51
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

4-01784091/19/200803K
0.33261.10.02158.65
10.161.117.253172.17.0.2:80GET /wp-includes/php-compat/ HTTP/1.1

5-01783991/27/198465K
0.39080.80.02157.18
10.161.117.158172.17.0.2:80GET /components/com_jbusinessdirectory/assets/uploadFile.php HT

6-0-0/0/194189.
0.343450.00.00153.62
10.161.117.253172.17.0.2:80NULL

7-01784031/28/190838K
0.41460.90.03150.22
10.161.117.192172.17.0.2:80GET /wp-content/themes/pridmag/db.php?u HTTP/1.1

8-017807969/741/182762K
5.170649.50.53145.29
10.161.117.158172.17.0.2:80GET /wp-admin/user/moon.php HTTP/1.1

9-01783421/284/186339K
2.12070.90.21146.41
10.161.117.253172.17.0.2:80GET /search?q=Aberdeen+Stone+Cottage&sa=X&sca_esv=8cdee197d32e0

10-01783180/82/184698_
0.78070.00.07144.81
10.161.117.192172.17.0.2:80NULL

11-0-0/0/171962.
0.891500.00.00135.84
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

12-01782300/321/171663_
2.41170.00.25135.68
10.161.117.187172.17.0.2:80NULL

13-0-0/0/163881.
0.223500.00.00128.92
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

14-01783842/229/155786K
1.70070.80.16122.53
10.161.117.218172.17.0.2:80HEAD / HTTP/1.1

15-01784011/111/147015K
0.93071.00.08115.98
10.161.117.218172.17.0.2:80GET / HTTP/1.1

16-0-0/0/134281.
1.591770.00.00105.37
10.161.117.253172.17.0.2:80GET / HTTP/1.1

17-01783971/35/122045K
0.44260.80.0395.91
10.161.117.158172.17.0.2:80GET /robots.txt HTTP/1.1

18-0-0/0/113747.
0.321900.00.0089.39
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

19-0-0/0/95604.
0.522500.00.0075.06
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

20-01784050/22/81098_
0.36290.00.0263.33
10.161.117.218172.17.0.2:80NULL

21-01784111/20/59024K
0.36170.80.0246.19
10.161.117.158172.17.0.2:80GET /database/index.php?lang=en HTTP/1.1

22-01784180/11/47022_
0.27250.00.0136.33
10.161.117.187172.17.0.2:80GET /gq8tfd0c/kh6qtg7/api/l/1/ping.php?id=c70cuol79n&v=94&a=16&

23-01784280/7/31734_
0.24070.00.0124.67
10.161.117.192172.17.0.2:80GET / HTTP/1.1

24-0-0/0/23447.
0.2269790.00.0018.03
10.161.117.192172.17.0.2:80POST / HTTP/1.1

25-0-0/0/17478.
0.4595500.00.0013.64
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

26-0-0/0/15691.
0.2210872360.00.0012.35
10.161.117.218172.17.0.2:80GET / HTTP/1.1

27-0-0/0/12081.
0.22107300.00.009.35
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

28-0-0/0/7761.
0.39102560.00.006.07
10.161.117.218172.17.0.2:80NULL

29-0-0/0/6310.
0.25176980.00.004.73
10.161.117.253172.17.0.2:80NULL

30-0-0/0/5669.
1.18154600.00.004.39
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

31-0-0/0/3838.
0.36171670.00.003.03
10.161.117.187172.17.0.2:80GET / HTTP/1.1

32-0-0/0/2502.
0.21179100.00.001.90
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

33-0-0/0/1644.
0.24408600.00.001.31
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

34-0-0/0/1910.
0.23409690.00.001.56
10.161.117.158172.17.0.2:80GET /.well-known/acme-challenge/aaawszujSr1AE_PGnqL4TCSZCaGKdP4

35-0-0/0/797.
0.23672860.00.000.66
10.161.117.192172.17.0.2:80GET /.vscode/sftp.json HTTP/1.1

36-0-0/0/646.
0.22951760.00.000.53
10.161.117.218172.17.0.2:80NULL

37-0-0/0/736.
0.32942700.00.000.60
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

38-0-0/0/730.
0.003671800.00.000.62
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

39-0-0/0/837.
0.576154680.00.000.85
10.161.117.187172.17.0.2:80GET /robots.txt HTTP/1.1

40-0-0/0/461.
0.276159200.00.000.38
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

41-0-0/0/337.
0.216166900.00.000.26
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

42-0-0/0/619.
0.006168100.00.000.48
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

43-0-0/0/575.
0.526154960.00.000.45
10.161.117.187172.17.0.2:80NULL

44-0-0/0/427.
1.596073070.00.000.35
10.161.117.218172.17.0.2:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

45-0-0/0/170.
0.276161770.00.000.14
10.161.117.158172.17.0.2:80NULL

46-0-0/0/265.
1.076148690.00.000.21
10.161.117.253172.17.0.2:80GET /favicon.ico HTTP/1.1

47-0-0/0/55.
0.236166080.00.000.05
10.161.117.253

48-0-0/0/82.
0.4811207270.00.000.07
10.161.117.253172.17.0.2:80NULL

49-0-0/0/119.
0.2211207500.00.000.10
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

50-0-0/0/219.
0.2211208080.00.000.18
10.161.117.192172.17.0.2:80GET /catalog/product_compare/add/product/5780/uenc/aHR0cDovL2J1

51-0-0/0/58.
0.2311209170.00.000.05
10.161.117.187172.17.0.2:80GET / HTTP/1.1

52-0-0/0/22.
0.2411207370.00.000.02
10.161.117.187172.17.0.2:80GET /?sucurianticache=1443195459 HTTP/1.1

53-0-0/0/150.
1.0111194470.00.000.12
10.161.117.192172.17.0.2:80GET / HTTP/1.1

54-0-0/0/80.
0.2111209700.00.000.07
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

55-0-0/0/67.
0.0011210300.00.000.06
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

56-0-0/0/185.
0.2413947500.00.000.15
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

57-0-0/0/55.
0.4113931900.00.000.05
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

58-0-0/0/37.
0.2170400670.00.000.04
10.161.117.253172.17.0.2:80NULL

59-0-0/0/25.
0.0070401300.00.000.02
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

60-0-0/0/29.
0.2170400400.00.000.03
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

61-0-0/0/97.
0.2170399960.00.000.09
10.161.117.187172.17.0.2:80NULL

62-0-

Found on 2024-05-23 12:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7d55d71d0

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 13-May-2024 02:55:57 UTC
Restart Time: Thursday, 25-Apr-2024 08:13:47 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  17 days 18 hours 42 minutes 10 seconds
Server load: 1.18 1.27 1.28
Total accesses: 13135620 - Total Traffic: 10.1 GB
CPU Usage: u59.49 s14.64 cu0 cs0 - .00483% CPU load
8.55 requests/sec - 6.9 kB/second - 823 B/request
20 requests currently being processed, 3 idle workers
KKKWKK_KKKKKWC_.KK..K.KK.W._K...................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-06388701/41/559069K
0.86380.80.03436.70
10.161.117.218172.17.0.3:80GET /robots.txt HTTP/1.1

1-06389391/9/549007K
0.441140.90.01430.37
10.161.117.218172.17.0.3:80GET /static/lib/services/MochiLC.swf HTTP/1.1

2-06389502/18/549375K
0.522111.40.01429.89
10.161.117.187172.17.0.3:80GET /wp-login.php HTTP/1.1

3-06389510/2/551041W
0.35000.00.00430.86
10.161.117.218172.17.0.3:80GET /static/lib/services/services.swf?listenLC=__ms_17155687265

4-06388451/49/538555K
0.921131.00.04420.63
10.161.117.253172.17.0.3:80GET /v2/_catalog HTTP/1.1

5-06389303/19/537046K
0.540111.80.02420.02
10.161.117.253172.17.0.3:80GET /sftp.json HTTP/1.1

6-06388040/206/539760W
2.75000.00.16420.21
10.161.117.187172.17.0.3:80GET /static/lib/services/MochiLC.swf HTTP/1.1

7-06389523/5/529173K
0.320102.50.00412.29
10.161.117.187172.17.0.3:80GET /wp-admin/admin-ajax.php?action=ave_publishPost&title=123&s

8-06389311/15/518827K
0.560121.00.02405.25
10.161.117.218172.17.0.3:80GET /c/g/super-baby-sitter/GameMain.swf HTTP/1.1

9-063888630/61/509520K
1.0501421.40.05398.57
10.161.117.218172.17.0.3:80GET /css/assets/bullets.php HTTP/1.1

10-06389531/1/503022K
0.3503570.80.00393.43
10.161.117.192172.17.0.3:80GET /hidden-discuss/2011-January/2004-December/2011-September/a

11-06388971/49/507345K
0.871121.10.04396.04
10.161.117.218172.17.0.3:80GET /wp-ver.php HTTP/1.1

12-06389420/5/486207W
0.42000.00.00380.96
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

13-06389431/5/473340C
0.360161.00.01377.34
10.161.117.253172.17.0.3:80NULL

14-06389540/0/462715_
0.62000.00.00360.94
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

15-0-0/0/464614.
0.6526160.00.00363.54
10.161.117.218172.17.0.3:80GET / HTTP/1.1

16-06388763/136/438906K
1.871132.40.10344.03
10.161.117.187172.17.0.3:80GET /downloader/ HTTP/1.1

17-06389213/19/427932K
0.591131.80.02335.73
10.161.117.253172.17.0.3:80GET /sftp.json HTTP/1.1

18-0-0/0/423096.
0.442900.00.00331.75
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

19-0-0/0/396981.
0.7720170.00.00313.82
10.161.117.218172.17.0.3:80GET //wp-content/dropdown.php HTTP/1.1

20-06389351/17/378836K
0.544121.20.02296.50
10.161.117.218172.17.0.3:80GET /images/?img=news/images/29/une-nouvelle-succursale-a-montr

21-0-0/0/353781.
0.87132150.00.00277.87
10.161.117.253172.17.0.3:80NULL

22-06388331/56/334289K
1.052181.30.05262.42
10.161.117.253172.17.0.3:80POST /srv/1/e1ef1ab66f51947f.swf?cacheBust=1715568951731 HTTP/1

23-06388881/135/305089K
1.844121.00.10239.94
10.161.117.192172.17.0.3:80GET /.DS_Store HTTP/1.1

24-0-0/0/274355.
0.5194160.00.00215.22
10.161.117.253172.17.0.3:80GET /c/p/_v983/dbafb58c652f9f04cd0984d826f22b828d96e600.swf HTT

25-06388900/28/247165W
0.68000.00.03194.54
10.161.117.158172.17.0.3:80POST /srv/1/6c475bdb40d88303.swf?cacheBust=1455245747089 HTTP/1

26-0-0/0/210554.
1.137000.00.00166.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-06388920/127/171040_
1.830120.00.09136.05
10.161.117.158172.17.0.3:80GET //my1.php HTTP/1.1

28-06388931/58/160583K
1.012151.30.05126.86
10.161.117.158172.17.0.3:80GET /solutions/dusting/solutions/graffiti/solutions/coating-fai

29-0-0/0/141821.
0.3938100.00.00111.92
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/116312.
3.26162120.00.0092.36
10.161.117.192172.17.0.3:80NULL

31-0-0/0/102557.
0.37396150.00.0081.10
10.161.117.187172.17.0.3:80GET /.git/config HTTP/1.1

32-0-0/0/83305.
0.4734800.00.0066.49
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/65370.
0.3038600.00.0051.65
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/53009.
1.81598200.00.0043.41
10.161.117.187172.17.0.3:80GET / HTTP/1.1

35-0-0/0/37642.
0.4693500.00.0031.81
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/29272.
0.339813520.00.0024.20
10.161.117.158

37-0-0/0/23823.
0.35967120.00.0019.86
10.161.117.253172.17.0.3:80GET /?gf=363&gf=436 HTTP/1.1

38-0-0/0/15435.
0.4495200.00.0012.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/13013.
0.33535000.00.0010.96
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/9215.
0.345356130.00.008.00
10.161.117.187172.17.0.3:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

41-0-0/0/6810.
0.00537100.00.005.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/6306.
0.40534600.00.005.66
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/3695.
4.00519900.00.003.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/4529.
0.3353653850.00.003.95
10.161.117.218172.17.0.3:80NULL

45-0-0/0/3535.
0.585252130.00.003.36
10.161.117.253172.17.0.3:80NULL

46-0-0/0/4276.
1.57529700.00.003.65
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/2266.
0.355358150.00.001.96
10.161.117.253172.17.0.3:80GET /application/.env HTTP/1.1

48-0-0/0/2700.
0.00537000.00.002.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/1864.
0.35534800.00.001.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/1802.
0.325361120.00.001.72
10.161.117.158172.17.0.3:80GET /erdftg.php?sxkugptr=5082.xxxl HTTP/1.1

51-0-0/0/1032.
0.82516900.00.000.94
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/1150.
0.31535700.00.001.17
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/376.
0.4874869140.00.000.31
10.161.117.187172.17.0.3:80NULL

54-0-0/0/478.
0.38133276490.00.000.64
10.161.117.158172.17.0.3:80NULL

55-0-0/0/326.
1.50133246100.00.000.29
10.161.117.187172.17.0.3:80NULL

56-0-0/0/105.
0.40133261210.00.000.10
10.161.117.187172.17.0.3:80NULL

57-0-0/0/316.
0.4513323000.00.000.42
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/630.
0.46133231100.00.000.59
10.161.117.187172.17.0.3:80NULL

59-0-0/0/115.
0.4013325000.00.000.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0

Found on 2024-05-13 02:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318629b4188629b418310a1bbb

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.2)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 08-May-2024 20:49:24 UTC
Restart Time: Tuesday, 07-May-2024 22:59:58 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  21 hours 49 minutes 26 seconds
Server load: 0.60 0.59 0.63
Total accesses: 691368 - Total Traffic: 536.1 MB
CPU Usage: u24.32 s1.55 cu0 cs0 - .0329% CPU load
8.8 requests/sec - 7.0 kB/second - 813 B/request
16 requests currently being processed, 6 idle workers
..K_K_.CK___KKKK.KKKKW._K....KK.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0-0/0/29044.
1.03370.00.0022.26
10.161.117.158172.17.0.2:80GET /robots.txt HTTP/1.1

1-0-0/0/27553.
0.25570.00.0021.43
10.161.117.218172.17.0.2:80NULL

2-0354611/37/27575K
0.46270.80.0321.30
10.161.117.192172.17.0.2:80GET /hidden-discuss/2008-May/2007-July/2015-January.txt.gz HTTP

3-0354640/17/28724_
0.31160.00.0121.91
10.161.117.218172.17.0.2:80GET /local/.env HTTP/1.1

4-0354891/10/27259K
0.28350.90.0121.70
10.161.117.158172.17.0.2:80GET /server HTTP/1.1

5-0353640/182/25597_
1.38160.00.1319.99
10.161.117.218172.17.0.2:80NULL

6-0-0/0/28084.
0.28260.00.0021.87
10.161.117.158172.17.0.2:80GET /wp-includes/images/include.php HTTP/1.1

7-0354471/26/27168C
0.39071.00.0221.07
10.161.117.187172.17.0.2:80NULL

8-0354251/149/28456K
1.15160.80.1121.75
10.161.117.158172.17.0.2:80GET /hidden-discuss/2006-July/2008-March/2016-October/thread.ht

9-0354280/138/25988_
1.12170.00.1020.25
10.161.117.192172.17.0.2:80GET /api/.env HTTP/1.1

10-0354500/27/24411_
0.38160.00.0318.91
10.161.117.158172.17.0.2:80NULL

11-0355110/5/25710_
0.24160.00.0020.15
10.161.117.187

12-0354341/39/23800K
0.48391.20.0418.53
10.161.117.253172.17.0.2:80POST /srv/1/ba5d53a51b691dcd.swf?cacheBust=1715201359566 HTTP/1

13-0354951/9/25392K
0.27060.90.0119.53
10.161.117.253172.17.0.2:80GET / HTTP/1.1

14-0354921/10/23491K
0.25260.80.0118.12
10.161.117.187172.17.0.2:80GET /hidden-discuss/2008-May/2014-January/2014-April/date.html 

15-0354696/30/23206K
0.40062.50.0217.85
10.161.117.192172.17.0.2:80HEAD /backup HTTP/1.1

16-0-0/0/23393.
0.36470.00.0018.13
10.161.117.192172.17.0.2:80GET / HTTP/1.1

17-0354361/36/21187K
0.44070.80.0316.44
10.161.117.218172.17.0.2:80GET /hidden-discuss/2018-October/2005-December/2006-August/date

18-0353691/154/22536K
1.18061.00.1117.64
10.161.117.187172.17.0.2:80GET /wp-content/plugins/about.php HTTP/1.1

19-0354931/9/20443K
0.25170.80.0115.90
10.161.117.187172.17.0.2:80GET /hidden-discuss/2016-August/2010-December/2016-January.txt.

20-0352891/151/21257K
1.23270.90.1216.87
10.161.117.158172.17.0.2:80GET /about HTTP/1.1

21-0355130/1/20765W
0.20000.00.0015.95
10.161.117.187172.17.0.2:80GET /server-status HTTP/1.1

22-0-0/0/18542.
1.452400.00.0014.47
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

23-0354020/59/15751_
0.62060.00.0512.15
10.161.117.192172.17.0.2:80GET //www.kuzenkohomes.c HTTP/1.1

24-0354941/7/15405K
0.26391.00.0111.93
10.161.117.187172.17.0.2:80GET /.env HTTP/1.1

25-0-0/0/14132.
1.183800.00.0010.83
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

26-0-0/0/13916.
0.4410470.00.0010.73
10.161.117.192172.17.0.2:80NULL

27-0-0/0/11109.
0.428300.00.008.48
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

28-0-0/0/9975.
1.2010670.00.007.67
10.161.117.192172.17.0.2:80GET / HTTP/1.1

29-0354061/53/8177K
0.55170.80.056.33
10.161.117.192172.17.0.2:80GET /hidden-discuss/2012-July/2010-December/2013-September/thre

30-0354071/50/6801K
0.55261.10.045.28
10.161.117.218172.17.0.2:80GET / HTTP/1.1

31-0-0/0/4941.
0.3186100.00.003.87
10.161.117.158172.17.0.2:80NULL

32-0-0/0/5207.
0.25269100.00.004.07
10.161.117.158

33-0-0/0/3972.
1.1255190.00.003.11
10.161.117.192172.17.0.2:80GET /wp-stad.php HTTP/1.1

34-0-0/0/3449.
0.29107300.00.002.72
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

35-0-0/0/2551.
0.33102900.00.002.01
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

36-0-0/0/2149.
0.22110500.00.001.65
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

37-0-0/0/1137.
0.43112000.00.000.85
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

38-0-0/0/810.
0.28122800.00.000.58
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

39-0-0/0/380.
0.32123700.00.000.30
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

40-0-0/0/337.
0.2220742310.00.000.26
10.161.117.192

41-0-0/0/153.
0.24204790.00.000.12
10.161.117.218172.17.0.2:80NULL

42-0-0/0/389.
0.25204800.00.000.30
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

43-0-0/0/132.
0.2120762180.00.000.08
10.161.117.218172.17.0.2:80NULL

44-0-0/0/185.
1.19271000.00.000.14
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

45-0-0/0/118.
0.30289270.00.000.10
10.161.117.218172.17.0.2:80GET //www.ellismistry.c HTTP/1.1

46-0-0/0/341.
0.22294200.00.000.25
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

47-0-0/0/36.
0.22294370.00.000.03
10.161.117.158172.17.0.2:80NULL

48-0-0/0/120.
0.00296000.00.000.10
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

49-0-0/0/103.
0.21245792210.00.000.07
10.161.117.253172.17.0.2:80NULL

50-0-0/0/1.
0.004418200.00.000.00
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

51-0-0/0/10.
0.264413770.00.000.01
10.161.117.187172.17.0.2:80NULL


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-05-08 20:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c39eefc2c39eefc250402e0c

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.11)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 01-May-2024 02:16:33 UTC
Restart Time: Thursday, 25-Apr-2024 08:16:28 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 days 18 hours 5 seconds
Server load: 1.20 0.98 0.93
Total accesses: 3925283 - Total Traffic: 3.0 GB
CPU Usage: u22.87 s1.61 cu0 cs0 - .00493% CPU load
7.9 requests/sec - 6.3 kB/second - 818 B/request
15 requests currently being processed, 4 idle workers
CK_...C_K...K.._K.....K.K..K.K.CK.KKW_..........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01976961/7/171076C
0.24090.70.01132.86
10.161.117.158172.17.0.11:80NULL

1-01976971/9/176176K
0.26081.00.01137.53
10.161.117.253172.17.0.11:80GET /debug/default/view?panel=config HTTP/1.1

2-01977280/1/171258_
0.2002100.00.00133.40
10.161.117.192172.17.0.11:80GET / HTTP/1.1

3-0-0/0/164955.
0.401100.00.00128.97
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

4-0-0/0/166695.
0.26570.00.00130.74
10.161.117.253172.17.0.11:80GET / HTTP/1.1

5-0-0/0/160423.
0.213200.00.00126.48
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

6-01976651/118/168204C
0.97171.20.09131.19
10.161.117.192172.17.0.11:80NULL

7-01977000/7/162669_
0.25080.00.01126.65
10.161.117.253172.17.0.11:80NULL

8-01975382/167/158003K
1.32061.20.13122.92
10.161.117.218172.17.0.11:80GET /css/xmrlpc.php?p= HTTP/1.1

9-0-0/0/158041.
1.681000.00.00123.56
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

10-0-0/0/153457.
0.372460.00.00119.98
10.161.117.192172.17.0.11:80NULL

11-0-0/0/152546.
0.25800.00.00119.33
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

12-01976431/28/148828K
0.41470.70.02116.28
10.161.117.158172.17.0.11:80GET /inputs.php HTTP/1.1

13-0-0/0/147858.
0.293470.00.00115.58
10.161.117.187172.17.0.11:80NULL

14-0-0/0/148705.
0.403370.00.00115.47
10.161.117.158

15-01977020/11/139415_
0.30070.00.01108.53
10.161.117.158172.17.0.11:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

16-01976451/124/139550K
1.03271.00.09108.63
10.161.117.158172.17.0.11:80GET /debug/default/view?panel=config HTTP/1.1

17-0-0/0/131357.
0.431260.00.00102.16
10.161.117.253172.17.0.11:80GET / HTTP/1.1

18-0-0/0/128474.
0.24670.00.0099.93
10.161.117.192172.17.0.11:80NULL

19-0-0/0/119341.
0.522070.00.0093.04
10.161.117.192172.17.0.11:80NULL

20-0-0/0/114850.
0.2422100.00.0089.15
10.161.117.187172.17.0.11:80NULL

21-0-0/0/105405.
0.351880.00.0082.34
10.161.117.158

22-01976811/16/94785K
0.31013.50.0274.14
10.161.117.253172.17.0.11:80GET /server-status HTTP/1.1

23-0-0/0/80092.
0.29900.00.0062.67
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

24-01977051/7/73199K
0.25281.00.0157.93
10.161.117.192172.17.0.11:80GET /robots.txt HTTP/1.1

25-0-0/0/66321.
0.202100.00.0051.42
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

26-0-0/0/57928.
0.23760.00.0044.97
10.161.117.218172.17.0.11:80GET / HTTP/1.1

27-01977081/7/48021K
0.26370.70.0137.74
10.161.117.158172.17.0.11:80GET /inputs.php HTTP/1.1

28-0-0/0/40493.
0.232370.00.0032.01
10.161.117.187172.17.0.11:80NULL

29-01975811/154/33537K
1.27270.80.1426.36
10.161.117.218172.17.0.11:80GET /c/g/funny-with-guitar-girl_nhung_5_2012/_thumb_100x100.jpg

30-0-0/0/30512.
0.251300.00.0023.82
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

31-01977111/6/23708C
0.25170.90.0118.33
10.161.117.187172.17.0.11:80NULL

32-01977122/6/17658K
0.25262.90.0114.14
10.161.117.192172.17.0.11:80POST /alfacgiapi/perl.alfa HTTP/1.1

33-0-0/0/15107.
0.003600.00.0011.91
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

34-01977141/7/10115K
0.25071.00.017.94
10.161.117.192172.17.0.11:80GET /v2/_catalog HTTP/1.1

35-01977151/5/7071K
0.25160.70.005.54
10.161.117.158172.17.0.11:80GET /inputs.php HTTP/1.1

36-01977160/5/7000W
0.23000.00.005.51
10.161.117.158172.17.0.11:80GET /server-status HTTP/1.1

37-01977170/5/4872_
0.24070.00.003.80
10.161.117.158172.17.0.11:80GET /wp-content/plugins/woocommerce-products-filter/js/plainove

38-0-0/0/3218.
0.2255900.00.002.58
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

39-0-0/0/2391.
0.5921200.00.001.90
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

40-0-0/0/3114.
0.7529100.00.002.39
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

41-0-0/0/2155.
0.2057900.00.001.70
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

42-0-0/0/2132.
0.9624000.00.001.60
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

43-0-0/0/2059.
0.4439000.00.001.60
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

44-0-0/0/1594.
0.2157400.00.001.19
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

45-0-0/0/1773.
0.3944270.00.001.35
10.161.117.158172.17.0.11:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

46-0-0/0/2246.
1.2230700.00.001.80
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

47-0-0/0/1839.
0.2155600.00.001.42
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

48-0-0/0/1478.
0.2256900.00.001.13
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

49-0-0/0/1499.
0.2155800.00.001.21
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

50-0-0/0/362.
0.8649700.00.000.29
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

51-0-0/0/547.
0.3347700.00.000.42
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

52-0-0/0/393.
0.34516130.00.000.33
10.161.117.218172.17.0.11:80HEAD /home HTTP/1.1

53-0-0/0/446.
0.2257670.00.000.49
10.161.117.158172.17.0.11:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

54-0-0/0/80.
0.3350600.00.000.07
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

55-0-0/0/121.
0.257017800.00.000.10
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

56-0-0/0/77.
0.2417532600.00.000.07
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

57-0-0/0/23.
0.3241697600.00.000.02
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

58-0-0/0/24.
0.3441915300.00.000.02
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

59-0-0/0/7.
0.2541922400.00.000.01
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred

Found on 2024-05-01 02:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318a29ba548a29ba548f77da41

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.6)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 29-Apr-2024 10:04:41 UTC
Restart Time: Thursday, 25-Apr-2024 08:13:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 1 hour 51 minutes 15 seconds
Server load: 0.50 0.79 0.91
Total accesses: 2910042 - Total Traffic: 2.2 GB
CPU Usage: u31.35 s3 cu0 cs0 - .00975% CPU load
8.26 requests/sec - 6.6 kB/second - 816 B/request
9 requests currently being processed, 12 idle workers
KK_KWK_._K_..K...____._..K_.K__.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01405841/1/123981K
0.3503841.10.0096.59
10.161.117.192172.17.0.6:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

1-01405851/1/125655K
0.3213381.00.0097.65
10.161.117.253172.17.0.6:80GET /backup.tar.gz HTTP/1.1

2-01405760/5/126149_
0.362120.00.0098.40
10.161.117.253172.17.0.6:80GET / HTTP/1.1

3-01404951/125/123799K
1.801131.10.0896.66
10.161.117.187172.17.0.6:80GET /wp-includes/js/jquery/jquery.js HTTP/1.1

4-01405222/32/122441W
0.65001.90.0395.12
10.161.117.192172.17.0.6:80GET /server-status HTTP/1.1

5-01405861/1/121217K
0.3113371.10.0093.86
10.161.117.187172.17.0.6:80GET / HTTP/1.1

6-01405130/26/119909_
0.631220.00.0293.58
10.161.117.218172.17.0.6:80NULL

7-0-0/0/115506.
1.571700.00.0089.96
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

8-01405780/4/121188_
0.340130.00.0093.60
10.161.117.192172.17.0.6:80NULL

9-01405791/7/112677K
0.383140.80.0087.37
10.161.117.158172.17.0.6:80GET /catalog/p/DIA1119071/Dial-Amenities-Breck-Conditioner-3-4o

10-01405800/4/111289_
0.321140.00.0086.80
10.161.117.187172.17.0.6:80NULL

11-0-0/0/110634.
0.501900.00.0085.69
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

12-0-0/0/112295.
0.002000.00.0086.90
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

13-01405821/4/107440K
0.351131.40.0083.56
10.161.117.218172.17.0.6:80POST /srv/1/6ab713cb45bf9171.swf HTTP/1.1

14-0-0/0/108768.
2.881500.00.0084.37
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

15-0-0/0/103308.
0.5632130.00.0080.80
10.161.117.192172.17.0.6:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

16-0-0/0/98446.
0.29593120.00.0076.83
10.161.117.218172.17.0.6:80NULL

17-01404960/135/98277_
1.801120.00.1077.00
10.161.117.218172.17.0.6:80NULL

18-01405170/27/93002_
0.650160.00.0272.49
10.161.117.158172.17.0.6:80NULL

19-01405430/12/90468_
0.500140.00.0170.95
10.161.117.218172.17.0.6:80GET /wordpress/ HTTP/1.1

20-01405340/16/85156_
0.481140.00.0166.14
10.161.117.218172.17.0.6:80NULL

21-0-0/0/80753.
0.373500.00.0062.26
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

22-01405450/12/73991_
0.441130.00.0157.34
10.161.117.192172.17.0.6:80NULL

23-0-0/0/64881.
0.4018130.00.0049.71
10.161.117.253172.17.0.6:80NULL

24-0-0/0/58405.
0.3736140.00.0046.21
10.161.117.218172.17.0.6:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

25-01405481/11/47975K
0.40091.00.0137.33
10.161.117.253172.17.0.6:80GET / HTTP/1.1

26-01405490/15/44813_
0.490100.00.0134.93
10.161.117.192172.17.0.6:80NULL

27-0-0/0/35533.
0.315300.00.0027.88
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

28-01405511/12/32895K
0.474131.20.0125.63
10.161.117.187172.17.0.6:80GET / HTTP/1.1

29-01405520/11/25400_
0.450110.00.0119.98
10.161.117.158

30-01405530/9/21647_
0.380140.00.0116.92
10.161.117.218172.17.0.6:80NULL

31-0-0/0/19927.
0.3733190.00.0015.39
10.161.117.158172.17.0.6:80NULL

32-0-0/0/14206.
0.292933000.00.0011.13
10.161.117.187172.17.0.6:80NULL

33-0-0/0/12156.
0.7513400.00.009.55
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

34-0-0/0/9121.
0.353023630.00.007.09
10.161.117.253172.17.0.6:80HEAD /manage/webuploader/preview.php HTTP/1.1

35-0-0/0/6461.
0.31335700.00.005.01
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

36-0-0/0/4576.
0.673248150.00.003.50
10.161.117.187172.17.0.6:80NULL

37-0-0/0/4111.
2.714025130.00.003.31
10.161.117.253

38-0-0/0/3382.
0.365659120.00.002.67
10.161.117.218172.17.0.6:80NULL

39-0-0/0/2900.
0.47712400.00.002.30
10.161.117.158

40-0-0/0/2133.
0.331026600.00.001.70
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

41-0-0/0/2047.
1.6710148150.00.001.66
10.161.117.158172.17.0.6:80NULL

42-0-0/0/1760.
1.511021600.00.001.45
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

43-0-0/0/1143.
0.001027400.00.000.97
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

44-0-0/0/1783.
0.301027000.00.001.33
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

45-0-0/0/1518.
0.7810164180.00.001.17
10.161.117.253172.17.0.6:80NULL

46-0-0/0/1041.
0.3010269100.00.000.82
10.161.117.192172.17.0.6:80GET /gallery/oeuvres-en-lien/oeuvre/2422/pensees HTTP/1.1

47-0-0/0/1059.
0.341023500.00.000.84
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

48-0-0/0/545.
0.361021790.00.000.40
10.161.117.218172.17.0.6:80GET / HTTP/1.1

49-0-0/0/782.
0.591013200.00.000.65
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

50-0-0/0/289.
0.291026800.00.000.24
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

51-0-0/0/573.
0.001027300.00.000.44
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

52-0-0/0/308.
0.4410214120.00.000.25
10.161.117.187172.17.0.6:80GET / HTTP/1.1

53-0-0/0/70.
0.3110262110.00.000.06
10.161.117.187172.17.0.6:80GET / HTTP/1.1

54-0-0/0/61.
0.451019600.00.000.05
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

55-0-0/0/144.
0.001027200.00.000.12
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

56-0-0/0/32.
0.561013700.00.000.03
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

57-0-0/0/1.
0.001566600.00.000.00
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

58-0-0/0/10.
0.381561300.00.000.01
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

59-0-0/0/5.
0.341563700.00.000.00
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apa

Found on 2024-04-29 10:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318a29ba548a29ba54b986cbc7

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.6)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 29-Apr-2024 10:04:42 UTC
Restart Time: Thursday, 25-Apr-2024 08:13:27 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 1 hour 51 minutes 14 seconds
Server load: 0.50 0.79 0.91
Total accesses: 2891809 - Total Traffic: 2.2 GB
CPU Usage: u36.92 s3.43 cu0 cs0 - .0115% CPU load
8.21 requests/sec - 6.5 kB/second - 815 B/request
13 requests currently being processed, 5 idle workers
K_KK_KKW.K.._.._K...K.....K_K....KK.............................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01405461/14/125863K
0.473111.10.0198.15
10.161.117.158172.17.0.6:80GET /wp-includes/js/jquery/jquery.js HTTP/1.1

1-01405830/2/128085_
0.350110.00.0099.11
10.161.117.187

2-01405321/107/125141K
1.493110.70.0697.66
10.161.117.192172.17.0.6:80GET /robots.txt HTTP/1.1

3-01405211/41/122347K
0.771201.40.0395.24
10.161.117.158172.17.0.6:80POST /srv/1/44642a5ce8607706.swf?cacheBust=1714385078301 HTTP/1

4-01405370/110/122897_
1.500130.00.0595.23
10.161.117.192172.17.0.6:80NULL

5-01405551/14/115231K
0.464121.00.0189.48
10.161.117.187172.17.0.6:80GET /index.php?aklazy=start&nonce=kuvulDgK4znyyQWB8zZV1aS7qSlME

6-01405741/9/120113K
0.40281.00.0193.11
10.161.117.158172.17.0.6:80GET /wp-admin/setup-config.php HTTP/1.1

7-01405871/1/114174W
0.31000.90.0089.05
10.161.117.187172.17.0.6:80GET /server-status HTTP/1.1

8-0-0/0/118277.
0.391800.00.0092.01
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

9-01404361/59/114083K
1.090141.10.0588.79
10.161.117.218172.17.0.6:80GET /wp-admin/css/ HTTP/1.1

10-0-0/0/114713.
0.3335100.00.0089.12
10.161.117.187172.17.0.6:80NULL

11-0-0/0/110760.
0.32513430.00.0085.57
10.161.117.192172.17.0.6:80NULL

12-01405600/106/110833_
1.460110.00.0586.28
10.161.117.253172.17.0.6:80NULL

13-0-0/0/111844.
0.774800.00.0086.40
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

14-0-0/0/103679.
0.5619160.00.0080.33
10.161.117.253172.17.0.6:80GET /wp-includes/sodium_compat/namespaced HTTP/1.1

15-01405080/24/103027_
0.600110.00.0280.00
10.161.117.158172.17.0.6:80NULL

16-01404011/295/102259K
3.83291.00.2279.31
10.161.117.218172.17.0.6:80GET /web.config HTTP/1.1

17-0-0/0/97385.
0.3643130.00.0075.61
10.161.117.218172.17.0.6:80NULL

18-0-0/0/97201.
0.4355110.00.0075.16
10.161.117.158172.17.0.6:80NULL

19-0-0/0/86210.
0.394900.00.0067.24
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

20-01405271/24/83354K
0.620131.00.0264.79
10.161.117.192172.17.0.6:80GET /menus.asp?dt=w8zvrhax// HTTP/1.1

21-0-0/0/78342.
2.3539110.00.0060.77
10.161.117.158172.17.0.6:80GET /id125.html HTTP/1.1

22-0-0/0/70466.
2.372100.00.0055.46
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

23-0-0/0/65454.
2.1053140.00.0051.30
10.161.117.253172.17.0.6:80NULL

24-0-0/0/57354.
0.353800.00.0044.49
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

25-0-0/0/49656.
0.5020120.00.0038.79
10.161.117.158

26-01405631/11/41996K
0.470151.10.0133.30
10.161.117.218172.17.0.6:80GET /theocentricity4e/ty07137716.htm HTTP/1.1

27-01405640/10/37366_
0.441160.00.0128.83
10.161.117.218172.17.0.6:80NULL

28-01405651/12/29115K
0.41080.90.0123.16
10.161.117.253172.17.0.6:80GET /about HTTP/1.1

29-0-0/0/24323.
0.30503160.00.0019.12
10.161.117.158172.17.0.6:80NULL

30-0-0/0/21878.
0.3712120.00.0017.11
10.161.117.218172.17.0.6:80GET /licenses.php HTTP/1.1

31-0-0/0/17380.
0.37232460.00.0013.48
10.161.117.187172.17.0.6:80NULL

32-0-0/0/13372.
0.005400.00.0010.54
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

33-01405701/9/12757K
0.392121.00.019.93
10.161.117.192172.17.0.6:80GET /dump.sql HTTP/1.1

34-01405711/106/8908K
1.452121.10.046.97
10.161.117.158172.17.0.6:80GET / HTTP/1.1

35-0-0/0/6454.
0.364000.00.005.04
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

36-0-0/0/4426.
0.665282150.00.003.35
10.161.117.187

37-0-0/0/2905.
0.505336110.00.002.38
10.161.117.192172.17.0.6:80GET /wordpress/ HTTP/1.1

38-0-0/0/3109.
0.3175033450.00.002.47
10.161.117.158172.17.0.6:80NULL

39-0-0/0/2193.
0.38747200.00.001.74
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

40-0-0/0/1238.
0.00750400.00.000.95
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

41-0-0/0/2140.
0.34746400.00.001.60
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

42-0-0/0/2299.
0.51740700.00.001.80
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

43-0-0/0/1395.
0.337477110.00.001.13
10.161.117.218

44-0-0/0/1666.
0.00750600.00.001.34
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

45-0-0/0/1335.
0.617373110.00.001.09
10.161.117.218172.17.0.6:80NULL

46-0-0/0/1015.
0.65736200.00.000.86
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

47-0-0/0/1683.
1.64737700.00.001.32
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

48-0-0/0/1117.
0.847363130.00.000.85
10.161.117.158172.17.0.6:80GET /media/system/js/core.js HTTP/1.1

49-0-0/0/591.
0.37747300.00.000.47
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

50-0-0/0/478.
0.001365500.00.000.38
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

51-0-0/0/361.
0.431358800.00.000.29
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

52-0-0/0/931.
0.351363300.00.000.72
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

53-0-0/0/222.
0.0019843400.00.000.16
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

54-0-0/0/178.
0.311984273300.00.000.14
10.161.117.218172.17.0.6:80NULL

55-0-0/0/70.
0.35239819120.00.000.07
10.161.117.253172.17.0.6:80NULL

56-0-0/0/149.
1.9523947800.00.000.10
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

57-0-0/0/3.
0.3223983000.00.000.00
127.0.0.1172.17.0.6:80OPTIONS * HTTP/1.0

58-0-0/0/8.
0.37239790120.00.000.01
10.161.117.158172.17.0.6:80GET / HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-04-29 10:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318829b77e8829b77e2331f8cf

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.4)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 29-Apr-2024 01:50:29 UTC
Restart Time: Thursday, 25-Apr-2024 08:13:45 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 17 hours 36 minutes 43 seconds
Server load: 2.08 1.68 1.41
Total accesses: 2594338 - Total Traffic: 2.0 GB
CPU Usage: u57.22 s5.18 cu0 cs0 - .0193% CPU load
8.04 requests/sec - 6.4 kB/second - 814 B/request
19 requests currently being processed, 6 idle workers
._K_.K_KK_K_W_KKKKKKK....KK.KK...KK.............................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0-0/0/114542.
0.8810120.00.0089.07
10.161.117.192172.17.0.4:80NULL

1-01269660/3/112352_
0.371140.00.0087.79
10.161.117.158172.17.0.4:80NULL

2-01269671/4/111493K
0.353161.00.0087.26
10.161.117.253172.17.0.4:80GET /data/afficheimg/1483064251055739082.png HTTP/1.1

3-01269650/6/114012_
0.350110.00.0188.06
10.161.117.187172.17.0.4:80NULL

4-0-0/0/109302.
0.3493560.00.0084.89
10.161.117.218172.17.0.4:80NULL

5-01269571/12/107520K
0.473111.30.0283.37
10.161.117.187172.17.0.4:80GET / HTTP/1.1

6-01269690/2/106318_
0.340140.00.0082.91
10.161.117.218172.17.0.4:80NULL

7-01267021/153/108416K
2.170131.00.1383.67
10.161.117.187172.17.0.4:80GET / HTTP/1.1

8-01268981/96/109711K
1.390120.90.0786.17
10.161.117.218172.17.0.4:80GET /.env HTTP/1.1

9-01269540/14/104132_
0.520110.00.0180.92
10.161.117.192172.17.0.4:80NULL

10-01269191/16/103817K
0.484201.50.0280.43
10.161.117.187172.17.0.4:80POST /srv/1/38e80a465dc714ad.swf HTTP/1.1

11-01269000/96/103985_
1.410120.00.0680.90
10.161.117.192172.17.0.4:80NULL

12-01269230/13/100577W
0.48000.00.0177.94
10.161.117.253172.17.0.4:80GET /server-status HTTP/1.1

13-01269250/17/99212_
0.520160.00.0276.80
10.161.117.187172.17.0.4:80NULL

14-01269701/4/93474K
0.38190.70.0072.65
10.161.117.158172.17.0.4:80GET /termidor-treatment-miami-fl.html HTTP/1.1

15-01268711/116/93408K
1.724111.30.0871.96
10.161.117.192172.17.0.4:80GET / HTTP/1.1

16-01269011/58/88782K
0.991141.10.0568.81
10.161.117.253172.17.0.4:80GET /wp-admin/inputs.php HTTP/1.1

17-01269281/111/84742K
1.58380.70.0865.67
10.161.117.158172.17.0.4:80GET /uploads/cgblog/id2996/uploads/companydirectory/cat41/lawer

18-01269711/20/85172K
0.520221.00.0166.28
10.161.117.192172.17.0.4:80GET /?rest_route=/wp/v2/users/ HTTP/1.1

19-01269721/3/78014K
0.342131.00.0061.33
10.161.117.253172.17.0.4:80GET /test/ HTTP/1.1

20-01269341/17/75365K
0.550130.70.0158.65
10.161.117.158172.17.0.4:80GET /uploads/cgblog/id5982/office-furniture-supplies-flyers HTT

21-0-0/0/71730.
1.302300.00.0055.13
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

22-0-0/0/64069.
0.3256150.00.0050.22
10.161.117.158172.17.0.4:80NULL

23-0-0/0/59217.
4.666000.00.0045.90
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

24-0-0/0/46756.
2.065900.00.0036.40
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

25-01269361/14/40849K
0.49291.00.0131.62
10.161.117.192172.17.0.4:80GET /.env HTTP/1.1

26-01269371/14/34321K
0.490191.00.0226.84
10.161.117.192172.17.0.4:80GET / HTTP/1.1

27-0-0/0/31575.
0.382200.00.0024.31
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

28-01269471/13/25899K
0.461151.10.0120.02
10.161.117.187172.17.0.4:80GET /static/lib/services/services.swf?listenLC=%5F%5Fms%5F17143

29-012694861/71/24114K
1.0901239.80.0518.61
10.161.117.253172.17.0.4:80GET /wp-content/plugins/backup-backup/includes/backup-heart.php

30-0-0/0/17405.
0.42800.00.0013.57
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

31-0-0/0/13516.
1.791900.00.0010.68
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

32-0-0/0/12567.
0.4920130.00.009.69
10.161.117.192

33-01269511/16/8975K
0.531121.00.016.94
10.161.117.192172.17.0.4:80GET /s/8333e28353e21323e2430313/_/;/META-INF/maven/com.atlassia

34-01269521/14/6871K
0.450120.70.015.40
10.161.117.187172.17.0.4:80GET /wp-content/uploads/ty.php HTTP/1.1

35-0-0/0/5240.
0.463500.00.004.05
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

36-0-0/0/3571.
0.7283600.00.002.70
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

37-0-0/0/3035.
0.31984130.00.002.34
10.161.117.187172.17.0.4:80NULL

38-0-0/0/1766.
0.3498300.00.001.27
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

39-0-0/0/1570.
0.6985800.00.001.18
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

40-0-0/0/995.
0.5090800.00.000.82
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

41-0-0/0/1996.
1.77678120.00.001.56
10.161.117.158172.17.0.4:80NULL

42-0-0/0/1189.
0.4095400.00.000.94
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

43-0-0/0/1942.
2.1284200.00.001.51
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

44-0-0/0/1914.
1.5689200.00.001.45
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

45-0-0/0/1126.
0.3396600.00.000.87
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

46-0-0/0/1718.
0.3794900.00.001.26
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

47-0-0/0/918.
0.3697100.00.000.69
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

48-0-0/0/845.
1.83758190.00.000.64
10.161.117.192172.17.0.4:80GET / HTTP/1.1

49-0-0/0/969.
0.3995970.00.000.76
10.161.117.187172.17.0.4:80NULL

50-0-0/0/486.
0.41925240.00.000.40
10.161.117.218172.17.0.4:80NULL

51-0-0/0/590.
0.3496500.00.000.41
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

52-0-0/0/567.
1.5375900.00.000.41
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

53-0-0/0/310.
0.47927120.00.000.26
10.161.117.187172.17.0.4:80NULL

54-0-0/0/46.
0.4293500.00.000.04
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

55-0-0/0/146.
0.43934140.00.000.15
10.161.117.187172.17.0.4:80NULL

56-0-0/0/17.
0.48957110.00.000.01
10.161.117.158172.17.0.4:80NULL

57-0-0/0/187.
1.62877120.00.000.14
10.161.117.187172.17.0.4:80NULL

58-0-0/0/10.
0.4495800.00.000.01
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

59-0-0/0/139.
0.3397210.00.000.11
10.161.117.192172.17.0.4:80NULL

60-0-0/0/2.
0.0098600.00.000.00
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

61-0-0/0/35.
0.64839110.00.000.04
10.161.117.253172.17.0.4:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

62-0-0/0/5.
0.33974

Found on 2024-04-29 01:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7df3fc9c0

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 24-Apr-2024 00:33:03 UTC
Restart Time: Tuesday, 16-Apr-2024 16:17:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 days 8 hours 15 minutes 58 seconds
Server load: 0.57 0.62 0.66
Total accesses: 3525024 - Total Traffic: 2.8 GB
CPU Usage: u42.54 s26.25 cu0 cs0 - .0108% CPU load
5.56 requests/sec - 4738 B/second - 853 B/request
15 requests currently being processed, 7 idle workers
CWKKKK_K_K_KKK_KKKK___..........................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-02278121/15/168084C
0.840212.70.01136.74
10.161.117.192172.17.0.3:80NULL

1-02278170/7/169255W
0.53000.00.01137.40
10.161.117.253172.17.0.3:80GET /server-status HTTP/1.1

2-02277112/93/170122K
1.650151.90.08137.89
10.161.117.253172.17.0.3:80GET /.DS_Store HTTP/1.1

3-022781836/40/166521K
1.1801121.20.02135.59
10.161.117.187172.17.0.3:80GET /wp-admin/network/cloud.php HTTP/1.1

4-02278231/6/167830K
0.550131.00.01135.50
10.161.117.158172.17.0.3:80GET / HTTP/1.1

5-02278251/7/158183K
0.694150.30.01128.91
10.161.117.158172.17.0.3:80GET / HTTP/1.1

6-02278200/9/158308_
0.621220.00.01129.04
10.161.117.218172.17.0.3:80GET /view-source: HTTP/1.1

7-02278261/4/156592K
0.294100.30.00127.31
10.161.117.253172.17.0.3:80GET / HTTP/1.1

8-02277840/54/155026_
1.191160.00.04126.58
10.161.117.158172.17.0.3:80GET /wp-content/themes/theme_log.php HTTP/1.1

9-02277821/72/153850K
1.283140.30.06125.58
10.161.117.187172.17.0.3:80GET / HTTP/1.1

10-02277980/24/148731_
0.560200.00.02120.77
10.161.117.187

11-02277381/178/147405K
2.994191.10.14119.92
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

12-02278032/22/144717K
0.543171.90.02117.55
10.161.117.158172.17.0.3:80GET /static/lib/services/services.swf?listenLC=%5F%5Fms%5F17139

13-02278281/5/141439K
0.691151.10.00114.84
10.161.117.253172.17.0.3:80GET /marblelikeuq30/zb4854167.htm HTTP/1.1

14-02278290/2/138272_
0.670130.00.00111.98
10.161.117.158

15-02277881/38/130922K
1.264211.10.04106.49
10.161.117.158172.17.0.3:80GET /.well-known/acme-challenge/y2Ryy7Wu9UaZAQd2qN33EPwYwPVska5

16-02278411/1/129158K
0.5615801.10.00105.56
10.161.117.218172.17.0.3:80GET /wp-content/plugins/fix/up.php HTTP/1.1

17-02278321/2/121668K
0.674161.10.0098.77
10.161.117.192172.17.0.3:80GET /.well-known/acme-challenge/y2Ryy7Wu9UaZAQd2qN33EPwYwPVska5

18-02278331/3/112894K
0.344140.30.0092.06
10.161.117.218172.17.0.3:80GET / HTTP/1.1

19-02278340/4/106552_
0.700150.00.0086.66
10.161.117.253172.17.0.3:80NULL

20-02278350/3/92045_
0.670190.00.0076.48
10.161.117.187172.17.0.3:80NULL

21-02278080/27/85062_
0.660150.00.0269.37
10.161.117.253172.17.0.3:80HEAD /back/directory.gz HTTP/1.1

22-0-0/0/71488.
0.00800.00.0058.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

23-0-0/0/60924.
0.70448270.00.0049.80
10.161.117.187172.17.0.3:80GET / HTTP/1.1

24-0-0/0/51666.
0.66467230.00.0041.78
10.161.117.192172.17.0.3:80NULL

25-0-0/0/42023.
1.96254140.00.0033.86
10.161.117.218172.17.0.3:80GET / HTTP/1.1

26-0-0/0/35509.
0.0047700.00.0029.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/30580.
1.24461180.00.0024.99
10.161.117.253172.17.0.3:80GET /gallery/oeuvres-en-lien/cap/165/printemps HTTP/1.1

28-0-0/0/24951.
0.0047300.00.0019.87
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/18098.
0.71397170.00.0015.23
10.161.117.192172.17.0.3:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

30-0-0/0/16400.
0.254762610.00.0013.24
10.161.117.218172.17.0.3:80GET /c/g/space-meteor/Space%20Meteor.swf HTTP/1.1

31-0-0/0/12617.
1.10338150.00.0010.00
10.161.117.192172.17.0.3:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

32-0-0/0/9390.
0.5747200.00.007.75
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/7513.
0.9134200.00.006.08
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/4045.
0.632897000.00.003.26
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/3691.
0.002898600.00.002.89
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/2640.
1.9828492150.00.002.14
10.161.117.253172.17.0.3:80GET / HTTP/1.1

37-0-0/0/1505.
2.062895800.00.001.22
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/1569.
0.692895700.00.001.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/1055.
0.902888600.00.000.84
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/1048.
1.7628784160.00.000.87
10.161.117.192

41-0-0/0/1303.
0.592898400.00.001.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/602.
0.672896600.00.000.47
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/222.
0.762891100.00.000.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/1076.
0.002898800.00.000.83
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/619.
0.942885700.00.000.51
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/587.
2.653550600.00.000.43
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/423.
3.783548800.00.000.33
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/164.
3.583550800.00.000.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/141.
2.9335433160.00.000.12
10.161.117.187172.17.0.3:80NULL

50-0-0/0/113.
3.183549500.00.000.09
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/297.
3.713548700.00.000.22
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/36.
3.433550200.00.000.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/48.
2.813537500.00.000.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/42.
2.4235333140.00.000.04
10.161.117.192172.17.0.3:80GET / HTTP/1.1

55-0-0/0/3.
2.093550000.00.000.00
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

Apache/2.4.18 (Ubuntu) Server at bwwp.ca Port 80

Found on 2024-04-24 00:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318929b8c38929b8c3e9870114

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 24-Apr-2024 00:33:02 UTC
Restart Time: Wednesday, 03-Apr-2024 19:49:31 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  20 days 4 hours 43 minutes 30 seconds
Server load: 0.93 0.82 0.88
Total accesses: 14506182 - Total Traffic: 10.9 GB
CPU Usage: u38.02 s13.18 cu0 cs0 - .00293% CPU load
8.31 requests/sec - 6.5 kB/second - 804 B/request
12 requests currently being processed, 6 idle workers
_KWK..__WC_C_K.._K...KK.KK......................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-06380750/32/676099_
0.730120.00.03517.97
10.161.117.218172.17.0.7:80GET /simple.php HTTP/1.1

1-06381391/2/681158K
0.323101.00.00521.09
10.161.117.192172.17.0.7:80GET / HTTP/1.1

2-06380890/27/666025W
0.58000.00.02510.51
10.161.117.158172.17.0.7:80GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1

3-06381211/11/664466K
0.402110.90.01508.06
10.161.117.218172.17.0.7:80GET /server HTTP/1.1

4-0-0/0/661989.
0.31700.00.00505.50
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

5-0-0/0/645927.
0.333110.00.00495.17
10.161.117.187172.17.0.7:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

6-06381420/3/643348_
0.341110.00.00491.68
10.161.117.253172.17.0.7:80GET / HTTP/1.1

7-06381430/2/633744_
0.321110.00.00485.26
10.161.117.158172.17.0.7:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

8-06380710/41/619263W
0.79000.00.04475.68
10.161.117.253172.17.0.7:80GET /server-status HTTP/1.1

9-06380871/60/610158C
1.001110.50.04468.99
10.161.117.192172.17.0.7:80NULL

10-06381440/2/610336_
0.350160.00.00467.98
10.161.117.218172.17.0.7:80NULL

11-06380931/60/595317C
0.961121.00.04457.15
10.161.117.253172.17.0.7:80NULL

12-06381030/19/583980_
0.550120.00.02448.56
10.161.117.158172.17.0.7:80NULL

13-06381301/11/570541K
0.40080.80.01437.07
10.161.117.158172.17.0.7:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

14-0-0/0/554565.
1.704110.00.00427.08
10.161.117.158172.17.0.7:80GET / HTTP/1.1

15-0-0/0/539458.
0.2953100.00.00413.41
10.161.117.218172.17.0.7:80GET / HTTP/1.1

16-06381330/6/515182_
0.410110.00.01393.17
10.161.117.192172.17.0.7:80NULL

17-06381341/5/500879K
0.38381.10.00383.71
10.161.117.253172.17.0.7:80GET /.well-known/acme-challenge/9OV86VMlyvorE7q2j0pTfZAkZPWY60k

18-0-0/0/473692.
0.00610.00.00364.14
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

19-0-0/0/441936.
0.309000.00.00339.25
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

20-0-0/0/406344.
0.3385110.00.00310.99
10.161.117.253172.17.0.7:80GET /administrator/index.php HTTP/1.1

21-06381091/19/364109K
0.540140.90.02280.53
10.161.117.192172.17.0.7:80GET / HTTP/1.1

22-063811062/87/326341K
1.3101436.50.05249.85
10.161.117.192172.17.0.7:80GET /wp-admin/repeater.php HTTP/1.1

23-0-0/0/270397.
0.32883450.00.00208.86
10.161.117.192172.17.0.7:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

24-06381121/23/231934K
0.570161.00.02179.78
10.161.117.253172.17.0.7:80GET /v2/_catalog HTTP/1.1

25-06381131/27/187696K
0.623120.30.02146.89
10.161.117.253172.17.0.7:80GET / HTTP/1.1

26-0-0/0/157781.
0.31833380.00.00122.52
10.161.117.187172.17.0.7:80NULL

27-0-0/0/130234.
0.30873230.00.00100.40
10.161.117.192172.17.0.7:80GET /administrator/index.php HTTP/1.1

28-0-0/0/112032.
0.413200.00.0086.65
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

29-0-0/0/91725.
0.462251100.00.0070.29
10.161.117.218172.17.0.7:80NULL

30-0-0/0/75087.
0.30231100.00.0058.30
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

31-0-0/0/61157.
0.292818170.00.0047.68
10.161.117.253

32-0-0/0/47718.
0.30289853120.00.0037.03
10.161.117.158172.17.0.7:80NULL

33-0-0/0/38415.
0.322896400.00.0029.63
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

34-0-0/0/27266.
1.7528841140.00.0021.72
10.161.117.192172.17.0.7:80NULL

35-0-0/0/20897.
0.312897600.00.0016.16
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

36-0-0/0/14663.
0.352896000.00.0011.77
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

37-0-0/0/9706.
1.8328814140.00.007.77
10.161.117.187172.17.0.7:80NULL

38-0-0/0/9098.
0.822878900.00.007.30
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

39-0-0/0/5800.
0.342895400.00.005.11
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

40-0-0/0/4550.
0.3728961120.00.003.74
10.161.117.158

41-0-0/0/3952.
0.572885500.00.003.16
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

42-0-0/0/3248.
0.692881300.00.002.53
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0-0/0/2203.
0.3528968120.00.002.14
10.161.117.192172.17.0.7:80NULL

44-0-0/0/2589.
0.292898000.00.002.09
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/2176.
0.002898700.00.001.88
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/2123.
0.30289823280.00.001.92
10.161.117.253172.17.0.7:80NULL

47-0-0/0/1343.
0.3835519220.00.001.02
10.161.117.253172.17.0.7:80POST /srv/1/bf76facdfccdd989.swf?cacheBust=1713883257513 HTTP/1

48-0-0/0/1241.
0.3035535140.00.001.33
10.161.117.158172.17.0.7:80GET / HTTP/1.1

49-0-0/0/785.
0.303555410.00.000.62
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/1098.
0.333553000.00.000.86
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/816.
0.363555110000.00.000.81
10.161.117.158172.17.0.7:80NULL

52-0-0/0/479.
0.5035474110.00.000.36
10.161.117.218172.17.0.7:80GET / HTTP/1.1

53-0-0/0/393.
0.323554200.00.000.30
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/234.
0.733554700.00.000.18
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/319.
0.4435534140.00.000.23
10.161.117.253172.17.0.7:80GET /wp-login.php HTTP/1.1

56-0-0/0/117.
0.703538100.00.000.08
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/131.
0.753536400.00.000.11
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/186.
0.3635528130.00.000.14
10.161.117.158172.17.0.7:80GET /view-source: HTTP/1.1

59-0-0/0/94.
0.403556000.00.000.06
10.161.117.158

60-0-0/0/37.
0.363550800.00.000.02
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

61-0-0/0/53.
0.643547580.00.000.04
10.161.117.192172.17.0.7:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

62-0-0/0

Found on 2024-04-24 00:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c39eefc2c39eefc2c70cf983

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.11)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 21-Mar-2024 12:17:27 UTC
Restart Time: Wednesday, 13-Mar-2024 21:59:43 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 days 14 hours 17 minutes 44 seconds
Server load: 0.61 0.88 0.88
Total accesses: 5343784 - Total Traffic: 4.2 GB
CPU Usage: u24.31 s1.54 cu0 cs0 - .00394% CPU load
8.14 requests/sec - 6.7 kB/second - 838 B/request
10 requests currently being processed, 8 idle workers
KK_K__.K.K._._.KK._.._K.._KW....................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-023281535/39/244280K
0.450625.90.03196.01
10.161.117.218172.17.0.11:80GET /wp-admin/alfacgiapi/perl.alfa.php HTTP/1.1

1-02328381/3/242856K
0.23171.40.00192.67
10.161.117.187172.17.0.11:80GET /signin?from_page=https://www.etsy.com/shop/ClothDollPatter

2-02327920/21/236987_
0.33070.00.02188.81
10.161.117.218172.17.0.11:80GET / HTTP/1.1

3-02327001/263/239748K
1.87260.70.18190.26
10.161.117.187172.17.0.11:80GET / HTTP/1.1

4-02328100/16/238060_
0.30070.00.01188.04
10.161.117.218172.17.0.11:80NULL

5-02328110/13/237801_
0.30290.00.01192.43
10.161.117.253172.17.0.11:80GET / HTTP/1.1

6-0-0/0/228850.
0.402600.00.00181.91
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

7-02327332/96/227505K
0.85072.10.07180.65
10.161.117.192172.17.0.11:80GET / HTTP/1.1

8-0-0/0/217541.
0.443760.00.00173.30
10.161.117.187172.17.0.11:80NULL

9-02328162/10/221309K
0.28061.80.01175.69
10.161.117.253172.17.0.11:80GET /server HTTP/1.1

10-0-0/0/218029.
0.742570.00.00173.25
10.161.117.218172.17.0.11:80NULL

11-02327500/188/208792_
1.42060.00.14165.56
10.161.117.218172.17.0.11:80NULL

12-0-0/0/207253.
0.512700.00.00165.42
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

13-02328050/22/202643_
0.33260.00.02162.33
10.161.117.187172.17.0.11:80GET //my1.php HTTP/1.1

14-0-0/0/195517.
0.233900.00.00157.08
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

15-02328141/12/193013K
0.303111.10.01153.65
10.161.117.192172.17.0.11:80GET /wp-content/plugins/wp-automatic/css/style.css HTTP/1.1

16-02328171/106/186081K
0.87071.00.08148.42
10.161.117.158172.17.0.11:80GET /v2/_catalog HTTP/1.1

17-0-0/0/182865.
0.221700.00.00145.92
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

18-02327570/143/170273_
1.13260.00.11135.49
10.161.117.158

19-0-0/0/155189.
0.223500.00.00124.33
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

20-0-0/0/153270.
0.213600.00.00122.21
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

21-02327590/71/139294_
0.68260.00.06111.55
10.161.117.218172.17.0.11:80NULL

22-02328221/10/125519K
0.26260.90.01100.89
10.161.117.158172.17.0.11:80GET / HTTP/1.1

23-0-0/0/106112.
0.202800.00.0085.22
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

24-0-0/0/94774.
0.232490.00.0077.22
10.161.117.192172.17.0.11:80NULL

25-02328260/9/83396_
0.25070.00.0167.92
10.161.117.187172.17.0.11:80NULL

26-02328272/7/74024K
0.26461.40.0159.20
10.161.117.158172.17.0.11:80GET / HTTP/1.1

27-02328280/6/60784W
0.26000.00.0049.20
10.161.117.187172.17.0.11:80GET /server-status HTTP/1.1

28-0-0/0/53408.
0.231900.00.0044.16
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

29-0-0/0/48309.
0.213400.00.0039.47
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

30-0-0/0/38413.
0.9363160.00.0032.22
10.161.117.187172.17.0.11:80NULL

31-0-0/0/29220.
0.5936580.00.0024.47
10.161.117.218172.17.0.11:80NULL

32-0-0/0/23608.
0.3659760.00.0020.00
10.161.117.187172.17.0.11:80GET /robots.txt HTTP/1.1

33-0-0/0/15716.
0.6359600.00.0012.66
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

34-0-0/0/10592.
0.25182500.00.008.24
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

35-0-0/0/9938.
0.23187752880.00.008.05
10.161.117.218172.17.0.11:80GET / HTTP/1.1

36-0-0/0/5259.
0.29181490.00.004.51
10.161.117.187172.17.0.11:80GET / HTTP/1.1

37-0-0/0/4237.
0.37186000.00.003.51
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

38-0-0/0/2061.
0.28179400.00.001.62
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

39-0-0/0/1009.
0.22184300.00.000.99
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

40-0-0/0/2093.
1.64168080.00.001.81
10.161.117.192

41-0-0/0/1145.
0.23184860.00.001.01
10.161.117.187172.17.0.11:80GET / HTTP/1.1

42-0-0/0/960.
0.00188000.00.000.77
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

43-0-0/0/1015.
0.22185870.00.000.76
10.161.117.187172.17.0.11:80GET /humans.txt HTTP/1.1

44-0-0/0/1054.
1.09169100.00.000.79
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

45-0-0/0/757.
0.00187900.00.000.80
10.161.117.218

46-0-0/0/781.
0.21186752230.00.000.64
10.161.117.187172.17.0.11:80GET /static/lib/services/MochiLC.swf HTTP/1.1

47-0-0/0/691.
0.22185260.00.000.60
10.161.117.192172.17.0.11:80GET /wordpress/wp-admin/install.php HTTP/1.1

48-0-0/0/232.
0.22186400.00.000.33
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

49-0-0/0/349.
0.23185600.00.000.29
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

50-0-0/0/845.
0.47179800.00.000.69
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

51-0-0/0/75.
0.23184900.00.000.07
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

52-0-0/0/10.
0.22186100.00.000.01
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

53-0-0/0/6.
0.20186600.00.000.00
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

54-0-0/0/151.
1.11174270.00.000.12
10.161.117.192172.17.0.11:80GET /newsite/wp-admin/maint/index.php?520=1 HTTP/1.1

55-0-0/0/27.
0.37173370.00.000.03
10.161.117.253172.17.0.11:80GET /stalker_portal/server/load.php?type=stb&action=handshake&t

56-0-0/0/44.
0.35180670.00.000.03
10.161.117.187172.17.0.11:80GET / HTTP/1.1

57-0-0/0/1.
0.0063118300.00.000.00
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

58-0-0/0/9.
0.2863113360.00.000.01
10.161.117.218172.17.0.11:80GET /wp-includes/ HTTP/1.1

59-0-0/0/1.
0.2063117752150.00.000.00
10.161.117.158172.17.0.11:80GET /.vscode/sftp.json HTTP/1.1

60-0-0/0/3.
0.0063116600.00.000.00
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent

Found on 2024-03-21 12:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318629b4188629b4188855f210

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.2)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 08-Mar-2024 11:02:30 UTC
Restart Time: Wednesday, 21-Feb-2024 04:57:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  16 days 6 hours 5 minutes 21 seconds
Server load: 1.19 1.16 1.12
Total accesses: 34979532 - Total Traffic: 24.4 GB
CPU Usage: u69.95 s43.22 cu0 cs0 - .00806% CPU load
24.9 requests/sec - 18.2 kB/second - 747 B/request
21 requests currently being processed, 9 idle workers
KW_K_K__.KKK.K._..K..__K_K_C...KK...KK.K.KKKK...................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-06298771/10/1303557K
0.28171.10.01928.88
10.161.117.192172.17.0.2:80GET / HTTP/1.1

1-06299240/1/1265802W
0.21000.00.00903.61
10.161.117.187172.17.0.2:80GET /server-status HTTP/1.1

2-06299250/1/1267639_
0.2312600.00.00904.14
10.161.117.158172.17.0.2:80GET /robots.txt HTTP/1.1

3-06298781/9/1281823K
0.29270.70.01917.71
10.161.117.192172.17.0.2:80GET /robots.txt HTTP/1.1

4-06298140/227/1258466_
1.66170.00.16898.14
10.161.117.192172.17.0.2:80GET /static/lib/services/MochiLC.swf HTTP/1.1

5-06299231/31/1254867K
0.42160.90.02895.10
10.161.117.187172.17.0.2:80GET / HTTP/1.1

6-06298790/8/1246967_
0.30160.00.01890.69
10.161.117.158172.17.0.2:80GET / HTTP/1.1

7-06299260/0/1227610_
1.55100.00.00875.80
10.161.117.158

8-0-0/0/1239330.
0.27800.00.00884.21
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

9-062988117/27/1214426K
0.400711.90.02868.35
10.161.117.158172.17.0.2:80GET /wp-admin/css/colors/sunrise/about.php HTTP/1.1

10-06298821/40/1184955K
0.47460.90.03846.75
10.161.117.218172.17.0.2:80GET / HTTP/1.1

11-06298091/178/1184025K
1.333101.00.12844.32
10.161.117.253172.17.0.2:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

12-0-0/0/1189325.
0.252460.00.00849.52
10.161.117.187172.17.0.2:80GET /wp-includes/ID3/plugins.php HTTP/1.1

13-062990789/98/1162004K
0.820654.10.06829.24
10.161.117.218172.17.0.2:80GET /.well-known/acme-challenge/cloud.php HTTP/1.1

14-0-0/0/1157945.
0.261200.00.00827.16
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

15-06297770/268/1124853_
2.03160.00.18803.37
10.161.117.192172.17.0.2:80GET //my1.php HTTP/1.1

16-0-0/0/1108446.
0.553000.00.00791.54
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

17-0-0/0/1089053.
0.832900.00.00776.12
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

18-06298871/10/1062139K
0.28481.00.01758.49
10.161.117.253172.17.0.2:80GET /v2/_catalog HTTP/1.1

19-0-0/0/1048132.
0.242880.00.00747.85
10.161.117.218172.17.0.2:80POST /wp-login.php HTTP/1.1

20-0-0/0/1007222.
2.853160.00.00719.23
10.161.117.192172.17.0.2:80NULL

21-06296680/333/987669_
2.48180.00.20704.73
10.161.117.158172.17.0.2:80NULL

22-06298670/60/936813_
0.61180.00.04669.94
10.161.117.218172.17.0.2:80POST /srv/1/bd48c19060a4136b.swf?cacheBust=1709858274855 HTTP/1

23-06299085/13/899359K
0.30063.00.01641.15
10.161.117.192172.17.0.2:80GET /wp-content/themes/seotheme/db.php?u HTTP/1.1

24-06298890/11/849845_
0.27160.00.01605.12
10.161.117.253172.17.0.2:80GET /wp-content/upgrade/plugins.php HTTP/1.1

25-062982519/261/789197K
1.850612.10.18561.82
10.161.117.187172.17.0.2:80GET //.well-known/acme-challenge/install.php HTTP/1.1

26-06299090/6/759041_
0.26170.00.01539.10
10.161.117.192172.17.0.2:80NULL

27-06298901/207/665145C
1.51060.90.11474.69
10.161.117.158172.17.0.2:80NULL

28-0-0/0/583273.
0.412500.00.00416.33
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

29-0-0/0/542838.
0.232760.00.00386.22
10.161.117.218172.17.0.2:80NULL

30-0-0/0/462335.
0.252360.00.00328.95
10.161.117.218172.17.0.2:80NULL

31-06298411/155/407188K
1.21281.00.11290.25
10.161.117.192172.17.0.2:80GET /static/lib/services/services.swf?api%5Fversion=3%2E9%2E4%2

32-06299121/5/359160K
0.25481.40.01255.64
10.161.117.187172.17.0.2:80POST /srv/1/b29e735eb7936c36.swf HTTP/1.1

33-0-0/0/312967.
0.238300.00.00221.02
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

34-0-0/0/253436.
0.349160.00.00179.12
10.161.117.192172.17.0.2:80NULL

35-0-0/0/218046.
0.229300.00.00154.48
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

36-06298551/18/194485K
0.33360.90.02137.44
10.161.117.192172.17.0.2:80GET /telescope/requests HTTP/1.1

37-062985661/79/158347K
0.710645.20.06111.53
10.161.117.158172.17.0.2:80GET /wp-includes/certificates/about.php HTTP/1.1

38-0-0/0/131933.
0.0010100.00.0093.07
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

39-06298581/14/100897K
0.302101.40.0172.32
10.161.117.192172.17.0.2:80POST /srv/1/06b15a04cb6f529e.swf?cacheBust=1709895744765 HTTP/1

40-0-0/0/77441.
0.229800.00.0054.62
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

41-06298601/142/62283K
1.09260.70.0944.03
10.161.117.187172.17.0.2:80GET / HTTP/1.1

42-06298612/42/51678K
0.48061.30.0336.88
10.161.117.187172.17.0.2:80GET //wp-content/uploads/ HTTP/1.1

43-06298621/242/45507K
1.73250.80.1432.27
10.161.117.187172.17.0.2:80GET /robots.txt HTTP/1.1

44-06298631/41/41245K
0.47461.10.0329.13
10.161.117.158172.17.0.2:80GET / HTTP/1.1

45-0-0/0/27025.
0.54900.00.0018.96
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

46-0-0/0/21915.
1.65233760.00.0015.45
10.161.117.187172.17.0.2:80NULL

47-0-0/0/17034.
0.95236700.00.0012.25
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

48-0-0/0/16189.
1.07239390.00.0011.51
10.161.117.192172.17.0.2:80GET /myfmradio.ca.hyperesources/Strathroy%201.png HTTP/1.1

49-0-0/0/14953.
0.2124542290.00.0010.68
10.161.117.218172.17.0.2:80NULL

50-0-0/0/13922.
2.212243100.00.0010.09
10.161.117.187172.17.0.2:80GET / HTTP/1.1

51-0-0/0/12595.
0.43233180.00.008.79
10.161.117.192172.17.0.2:80GET / HTTP/1.1

52-0-0/0/10354.
0.93235660.00.007.43
10.161.117.192172.17.0.2:80NULL

53-0-0/0/7691.
0.22243800.00.005.71
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

54-0-0/0/6548.
0.00245600.00.004.66
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

55-0-0/0/5796.
0.00245900.00.004.30
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

56-0-0/0/5369.
0.22244200.00.003.78
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

57-0-0/0/3437.
0.25342400.00.002.50
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

58-0-0/0/4621.
0.00345900.00.003.24
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

59-0-0/0/2369.
0.24342600.00.001.73
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

60-0-0/0/3110.
0.69331250.00.00

Found on 2024-03-08 11:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b78136fd92

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 01-Mar-2024 09:41:51 UTC
Restart Time: Wednesday, 21-Feb-2024 04:56:14 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 4 hours 45 minutes 36 seconds
Server load: 1.36 1.23 1.17
Total accesses: 21816648 - Total Traffic: 15.5 GB
CPU Usage: u114.47 s283.98 cu0 cs0 - .0501% CPU load
27.5 requests/sec - 20.4 kB/second - 762 B/request
21 requests currently being processed, 1 idle workers
KW.K.C.K..KCK_KKKK..CKK.KK...K.KKK..............................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03616731/14/814909K
0.490121.10.01594.27
10.161.117.158172.17.0.3:80GET / HTTP/1.1

1-03617000/0/805621W
0.42000.00.00585.27
10.161.117.192172.17.0.3:80GET /server-status HTTP/1.1

2-0-0/0/784931.
0.78700.00.00573.25
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

3-03615621/256/788961K
3.460100.50.19572.44
10.161.117.218172.17.0.3:80GET /.well-known/autoconfig/mail/config-v1.1.xml HTTP/1.1

4-0-0/0/806481.
1.774130.00.00586.20
10.161.117.218172.17.0.3:80GET /robots.txt HTTP/1.0

5-03616461/122/781011C
1.790100.90.09569.00
10.161.117.158172.17.0.3:80NULL

6-0-0/0/773764.
1.571100.00.00562.99
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

7-03616471/30/771373K
0.660161.00.02562.06
10.161.117.187172.17.0.3:80GET /static/lib/services/services.swf?listenLC=%5F%5Fms%5F17092

8-0-0/0/757507.
0.5212120.00.00549.95
10.161.117.187172.17.0.3:80GET / HTTP/1.1

9-0-0/0/752235.
0.31103410.00.00547.52
10.161.117.187172.17.0.3:80NULL

10-03616941/5/753488K
0.370121.10.00547.13
10.161.117.218172.17.0.3:80GET /about.php?auth_key HTTP/1.1

11-03616492/119/744204C
1.741132.30.09543.00
10.161.117.192172.17.0.3:80NULL

12-036167827/36/738386K
0.7501019.40.03537.60
10.161.117.218172.17.0.3:80GET /options-head.php HTTP/1.1

13-03616500/20/728004_
0.590150.00.02531.02
10.161.117.253

14-03614194/341/702805K
4.480104.00.26512.40
10.161.117.192172.17.0.3:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

15-03616571/215/699101K
2.870141.00.16508.55
10.161.117.158172.17.0.3:80GET / HTTP/1.1

16-03616951/5/703042K
0.361111.20.00509.34
10.161.117.253172.17.0.3:80GET /MrBestNewSubaru/status/1447873947182174209?lang=pt HTTP/1.

17-03616801/6/683067K
0.380120.90.01496.77
10.161.117.253172.17.0.3:80POST /wp-json/tdw/save_css HTTP/1.1

18-0-0/0/663814.
0.31263380.00.00481.58
10.161.117.187172.17.0.3:80NULL

19-0-0/0/652356.
0.342100.00.00475.88
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-03616841/4/636127C
0.380201.30.00463.48
10.161.117.187172.17.0.3:80NULL

21-03616401/22/621126K
0.591120.90.02451.28
10.161.117.218172.17.0.3:80GET / HTTP/1.1

22-036166047/49/596946K
0.871727.50.03434.15
10.161.117.218172.17.0.3:80GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1

23-0-0/0/556625.
0.50900.00.00404.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-03616851/7/523534K
0.444120.80.01379.47
10.161.117.192172.17.0.3:80GET / HTTP/1.1

25-036168630/36/506332K
0.7801421.00.03369.08
10.161.117.253172.17.0.3:80GET /psychosfera/ HTTP/1.1

26-0-0/0/470477.
4.73800.00.00340.77
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

27-0-0/0/408764.
0.331300.00.00296.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

28-0-0/0/380862.
0.4920160.00.00276.20
10.161.117.253172.17.0.3:80GET /search/?q=varities HTTP/1.1

29-03616651/25/327836K
0.621130.90.02237.38
10.161.117.158172.17.0.3:80GET / HTTP/1.1

30-0-0/0/297613.
0.582300.00.00215.36
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-036166712/16/260373K
0.5231312.00.01189.72
10.161.117.187172.17.0.3:80GET /wp-info.php HTTP/1.1

32-03616681/13/219444K
0.473201.50.01159.40
10.161.117.218172.17.0.3:80POST /srv/1/44642a5ce8607706.swf?cacheBust=1709286107616 HTTP/1

33-03616691/139/196317K
1.942131.00.10142.33
10.161.117.158172.17.0.3:80GET / HTTP/1.1

34-0-0/0/165777.
0.3214163270.00.00120.22
10.161.117.253

35-0-0/0/132066.
0.3314283700.00.0094.83
10.161.117.218172.17.0.3:80GET / HTTP/1.1

36-0-0/0/106830.
0.38195600.00.0077.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/92446.
0.67182600.00.0067.65
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/68659.
0.36214900.00.0049.70
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/58549.
6.281550140.00.0042.62
10.161.117.187

40-0-0/0/48491.
1.92193900.00.0035.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/38253.
0.30215900.00.0027.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/27686.
0.46244600.00.0019.62
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/24055.
0.512438140.00.0017.48
10.161.117.187172.17.0.3:80NULL

44-0-0/0/19196.
0.414136100.00.0013.86
10.161.117.158172.17.0.3:80NULL

45-0-0/0/15062.
0.56425600.00.0010.72
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/16495.
0.504310120.00.0011.63
10.161.117.158172.17.0.3:80NULL

47-0-0/0/15655.
2.00420700.00.0011.35
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/9268.
0.3443503770.00.006.56
10.161.117.218172.17.0.3:80NULL

49-0-0/0/10325.
1.93429400.00.007.31
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/8253.
0.41431800.00.006.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/6704.
0.324345180.00.004.96
10.161.117.253172.17.0.3:80NULL

52-0-0/0/6837.
0.36434600.00.005.01
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/6046.
0.003243000.00.004.43
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/2117.
0.463237800.00.001.47
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/3578.
0.30324243180.00.002.65
10.161.117.187172.17.0.3:80NULL

56-0-0/0/2389.
0.313241800.00.001.74
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/912.
0.3732477120.00.000.70
10.161.117.158

58-0-0/0/2850.
0.003249000.00.002.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/1764.
0.473266800.00.001.26
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/1524.
2.737633500.00.001.09
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/558.
1.1976246120.00.000.44
10.161.117.187172.17.0.3:80GET /c/p/_v455532/f2df4ab6805375b31a63df54c5640b6

Found on 2024-03-01 09:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318629b4188629b41863a411e3

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.2)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 01-Mar-2024 09:41:54 UTC
Restart Time: Wednesday, 21-Feb-2024 04:57:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 4 hours 44 minutes 45 seconds
Server load: 1.35 0.88 0.82
Total accesses: 21749732 - Total Traffic: 15.4 GB
CPU Usage: u67.69 s107.94 cu0 cs0 - .0221% CPU load
27.4 requests/sec - 20.4 kB/second - 761 B/request
18 requests currently being processed, 5 idle workers
KKKK_._.KK.C_.KC.K.K_KK_CKK..WK.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03584061/5/822640K
0.24161.00.00595.97
10.161.117.192172.17.0.2:80GET /debug/default/view?panel=config HTTP/1.1

1-03583631/221/798671K
1.68070.70.19580.62
10.161.117.192172.17.0.2:80GET / HTTP/1.1

2-03582131/364/795791K
2.58281.00.26578.09
10.161.117.218172.17.0.2:80GET /c/p/monkey-go-happy-2/af9413063de45c9b65043168a7078f818c5f

3-035840793/94/815670K
0.820766.40.07594.36
10.161.117.192172.17.0.2:80GET /wp-content/themes/signify/firkon.php HTTP/1.1

4-03584180/0/794576_
1.69100.00.00577.19
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

5-0-0/0/788091.
0.21122160.00.00572.60
10.161.117.187172.17.0.2:80NULL

6-03583680/21/781241_
0.34060.00.02567.66
10.161.117.187172.17.0.2:80NULL

7-0-0/0/766694.
2.54400.00.00556.41
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

8-03584101/4/781839K
0.22170.90.00567.73
10.161.117.187172.17.0.2:80GET / HTTP/1.1

9-035841151/53/761677K
0.540736.50.04555.20
10.161.117.253172.17.0.2:80GET /media-admin.php HTTP/1.1

10-0-0/0/743754.
3.181300.00.00541.92
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

11-03583721/92/745276C
0.81160.90.06541.07
10.161.117.253172.17.0.2:80NULL

12-03583860/43/752148_
0.50160.00.03547.38
10.161.117.253172.17.0.2:80GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1

13-0-0/0/737974.
0.21152300.00.00535.92
10.161.117.158

14-03584131/7/724283K
0.27170.80.01526.92
10.161.117.253172.17.0.2:80GET /classwithtostring.php HTTP/1.1

15-03583741/322/709531C
2.37071.00.30516.18
10.161.117.187172.17.0.2:80NULL

16-0-0/0/694140.
0.274700.00.00504.12
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

17-03583931/109/681818K
0.98461.00.12494.21
10.161.117.218172.17.0.2:80GET / HTTP/1.1

18-0-0/0/671922.
1.231600.00.00489.46
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

19-03583261/117/657092K
1.03261.00.10477.59
10.161.117.158172.17.0.2:80GET / HTTP/1.1

20-03583890/16/638496_
0.30070.00.01464.63
10.161.117.187172.17.0.2:80NULL

21-03583901/17/608634K
0.36371.00.01442.71
10.161.117.218172.17.0.2:80GET /c/p/firearm_v241761/c0cd40a79fb18227ff74299909d65da444afaf

22-03583941/209/585129K
1.59081.00.18426.32
10.161.117.187172.17.0.2:80GET /c/g/_v711918/GameMain.swf HTTP/1.1

23-03583920/124/554855_
0.99070.00.09403.55
10.161.117.218172.17.0.2:80GET /.env HTTP/1.1

24-03583511/51/519859C
0.55071.00.04377.46
10.161.117.218172.17.0.2:80NULL

25-03581681/698/488614K
4.70460.70.51354.40
10.161.117.192172.17.0.2:80GET / HTTP/1.1

26-03583951/12/467309K
0.28170.80.01338.74
10.161.117.158172.17.0.2:80GET / HTTP/1.1

27-0-0/0/402939.
0.204600.00.00293.64
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

28-0-0/0/354419.
2.1515100.00.00257.48
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

29-03583540/34/324080W
0.42000.00.03235.41
10.161.117.253172.17.0.2:80GET /server-status HTTP/1.1

30-03581861/337/277131K
2.44460.80.26201.20
10.161.117.158172.17.0.2:80GET / HTTP/1.1

31-0-0/0/240172.
0.2115200.00.00174.88
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

32-0-0/0/210012.
0.2913100.00.00152.41
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

33-0-0/0/181171.
0.2214700.00.00130.86
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

34-0-0/0/143815.
0.2015000.00.00104.21
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

35-0-0/0/127196.
0.0016000.00.0091.90
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

36-0-0/0/113255.
0.3848180.00.0081.88
10.161.117.192172.17.0.2:80NULL

37-0-0/0/94760.
1.8416280.00.0068.11
10.161.117.218172.17.0.2:80NULL

38-0-0/0/71601.
0.57169860.00.0051.44
10.161.117.187172.17.0.2:80NULL

39-0-0/0/55971.
1.71177600.00.0040.81
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

40-0-0/0/40112.
2.54168300.00.0028.80
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

41-0-0/0/34537.
1.00272000.00.0024.94
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

42-0-0/0/28257.
0.32269590.00.0020.66
10.161.117.158172.17.0.2:80POST /srv/1/2ac638204605c093.swf?cacheBust=1709287067676 HTTP/1

43-0-0/0/24677.
0.23275600.00.0017.79
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

44-0-0/0/22395.
0.00426700.00.0016.07
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

45-0-0/0/13328.
0.26422000.00.009.59
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

46-0-0/0/11589.
0.21426300.00.008.38
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

47-0-0/0/9750.
0.33423360.00.007.03
10.161.117.187172.17.0.2:80NULL

48-0-0/0/10304.
0.38419660.00.007.45
10.161.117.187172.17.0.2:80NULL

49-0-0/0/8700.
0.24423100.00.006.29
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

50-0-0/0/9437.
0.21425800.00.006.98
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

51-0-0/0/7391.
0.22425160.00.005.33
10.161.117.253172.17.0.2:80NULL

52-0-0/0/6600.
0.2142612530.00.004.82
10.161.117.187172.17.0.2:80NULL

53-0-0/0/5337.
0.23424770.00.004.02
10.161.117.253172.17.0.2:80GET /elfinder/connectors/php/connector.php HTTP/1.1

54-0-0/0/3145.
0.25422200.00.002.35
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

55-0-0/0/4395.
0.23424670.00.003.29
10.161.117.192172.17.0.2:80NULL

56-0-0/0/2829.
0.29421470.00.002.09
10.161.117.218172.17.0.2:80GET /robots.txt HTTP/1.1

57-0-0/0/1894.
0.55407360.00.001.37
10.161.117.187172.17.0.2:80NULL

58-0-0/0/1636.
2.247629600.00.001.14
127.0.0.1172.17.0.2:80OPTIONS * HTTP/1.0

59-0-0/0/1556.
0.457649590.00.001.21
10.161.117.218172.17.0.2:80GET / HTTP/1.1

60-0-0/0/1066.
0.467649514660.00.000.78
10.161.117.192172.17.0.2:80POST /srv/1/bf76facdfccdd989.swf?cacheBust=1709209612926 HTTP/1

61-0-0/0/943.
0.257649612410.00.000.71
10.161.117.158172.17.0.2:80POST /srv/1/.swf?cacheBust=170920961

Found on 2024-03-01 09:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b7a1734d87

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 24-Feb-2024 20:27:47 UTC
Restart Time: Wednesday, 21-Feb-2024 04:56:14 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 15 hours 31 minutes 32 seconds
Server load: 0.88 1.10 1.34
Total accesses: 9508471 - Total Traffic: 6.8 GB
CPU Usage: u150.28 s15.49 cu0 cs0 - .0526% CPU load
30.2 requests/sec - 22.6 kB/second - 765 B/request
15 requests currently being processed, 6 idle workers
KWWK__K_K_KKKKK_.KK.K.....K..._.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01494461/28/332954K
0.682160.90.02244.37
10.161.117.218172.17.0.3:80GET / HTTP/1.1

1-01494760/4/339234W
0.33000.00.00247.54
10.161.117.192172.17.0.3:80GET /server-status HTTP/1.1

2-01494570/15/327636W
0.50000.00.01240.06
10.161.117.218172.17.0.3:80GET / HTTP/1.1

3-01494381/155/333788K
2.120131.10.11242.41
10.161.117.158172.17.0.3:80GET / HTTP/1.1

4-01494600/18/340069_
0.540120.00.01247.97
10.161.117.192172.17.0.3:80GET /site/wp-includes/sodium_compat/plugins.php HTTP/1.1

5-01493700/451/324349_
6.170130.00.29237.28
10.161.117.187172.17.0.3:80GET /merchant/code HTTP/1.1

6-01494581/37/322453K
0.753131.20.03235.59
10.161.117.253172.17.0.3:80GET /wp-content/plugins/essential-addons-for-elementor-lite/rea

7-01494390/235/319276_
3.090120.00.17234.16
10.161.117.192172.17.0.3:80GET /wp-content/upgrade/ HTTP/1.1

8-01494772/4/318482K
0.370101.30.00231.56
10.161.117.158172.17.0.3:80GET //cjfuns.php HTTP/1.1

9-01494620/122/313857_
1.850150.00.09228.84
10.161.117.218172.17.0.3:80GET /wp-content/themes/sketch/404.php HTTP/1.1

10-01493981/245/320031K
3.26091.00.18233.00
10.161.117.218172.17.0.3:80GET /debug/default/view?panel=config HTTP/1.1

11-01494591/131/311951K
1.860130.80.10228.65
10.161.117.253172.17.0.3:80GET /inje3ctor.php HTTP/1.1

12-014930648/1145/310423K
13.8801434.40.82226.23
10.161.117.187172.17.0.3:80GET /wp-includes/TfDlQjb/ HTTP/1.1

13-01493912/66/312748K
1.181142.00.06229.56
10.161.117.158172.17.0.3:80GET /c/g/mad-skeletons/_thumb_100x100.jpg HTTP/1.1

14-01494632/9/299580K
0.472161.80.01218.41
10.161.117.218172.17.0.3:80GET /wp-admin/install.php?step=1 HTTP/1.1

15-01494210/31/292423_
0.720150.00.03214.34
10.161.117.218172.17.0.3:80NULL

16-0-0/0/295837.
1.852200.00.00215.52
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

17-01494641/14/284728K
0.520110.30.01208.07
10.161.117.192172.17.0.3:80HEAD /bak/website.gz HTTP/1.1

18-01494441/126/277073K
1.832130.80.09202.37
10.161.117.158172.17.0.3:80GET /c/g/coaster-cars-c-jack-track/_thumb_100x100.png HTTP/1.1

19-0-0/0/280468.
4.6447140.00.00205.21
10.161.117.158172.17.0.3:80GET / HTTP/1.1

20-014946584/189/271767K
2.5501159.70.13198.46
10.161.117.253172.17.0.3:80GET /update-ajax.php HTTP/1.1

21-0-0/0/261695.
0.304800.00.00190.84
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

22-0-0/0/256525.
2.122300.00.00187.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

23-0-0/0/241398.
1.97500.00.00176.45
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

24-0-0/0/231585.
3.05164110.00.00168.93
10.161.117.218172.17.0.3:80GET / HTTP/1.1

25-0-0/0/225135.
1.9917000.00.00164.61
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-014940452/225/206105K
2.9801338.80.16150.51
10.161.117.158172.17.0.3:80GET /wp-max.php HTTP/1.1

27-0-0/0/181568.
5.34172120.00.00132.70
10.161.117.253172.17.0.3:80GET / HTTP/1.1

28-0-0/0/174282.
2.2415600.00.00127.34
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/153368.
0.606600.00.00111.72
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-01493750/198/140793_
2.690120.00.14102.20
10.161.117.253

31-0-0/0/126702.
1.9868200.00.0093.94
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

32-0-0/0/112823.
4.7240500.00.0082.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/101815.
6.61328150.00.0074.23
10.161.117.253172.17.0.3:80NULL

34-0-0/0/90953.
3.2557500.00.0066.90
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/76302.
1.77124700.00.0055.34
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/58760.
0.34130500.00.0042.76
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/56931.
3.22111100.00.0042.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/44452.
6.79340800.00.0032.37
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/39061.
0.00341200.00.0028.39
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/33899.
0.33372400.00.0024.87
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/27223.
5.49353600.00.0019.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/19500.
4.413374150.00.0013.89
10.161.117.218172.17.0.3:80NULL

43-0-0/0/18413.
2.31594900.00.0013.36
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/15479.
5.36610300.00.0011.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/11907.
0.336096180.00.008.44
10.161.117.253172.17.0.3:80NULL

46-0-0/0/11652.
0.38607210.00.008.23
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/11649.
4.945743120.00.008.43
10.161.117.218172.17.0.3:80NULL

48-0-0/0/5677.
0.326091140.00.003.94
10.161.117.218172.17.0.3:80NULL

49-0-0/0/8808.
0.00610500.00.006.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/5528.
0.34609000.00.004.04
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/4394.
0.39605500.00.003.21
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/4471.
3.735773130.00.003.25
10.161.117.158172.17.0.3:80NULL

53-0-0/0/3314.
0.3761003830.00.002.51
10.161.117.253172.17.0.3:80GET /wp-admin/inputs.php HTTP/1.1

54-0-0/0/1358.
0.75594400.00.000.97
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/2522.
0.396054210.00.001.86
10.161.117.218172.17.0.3:80NULL

56-0-0/0/1750.
1.81599300.00.001.29
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/423.
0.47602500.00.000.32
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/2645.
0.416075140.00.001.91
10.161.117.187172.17.0.3:80GET /wp-login.php HTTP/1.1

59-0-0/0/1348.
1.716009250.00.000.97
10.161.117.218172.17.0.3:80NULL

60-0-0/0/865.
2.06598200.00.000.63
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/186.
0.3315026110.00.000.14
10.161.117.218172.17.0.3:80

Found on 2024-02-24 20:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318529b2b78529b2b76ca51e90

Apache Status

Apache Server Status for bwwp.ca (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 24-Feb-2024 20:27:46 UTC
Restart Time: Wednesday, 21-Feb-2024 04:53:42 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 15 hours 34 minutes 3 seconds
Server load: 1.20 1.02 1.05
Total accesses: 9489799 - Total Traffic: 6.8 GB
CPU Usage: u94.74 s12.82 cu0 cs0 - .0341% CPU load
30.1 requests/sec - 22.5 kB/second - 765 B/request
16 requests currently being processed, 8 idle workers
K.KWCC.C_K_K_KK__K.__.KKCC_K....................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01499451/16/332271K
0.46290.90.01243.97
10.161.117.218172.17.0.3:80GET / HTTP/1.1

1-0-0/0/332707.
0.33100.00.00242.72
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

2-014995968/81/332576K
1.1101147.00.06242.89
10.161.117.253172.17.0.3:80GET /moderation.php HTTP/1.1

3-01499710/109/328418W
1.44000.00.08240.67
10.161.117.158172.17.0.3:80GET /server-status HTTP/1.1

4-01499601/65/323017C
0.970111.10.03235.80
10.161.117.253172.17.0.3:80GET / HTTP/1.1

5-01499471/34/336431C
0.73090.80.03244.74
10.161.117.218172.17.0.3:80NULL

6-0-0/0/331604.
0.453110.00.00242.18
10.161.117.218172.17.0.3:80GET /.well-known/autoconfig/mail/config-v1.1.xml?emailaddress=a

7-01499481/120/318733C
1.550131.10.09232.15
10.161.117.218172.17.0.3:80GET / HTTP/1.1

8-01499730/6/328860_
0.332110.00.01239.29
10.161.117.253172.17.0.3:80GET /robots.txt HTTP/1.0

9-014994998/114/316477K
1.4701170.00.08232.77
10.161.117.158172.17.0.3:80GET /wp-content/plugins/wp-pregoes/ HTTP/1.1

10-01499740/108/306787_
1.410110.00.10223.98
10.161.117.253172.17.0.3:80GET /wp-content/themes/seotheme/db.php?u HTTP/1.1

11-014997556/57/318164K
0.840837.20.04231.81
10.161.117.192172.17.0.3:80GET /wp-content/plugins/press/wp-class.php HTTP/1.1

12-01499790/1/300084_
0.3023230.00.00219.96
10.161.117.158172.17.0.3:80NULL

13-01499611/19/304016K
0.490110.90.02222.40
10.161.117.253172.17.0.3:80GET / HTTP/1.1

14-01499771/6/294889K
0.340111.00.01214.71
10.161.117.187172.17.0.3:80GET /debug/default/view?panel=config HTTP/1.1

15-01499800/1/294274_
0.3213330.00.00214.81
10.161.117.158172.17.0.3:80NULL

16-01499630/109/297538_
1.39290.00.08217.77
10.161.117.158172.17.0.3:80NULL

17-014996499/109/295867K
1.420970.10.08215.39
10.161.117.253172.17.0.3:80GET /pm_login/ HTTP/1.1

18-0-0/0/288287.
1.390130.00.00210.60
10.161.117.218172.17.0.3:80GET /wp-admin/inputs.php HTTP/1.1

19-01499760/13/279277_
0.5002390.00.01203.32
10.161.117.253172.17.0.3:80NULL

20-01499810/2/267074_
0.28180.00.00194.70
10.161.117.187172.17.0.3:80NULL

21-0-0/0/255532.
0.392110.00.00186.43
10.161.117.158172.17.0.3:80GET / HTTP/1.1

22-014993233/166/255628K
1.9901623.90.12186.30
10.161.117.218172.17.0.3:80GET /cekidot/ HTTP/1.1

23-01499831/3/249898K
0.32291.00.00183.52
10.161.117.192172.17.0.3:80GET / HTTP/1.1

24-01499341/159/237944C
2.01000.20.11174.34
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

25-01498711/416/224658C
4.67191.30.30163.96
10.161.117.187172.17.0.3:80NULL

26-01499840/102/195663_
1.33260.00.08143.41
10.161.117.187172.17.0.3:80GET /wp-admin/images/wp-settings.phtml HTTP/1.1

27-01499851/3/195750K
0.333140.90.00142.24
10.161.117.253172.17.0.3:80GET / HTTP/1.1

28-0-0/0/158468.
0.0012100.00.00114.96
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

29-0-0/0/147489.
0.3111600.00.00107.51
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/141619.
0.494700.00.00103.07
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0-0/0/127015.
0.30108100.00.0092.40
10.161.117.192172.17.0.3:80GET / HTTP/1.1

32-0-0/0/116638.
0.5154100.00.0085.22
10.161.117.187172.17.0.3:80NULL

33-0-0/0/100599.
0.0012000.00.0073.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/89933.
3.4073500.00.0064.96
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/76565.
0.3014303250.00.0055.29
10.161.117.158172.17.0.3:80GET / HTTP/1.1

36-0-0/0/67684.
0.28141800.00.0048.87
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/54977.
0.3360533670.00.0040.50
10.161.117.158172.17.0.3:80NULL

38-0-0/0/49156.
3.175830110.00.0035.37
10.161.117.187172.17.0.3:80GET /wp-login.php HTTP/1.1

39-0-0/0/41672.
0.476054100.00.0030.52
10.161.117.192172.17.0.3:80NULL

40-0-0/0/30468.
2.78583100.00.0022.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/22645.
0.33607700.00.0016.43
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/19209.
0.34607500.00.0013.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/19251.
1.656463140.00.0013.94
10.161.117.192172.17.0.3:80NULL

44-0-0/0/12699.
0.28670400.00.009.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/12989.
0.606902120.00.009.11
10.161.117.253172.17.0.3:80NULL

46-0-0/0/11455.
0.00702800.00.008.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/9152.
0.446940120.00.006.50
10.161.117.158172.17.0.3:80GET /wp-login.php HTTP/1.1

48-0-0/0/6707.
0.2970213160.00.004.92
10.161.117.158172.17.0.3:80NULL

49-0-0/0/3722.
0.00702700.00.002.64
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/4699.
0.33701900.00.003.42
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/2726.
7.03930360.00.001.98
10.161.117.187172.17.0.3:80GET /ws.php HTTP/1.1

52-0-0/0/2736.
0.00983100.00.002.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/2532.
0.799730130.00.001.86
10.161.117.192172.17.0.3:80GET /.well-known/acme-challenge/5F04WQ_W07JP66I-16R4WZAXEHEAQ-D

54-0-0/0/3920.
4.001511790.00.002.87
10.161.117.187172.17.0.3:80GET /.well-known/pki-validation/x.php HTTP/1.1

55-0-0/0/502.
1.671517000.00.000.37
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/642.
1.721517400.00.000.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/921.
0.341523830.00.000.65
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/510.
0.391519800.00.000.36
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/755.
0.651519500.00.000.59
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/589.
1.181496200.00.000.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/134.
0.9515169100.00.000.09
10.161.117.218172.17.0.3:80NULL

Found on 2024-02-24 20:27

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: igbeglekarreco.tk
Port: 443
URL: https://igbeglekarreco.tk

First seen 2023-03-20 00:48
Last seen 2024-01-09 16:17
Open for 295 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2024-01-09 16:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: crowultruccargastgoo.cf
Port: 80
URL: http://crowultruccargastgoo.cf

First seen 2022-10-04 08:32
Last seen 2023-12-24 09:02
Open for 446 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 09:02
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: nezakavenoke.tk
Port: 443
URL: https://nezakavenoke.tk

First seen 2022-10-04 15:01
Last seen 2023-12-24 01:24
Open for 445 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 01:24
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: mocbai8.co
Port: 443
URL: https://mocbai8.co

First seen 2023-10-15 03:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c99d3320899d33208d5720461d7dd2bdc184cc5a0f8618000

Found 44 files trough .DS_Store spidering:

/- Copy.htaccess
/.htaccess
/admin
/admin/css
/admin/fonts
/admin/fonts/Assistant
/admin/fonts/Rubik
/admin/images
/admin/images/auth
/admin/images/carousel
/admin/images/dashboard
/admin/images/faces
/admin/images/faces-clipart
/admin/images/favicon.png
/admin/images/file-icons
/admin/images/lightbox
/admin/images/logo-mini.svg
/admin/images/logo.svg
/admin/images/samples
/admin/images/screenshots
/admin/images/sprites
/admin/js
/admin/scss
/admin/scss/components
/admin/scss/vertical
/admin/vendors
/affiliate
/assets
/css
/download
/favicon.ico
/filemanager
/images
/img
/index.php
/js
/mix-manifest.json
/plugins
/robots.txt
/static
/storage
/vendor
/web
/web.config

Found on 2023-10-15 03:30

Severity: medium
Fingerprint: 5f32cf5d6962f09cef4770e6ef4770e6122c268799823a1a1e75ffb618174f8c

Found 42 files trough .DS_Store spidering:

/- Copy.htaccess
/.htaccess
/admin
/admin/css
/admin/fonts
/admin/fonts/Assistant
/admin/fonts/Rubik
/admin/images
/admin/images/auth
/admin/images/carousel
/admin/images/dashboard
/admin/images/faces
/admin/images/faces-clipart
/admin/images/favicon.png
/admin/images/file-icons
/admin/images/lightbox
/admin/images/logo-mini.svg
/admin/images/logo.svg
/admin/images/samples
/admin/images/screenshots
/admin/images/sprites
/admin/js
/admin/scss
/admin/vendors
/affiliate
/assets
/css
/download
/favicon.ico
/filemanager
/images
/img
/index.php
/js
/mix-manifest.json
/plugins
/robots.txt
/static
/storage
/vendor
/web
/web.config

Found on 2023-10-15 03:30

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.218.237
Domain: fqkxlxvp.cf
Port: 443
URL: https://fqkxlxvp.cf

First seen 2023-04-28 21:53
Last seen 2023-09-14 03:43
Open for 138 days

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf947301c8008e9bb75da8a3393b63d7ce

Found 25 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/2
/assets/img/character/3
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-09-14 03:43

Severity: medium
Fingerprint: 5f32cf5d6962f09c93a25c3a93a25c3aacc96c7f1328926e5cd3ee0aaf0d2347

Found 46 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-09-14 01:27

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9579574fa0198d2f9381b11e75552e7e9
```
Found 5 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/index.html
/README.md
```
Found on 2023-08-30 00:20

Severity: medium
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c7736b6d57b496e609fb8d4a1f2d3944c50a

Found 50 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/3/down
/assets/img/character/3/left
/assets/img/character/3/right
/assets/img/character/3/up
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-08-28 22:11

Severity: medium
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1df8709835819175ca7f5d35fc9eb12e6b0

Found 61 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/3/down
/assets/img/character/3/left
/assets/img/character/3/right
/assets/img/character/3/up
/assets/img/character/4
/assets/img/character/4/down
/assets/img/character/4/left
/assets/img/character/4/right
/assets/img/character/4/up
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/sounds/footStep.mp3
/assets/sounds/nextLevel.mp3
/assets/sounds/win.mp3
/assets/vendor
/assets/vendor/notiflix
/assets/vendor/notiflix/notiflix-confirm-aio-3.2.6.min.js
/assets/vendor/notiflix/notiflix-notify-aio-3.2.6.min.js
/assets/vendor/notiflix/notiflix-report-aio-3.2.6.min.js
/index.html
/README.md

Found on 2023-06-27 03:21

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d2e068fb823520128a7188d008cd6a8fe

Found 12 files trough .DS_Store spidering:

/.htaccess
/assets
/assets/css
/assets/img
/assets/img/fun
/assets/img/map-ping.png
/assets/img/pp.png
/assets/js
/index.php
/resumes
/resumes/en.pdf
/resumes/fr.pdf

Found on 2023-04-28 21:53

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.218.237
Domain: fqkxlxvp.cf
Port: 443
URL: https://fqkxlxvp.cf

First seen 2023-06-27 03:21
Last seen 2023-09-14 03:43
Open for 79 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522ef10a80c

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/MazBazDev/Project-Boxxle.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[pull]
	rebase = false

Found on 2023-08-25 07:42

567 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a1352dbf

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://ytrack.learn.ynov.com/git/bmayeul/Boxxle.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[pull]
	rebase = false

Found on 2023-06-27 03:21

576 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.218.237
Domain: fqkxlxvp.cf
Port: 80
URL: http://fqkxlxvp.cf

First seen 2023-04-28 21:52
Last seen 2023-09-13 23:51
Open for 138 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c70ba7b5770ba7b5785e2b3d0a52ef64f4cf223b11dcfe8a6

Found 54 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/3/down
/assets/img/character/3/left
/assets/img/character/3/right
/assets/img/character/3/up
/assets/img/character/4
/assets/img/character/4/down
/assets/img/character/4/left
/assets/img/character/4/right
/assets/img/character/4/up
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-09-13 23:51

Severity: medium
Fingerprint: 5f32cf5d6962f09cef4770e6ef4770e63fc83863284677ea6bebbd6676ffc2e7

Found 42 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/3
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-09-07 07:34

Severity: medium
Fingerprint: 5f32cf5d6962f09cb3107650b3107650f167953de95e8efcadb46e8c5adae1a6

Found 39 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/2
/assets/img/character/3
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-09-03 22:34

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf947301c8008e9bb75da8a3393b63d7ce

Found 25 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/2
/assets/img/character/3
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-08-31 16:48

Severity: medium
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c7736b6d57b496e609fb8d4a1f2d3944c50a

Found 50 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/3/down
/assets/img/character/3/left
/assets/img/character/3/right
/assets/img/character/3/up
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-08-31 11:33

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9579574fa0198d2f9381b11e75552e7e9
```
Found 5 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/index.html
/README.md
```
Found on 2023-08-28 21:41

Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fdb29423824e2ca872abe67a97d358c2f

Found 10 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-08-27 21:08

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719155d132aabbde3c9b29fab17425ef823

Found 16 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-08-27 19:27

Severity: low
Fingerprint: 5f32cf5d6962f09c87f05b7087f05b7077e6845df1e8961c229b1a2ce8d89a3f

Found 26 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/2
/assets/img/character/3
/assets/img/character/4
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/vendor
/index.html
/README.md

Found on 2023-08-26 14:39

Severity: medium
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1df8709835819175ca7f5d35fc9eb12e6b0

Found 61 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/3/down
/assets/img/character/3/left
/assets/img/character/3/right
/assets/img/character/3/up
/assets/img/character/4
/assets/img/character/4/down
/assets/img/character/4/left
/assets/img/character/4/right
/assets/img/character/4/up
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/sounds/footStep.mp3
/assets/sounds/nextLevel.mp3
/assets/sounds/win.mp3
/assets/vendor
/assets/vendor/notiflix
/assets/vendor/notiflix/notiflix-confirm-aio-3.2.6.min.js
/assets/vendor/notiflix/notiflix-notify-aio-3.2.6.min.js
/assets/vendor/notiflix/notiflix-report-aio-3.2.6.min.js
/index.html
/README.md

Found on 2023-06-27 03:21

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d2e068fb823520128a7188d008cd6a8fe

Found 12 files trough .DS_Store spidering:

/.htaccess
/assets
/assets/css
/assets/img
/assets/img/fun
/assets/img/map-ping.png
/assets/img/pp.png
/assets/js
/index.php
/resumes
/resumes/en.pdf
/resumes/fr.pdf

Found on 2023-04-28 21:52

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.218.237
Domain: fqkxlxvp.cf
Port: 80
URL: http://fqkxlxvp.cf

First seen 2023-06-27 03:21
Last seen 2023-09-13 23:51
Open for 78 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522ef10a80c

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/MazBazDev/Project-Boxxle.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[pull]
	rebase = false

Found on 2023-08-25 07:42

567 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a1352dbf

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://ytrack.learn.ynov.com/git/bmayeul/Boxxle.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[pull]
	rebase = false

Found on 2023-06-27 03:21

576 Bytes

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.24.129
Domain: nutritionsteps.org
Port: 80
URL: http://nutritionsteps.org

First seen 2023-08-07 09:05
Last seen 2023-09-13 00:16
Open for 36 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aa0086240

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Tuesday, 12-Sep-2023 19:18:37 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 134
Parent Server MPM Generation: 133
Server uptime:  28 days 11 hours 10 minutes 48 seconds
Server load: 0.29 0.22 0.19
Total accesses: 9412704 - Total Traffic: 157.2 GB - Total Duration: 1385710892
CPU Usage: u323.62 s117.13 cu25456.5 cs4198.94 - 1.22% CPU load
3.83 requests/sec - 67.0 kB/second - 17.5 kB/request - 147.217 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04182540no0yes163000
Sum100 163000

__________________________W_____________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-13341825400/191/61307_
44.5313387517230.01.661057.60
18.236.157.221http/1.1

0-13341825400/206/60148_
44.950089795410.01.841052.83
159.65.58.104http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-13341825400/204/61398_
44.936087023990.01.981008.71
217.138.202.62http/1.1www.casinogamesonline.com:443HEAD /back/casinogamesonline.com.rar HTTP/2.0

0-13341825400/204/60135_
44.748088945850.02.09951.66
40.77.59.17http/1.1localhost:80GET /wp-admin/css/colors/xmrlpc.php?p= HTTP/1.1

0-13341825400/215/61223_
44.731142389920150.03.571203.17
113.207.1.133http/1.1www.greekvillaparos.gr:443GET /parosholiday/wp-content/uploads/sites/3/2017/10/sunset-100

0-13341825400/226/61942_
44.944088875500.09.531121.87
185.191.171.1http/1.1www.dcflow.com:80GET /rhzitv/frenchness/6116-2200/mesotrochal-cutis/frontier.xht

0-13341825400/272/60569_
44.397089840350.02.731006.99
74.249.236.83http/1.1www.ahanasharma.co.in:80GET //wp-admin/maint/wp-login.php HTTP/1.1

0-13341825400/231/61217_
44.94219090041390.01.39987.21
185.191.171.2http/1.1www.dcflow.com:80GET /index.php?%5BL%5D&frenchness6116=2200 HTTP/1.1

0-13341825400/201/60963_
44.8811087595830.01.581032.70
65.108.78.33http/1.1localhost:80GET /wp-includes/js/quicktags.min.js HTTP/1.1

0-13341825400/220/60242_
44.710090059150.03.801017.09
40.77.59.17http/1.1localhost:80GET /wp-admin/css/colors/coffee/xmrlpc.php?p= HTTP/1.1

0-13341825400/201/61581_
44.711087324380.02.121151.68
51.222.253.12http/1.1

0-13341825400/184/60773_
44.5312217892326850.07.43955.09
17.241.219.151http/1.1www.jimrush.net:443POST /wp/wp-admin/admin-ajax.php HTTP/1.1

0-13341825400/221/61423_
44.646092257900.01.961076.61
217.138.202.62h2www.casinogamesonline.com:443[1/1] done: stream 1, HEAD /back/casinogamesonline.com.rar

0-13341825400/276/60695_
44.402088092290.01.821112.64
40.77.59.17http/1.1

0-13341825400/189/61623_
44.909092004580.02.981104.85
65.108.78.33http/1.1localhost:80GET /wp-includes/js/shortcode.js HTTP/1.1

0-13341825400/186/60328_
44.378087669650.01.051005.37
217.138.202.61h2www.casinogamesonline.com:443[1/1] done: stream 1, HEAD /back/casinogamesonline.com.rar

0-13341825400/332/60484_
44.748088743730.010.55994.86
5.255.231.160http/1.1www.2astudio.biz:80GET /mylnye-puzyri.html HTTP/1.1

0-13341825400/223/60711_
44.483088593330.03.41950.25
34.234.14.102http/1.1

0-13341825400/197/61065_
44.58363796409720.03.161011.48
137.184.153.35http/1.1www.birthchoicewake.org:80GET /adminfuns.php HTTP/1.1

0-13341825400/277/60883_
44.950090661900.04.741123.82
159.65.58.104http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-13341825400/278/59938_
44.747089727140.03.151007.90
46.105.107.51http/1.1localhost:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1

0-13341825400/195/60575_
44.7410092541080.01.811104.27
40.77.59.17http/1.1localhost:80GET /wp-admin/js/widgets/xmrlpc.php?p= HTTP/1.1

0-13341825400/214/59776_
44.937090442590.03.201193.81
65.108.78.33http/1.1localhost:80GET /wp-includes/js/shortcode.min.js HTTP/1.1

0-13341825400/269/60981_
44.7914090197100.07.991036.35
65.108.78.33http/1.1localhost:80GET /wp-includes/js/plupload/wp-plupload.min.js HTTP/1.1

0-13341825400/213/60543_
44.7815089367890.04.151034.48
85.128.143.151http/1.1www.10in1.org:80GET /language/en-GB/en-GB.com_acym.ini HTTP/1.1

0-13341825400/197/60601_
44.7815088542590.01.521072.06
85.128.143.151http/1.1www.10in1.org:80GET /media/com_acym/js/global.min.js HTTP/1.1

0-13341825401/223/59975W
44.780088389680.04.24965.82
159.65.58.104http/1.1localhost:80GET /server-status HTTP/1.1

0-13341825400/215/59996_
44.590089402900.05.941011.10
51.222.253.7http/1.1

0-13341825400/208/62190_
44.24632493400170.02.961177.87
40.77.59.17http/1.1

0-13341825400/213/60974_
44.559093621110.01.531133.77
40.77.59.17http/1.1

0-13341825400/253/60336_
44.936089021510.03.141020.42
65.108.78.33http/1.1localhost:80GET /wp-includes/js/swfobject.js HTTP/1.1

0-13341825400/205/60382_
44.558388951480.02.471092.79
40.77.59.17http/1.1

0-13341825400/203/60796_
44.950088783670.02.731037.24
51.222.253.7http/1.1localhost:80GET / HTTP/1.1

0-13341825400/206/60695_
44.762090122350.03.471056.00
4.231.106.183http/1.1

0-13341825400/208/59564_
44.951087954970.03.00932.72
51.222.253.12http/1.1localhost:80GET /robots.txt HTTP/1.1

0-13341825400/208/60298_
44.7912088597790.02.10992.85
65.108.78.33http/1.1localhost:80GET /wp-includes/js/quicktags.js HTTP/1.1

0-13341825400/223/61799_
44.936392063070.019.091118.43
217.138.202.61http/1.1www.casinogamesonline.com:443HEAD /back/casinogamesonline.com.rar HTTP/2.0

0-13341825400/363/61293_
44.6012091069510.04.471084.57
99.184.60.145http/1.1

0-13341825400/215/60056_
44.4214090997440.02.01991.61
64.150.149.223h2www.lorastestsite.com:443[1/1] done: stream 1, GET /

0-13341825400/235/60968_
44.8810089640440.04.961088.32
217.138.202.62http/1.1www.casinogamesonline.com:80HEAD /back/casinogamesonline.com.rar HTTP/1.1

0-13341825400/195/60740_
44.4214089742080.011.911124.49
66.249.75.160http/1.1

0-13341825400/221/60042_
44.950086229670.012.16993.37
159.65.58.104http/1.1local

Found on 2023-09-13 00:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ac622f7b4

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 10-Sep-2023 09:41:02 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 130
Parent Server MPM Generation: 129
Server uptime:  26 days 1 hour 33 minutes 12 seconds
Server load: 0.11 0.31 0.23
Total accesses: 8822616 - Total Traffic: 147.2 GB - Total Duration: 1332835832
CPU Usage: u291.16 s108.72 cu24103 cs3964.78 - 1.26% CPU load
3.92 requests/sec - 68.5 kB/second - 17.5 kB/request - 151.07 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
41512850no0yes163000
Sum100 163000

................................................................
................................................................
................................................................
................................................................
_____________________W__________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-129-0/0/57594.
0.005308084116730.00.00965.54
64.226.72.250http/1.1www.sensortech.sa:443GET /wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1

0-129-0/0/56341.
0.005308086589470.00.00983.38
64.226.72.250http/1.1

0-129-0/0/57383.
0.005308084069770.00.00954.05
64.226.72.250http/1.1

0-129-0/0/56411.
0.005308085894930.00.00903.38
64.226.72.250http/1.1

0-129-0/0/57482.
0.005308086658700.00.001140.56
64.226.72.250http/1.1

0-129-0/0/57658.
0.005308086076830.00.001035.98
64.226.72.250http/1.1

0-129-0/0/56706.
0.005308086522360.00.00948.93
64.226.72.250http/1.1www.sensortech.sa:443GET /wp-content/plugins/antispam-bee/readme.txt HTTP/1.1

0-129-0/0/57344.
0.005308085081250.00.00933.06
64.226.72.250http/1.1www.sensortech.sa:443GET /wp-content/plugins/wp-migrate-db/readme.txt HTTP/1.1

0-129-0/0/56725.
0.005308084247830.00.00946.39
64.226.72.250http/1.1www.sensortech.sa:443GET /wp-content/plugins/wpforms-lite/readme.txt HTTP/1.1

0-129-0/0/56494.
0.005308087158650.00.00943.66
64.226.72.250http/1.1

0-129-0/0/57725.
0.005308084098880.00.001095.92
64.226.72.250http/1.1www.sensortech.sa:443GET /?feed=rss2 HTTP/1.1

0-129-0/0/56876.
0.005308088693110.00.00884.20
64.226.72.250http/1.1

0-129-0/0/57586.
0.005308088813550.00.001005.42
64.226.72.250http/1.1

0-129-0/0/56648.
0.005308084796560.00.001043.59
64.226.72.250http/1.1

0-129-0/0/57468.
0.005308088978670.00.001040.37
64.226.72.250http/1.1

0-129-0/0/56406.
0.005308084520540.00.00934.29
64.226.72.250http/1.1www.sensortech.sa:443GET /wp-content/plugins/ocean-extra/readme.txt HTTP/1.1

0-129-0/0/56602.
0.005308084774520.00.00906.01
64.226.72.250http/1.1

0-129-0/0/56920.
0.005308085152770.00.00895.18
64.226.72.250http/1.1

0-129-0/0/56918.
0.005308092720280.00.00945.41
64.226.72.250http/1.1

0-129-0/0/56409.
0.005308087627910.00.00940.58
64.226.72.250http/1.1

0-129-0/0/56071.
0.005308086344950.00.00915.30
64.226.72.250http/1.1

0-129-0/0/56699.
0.005308089592560.00.001045.39
64.226.72.250http/1.1

0-129-0/0/55857.
0.005308086532410.00.001136.20
64.226.72.250http/1.1

0-129-0/0/57153.
0.005308087098610.00.00961.11
64.226.72.250http/1.1

0-129-0/0/56678.
0.005308086435630.00.00967.47
64.226.72.250http/1.1

0-129-0/0/56804.
0.005308085038550.00.001021.67
64.226.72.250http/1.1

0-129-0/0/56179.
0.005308084998860.00.00903.37
64.226.72.250http/1.1

0-129-0/0/56312.
0.005308085704350.00.00914.06
64.226.72.250http/1.1

0-129-0/0/58215.
0.005308089083590.00.001117.04
64.226.72.250http/1.1

0-129-0/0/56726.
0.005308090716720.00.001072.23
64.226.72.250http/1.1

0-129-0/0/56474.
0.005308085212020.00.00968.15
64.226.72.250http/1.1

0-129-0/0/56512.
0.005308085105500.00.001022.21
64.226.72.250http/1.1

0-129-0/0/57132.
0.005308086193510.00.00975.62
64.226.72.250http/1.1www.sensortech.sa:443GET /server_version.xsl HTTP/1.1

0-129-0/0/56984.
0.005308086740660.00.00988.99
64.226.72.250http/1.1

0-129-0/0/56003.
0.005308084411430.00.00879.85
64.226.72.250http/1.1

0-129-0/0/56441.
0.005308085501510.00.00906.54
64.226.72.250http/1.1

0-129-0/0/57901.
0.005308088039260.00.001045.42
64.226.72.250http/1.1

0-129-0/0/57419.
0.005308088172000.00.001037.59
64.226.72.250http/1.1

0-129-0/0/56268.
0.005308087556720.00.00931.71
64.226.72.250http/1.1www.sensortech.sa:443GET /admin/login HTTP/1.1

0-129-0/0/57059.
0.005308086512040.00.001026.62
64.226.72.250http/1.1www.sensortech.sa:443GET /static/login/favicon.ico HTTP/1.1

0-129-0/0/56944.
0.005308085558000.00.001060.71
64.226.72.250http/1.1

0-129-0/0/56288.
0.005308083101950.00.00924.04
64.226.72.250http/1.1

0-129-0/0/56639.
0.005308088615430.00.00925.96
64.226.72.250http/1.1

0-129-0/0/56779.
0.005308089203590.00.001117.72
64.226.72.250http/1.1

0-129-0/0/56519.
0.005308087216400.00.00890.09
64.226.72.250http/1.1

0-129-0/0/56954.
0.005308085658880.00.001016.97
64.226.72.250http/1.1www.sensortech.sa:443GET /dologin.action HTTP/1.1

0-129-0/0/56691.
0.005308084278770.00.00953.79
64.226.72.250http/1.1

0-129-0/0/55623.
0.005308086152500.00.00954.44
64.226.72.250http/1.1www.sensortech.sa:443GET /SOGo HTTP/1.1

<

Found on 2023-09-10 14:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a637f933c

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Wednesday, 06-Sep-2023 22:29:29 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 119
Parent Server MPM Generation: 118
Server uptime:  22 days 14 hours 21 minutes 40 seconds
Server load: 0.34 0.22 0.17
Total accesses: 7947106 - Total Traffic: 133.0 GB - Total Duration: 1252613687
CPU Usage: u253.27 s95.32 cu21986.8 cs3591.6 - 1.33% CPU load
4.07 requests/sec - 71.4 kB/second - 17.5 kB/request - 157.619 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
11510295no5yes361211
Sum105 361211

................................................................
___W_R_________R________________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-118-0/0/52419.
0.00727079603030.00.00886.92
66.249.81.167http/1.1www.mailers.bitbet.com:443GET /images/60x60twitter.png HTTP/1.1

0-118-0/0/51072.
0.0072750581931290.00.00814.28
66.249.81.167http/1.1

0-118-0/0/51981.
0.00727079884090.00.00845.83
66.249.81.165http/1.1www.mailers.bitbet.com:443GET /images/60x60instagram.png HTTP/1.1

0-118-0/0/50997.
0.007272781476940.00.00819.75
69.174.173.111h2www.bncursillo.org:443[0/0] init

0-118-0/0/51929.
0.0072752482067700.00.001015.89
66.249.77.67h2www.tampere-charter-buses.cityt[8/8] done: stream 15, GET /mah.php?product=1974145

0-118-0/0/51671.
0.00727079959560.00.00909.63
66.249.81.166http/1.1

0-118-0/0/51183.
0.00727080388180.00.00857.53
104.28.103.19h2www.bncursillo.org:443[0/0] init

0-118-0/0/52066.
0.00727080252760.00.00844.73
66.249.81.166http/1.1www.mailers.bitbet.com:443GET /images/Login-btn.png HTTP/1.1

0-118-0/0/51193.
0.00727179916850.00.00861.73
66.249.77.67h2www.tampere-charter-buses.cityt[4/4] done: stream 7, GET /oiuxqgwums/scripts/mail.js

0-118-0/0/50965.
0.00727082737030.00.00789.98
111.202.101.63http/1.1www.handwritingcoaching.com:80GET / HTTP/1.1

0-118-0/0/52227.
0.0072747479222650.00.001000.60
69.163.162.4http/1.1www.jasondurall.com:443POST /wp-login.php HTTP/1.1

0-118-0/0/51622.
0.00727084283290.00.00798.66
128.90.186.120http/1.1localhost:80HEAD /home HTTP/1.1

0-118-0/0/52078.
0.0072725782045090.00.00910.52
49.7.20.90http/1.1www.csofla.com:80GET /content/ HTTP/1.1

0-118-0/0/51338.
0.00727079845250.00.00946.24
143.198.36.242http/1.1localhost:443GET / HTTP/1.1

0-118-0/0/52207.
0.00727084790860.00.00955.33
66.249.77.67h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=173365

0-118-0/0/51301.
0.00727079534030.00.00840.00
66.249.77.67h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/51226.
0.00727080218410.00.00811.07
66.249.77.67h2www.tampere-charter-buses.cityt[2/2] done: stream 3, GET /oiuxqgwums/qh-20868.html

0-118-0/0/51642.
0.00727080739510.00.00798.02
143.198.36.242http/1.1

0-118-0/0/51415.
0.00727084638720.00.00795.50
143.198.36.242http/1.1localhost:80GET / HTTP/1.1

0-118-0/0/51389.
0.00727083228180.00.00872.87
66.249.81.165http/1.1

0-118-0/0/50705.
0.00727081826770.00.00778.59
66.249.81.166http/1.1

0-118-0/0/51193.
0.00727084827820.00.00962.22
66.249.77.67h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=1545059

0-118-0/0/50489.
0.00727082415010.00.001064.80
143.198.36.242http/1.1

0-118-0/0/51736.
0.00727081599320.00.00873.15
66.249.77.67h2www.tampere-charter-buses.cityt[10/10] done: stream 19, GET /unagfdcqxv/scripts/mail.js

0-118-0/0/51529.
0.00727082213730.00.00867.78
143.198.36.242http/1.1

0-118-0/0/51482.
0.00727080369070.00.00926.47
66.249.77.67h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/50860.
0.00727080994600.00.00825.70
66.249.77.67h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/50984.
0.00727081186430.00.00834.56
143.198.36.242http/1.1

0-118-0/0/52580.
0.00727084621490.00.001035.77
103.203.59.1http/1.1shared.domain:443GET / HTTP/1.1

0-118-0/0/51258.
0.0072766085536720.00.00987.84
104.28.103.19h2www.bncursillo.org:443[1/1] done: stream 1, GET /wp/?noti=MTMyOzkyMjtjZmM0ZjUxMDlhOGN

0-118-0/0/50845.
0.00727080599280.00.00887.64
128.90.186.120http/1.1localhost:80HEAD /new HTTP/1.1

0-118-0/0/51351.
0.00727480377460.00.00952.21
143.198.36.242h2localhost:443[0/0] Software caused connection abort

0-118-0/0/51908.
0.0072774181793930.00.00863.56
143.198.36.242http/1.1

0-118-0/0/51322.
0.00727082525140.00.00881.74
66.249.77.67h2www.tampere-charter-buses.cityt[5/5] done: stream 9, GET /mah.php?product=460867

0-118-0/0/50617.
0.00727079968300.00.00811.45
66.249.77.67http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1401481 HTTP/2.0

0-118-0/0/51251.
0.00727080803090.00.00837.41
66.249.81.165http/1.1

0-118-0/0/52647.
0.00727081337260.00.00966.34
66.249.77.67h2www.tampere-charter-buses.cityt[3/3] done: stream 5, GET /oiuxqgwums/css/style.css

0-118-0/0/52122.
0.00727083674300.00.00966.14
128.90.186.120http/1.1localhost:80HEAD /bk HTTP/1.1

0-118-0/0/51121.
0.00727482817840.00.00834.96
175.176.41.32http/1.1

0-118-0/0/51305.
0.00727082060080.00.00954.68
66.249.81.166http/1.1www.mailers.bitbet.com:443GET /images/60x60fb.png HTTP/1.1

0-118-0/0/51598.
0.00727080699100.00.00999.07
66.249.77.67h2www.tampere-charter-buses.cityt[3/3] done: stream 5, GET /mah.php?product=169461

0-118-0/0/50734.
0.00727078322200.00.00798.38
143.198.36.242h2localhost:443[0/0] Software caused connection abort

0-118-0/0/51462.
0.007272782657790.00.00836.26
66.249.77.67http/1.1www.tampere-charter-buses.citytGET /mah.php?product=169461 HTTP/2.0

0-118-0/0/51436.
0.00727482222320.00.001033.64
66.249.77.67h2www.tam

Found on 2023-09-07 03:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ad2b397ab

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 03-Sep-2023 11:54:08 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 108
Parent Server MPM Generation: 107
Server uptime:  19 days 3 hours 46 minutes 19 seconds
Server load: 0.11 0.25 0.36
Total accesses: 6902170 - Total Traffic: 117.1 GB - Total Duration: 1180827932
CPU Usage: u236.81 s87.24 cu19567.2 cs3149.07 - 1.39% CPU load
4.17 requests/sec - 74.2 kB/second - 17.8 kB/request - 171.081 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
12018444no10yes163091
Sum1010 163091

................................................................
__________________W_____________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-107-0/0/45689.
0.00131317475868040.00.00799.82
66.249.69.132h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=657664

0-107-0/0/44860.
0.00131314677612290.00.00728.46
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45597.
0.00131320875565330.00.00727.51
66.249.69.131http/1.1

0-107-0/0/44745.
0.001313077482290.00.00684.10
66.249.75.105http/1.1www.rossitergroup.co:443GET /lpnkemenu-300055.html HTTP/1.1

0-107-0/0/45633.
0.00131314278063940.00.00911.25
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45387.
0.00131314476252030.00.00828.93
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44983.
0.00131314376265210.00.00769.58
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45659.
0.00131314576124980.00.00775.17
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45080.
0.00131314676292750.00.00770.08
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44713.
0.00131314578019050.00.00700.16
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45686.
0.00131317675199340.00.00896.47
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /mah.php?product=284436 HTTP/1.1

0-107-0/0/45514.
0.00131314879374740.00.00693.92
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45429.
0.00131317876911220.00.00754.09
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1186094 HTTP/1.1

0-107-0/0/45127.
0.00131318775725950.00.00854.36
66.249.69.133http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1390774 HTTP/1.1

0-107-0/0/45651.
0.00131314480620680.00.00851.60
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45111.
0.00131314674312910.00.00748.48
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44963.
0.00131314976714240.00.00732.35
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45147.
0.00131314276705300.00.00713.73
66.249.69.132h2www.tampere-charter-buses.cityt[0/0] init

0-107-0/0/45254.
0.00131314680915560.00.00722.12
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45049.
0.00131314778104970.00.00794.02
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44435.
0.00131319776509790.00.00684.29
66.249.69.132http/1.1

0-107-0/0/44877.
0.00131315279907860.00.00872.98
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44499.
0.00131314178540830.00.00932.58
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /mah.php?product=657664 HTTP/2.0

0-107-0/0/45642.
0.00131316577498050.00.00783.19
66.249.69.131http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1881471 HTTP/1.1

0-107-0/0/45393.
0.00131315077857900.00.00779.68
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45218.
0.00131314476145100.00.00826.66
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44787.
0.00131317876661900.00.00745.50
66.249.69.133http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1687883 HTTP/1.1

0-107-0/0/44929.
0.00131314275169020.00.00745.97
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/46236.
0.00131314479664500.00.00934.66
66.249.69.132http/1.1

0-107-0/0/44999.
0.001313180669970.00.00887.25
64.124.8.28http/1.1www.rovaniemi-coach-travel.cityGET /images/coach-hire.jpg HTTP/1.1

0-107-0/0/44579.
0.00131317176236360.00.00800.46
66.249.69.131http/1.1www.tampere-charter-buses.citytGET /mah.php?product=143891 HTTP/1.1

0-107-0/0/45273.
0.00131318576326720.00.00885.47
66.249.69.132http/1.1

0-107-0/0/45543.
0.001313077653330.00.00767.89
18.232.138.96http/1.1www.goshkamacuga.info:443GET /.env HTTP/1.1

0-107-0/0/44973.
0.00131319677090480.00.00752.70
66.249.69.133http/1.1

0-107-0/0/44403.
0.00131320275965160.00.00734.18
162.241.63.6http/1.1

0-107-0/0/44934.
0.00131314276825290.00.00734.22
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45959.
0.00131314377119970.00.00887.68
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/45459.
0.00131317579861690.00.00825.12
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /mah.php?product=720543 HTTP/1.1

0-107-0/0/44859.
0.001313178255220.00.00763.87
18.232.138.96http/1.1www.pittsfieldchurchofchrist.orGET /env.test HTTP/1.1

0-107-0/0/45134.
0.00131317077204740.00.00867.50
66.249.69.131http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1226461 HTTP/1.1

0-107-0/0/45089.
0.00131314676616010.00.00918.30
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44567.
0.00131314573663630.00.00701.95
23.99.204.94http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-107-0/0/44954.
0.0013131467717836

Found on 2023-09-03 16:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1abd7ebc7b

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Thursday, 31-Aug-2023 10:43:39 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime:  16 days 2 hours 35 minutes 49 seconds
Server load: 0.04 0.17 0.17
Total accesses: 4894002 - Total Traffic: 71.9 GB - Total Duration: 900076016
CPU Usage: u238.04 s81.74 cu14872.9 cs2282.76 - 1.26% CPU load
3.52 requests/sec - 54.2 kB/second - 15.4 kB/request - 183.914 ms/request
4 requests currently being processed, 124 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02294814no6yes262031
52294820no3yes262011
Sum209 4124042

____________R_______________________________________________R___
................................................................
................................................................
................................................................
................................................................
_______________R___________W____________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-9922948140/37/32082_
10.241556872980.00.46528.22
125.179.42.81http/1.1www.otbrass.com:80GET /PublishedMusic/PublishedMusic.htm HTTP/1.1

0-9922948140/39/31209_
9.901058440450.00.29426.25
108.240.136.213http/1.1www.curbsidegourmet.com:80GET /images/fl_west-palm-beach_catering_2018.png?crc=456765958 

0-9922948140/35/31560_
10.341056727270.00.62446.25
162.214.77.100http/1.1localhost:80GET /wp-content/plugins/yyobang/mar.php HTTP/1.1

0-9922948140/52/30798_
9.54158758003030.00.29404.10
174.242.136.181h2localhost:443[1/1] done: stream 1, POST /webmail/?_task=mail&_action=refresh

0-9922948140/39/31984_
10.181059523570.00.15605.16
34.67.230.77http/1.1

0-9922948140/44/31648_
10.141056844950.00.25503.25
105.157.11.209h2localhost:443[0/0] init

0-9922948140/55/31229_
10.331057164570.00.76472.99
167.71.48.191http/1.1localhost:80GET /about HTTP/1.1

0-9922948140/38/31882_
10.171256590670.00.50479.22
49.7.20.128http/1.1www.overflowingcup.org:80GET / HTTP/1.1

0-9922948140/46/31398_
9.981157202450.00.21432.17
174.242.136.181h2localhost:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-9922948140/45/31149_
9.830057630520.01.10421.47
136.243.76.40h2www.creativequesters.com:443GET /feed/podcast/ HTTP/2.0

0-9922948140/40/31938_
10.231156452060.00.15552.24
174.242.136.181http/1.1localhost:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-9922948140/37/31681_
10.16020460365080.00.71439.11
66.249.69.131http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1483439 HTTP/1.1

0-9922948140/42/31639R
10.261157405880.00.68499.57
114.119.136.5http/1.1www.brockportcommunitymuseum.or

0-9922948140/39/31314_
9.931056099180.00.49522.77
66.249.69.131http/1.1

0-9922948140/42/31723_
9.98157261232230.01.13473.70
35.195.20.248http/1.1

0-9922948140/38/31436_
9.901056089320.00.80463.97
35.90.79.117h2www.fcbcorlando.org:443[1/1] done

0-9922948140/56/31403_
10.340058099590.00.74442.85
167.71.48.191http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-9922948140/41/31199_
10.02123558025570.00.60421.66
157.90.182.23http/1.1

0-9922948140/52/31592_
10.241061857050.00.72386.16
160.238.137.179http/1.1www.flpcbz.com:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-9922948140/41/31449_
10.151059238240.00.51502.13
85.208.96.204http/1.1www.con-voluted.com:80GET /productgy904318.html HTTP/1.1

0-9922948140/40/30938_
10.341057962000.00.29430.37
27.111.82.74http/1.1localhost:80GET /wp-login.php HTTP/1.1

0-9922948140/46/31361_
9.931061620790.00.19599.42
105.157.11.209h2localhost:443[0/0] init

0-9922948140/34/31071_
10.261059309620.00.08641.69
37.139.53.75http/1.1localhost:80GET / HTTP/1.0

0-9922948140/49/32220_
10.161058157810.00.65497.61
157.90.182.23http/1.1www.linnysminifarm.com:80GET /robots.txt HTTP/1.1

0-9922948140/45/31668_
10.05120058982180.00.25504.91
52.167.144.232h2www.erandalln.com:443[1/1] done: stream 1, GET /pdf/anshin_support.pdf

0-9922948140/40/31695_
9.41118457499910.01.47452.78
54.83.169.92http/1.1

0-9922948140/48/31317_
9.901058022880.00.71476.65
108.240.136.213http/1.1www.curbsidegourmet.com:80GET /images/u5737-r.png?crc=3875418539 HTTP/1.1

0-9922948140/38/31332_
10.111056814920.00.19467.89
174.242.136.181h2localhost:443[0/0] init

0-9922948140/41/32089_
10.021260528550.00.22537.21
157.90.182.23http/1.1

0-9922948140/49/31364_
10.281061730630.00.40584.03
216.244.66.226http/1.1localhost:80GET /portfolio_category/njeshtresore-pt/feed/ HTTP/1.1

0-9922948140/44/30995_
9.951057072340.00.17482.88
216.244.66.226http/1.1

0-9922948140/40/31572_
10.181057861450.01.11517.59
54.83.169.92http/1.1localhost:443GET / HTTP/1.1

0-9922948140/51/31989_
10.271059075640.00.42492.23
52.167.144.232h2www.erandalln.com:443GET /pdf/anshin_support.pdf HTTP/2.0

0-9922948140/42/31458_
9.761058279270.00.25430.98
162.142.125.214http/1.1localhost:443GET / HTTP/1.1

0-9922948140/44/30795_
10.281657219300.00.25466.86
185.184.157.102http/1.1www.pay173.com:443GET /d/d08/ HTTP/1.1

0-9922948140/43/31528_
10.231058112020.00.25449.51
123.125.109.106http/1.1localhost:80GET / HTTP/1.1

0-9922948140/50/32219_
10.201058410220.00.33574.10
41.142.41.135http/1.1localhost:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-9922948140/53/31621_
10.111660278390.01.65524.54
66.249.75.196http/1.1www.draftboardguru.com:80GET /zvtl25215hs-15vl.htm HTTP/1.1

0-9922948140/50/31195_
10.091059407770.00.36447.57
149.56.150.195http/1.1www.glitchstatic.com:80GET /images/static.gif HTTP/1.1

0-9922948140/55/31610_
9.931058231660.00.43562.41
149.56.150.245http/1.1www.glitchstatic.com:80GET /ads.txt HTTP/1.1

0-9922948140/38/31401_
10.161057444260.00.16522.25
85.208.96.194http/1.1www.con-voluted.com:80GET /productfj1618692.html HTTP/1.1

0-9922948140/56/30801_
9.951155265840.01.31405.43
216.244.66.234http/1.1

0-9922948140/43/31349_
10.0910579179

Found on 2023-08-31 15:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1af8ed205a

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 28-Aug-2023 16:04:23 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 71
Parent Server MPM Generation: 70
Server uptime:  13 days 7 hours 56 minutes 34 seconds
Server load: 0.86 0.66 0.73
Total accesses: 3847158 - Total Traffic: 58.4 GB - Total Duration: 663700993
CPU Usage: u193.36 s66.54 cu11644.1 cs1788.99 - 1.19% CPU load
3.34 requests/sec - 53.2 kB/second - 15.9 kB/request - 172.517 ms/request
2 requests currently being processed, 62 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
13166044no1yes262000
Sum101 262000

................................................................
________________________________________R______W________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-70-0/0/25801.
0.00323141741586230.00.00426.94
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24974.
0.00323142342791180.00.00354.06
160.238.137.179h2localhost:443[1/1] done: stream 1, POST /roundcube/?_task=mail&_action=refre

0-70-0/0/25384.
0.00323143441101550.00.00389.70
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24693.
0.00323125142374550.00.00341.38
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25896.
0.00323138544216420.00.00529.32
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25364.
0.003231041689260.00.00438.41
66.249.72.200http/1.1www.structdynamics.com:443GET /item/m6931943395 HTTP/1.1

0-70-0/0/24897.
0.00323125142646160.00.00418.37
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25680.
0.00323140342106280.00.00421.65
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24872.
0.00323141041580160.00.00353.00
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24903.
0.00323141543050100.00.00340.03
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25724.
0.00323143140985730.00.00456.32
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25360.
0.00323142743856730.00.00364.08
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25209.
0.003231041937960.00.00422.63
85.208.96.198http/1.1www.con-voluted.com:80GET /productnx2053604.html HTTP/1.1

0-70-0/0/25185.
0.00323142541438130.00.00448.98
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25521.
0.00323125343548810.00.00409.16
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25259.
0.00323138040352340.00.00376.01
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25251.
0.00323125843321930.00.00359.30
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25050.
0.00323125842402530.00.00363.48
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24992.
0.00323142045647020.00.00306.91
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25206.
0.00323137442238680.00.00440.45
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24859.
0.003231042856250.00.00352.25
123.149.78.113http/1.1www.sports-news.betowi.com:443GET /robots.txt HTTP/1.1

0-70-0/0/25267.
0.00323143145824690.00.00536.21
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24864.
0.00323125343599810.00.00490.47
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25974.
0.00323139642855580.00.00414.13
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25332.
0.003231042961110.00.00446.45
66.249.70.97http/1.1www.173tw.com.tw:443GET /robots.txt HTTP/1.1

0-70-0/0/25220.
0.00323124942607470.00.00382.84
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24967.
0.00323158941970470.00.00393.24
24.108.106.119http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-70-0/0/25175.
0.00323157141047330.00.00396.07
185.74.252.10http/1.1www.birthchoicewake.org:443GET /wp-login.php HTTP/1.1

0-70-0/0/25784.
0.003231140744534300.00.00474.46
114.119.141.40http/1.1www.greekvillaparos.gr:443GET / HTTP/1.1

0-70-0/0/25029.
0.00323125946398130.00.00509.19
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24682.
0.00323142142467980.00.00355.50
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25341.
0.00323125342552530.00.00433.45
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25725.
0.00323125243388230.00.00425.10
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25153.
0.00323142242605000.00.00373.41
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24559.
0.00323138042212930.00.00384.03
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25379.
0.00323142343236350.00.00378.34
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25871.
0.00323157542163710.00.00506.21
185.74.252.10http/1.1www.birthchoicewake.org:443GET /wp-login.php HTTP/1.1

0-70-0/0/25454.
0.00323139044447490.00.00390.48
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24921.
0.00323144344095070.00.00378.02
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25309.
0.00323124642863940.00.00487.42
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25002.
0.00323137541478700.00.00402.49
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24643.
0.00323141640523850.00.00338.44
74.249.212.206http/1.1www.zacforsman.com:44

Found on 2023-08-28 21:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ace982a98

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 27-Aug-2023 15:19:30 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 69
Parent Server MPM Generation: 68
Server uptime:  12 days 7 hours 11 minutes 41 seconds
Server load: 0.03 0.11 0.15
Total accesses: 3396946 - Total Traffic: 53.5 GB - Total Duration: 569011889
CPU Usage: u176.75 s57.22 cu10268.6 cs1581.79 - 1.14% CPU load
3.2 requests/sec - 52.8 kB/second - 16.5 kB/request - 167.507 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01896197no3yes361010
Sum103 361010

_____W_________________________W______________________W_________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-6818961970/163/23024_
40.510035397730.01.14403.72
159.89.83.196http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-6818961970/120/22270_
40.40249636702400.00.77328.35
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/138/22617_
40.01148935007370.01.95347.21
216.244.66.238http/1.1

0-6818961970/132/22094_
40.344136590140.00.84309.77
73.228.145.160http/1.1www.ecologytechnologyinc.com:80GET /Materials---Products.php HTTP/1.1

0-6818961970/184/23126_
40.383036749280.01.47504.23
66.249.72.238http/1.1www.cbplayground.com:443GET /r/B630345 HTTP/1.1

0-68189619767/120/22618W
40.300035672600.02.19407.13
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/136/22352_
40.34447736314570.02.02378.75
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/136/22749_
40.402236143070.00.79381.23
20.15.240.85http/1.1www.draftboardguru.com:443GET /midv21445hs-21 HTTP/1.1

0-6818961970/150/22189_
40.20250135424130.00.92318.85
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/138/22244_
40.500037224260.01.64314.27
159.89.83.196http/1.1localhost:80GET /.vscode/sftp.json HTTP/1.1

0-6818961970/127/22734_
40.402035126050.02.80420.95
66.249.72.238http/1.1www.cbplayground.com:443GET /r/L630745 HTTP/1.1

0-6818961970/142/22647_
40.480037654820.01.06334.98
66.249.72.238http/1.1www.cbplayground.com:443GET /item/m344527283 HTTP/1.1

0-6818961970/130/22493_
40.18249035811320.00.70374.78
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/137/22363_
40.153118135418390.02.60417.82
54.67.77.37http/1.1www.casinogamesonline.com:443GET /.git/config HTTP/1.1

0-6818961970/128/22192_
40.44141437815390.00.63367.26
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6818961970/124/22546_
40.510034714040.05.06348.51
159.89.83.196http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-6818961970/132/22437_
40.44149437533280.00.64331.48
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/127/22472_
40.500036333700.02.77342.82
159.89.83.196http/1.1localhost:80GET / HTTP/1.1

0-6818961970/125/22211_
40.490038817830.01.13280.54
159.89.83.196http/1.1localhost:80GET / HTTP/1.1

0-6818961970/124/22445_
40.32440636071900.02.85397.88
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6818961970/137/22262_
40.03050236601680.03.86328.56
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/147/22422_
40.51048439812270.02.51484.16
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/112/22007_
40.42247237608600.00.64448.58
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/129/23261_
39.83448136734130.01.30383.53
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/176/22743_
40.510036954950.01.30416.68
159.89.83.196http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-6818961970/137/22625_
39.81448836185900.01.58340.25
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/132/22321_
40.38340135487830.01.77362.80
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6818961970/128/22511_
40.011034994090.00.93364.62
51.222.253.8h2www.handyjorge.com:443[0/0] init

0-6818961970/132/22556_
40.42240038375850.04.12410.83
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6818961970/147/22246_
40.13350240664130.02.43430.58
66.249.72.238http/1.1

0-6818961970/134/21904_
39.86450936539720.00.95329.02
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961971/135/22767W
39.790036432960.01.10401.29
159.89.83.196http/1.1localhost:80GET /server-status HTTP/1.1

0-6818961970/128/23035_
40.324037043300.00.64398.33
47.245.108.13http/1.1www.chrisgossett.com:443GET /tampa2-d-screen2.jpg HTTP/1.1

0-6818961970/138/22467_
40.363036683470.02.40344.62
66.249.72.238http/1.1www.cbplayground.com:443GET /r/P1935143 HTTP/1.1

0-6818961970/124/21874_
40.49041235894450.00.79357.67
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6818961970/138/22641_
39.52250037051100.01.06349.80
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/133/23062_
40.48048936023290.01.26481.14
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/136/22840_
39.95241238646500.00.64353.49
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6818961970/138/22262_
40.23147737948420.01.27351.99
74.249.232.237http/1.1www.the100wordproject.com:443POST //wp-login.php HTTP/1.1

0-6818961970/125/22503_
39.30049836018960.00.88454.04
66.249.72.238http/1.1

0-6818961970/149/22440_
40.221035555150.02.07379.35
172.94.94.11http/1.1www.1mrd.com:80GET /webalizer/usage_201604.html HTTP/1.0

0-6818961970/134/22021_
40.4220

Found on 2023-08-27 20:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1af47566b7

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Saturday, 26-Aug-2023 09:59:06 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 65
Parent Server MPM Generation: 64
Server uptime:  11 days 1 hour 51 minutes 17 seconds
Server load: 0.15 0.14 0.14
Total accesses: 3093816 - Total Traffic: 48.8 GB - Total Duration: 519246779
CPU Usage: u136.83 s49.68 cu9314.28 cs1431.13 - 1.14% CPU load
3.23 requests/sec - 53.4 kB/second - 16.5 kB/request - 167.834 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
1583597no12yes163291
Sum1012 163291

................................................................
______________________________W_________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-64-0/0/20991.
0.00758032378300.00.00369.81
2001:41d0:304:200::cb3http/1.1www.amakarau.com:443GET /xmlrpc.php HTTP/2.0

0-64-0/0/20259.
0.00758133507380.00.00305.56
20.15.240.85http/1.1

0-64-0/0/20588.
0.00758131440700.00.00316.54
20.15.240.85http/1.1www.draftboardguru.com:443GET /rzen33764c001.html HTTP/1.1

0-64-0/0/20103.
0.00758032980550.00.00286.05
172.71.134.172h2www.amakarau.com:443[0/0] init

0-64-0/0/20727.
0.00758033404500.00.00462.08
198.235.24.38http/1.1localhost:443GET / HTTP/1.1

0-64-0/0/20647.
0.00758032587700.00.00375.71
66.249.72.224http/1.1www.cbplayground.com:443GET /r/L1341143 HTTP/1.1

0-64-0/0/20338.
0.0075891232979470.00.00336.31
174.239.121.125h2www.bncursillo.org:443GET /cursillistas/ HTTP/2.0

0-64-0/0/20535.
0.00758132066810.00.00343.35
174.239.121.125h2www.bncursillo.org:443[1/1] done: stream 1, GET /cursillistas/signup/cursillo-signup.

0-64-0/0/20127.
0.007585532466150.00.00289.81
143.110.212.57http/1.1

0-64-0/0/20311.
0.00758034136270.00.00290.53
17.58.59.23http/1.1www.creativequesters.com:443HEAD /wp-content/uploads/2023/03/Podcast-Episode-Thumbnails.png

0-64-0/0/20689.
0.00758031752060.00.00392.33
47.128.29.191h2www.greekvillaparos.gr:443[0/0] init

0-64-0/0/20651.
0.0075820233819710.00.00308.93
144.126.236.178http/1.1www.seldnwritersgroup.com:443GET /wp-login.php HTTP/1.1

0-64-0/0/20394.
0.00758032157810.00.00333.57
66.249.72.238http/1.1

0-64-0/0/20009.
0.00758032132330.00.00355.60
128.90.189.160http/1.1www.raftinabag.com:80HEAD /wordpress HTTP/1.1

0-64-0/0/20127.
0.007587833859600.00.00300.32
198.235.24.38http/1.1

0-64-0/0/20052.
0.0075820931705760.00.00301.82
172.71.134.172h2www.amakarau.com:443[1/1] done: stream 1, POST /wp-login.php

0-64-0/0/20327.
0.00758134083300.00.00304.96
20.15.240.85http/1.1www.draftboardguru.com:443GET /midv29199nikitap.htm HTTP/1.1

0-64-0/0/20541.
0.007587833364900.00.00303.69
174.239.121.125h2www.bncursillo.org:443[0/0] init

0-64-0/0/20155.
0.00758035724200.00.00247.46
216.244.66.243http/1.1www.practicegrowthbydesign.com:GET /robots.txt HTTP/1.1

0-64-0/0/20264.
0.00758032859820.00.00350.08
24.186.28.31h2localhost:443[1/1] done: stream 15, POST /roundcube/?_task=settings&_action=

0-64-0/0/20151.
0.00758033442590.00.00294.53
47.128.29.191h2www.greekvillaparos.gr:443[2/2] done: stream 3, GET /wp-content/uploads/2014/06/logo_gree

0-64-0/0/20396.
0.00758036117400.00.00449.91
66.249.69.131http/1.1

0-64-0/0/19968.
0.00758033976370.00.00412.93
174.239.121.125http/1.1www.bncursillo.org:443GET /common/styles_signup.css HTTP/2.0

0-64-0/0/21076.
0.00758033246900.00.00343.60
172.71.126.105h2www.amakarau.com:443[1/1] done: stream 1, GET /xmlrpc.php

0-64-0/0/20663.
0.00758033575430.00.00378.76
174.239.121.125h2www.bncursillo.org:443[2/2] done: stream 3, GET /common/styles_signup.css

0-64-0/0/20510.
0.00758033056670.00.00306.18
138.246.253.24http/1.1www.sbtrkt.com:443GET /robots.txt HTTP/1.1

0-64-0/0/20383.
0.00758032680960.00.00331.50
73.4.122.235http/1.1localhost:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-64-0/0/20476.
0.00758031772680.00.00330.63
47.128.29.191http/1.1www.greekvillaparos.gr:443GET /wp-content/uploads/2014/06/logo_greekvilla_new2.jpg HTTP/2

0-64-0/0/20464.
0.00758034815680.00.00346.71
66.249.72.200http/1.1www.structdynamics.com:443GET /item/m6932198375 HTTP/1.1

0-64-0/0/20241.
0.00758136729610.00.00406.39
2001:41d0:304:200::cb3http/1.1www.amakarau.com:443GET /wp-login.php HTTP/2.0

0-64-0/0/19905.
0.00758033226970.00.00305.18
66.249.72.200http/1.1

0-64-0/0/20690.
0.00758032946540.00.00364.68
123.126.68.40http/1.1www.bfiofmd.com:80GET / HTTP/1.1

0-64-0/0/20784.
0.00758034098420.00.00354.87
46.228.199.158http/1.1localhost:80GET / HTTP/1.1

0-64-0/0/20355.
0.00758133239200.00.00308.30
174.239.121.125h2www.bncursillo.org:443[1/1] done: stream 1, GET /cursillistas/

0-64-0/0/19879.
0.00758032705850.00.00331.62
66.249.72.238http/1.1www.cbplayground.com:443GET /r/A2354066 HTTP/1.1

0-64-0/0/20613.
0.00758033786680.00.00318.99
216.244.66.231http/1.1localhost:80GET /resurse.cantari_cor_barbatesc/ HTTP/1.1

0-64-0/0/20974.
0.00758232546800.00.00448.11
17.58.59.20http/1.1www.creativequesters.com:443GET /wp-content/uploads/2022/10/4-1.png HTTP/1.1

0-64-0/0/20801.
0.0075886135461710.00.00333.99
216.244.66.231http/1.1

0-64-0/0/20292.
0.0075860434407630.00.00323.51
69.65.10.231http/1.1www.greekvillaparos.gr:443POST /wp-cron.php?doing_wp_cron=1693061165.84084010124206542968

0-64-0/0/20343.
0.00758033091670.00.00417.33
20.15.240.85http/1.1

0-64-0/0/20272.
0.00758031222730.00.00332.74
66.249.72.200http/1.1

0-64-0/0/19929.
0.00758231576900.00.00277.71
198.235.24.38http/1.1

0-64-0/0/20403.
0.00758033107750.00.00282.65
141.101.69.49h2www.amakarau.com:443[0/0] init

0-64-0/0/20622.
0.00758033087140.00.00

Found on 2023-08-26 14:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ad6af85c1

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Friday, 25-Aug-2023 03:51:22 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 64
Parent Server MPM Generation: 63
Server uptime:  9 days 19 hours 43 minutes 32 seconds
Server load: 0.42 0.55 0.66
Total accesses: 2793375 - Total Traffic: 44.3 GB - Total Duration: 473745525
CPU Usage: u164.56 s52.93 cu8395.23 cs1284.38 - 1.17% CPU load
3.29 requests/sec - 54.7 kB/second - 16.6 kB/request - 169.596 ms/request
3 requests currently being processed, 125 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
23351087no0yes064000
33351089no6yes361131
Sum206 3125131

................................................................
................................................................
________________________________________________________________
_________________________R________________W________________W____
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-63-0/0/18487.
0.003799029321490.00.00335.69
216.201.9.135http/1.1localhost:80GET /robots.txt HTTP/1.0

0-63-0/0/17932.
0.003799030285550.00.00281.32
185.191.171.14http/1.1www.con-voluted.com:80GET /productjv691050.html HTTP/1.1

0-63-0/0/18264.
0.00379951428459210.00.00266.99
40.77.167.241h2www.draftboardguru.com:443[0/0] init

0-63-0/0/17733.
0.003799029604450.00.00256.56
66.220.149.5h2localhost:443[0/0] Software caused connection abort

0-63-0/0/18464.
0.003799030242680.00.00435.58
162.142.125.216h2localhost:443[0/0] Software caused connection abort

0-63-0/0/18429.
0.00379955129504820.00.00349.50
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/17788.
0.00379977029346490.00.00294.67
69.65.10.231http/1.1www.commonhive.com:80POST /wp-cron.php?doing_wp_cron=1692945267.12561488151550292968

0-63-0/0/18160.
0.003799028954750.00.00311.82
66.249.69.103http/1.1www.con-voluted.com:443GET /?productma368303.html HTTP/1.1

0-63-0/0/17794.
0.00379925829383960.00.00262.93
92.81.30.47http/1.1www.ehsthetics.zacforsman.com:8POST /xmlrpc.php HTTP/1.1

0-63-0/0/18080.
0.00379954731126640.00.00253.42
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18357.
0.00379952529061960.00.00349.72
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18222.
0.00379954130719900.00.00271.92
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18032.
0.00379915629174930.00.00296.76
15.235.51.182http/1.1www.foxboromom.com:80POST /wp-login.php HTTP/1.1

0-63-0/0/17695.
0.003799028871930.00.00322.71
40.77.167.241h2www.draftboardguru.com:443[1/1] done: stream 1, GET /flpu24577t-201hlt2

0-63-0/0/17693.
0.00379954230801910.00.00268.77
47.252.71.254http/1.1localhost:80HEAD /supercars/images/Cars/Bentley/Mulsanne/brown-bentley_muls

0-63-0/0/17575.
0.00379954228756920.00.00276.96
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18068.
0.00379951231015980.00.00275.52
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18149.
0.00379954430209670.00.00271.40
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/17800.
0.00379954532434830.00.00225.19
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/17744.
0.00379955730102760.00.00284.23
172.71.126.30h2www.daryam.com:443[0/0] init

0-63-0/0/17851.
0.00379954530371190.00.00265.55
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/17991.
0.00379989633095500.00.00413.13
44.201.217.255http/1.1www.creativequesters.com:443GET /feed/podcast/ HTTP/1.1

0-63-0/0/17698.
0.00379947330432900.00.00334.09
198.235.24.177http/1.1www.daryam.com:443GET / HTTP/2.0

0-63-0/0/18770.
0.003799430174780.00.00309.91
66.249.64.15http/1.1www.jasmineguffond.com:80GET /style1-3.css HTTP/1.1

0-63-0/0/18240.
0.00379953830398780.00.00344.14
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18161.
0.00379952530059100.00.00262.34
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18031.
0.00379972329759990.00.00282.17
77.68.24.86http/1.1www.commonhive.com:80POST /xmlrpc.php HTTP/1.1

0-63-0/0/18184.
0.00379953428855520.00.00306.43
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18131.
0.003799031379670.00.00316.02
52.167.144.19h2www.kyaccidentinfo.com:443[0/0] init

0-63-0/0/17979.
0.00379952133704270.00.00369.66
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/17647.
0.00379956230100130.00.00275.85
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18487.
0.00379954129906490.00.00324.85
40.77.167.241h2www.draftboardguru.com:443GET /flpu24577t-201hlt2 HTTP/2.0

0-63-0/0/18354.
0.003799031002690.00.00312.62
216.244.66.196http/1.1shared.domain:80GET /robots.txt HTTP/1.1

0-63-0/0/18106.
0.003799629821170.00.00274.45
66.249.64.105http/1.1

0-63-0/0/17563.
0.00379951629785870.00.00300.95
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18349.
0.003799156430666540.00.00289.46
77.68.24.86http/1.1www.commonhive.com:80GET /wp-login.php HTTP/1.1

0-63-0/0/18626.
0.003799329489500.00.00425.11
69.65.10.231http/1.1www.aasiadrivingschool.com:443POST /wp-cron.php?doing_wp_cron=1692945252.33786392211914062500

0-63-0/0/18106.
0.00379953730778560.00.00305.52
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18045.
0.003799031065950.00.00292.40
185.191.171.9http/1.1www.con-voluted.com:80GET /productfi1899467.html HTTP/1.1

0-63-0/0/17967.
0.00379952129982490.00.00377.57
81.161.229.250http/1.1www.pinnaclegroupinvestigationsPOST //xmlrpc.php HTTP/1.1

0-63-0/0/18021.
0.003799028164780.00.00300.46
2.58.16.33http/1.1localhost:443GET /wp-content/plugins/jupiterx-core/includes/extensions/raven

0-63-

Found on 2023-08-25 08:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a81905efd

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Thursday, 24-Aug-2023 04:30:59 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 61
Parent Server MPM Generation: 60
Server uptime:  8 days 20 hours 23 minutes 10 seconds
Server load: 0.21 0.29 0.54
Total accesses: 2550196 - Total Traffic: 40.3 GB - Total Duration: 437600031
CPU Usage: u135.96 s46.66 cu7742.82 cs1176.84 - 1.19% CPU load
3.34 requests/sec - 55.3 kB/second - 16.6 kB/request - 171.595 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
12184601no10yes361054
Sum1010 361054

................................................................
_________R_____W______________________________W_________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-60-0/0/16903.
0.00455239126996280.00.00314.55
34.82.179.17http/1.1www.gofindglow.com:443HEAD /good-omens/ HTTP/1.1

0-60-0/0/16210.
0.004552027875670.00.00245.73
72.167.56.142http/1.1localhost:80GET /wp-content/plugins/woocommerce-payments/dist/blocks-checko

0-60-0/0/16431.
0.00455223926726830.00.00246.02
103.216.188.102http/1.1www.ladynerevar.com:443POST /wp/xmlrpc.php HTTP/1.1

0-60-0/0/15975.
0.004552027467700.00.00232.01
149.102.238.160http/1.1www.1mrd.com:80GET /webalizer/usage_201604.html HTTP/1.0

0-60-0/0/16733.
0.004552028202030.00.00412.60
217.113.194.86http/1.1localhost:80GET /menu-del-dia-administracion HTTP/1.1

0-60-0/0/16441.
0.004552027346000.00.00315.38
172.71.160.2h2www.amakarau.com:443[1/1] done: stream 1, GET /wp-includes/blocks/query-pagination/

0-60-0/0/16123.
0.00455245127510720.00.00273.81
47.128.21.97h2www.gofindglow.com:443[1/1] done: stream 1, GET /tag/travel/page/4/xtina.howell@gmail

0-60-0/0/16480.
0.00455241226846090.00.00291.71
49.232.145.205http/1.1www.zacforsman.com:443POST /wp-login.php HTTP/1.1

0-60-0/0/15992.
0.00455296027380720.00.00244.25
66.249.75.160http/1.1

0-60-0/0/16225.
0.00455241928523460.00.00230.64
47.128.21.97h2www.gofindglow.com:443GET /tag/travel/page/4/[email protected] HTTP/2.0

0-60-0/0/16572.
0.00455270726719430.00.00325.42
47.128.21.97h2www.gofindglow.com:443[2/2] done: stream 3, GET /page-not-found-style-1/

0-60-0/0/16466.
0.00455296928250720.00.00249.76
156.59.198.136h2www.aandea.com:443[0/0] init

0-60-0/0/16392.
0.0045521127100900.00.00275.05
114.119.154.200http/1.1www.aandea.com:80GET /reviews/2021/hellweger2_files/style.min.css HTTP/1.1

0-60-0/0/16075.
0.004552026627670.00.00293.33
47.128.21.97h2www.gofindglow.com:443[4/4] done: stream 7, GET /wp-content/uploads/2020/04/GoFindGlo

0-60-0/0/15953.
0.004552627965290.00.00243.93
66.249.72.133http/1.1

0-60-0/0/15705.
0.00455212226323770.00.00237.70
66.249.66.198http/1.1www.tohealthebroken-hearted.netGET /t3454.htm HTTP/1.1

0-60-0/0/16413.
0.004552028913420.00.00247.44
156.59.198.136h2www.aandea.com:443[1/1] done: stream 1, GET /reviews/2021/stir_files/2808_Andea_5

0-60-0/0/16436.
0.00455262927813410.00.00250.29
92.205.3.142http/1.1www.creativequesters.com:443POST /xmlrpc.php HTTP/1.1

0-60-0/0/16091.
0.004552030072580.00.00196.45
156.59.198.136h2www.aandea.com:443GET /reviews/2021/stir_files/2808_Andea_5.jpg HTTP/2.0

0-60-0/0/16007.
0.004552397328315280.00.00263.65
69.65.10.231http/1.1www.magiceducation.es:443GET /actividades-para-ensenar-sobre-seguridad-en-el-colegio/ HT

0-60-0/0/16003.
0.00455237728247860.00.00228.67
52.176.98.184http/1.1www.zacforsman.com:443GET //wp-login.php HTTP/1.1

0-60-0/0/16179.
0.004552031326770.00.00261.89
76.76.41.230h2www.ghiblipoodles.com:443[61/61] done: stream 119, GET /images/1651067619261rvcopy_16510

0-60-0/0/16018.
0.0045522427719810.00.00288.16
198.41.242.249h2www.amakarau.com:443[1/1] done: stream 1, GET /wp-includes/blocks/quote/

0-60-0/0/16834.
0.004552128006370.00.00280.80
156.59.198.136h2www.aandea.com:443[1/1] done

0-60-0/0/16532.
0.004552028054450.00.00312.00
178.62.87.154h2localhost:443[0/0] Software caused connection abort

0-60-0/0/16446.
0.0045525627706900.00.00226.72
8.222.250.141http/1.1www.dc-hockey.net:80GET /caphits/?page_id=2 HTTP/1.0

0-60-0/0/16165.
0.00455210126919960.00.00256.68
198.41.242.249h2www.amakarau.com:443[0/0] init

0-60-0/0/16393.
0.004552026607540.00.00281.42
139.59.147.218http/1.1www.amakarau.com:443POST /xmlrpc.php HTTP/2.0

0-60-0/0/16494.
0.00455290628514460.00.00294.87
69.65.10.231http/1.1www.magiceducation.es:443GET /ideas-para-que-los-ninos-se-interesen-en-la-lectura/ HTTP/

0-60-0/0/16299.
0.00455241831391040.00.00352.16
52.176.98.184http/1.1www.zacforsman.com:443GET //wp-json/oembed/1.0/embed?url=https://zacforsman.com/ HTTP

0-60-0/0/16021.
0.004552103827125410.00.00252.39
76.76.41.230h2www.ghiblipoodles.com:443[0/0] Software caused connection abort

0-60-0/0/16638.
0.004552027863110.00.00299.30
66.249.75.160http/1.1www.cbplayground.com:443GET /item/m3441425384 HTTP/1.1

0-60-0/0/16665.
0.004552328846010.00.00283.60
69.65.10.231http/1.1www.magiceducation.es:443POST /wp-cron.php?doing_wp_cron=1692855893.42301011085510253906

0-60-0/0/16358.
0.00455295227420330.00.00242.09
69.65.10.231http/1.1www.magiceducation.es:443GET /como-crear-conciencia-sobre-la-diversidad-cultural-en-el-c

0-60-0/0/15905.
0.004552027788940.00.00278.13
76.76.41.230h2www.ghiblipoodles.com:443[0/0] Software caused connection abort

0-60-0/0/16646.
0.004552428636680.00.00257.36
76.76.41.230h2www.ghiblipoodles.com:443[0/0] Software caused connection abort

0-60-0/0/16736.
0.00455259027137090.00.00399.59
66.249.72.70http/1.1

0-60-0/0/16291.
0.00455217728678470.00.00267.76
86.104.33.196http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-60-0/0/16084.
0.00455240129245980.00.00260.60
52.176.98.184http/1.1www.zacforsman.com:443GET / HTTP/1.1

0-60-0/0/16250.
0.004552027920420.00.00256.74
178.62.87.154h2localhost:443[0/0] Software caused connection abort

0-60-0/0/16210.
0.004552025723510.00.00273.97
162.158.171.14h2www.pbcci.com:443

Found on 2023-08-24 09:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a11a8a544

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Wednesday, 23-Aug-2023 01:10:28 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 52
Parent Server MPM Generation: 51
Server uptime:  7 days 17 hours 2 minutes 39 seconds
Server load: 1.16 1.25 1.09
Total accesses: 2198087 - Total Traffic: 34.8 GB - Total Duration: 344279997
CPU Usage: u142.81 s43.41 cu6410.36 cs998.33 - 1.14% CPU load
3.3 requests/sec - 54.7 kB/second - 16.6 kB/request - 156.627 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0500800no4yes163031
Sum104 163031

___________W____________________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-515008000/188/14725_
46.19823922404970.01.83279.94
90.161.165.113h2www.magiceducation.es:443[1/1] done: stream 1, POST /wp-admin/admin-ajax.php?_fs_blog_ad

0-515008000/168/13873_
45.86936723268010.00.65208.80
216.244.66.228http/1.1

0-515008000/181/14335_
46.28923622172980.01.84211.11
90.161.165.113h2www.magiceducation.es:443[0/0] init

0-515008000/199/13868_
46.371021934510.01.49196.96
57.128.17.219http/1.1www.fouracrefarm.com:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/193/14693_
46.125023541570.02.96275.48
191.101.31.62http/1.1www.1mrd.com:80GET /webalizer/ HTTP/1.0

0-515008000/183/14373_
46.500022464030.02.46252.23
164.90.222.93http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-515008000/172/14127_
46.381022915400.02.88247.45
57.128.17.219http/1.1www.fouracrefarm.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/190/14351_
46.363022458240.07.76253.25
57.128.17.219http/1.1www.fouracrefarm.com:80GET / HTTP/1.1

0-515008000/180/13881_
46.371022449040.01.75222.17
57.128.17.219http/1.1www.fouracrefarm.com:80GET /website/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/225/14121_
45.90474923523800.02.61204.33
90.161.165.113h2www.magiceducation.es:443[1/1] done: stream 1, POST /wp-admin/admin-ajax.php?_fs_blog_ad

0-515008000/198/14572_
45.72539822390660.01.60294.98
41.216.188.168http/1.1

0-515008001/188/14382W
45.480022427080.03.28211.34
164.90.222.93http/1.1localhost:80GET /server-status HTTP/1.1

0-515008000/186/14230_
46.480021906720.02.36229.95
164.90.222.93http/1.1localhost:80GET /about HTTP/1.1

0-515008000/163/13986_
46.38123621609510.00.93252.53
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/171/13999_
46.46150123415890.02.95218.80
69.65.10.231http/1.1www.greekvillaparos.gr:443POST /wp-cron.php?doing_wp_cron=1692771026.35108995437622070312

0-515008000/160/13678_
46.44511821450380.01.44214.84
195.171.52.95http/1.1www.dcflow.com:80GET /index.php/administrator/ HTTP/1.1

0-515008000/173/14331_
46.426024120820.00.96227.03
90.161.165.113http/1.1www.magiceducation.es:443POST /wp-admin/admin-ajax.php?_fs_blog_admin=true HTTP/2.0

0-515008000/218/14402_
46.14283823040510.02.41217.74
40.77.167.73h2www.rossitergroup.co:443GET /o/N1023061 HTTP/2.0

0-515008000/200/13925_
46.381021566900.01.52176.62
57.128.17.219http/1.1www.fouracrefarm.com:80GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/185/13971_
46.471022377930.00.99239.67
164.90.222.93http/1.1localhost:80GET / HTTP/1.1

0-515008000/181/13857_
46.01334923683890.01.21198.40
154.47.24.72http/1.1www.aasiadrivingschool.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/169/14087_
46.44323226894960.01.42236.07
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/242/14066_
46.461022898540.02.98256.86
90.161.165.113h2www.magiceducation.es:443[3/3] done: stream 5, POST /wp-admin/admin-ajax.php?_fs_blog_ad

0-515008000/173/14485_
46.490023423680.01.24231.19
164.90.222.93http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-515008000/297/14421_
46.461022615510.04.03292.98
85.208.96.212http/1.1www.con-voluted.com:80GET /productpf1003445.html HTTP/1.1

0-515008000/236/14439_
46.09923722635150.03.42204.49
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/277/14029_
46.380022181160.02.92236.27
57.128.17.219http/1.1www.fouracrefarm.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/274/14210_
45.87824121854740.01.86252.32
172.71.142.72h2localhost:443[0/0] init

0-515008000/170/14434_
46.372024204440.02.01259.59
57.128.17.219http/1.1www.fouracrefarm.com:80GET /xmlrpc.php?rsd HTTP/1.1

0-515008000/193/14112_
46.243025807810.06.02325.17
216.244.66.248http/1.1localhost:443GET /robots.txt HTTP/2.0

0-515008000/188/13835_
46.337022322400.01.71227.53
41.216.188.168http/1.1localhost:80GET /wp-content/plugins/wp-daft/t62.php HTTP/1.1

0-515008000/182/14396_
46.490022148270.01.58261.37
164.90.222.93http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-515008000/184/14649_
46.43520624031590.01.24264.76
195.171.52.95http/1.1www.dcflow.com:80POST /index.php/administrator/ HTTP/1.1

0-515008000/160/14323_
46.32875022912350.05.54222.51
54.174.200.164http/1.1www.creativequesters.com:443GET /feed/podcast/ HTTP/1.1

0-515008000/184/13913_
46.44424423254790.01.39257.27
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/180/14617_
46.309023673680.04.45236.12
216.244.66.228http/1.1localhost:80GET /store/product_reviews.php?cPath=0&products_id=36 HTTP/1.1

0-515008000/180/14697_
46.22629621999450.04.67377.81
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/175/14204_
46.36324423447810.02.22234.44
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/176/14048_
46.45224124483700.02.08232.18
90.161.165.113h2www.magiceducation.es:443[2/2] done: stream 3, POST /wp-admin/admin-ajax.php?_fs_blog_ad

0-515008000/189/14162_
46.42623023284110.02.19226.36
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/186/14256_
46.490221521440.02.80245.52
3.224.220.101http

Found on 2023-08-23 06:08

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1abe0e1bd5

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 21-Aug-2023 08:03:07 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 49
Parent Server MPM Generation: 48
Server uptime:  5 days 23 hours 55 minutes 17 seconds
Server load: 0.06 0.13 0.10
Total accesses: 1794813 - Total Traffic: 28.3 GB - Total Duration: 285496244
CPU Usage: u118.5 s36.5 cu5263.01 cs814.89 - 1.2% CPU load
3.46 requests/sec - 57.2 kB/second - 16.5 kB/request - 159.067 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03086392no0yes163000
Sum100 163000

__________________________________________________W_____________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4830863920/84/11432_
28.172017330280.01.55221.66
181.168.52.98http/1.1localhost:80GET /wp-content/uploads/2013/09/paypal-retirar-a-banco-300x238.

0-4830863920/106/11065_
28.426018554670.01.26175.70
18.236.212.67http/1.1

0-4830863920/101/11507_
28.417817727530.03.81174.51
178.63.3.29http/1.1

0-4830863920/96/10914_
28.381017312650.04.47156.77
66.249.72.225http/1.1www.cbplayground.com:443GET /r/E2257038 HTTP/1.1

0-4830863920/104/11608_
28.443018837280.06.33215.88
73.4.122.235h2localhost:443[3/3] done: stream 5, GET /webmail/?_task=mail&_caps=pdf%3D1%2C

0-4830863920/85/11450_
28.520018244750.01.02217.16
3.224.220.101http/1.1www.webturbos.com:80GET /marine_turbo.htm HTTP/1.1

0-4830863920/96/11025_
28.503018058000.06.20175.14
52.70.240.171http/1.1www.webturbos.com:80GET /mercury_turbo.htm HTTP/1.1

0-4830863920/80/11399_
28.495017665200.03.33151.90
18.236.212.67http/1.1localhost:80GET / HTTP/1.1

0-4830863920/100/10888_
27.6120017589220.05.19163.59
172.69.214.188h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-4830863920/88/11143_
28.511018679520.00.86161.16
3.224.220.101http/1.1www.webturbos.com:80GET /lincoln_turbo.htm HTTP/1.1

0-4830863920/139/11600_
28.503017467450.02.64200.06
185.191.171.10http/1.1www.con-voluted.com:80GET /productjx600500.html HTTP/1.1

0-4830863920/90/11502_
28.453017847820.00.90167.03
3.83.35.211http/1.1www.texaselectricalexcel.com:80GET /js/rvwysiwyg-ui.js HTTP/1.1

0-4830863920/104/11214_
28.4712017463950.02.27177.87
52.53.254.163http/1.1www.geocache.co.nz:443GET /paypal/us/webscr.htm HTTP/1.1

0-4830863920/90/10888_
28.390016948110.021.71161.59
66.108.162.15http/1.1www.curbsidegourmet.com:80GET / HTTP/1.1

0-4830863920/113/11044_
27.645218615080.04.53172.24
216.244.66.198http/1.1

0-4830863920/97/10820_
28.511017190010.05.57174.05
134.122.63.192http/1.1localhost:80GET / HTTP/1.1

0-4830863920/94/11401_
28.488019350770.06.07177.95
3.224.220.101http/1.1www.webturbos.com:80GET /volvo_turbo.htm HTTP/1.1

0-4830863920/87/11347_
28.321267817840200.04.16172.44
218.187.85.120h2localhost:443[0/0] init

0-4830863920/88/11019_
28.5031617048210.02.06141.99
66.249.69.132http/1.1www.fcbcorlando.org:443GET /en/council-members/ HTTP/1.1

0-4830863920/97/11035_
28.505017597060.00.89200.54
3.224.220.101http/1.1www.webturbos.com:80GET /truck_turbo.htm HTTP/1.1

0-4830863920/113/11008_
28.3210018599640.03.87152.49
3.224.220.101http/1.1www.webturbos.com:80GET /robots.txt HTTP/1.1

0-4830863920/113/10984_
27.8612022120000.07.61179.07
138.197.47.6h2localhost:443[0/0] Software caused connection abort

0-4830863920/80/11188_
28.443104318276430.010.93202.54
107.170.114.54http/1.1www.greekvillaparos.gr:80GET /store/wp-admin.php HTTP/1.1

0-4830863920/94/11628_
28.4712018900880.04.92197.11
23.22.35.162http/1.1www.webturbos.com:80GET /isuzu_turbo.htm HTTP/1.1

0-4830863920/92/11413_
28.5032118051190.017.27238.82
66.249.69.133http/1.1www.fcbcorlando.org:443GET /robots.txt HTTP/1.1

0-4830863920/96/11445_
28.520017861170.01.97168.18
134.122.63.192http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-4830863920/87/11141_
28.496017662040.05.16199.47
18.236.212.67http/1.1localhost:80GET /robots.txt HTTP/1.1

0-4830863920/85/11265_
28.278017335270.04.74200.72
172.69.214.51h2localhost:443[2/2] done: stream 3, GET /about

0-4830863920/155/11467_
28.409019108220.046.81218.16
35.87.104.67http/1.1

0-4830863920/101/11135_
28.520021154580.01.10201.64
134.122.63.192http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-4830863920/142/10957_
28.416017495520.03.91177.58
23.22.35.162http/1.1www.webturbos.com:80GET /fiat_turbo.htm HTTP/1.1

0-4830863920/85/11596_
28.4711017552460.02.52221.72
23.22.35.162http/1.1www.webturbos.com:80GET /garrett_turbo.htm HTTP/1.1

0-4830863920/100/11454_
27.8612018759290.06.04220.86
138.197.47.6http/1.1

0-4830863920/166/11319_
28.434018335810.02.22181.03
73.4.122.235h2localhost:443[2/2] done: stream 3, GET /webmail/?_task=addressbook&_action=p

0-4830863920/95/11033_
28.329018539940.01.80220.39
35.87.104.67http/1.1

0-4830863920/94/11498_
28.496018643760.02.71185.49
114.119.158.113http/1.1localhost:80GET /contact/short-and-long-term-storage/office-and-industrial-

0-4830863920/94/11786_
28.488017340350.04.80334.30
178.63.3.29http/1.1localhost:80GET / HTTP/1.1

0-4830863920/107/11047_
28.44350618198360.05.76171.45
69.65.10.231http/1.1www.greekvillaparos.gr:80POST /wp-cron.php?doing_wp_cron=1692622971.17189598083496093750

0-4830863920/91/11159_
28.433020166250.01.08167.32
23.22.35.162http/1.1www.webturbos.com:80GET /bmw_turbo.htm HTTP/1.1

0-4830863920/85/11334_
28.496018204910.010.93181.27
18.236.212.67http/1.1localhost:80HEAD / HTTP/1.1

0-4830863920/96/11226_
28.520017043170.01.22147.10
134.122.63.192http/1.1localhost:80GET /about HTTP/1.1

0-4830863920/142/10801_
28.487017510370.011.41152.72
3.224.220.101http/1.1www.webturbos.com:80GET /merkur_turbo.htm HTTP/1.1

0-4830863920/104/11154_
28.36401846939

Found on 2023-08-21 13:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ab6bab1e7

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 20-Aug-2023 05:43:57 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 48
Parent Server MPM Generation: 47
Server uptime:  4 days 21 hours 36 minutes 7 seconds
Server load: 0.11 0.10 0.11
Total accesses: 1532011 - Total Traffic: 23.0 GB - Total Duration: 245829407
CPU Usage: u112.64 s34.83 cu4489.88 cs696.6 - 1.26% CPU load
3.62 requests/sec - 56.9 kB/second - 15.7 kB/request - 160.462 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01874645no1yes163100
Sum101 163100

W_______________________________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4718746451/91/9452W
26.810014436750.08.72183.50
206.81.1.88http/1.1localhost:80GET /server-status HTTP/1.1

0-4718746450/102/9214_
27.520015583830.01.41144.22
206.81.1.88http/1.1localhost:80GET /about HTTP/1.1

0-4718746450/100/9326_
27.424014939960.01.16132.76
103.144.1.163http/1.1

0-4718746450/103/8949_
27.3814314444720.00.58130.66
69.65.10.231http/1.1www.casinogamesonline.com:443POST /wp-cron.php?doing_wp_cron=1692528209.69299507141113281250

0-4718746450/473/9611_
27.500016299740.015.70172.12
134.122.63.192http/1.1localhost:80GET / HTTP/1.1

0-4718746450/102/9406_
27.235015330010.01.43174.10
185.191.171.14http/1.1www.con-voluted.com:80GET /productmg1070453.html HTTP/1.1

0-4718746450/106/9083_
27.4010015257910.01.20136.01
52.167.144.222h2www.kyaccidentinfo.com:443[1/1] done: stream 1, GET /vacxlvw1661251

0-4718746450/174/9439_
26.8611014706420.01.32122.42
52.167.144.222h2www.kyaccidentinfo.com:443[0/0] init

0-4718746450/106/8919_
27.290014422610.01.25132.26
185.191.171.6http/1.1www.con-voluted.com:80GET /productjn825975.html HTTP/1.1

0-4718746450/100/9240_
27.424016097110.00.62138.94
103.144.1.163http/1.1

0-4718746450/97/9474_
27.510014818170.01.15164.41
206.81.1.88http/1.1localhost:80GET / HTTP/1.1

0-4718746450/93/9446_
27.495514936560.02.78144.64
114.119.154.161http/1.1www.draftboardguru.com:443GET /yypx37315rs-12fxr390 HTTP/1.1

0-4718746450/109/9330_
27.080014607280.01.38151.77
172.71.250.82h2localhost:443[0/0] init

0-4718746450/96/9012_
27.281014301620.00.81114.58
172.70.175.98h2localhost:443[0/0] init

0-4718746450/92/9207_
26.929014905270.00.85146.28
178.128.102.58http/1.1localhost:80GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1

0-4718746450/100/8966_
27.520014779950.00.96140.79
206.81.1.88http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-4718746450/108/9402_
27.510016280650.00.49134.08
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/195/9395_
27.416014816990.02.70150.95
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-date/ HTTP/1.1

0-4718746450/104/9087_
27.520014583350.01.24116.47
2a03:b0c0:3:d0::1047:b001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/85/9152_
27.4713014964520.00.50140.00
194.39.67.52http/1.1www.amakarau.com:443POST /wp-login.php HTTP/2.0

0-4718746450/97/9127_
27.45042014957440.00.86126.66
162.158.111.5h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/94/9012_
27.498019163360.01.39129.67
114.119.156.27http/1.1www.aandea.com:80GET /reviews/2014/BeaumontAMSET_files/?C=M%3BO%3DA HTTP/1.1

0-4718746450/112/9236_
27.4810015607700.00.58166.29
52.167.144.222h2www.kyaccidentinfo.com:443GET /vacxlvw1661251 HTTP/2.0

0-4718746450/103/9620_
27.4711016067190.00.49171.64
114.119.156.27http/1.1www.aandea.com:80GET /reviews/2014/BeaumontAMSET_files?C=M%3BO%3DA HTTP/1.1

0-4718746450/95/9390_
27.471489014919500.00.80172.36
162.0.231.126http/1.1www.casinogamesonline.com:443POST /xmlrpc.php HTTP/1.1

0-4718746450/105/9425_
27.080015103800.01.51132.44
162.158.94.143h2localhost:443[0/0] init

0-4718746450/108/9218_
27.520014993720.01.40166.49
134.122.63.192http/1.1localhost:80GET /about HTTP/1.1

0-4718746450/120/9223_
26.8611014643730.01.21159.37
157.90.182.27http/1.1

0-4718746450/110/9538_
26.645015819750.01.29152.40
213.202.211.149http/1.1

0-4718746450/108/9173_
27.209015989070.01.17156.17
40.77.167.238h2www.ladynerevar.com:443[0/0] init

0-4718746450/96/8997_
27.3514014731600.00.54153.67
157.90.182.27http/1.1

0-4718746450/116/9638_
27.520015116080.00.47183.22
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/101/9474_
27.280015721070.01.67181.32
162.158.111.5h2localhost:443[0/0] init

0-4718746450/105/9237_
27.520015091950.01.40156.87
134.122.63.192http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-4718746450/98/9070_
27.4711015500740.00.88182.23
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-featured-image/ HTTP/1.1

0-4718746450/97/9580_
26.610615724160.01.43151.20
172.70.243.42h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/104/9310_
27.520014396000.00.80143.45
206.81.1.88http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-4718746450/101/8985_
27.130015525670.00.64130.51
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/more/ HTTP/1.1

0-4718746450/107/9110_
26.650014930670.00.39141.48
178.128.102.58http/1.1localhost:80GET /xmlrpc.php?rsd HTTP/1.1

0-4718746450/110/9399_
27.489015714060.00.53142.60
52.167.144.93http/1.1www.rossitergroup.co:80GET /sitemap684.xml HTTP/1.1

0-4718746450/112/9274_
27.510014578770.07.11124.23
206.81.1.88http/1.1localhost:80GET / HTTP/1.1

0-4718746450/114/8923_
26.569014867570.01.62118.66
40.77.167.238h2www.ladynerevar.com:443[1/1] done: stream 1, GET /wp/wp-content/uploads/2023/04/taneth

0-4718746450/109/9243_
27.496015676420.01.12123.73
213.202.211.149http/1.1localhost:80GET /wp-include

Found on 2023-08-20 10:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a7fde9ffd

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 20-Aug-2023 05:43:57 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 48
Parent Server MPM Generation: 47
Server uptime:  4 days 21 hours 36 minutes 8 seconds
Server load: 0.11 0.10 0.11
Total accesses: 1532024 - Total Traffic: 23.0 GB - Total Duration: 245829414
CPU Usage: u112.67 s34.84 cu4489.88 cs696.6 - 1.26% CPU load
3.62 requests/sec - 56.9 kB/second - 15.7 kB/request - 160.461 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01874645no1yes163100
Sum101 163100

_________________________________________________W______________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4718746450/92/9453_
27.530414436800.08.73183.52
206.81.1.88http/1.1localhost:80GET /server-status HTTP/1.1

0-4718746450/102/9214_
27.521015583830.01.41144.22
206.81.1.88http/1.1localhost:80GET /about HTTP/1.1

0-4718746450/100/9326_
27.424014939960.01.16132.76
103.144.1.163http/1.1

0-4718746450/103/8949_
27.380314444720.00.58130.66
172.70.251.45h2localhost:443[0/0] init

0-4718746450/473/9611_
27.501016299740.015.70172.12
134.122.63.192http/1.1localhost:80GET / HTTP/1.1

0-4718746450/103/9407_
27.560015330010.01.43174.10
51.222.253.12http/1.1www.handwritingcoaching.com:443GET /robots.txt HTTP/2.0

0-4718746450/106/9083_
27.400015257910.01.20136.01
172.70.251.45h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/174/9439_
26.860014706420.01.32122.42
172.70.251.169h2localhost:443[0/0] init

0-4718746450/106/8919_
27.291014422610.01.25132.26
185.191.171.6http/1.1www.con-voluted.com:80GET /productjn825975.html HTTP/1.1

0-4718746450/100/9240_
27.424016097110.00.62138.94
103.144.1.163http/1.1

0-4718746450/97/9474_
27.511014818170.01.15164.41
206.81.1.88http/1.1localhost:80GET / HTTP/1.1

0-4718746450/93/9446_
27.490514936560.02.78144.64
114.119.154.161http/1.1www.draftboardguru.com:443GET /yypx37315rs-12fxr390 HTTP/1.1

0-4718746450/109/9330_
27.081014607280.01.38151.77
172.71.250.82h2localhost:443[0/0] init

0-4718746450/96/9012_
27.282014301620.00.81114.58
172.70.175.98h2localhost:443[0/0] init

0-4718746450/92/9207_
26.920014905270.00.85146.28
172.70.247.52h2localhost:443[0/0] init

0-4718746450/100/8966_
27.520014779950.00.96140.79
206.81.1.88http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-4718746450/108/9402_
27.511016280650.00.49134.08
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/195/9395_
27.410014816990.02.70150.95
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-date/ HTTP/1.1

0-4718746450/104/9087_
27.521014583350.01.24116.47
2a03:b0c0:3:d0::1047:b001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/86/9153_
27.540014964520.00.50140.00
206.81.1.88http/1.1localhost:80GET /login.action HTTP/1.1

0-4718746450/97/9127_
27.45142014957440.00.86126.66
162.158.111.5h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/94/9012_
27.490019163360.01.39129.67
51.222.253.12h2www.handwritingcoaching.com:443[0/0] init

0-4718746450/113/9237_
27.550015607700.00.58166.29
14.29.246.47http/1.1localhost:80GET / HTTP/1.1

0-4718746450/104/9621_
27.540016067190.00.49171.64
206.81.1.88http/1.1localhost:80GET /_all_dbs HTTP/1.1

0-4718746450/95/9390_
27.47089014919500.00.80172.36
162.158.94.20h2localhost:443[0/0] init

0-4718746450/105/9425_
27.081015103800.01.51132.44
162.158.94.143h2localhost:443[0/0] init

0-4718746450/108/9218_
27.520014993720.01.40166.49
134.122.63.192http/1.1localhost:80GET /about HTTP/1.1

0-4718746450/120/9223_
26.860014643730.01.21159.37
162.158.94.20h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/110/9538_
26.640015819750.01.29152.40
213.202.211.149http/1.1

0-4718746450/109/9174_
27.550015989070.01.18156.17
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-template/ HTTP/1.1

0-4718746450/97/8998_
27.540014731600.00.54153.68
113.142.141.105http/1.1www.firsteye.info:80GET / HTTP/1.1

0-4718746450/116/9638_
27.521015116080.00.47183.22
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/101/9474_
27.281015721070.01.67181.32
162.158.111.5h2localhost:443[0/0] init

0-4718746450/105/9237_
27.520015091950.01.40156.87
134.122.63.192http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-4718746450/98/9070_
27.470015500740.00.88182.23
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-featured-image/ HTTP/1.1

0-4718746450/97/9580_
26.611615724160.01.43151.20
172.70.243.42h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/104/9310_
27.520014396000.00.80143.45
206.81.1.88http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-4718746450/101/8985_
27.131015525670.00.64130.51
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/more/ HTTP/1.1

0-4718746450/107/9110_
26.651014930670.00.39141.48
178.128.102.58http/1.1localhost:80GET /xmlrpc.php?rsd HTTP/1.1

0-4718746450/110/9399_
27.480015714060.00.53142.60
52.167.144.93http/1.1www.rossitergroup.co:80GET /sitemap684.xml HTTP/1.1

0-4718746450/112/9274_
27.511014578770.07.11124.23
206.81.1.88http/1.1localhost:80GET / HTTP/1.1

0-4718746450/115/8924_
27.550014867570.01.62118.66
206.81.1.88http/1.1localhost:80GET /.env HTTP/1.1

0-4718746450/110/9244_
27.560015676420.01.12123.73
206.81.1.88http/1.1localhost:80GET /s/932313e24323e21323e2430313/_/;/META-INF/maven/com.atlass

0-4718746450/118/9187_
26.860015824180.01.11141.23
213.202.211.149http/1.1

Found on 2023-08-20 10:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1addf6c479

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Saturday, 19-Aug-2023 09:28:15 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 46
Parent Server MPM Generation: 45
Server uptime:  4 days 1 hour 20 minutes 26 seconds
Server load: 0.16 0.22 0.21
Total accesses: 1306683 - Total Traffic: 20.5 GB - Total Duration: 189374099
CPU Usage: u88.08 s29.42 cu3827.34 cs594.34 - 1.3% CPU load
3.73 requests/sec - 61.4 kB/second - 16.5 kB/request - 144.927 ms/request
2 requests currently being processed, 126 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0974103no0yes064000
2974105no8yes262070
Sum208 2126070

________________________________________________________________
................................................................
____________________W_______W___________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-459741030/3/7835_
0.469073310835130.00.04164.00
74.208.207.80http/1.1www.commonhive.com:443GET /options.php?673435=8 HTTP/1.1

0-459741030/0/7593_
0.0089111835350.00.00113.24
80.85.136.159http/1.1

0-459741030/1/7650_
0.0689010976970.00.00119.64
108.162.241.89h2www.daryam.com:443[0/0] init

0-459741030/1/7235_
0.5188010484190.00.01116.97
114.119.131.189http/1.1www.laxitateyourself.com:443GET /edifice909563.html HTTP/1.1

0-459741030/1/7597_
0.5089312025820.00.00135.19
190.88.96.21h2localhost:443[0/0] init

0-459741030/1/7804_
0.5189011553830.00.01147.71
190.88.96.21h2localhost:443[1/1] done: stream 1, GET /roundcube/?_task=mail&_action=list&_

0-459741030/0/7384_
0.0089132011399220.00.00114.36
107.189.3.248http/1.1www.magiceducation.es:443POST /wp-login.php HTTP/1.1

0-459741030/0/7746_
0.0089110843970.00.00107.26
138.246.253.24http/1.1

0-459741030/1/7311_
0.208867210607110.00.01115.43
207.35.219.98http/1.1www.daryam.com:443GET /charart/pose/pose82.jpg HTTP/2.0

0-459741030/2/7528_
0.528885012163600.00.07118.02
85.185.85.194http/1.1www.the100wordproject.com:443POST /xmlrpc.php HTTP/1.1

0-459741030/1/7857_
0.6687011359160.00.00144.03
34.212.138.208http/1.1www.betbitcoinonline.com:443GET /favicon.ico HTTP/1.1

0-459741030/2/7809_
0.6687011026260.00.01123.78
190.88.96.21http/1.1localhost:443GET /roundcube/?_task=mail&_action=list&_refresh=1&_layout=wide

0-459741030/2/7701_
0.208744510880710.00.01130.27
146.190.172.240h2localhost:443[0/0] Software caused connection abort

0-459741030/2/7389_
0.5385010585180.00.00101.63
185.191.171.1http/1.1www.con-voluted.com:80GET /productmz1478278.html HTTP/1.1

0-459741030/3/7548_
0.6781011060120.00.01117.13
66.249.66.83http/1.1www.structdynamics.com:443GET /item/m693655928 HTTP/1.1

0-459741030/2/7318_
0.687955310912820.00.01119.78
15.237.41.82http/1.1www.ladyn.click:80GET / HTTP/1.1

0-459741030/3/7696_
0.6780012313640.00.01114.45
124.89.86.227http/1.1shared.domain:80GET / HTTP/1.1

0-459741030/2/7684_
0.54804410900420.00.01132.51
69.65.10.231http/1.1localhost:443GET /roundcube/ HTTP/1.1

0-459741030/2/7404_
0.54797910677520.00.0096.45
66.249.66.83http/1.1

0-459741030/1/7574_
0.5477011401920.00.01126.68
66.249.72.238http/1.1www.cbplayground.com:443GET /ferrateen60565.html HTTP/1.1

0-459741030/1/7462_
0.6878011185880.00.00107.30
216.244.66.201http/1.1localhost:80GET /events/category/fundraisers/day/2021-12-29/?outlook-ical=1

0-459741030/1/7386_
0.5677129115191470.00.01113.59
216.244.66.199http/1.1www.greekvillaparos.gr:443GET /en/alyki-herb-garden/feed/ HTTP/1.1

0-459741030/2/7593_
0.6877011425360.00.00142.22
185.191.171.17http/1.1www.con-voluted.com:80GET /productiu998849.html HTTP/1.1

0-459741030/1/7968_
0.577646912284080.00.02150.26
114.119.142.207http/1.1www.gofindglow.com:443GET /gliding-gracefully-or-furiously-flapping/ HTTP/1.1

0-459741030/1/7699_
0.376070111013790.00.02156.95
213.152.161.5http/1.1

0-459741030/1/7791_
0.0876011172300.00.01116.17
183.136.225.45h2localhost:443[0/0] Software caused connection abort

0-459741030/1/7544_
0.367711510746640.00.01151.21
66.249.72.238http/1.1

0-459741030/4/7578_
0.696111510820680.00.19146.12
213.152.161.5http/1.1www.dcflow.com:80GET /administrator/ HTTP/1.1

0-459741030/2/7889_
0.697142311905840.00.03140.02
103.30.212.11http/1.1www.thepalletfarm.com:80POST /xmlrpc.php HTTP/1.1

0-459741030/0/7541_
0.0071011774000.00.00126.59
183.136.225.45http/1.1

0-459741030/1/7356_
0.596067211071060.00.01135.22
222.166.79.158h2www.fcbcorlando.org:443[0/0] read: stream 0,  

0-459741030/0/7988_
0.0060711198710.00.00170.31
34.219.40.36http/1.1

0-459741030/3/7852_
0.6030111672500.00.18155.50
222.166.79.158h2www.fcbcorlando.org:443[1/1] done: stream 1, GET /files/%E7%B3%BB%E7%B5%B1%E7%A5%9E%E5

0-459741030/0/7603_
0.0052010894570.00.00121.35
172.69.214.35h2www.daryam.com:443[0/0] init

0-459741030/1/7478_
0.6052011547180.00.00167.70
54.36.149.95http/1.1www.geocache.co.nz:80GET /robots.txt HTTP/1.1

0-459741030/1/7892_
0.3852011852040.00.01128.55
172.69.214.35h2www.daryam.com:443[1/1] done: stream 1, GET /charart/pose/pose239.jpg

0-459741030/2/7674_
0.7250010737960.00.03127.96
207.35.219.98http/1.1www.daryam.com:443GET /charart/pose/pose239.jpg HTTP/2.0

0-459741030/1/7405_
0.6150111624040.00.00116.49
52.38.62.57http/1.1www.betbitcoinonline.com:443GET / HTTP/1.1

0-459741030/3/7531_
0.724827511149730.00.02125.05
31.135.90.40http/1.1www.drbratland.com:443GET /radio.php?673435=8 HTTP/1.1

0-459741030/0/7456_
0.0046011457420.00.00127.76
36.150.60.24http/1.1shared.domain:80GET / HTTP/1.1

0-459741030/2/7597_
0.6246310818480.00.02103.94
66.249.70.5http/1.1www.richardniewerth.com:80GET /css/bootstrap.min.css HTTP/1.1

0-459741030/5/7270_
0.7429911086430.03.56103.34
222.166.79.158h2www.fcbcorlando.org:443GET /files/%E7%B3%BB%E7%B5%B1%E7%A5%9E%E5%AD%B8.pdf HTTP/2.0

0-459741030/3/7414_
0.7339

Found on 2023-08-19 14:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a899eb05a

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Friday, 18-Aug-2023 07:58:27 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 36
Parent Server MPM Generation: 35
Server uptime:  2 days 23 hours 50 minutes 38 seconds
Server load: 0.34 0.24 0.24
Total accesses: 1013312 - Total Traffic: 15.3 GB - Total Duration: 150400679
CPU Usage: u92.48 s26.54 cu2819.22 cs449.85 - 1.31% CPU load
3.92 requests/sec - 62.1 kB/second - 15.8 kB/request - 148.425 ms/request
2 requests currently being processed, 62 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03991196no3yes262002
Sum103 262002

______W____________R____________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3539911960/213/6066_
31.301608252420.03.38128.58
23.99.191.142http/1.1localhost:80GET //wp-includes/sodium_compat/src/Core/Curve25519/Ge/wp_blog.

0-3539911960/187/5873_
31.321009244000.02.3591.83
23.99.191.142http/1.1localhost:80GET //wp-content/themes/finley/min.php HTTP/1.1

0-3539911960/196/5886_
31.321108769900.02.5695.38
23.99.191.142http/1.1localhost:80GET //wp-includes/wp-class.php HTTP/1.1

0-3539911960/193/5540_
31.48108076890.04.3660.46
161.35.155.246http/1.1localhost:80GET /.vscode/sftp.json HTTP/1.1

0-3539911960/200/5707_
31.3414979245330.01.0194.59
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/207/5950_
31.301508848520.03.4973.97
23.99.191.142http/1.1localhost:80GET //wp-admin/network/db.php HTTP/1.1

0-3539911961/204/5664W
31.30008773550.04.4092.31
161.35.155.246http/1.1localhost:80GET /server-status HTTP/1.1

0-3539911960/193/6040_
31.3804978496640.06.2587.85
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/206/5516_
31.48008275480.02.5288.83
161.35.155.246http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-3539911960/191/5809_
31.33809144390.03.2687.40
40.83.2.65http/1.1

0-3539911960/202/6128_
31.38008778660.06.31105.82
20.15.240.70http/1.1www.chauvantiep.com:443GET /?yy=2022&mm=4 HTTP/1.1

0-3539911960/203/6043_
31.311408460420.01.3779.73
23.99.191.142http/1.1localhost:80GET //wp-content/plugins/TOPXOH/wDR.php HTTP/1.1

0-3539911960/212/5935_
31.251608605480.03.42105.94
40.77.167.39h2shared.domain:443[0/0] init

0-3539911960/198/5648_
31.44848043140.03.2577.21
40.83.2.65http/1.1www.chauvantiep.com:443GET /cvt-v7luubut.html HTTP/1.1

0-3539911960/186/5746_
31.29108424660.02.3886.60
162.158.190.44h2www.daryam.com:443[0/0] init

0-3539911960/211/5540_
31.421108541720.03.8781.73
66.249.72.230http/1.1localhost:80GET /supercars/lamborghini-murcielago.html HTTP/1.1

0-3539911960/200/5890_
31.271109236620.01.4279.99
66.249.64.105http/1.1

0-3539911960/186/5847_
31.321008200660.00.9299.34
66.249.72.230http/1.1

0-3539911960/235/5677_
31.41134718477490.01.6864.00
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/206/5823R
31.301709056600.01.1790.12
138.199.60.176http/1.1www.jasondurall.com:443

0-3539911960/190/5491_
31.311308523280.00.7081.11
23.99.191.142http/1.1localhost:80GET //wp-content/plugins/real/v.php HTTP/1.1

0-3539911960/198/5562_
31.44748412630350.00.7974.38
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/186/5502_
31.311108864140.02.6397.08
23.99.191.142http/1.1localhost:80GET //ee.php HTTP/1.1

0-3539911960/207/6130_
31.29109119510.02.77119.68
23.99.191.142http/1.1localhost:80GET //wsu.php HTTP/1.1

0-3539911960/190/5883_
31.4725008309280.00.8193.39
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/193/6052_
31.29308765110.01.3795.88
23.99.191.142http/1.1localhost:80GET //wp-content/home.php?xsec=team HTTP/1.1

0-3539911960/211/5845_
31.33708261720.03.21101.38
23.99.191.142http/1.1localhost:80GET //wp-admin/css/colors/coffee/index.php HTTP/1.1

0-3539911960/201/5683_
31.311308408210.01.7096.81
23.99.191.142http/1.1localhost:80GET //rxr.php HTTP/1.1

0-3539911960/190/6046_
31.42104749406550.011.11112.70
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/204/5737_
31.39154728857830.01.9596.20
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/199/5608_
31.331008247410.02.7393.69
23.99.191.142http/1.1localhost:80GET //wp-content/wp_filemanager.php HTTP/1.1

0-3539911960/206/6196_
31.29108830730.02.05135.60
23.99.191.142http/1.1localhost:80GET //wp-includes/random_compat/random_bytes_cyclone.php HTTP/1

0-3539911960/196/6113_
31.34409319740.04.70122.02
40.77.167.97http/1.1localhost:80GET /healder/explainingly791004.html HTTP/1.1

0-3539911960/248/5815_
31.4804988082000.03.9685.86
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/187/5699_
31.33708621000.02.33125.96
23.99.191.142http/1.1localhost:80GET //repeater.php HTTP/1.1

0-3539911960/211/6079_
31.33609411420.01.7396.74
172.70.143.70h2www.daryam.com:443[0/0] init

0-3539911960/200/5939_
31.48008374720.01.91100.97
161.35.155.246http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-3539911960/198/5631_
31.33609352770.01.6282.10
23.99.191.142http/1.1localhost:80GET //wp-content/plugins/revslider/includes/external/page/index

0-3539911960/198/5733_
31.35108546340.01.20102.68
162.158.190.44h2www.daryam.com:443[1/1] done: stream 1, GET /public/javascript/filemanager/dialog

0-3539911960/192/5623_
31.311408120850.02.6193.61
23.99.191.142http/1.1localhost:80GET //wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

0-3539911960/232/5757_
31.4564758555010.02.1081.65
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-3539911960/195/5607_
31.46408460430.00.6069.19
180.252.164.185http/1.1www.daryam.com:443GET /assets/filemanager/dialog.php HTTP/

Found on 2023-08-18 12:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aa048bf08

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Thursday, 17-Aug-2023 07:53:57 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 28
Parent Server MPM Generation: 27
Server uptime:  1 day 23 hours 46 minutes 8 seconds
Server load: 0.37 0.20 0.16
Total accesses: 694188 - Total Traffic: 10.7 GB - Total Duration: 103244224
CPU Usage: u95.14 s21.56 cu1960.79 cs309.92 - 1.39% CPU load
4.04 requests/sec - 65.2 kB/second - 16.1 kB/request - 148.727 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
12845256no5yes163140
Sum105 163140

................................................................
___________________________W____________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-27-0/0/4045.
0.00358505768220.00.0080.86
92.154.32.204http/1.1www.greekvillaparos.gr:80GET /parosholiday/wp-content/uploads/sites/3/2017/12/logo.png H

0-27-0/0/3692.
0.00358506162130.00.0059.03
185.191.171.3http/1.1www.con-voluted.com:80GET /productki1831451.html HTTP/1.1

0-27-0/0/3695.
0.00358505617160.00.0060.32
209.160.113.229http/1.1localhost:80HEAD /bk HTTP/1.1

0-27-0/0/3660.
0.00358505322510.00.0040.99
209.160.113.229http/1.1localhost:80HEAD / HTTP/1.1

0-27-0/0/3650.
0.00358506160640.00.0062.16
172.70.250.199h2www.carteblanchecollective.com:[0/0] init

0-27-0/0/3602.
0.0035854085860520.00.0041.63
65.49.1.116http/1.1

0-27-0/0/3647.
0.00358505652460.00.0064.28
205.169.39.155http/1.1www.daryam.com:443GET / HTTP/2.0

0-27-0/0/3904.
0.00358505428230.00.0051.98
162.158.111.131h2www.carteblanchecollective.com:[0/0] init

0-27-0/0/3482.
0.00358505599070.00.0057.51
209.160.113.229http/1.1localhost:80HEAD /wp HTTP/1.1

0-27-0/0/3725.
0.00358505467080.00.0062.35
20.15.240.106http/1.1www.adelaandea.com:80GET /reviews/2021/bild.html HTTP/1.1

0-27-0/0/4079.
0.00358506097280.00.0072.74
64.124.8.50http/1.1www.online-hoshuko.com:443GET /img/syukudai-1.png HTTP/1.1

0-27-0/0/3810.
0.00358505502240.00.0053.50
209.160.113.229http/1.1localhost:80HEAD /home HTTP/1.1

0-27-0/0/3853.
0.00358555721870.00.0075.90
61.135.159.129http/1.1www.ikscd.com:443GET / HTTP/1.1

0-27-0/0/3669.
0.00358575258900.00.0053.73
20.15.240.106http/1.1www.adelaandea.com:80GET /reviews/2021/bild.html HTTP/1.1

0-27-0/0/3585.
0.00358505378360.00.0062.29
107.22.51.239h2localhost:443[0/0] done

0-27-0/0/3549.
0.00358505395580.00.0055.22
209.160.113.229http/1.1localhost:80HEAD /old HTTP/1.1

0-27-0/0/3735.
0.00358506083710.00.0048.84
209.160.113.229http/1.1localhost:80HEAD /old HTTP/1.1

0-27-0/0/3830.
0.00358525557740.00.0063.15
162.158.86.226h2www.carteblanchecollective.com:[0/0] init

0-27-0/0/3564.
0.00358505580610.00.0039.64
209.160.113.229http/1.1

0-27-0/0/3753.
0.00358536268300.00.0055.42
199.167.131.27http/1.1

0-27-0/0/3538.
0.00358505565390.00.0061.09
52.167.144.225h2www.advintechs.com:443GET /pickup/G397364 HTTP/2.0

0-27-0/0/3631.
0.00358509332160.00.0053.40
40.77.167.131http/1.1

0-27-0/0/3535.
0.00358505631870.00.0058.35
199.167.131.27http/1.1localhost:80GET /.well-known/acme-challenge/_YH5I2G7Z-OOPJTI8X8EISC_M4PDP6_

0-27-0/0/4123.
0.00358506020990.00.0094.80
209.160.113.229http/1.1localhost:80HEAD /wordpress HTTP/1.1

0-27-0/0/3807.
0.0035857085228460.00.0071.56
208.109.24.33http/1.1www.the100wordproject.com:443POST /xmlrpc.php HTTP/1.1

0-27-0/0/4044.
0.00358505502800.00.0072.26
92.154.32.204http/1.1www.greekvillaparos.gr:80GET /parosholiday/wp-content/uploads/sites/3/2017/12/logo.png H

0-27-0/0/3791.
0.0035853705366530.00.0067.14
110.39.55.29http/1.1www.stefkaspiegel.com:443POST /xmlrpc.php HTTP/1.1

0-27-0/0/3644.
0.0035852355748950.00.0064.44
199.167.131.27http/1.1

0-27-0/0/4011.
0.00358506328230.00.0079.74
209.160.113.229http/1.1localhost:80HEAD / HTTP/1.1

0-27-0/0/3757.
0.00358505837820.00.0068.72
40.83.2.72http/1.1www.adelaandea.com:80GET /3d.html HTTP/1.1

0-27-0/0/3577.
0.0035852945355810.00.0063.65
128.199.62.55http/1.1www.ehsthetics.zacforsman.com:8GET /about HTTP/1.1

0-27-0/0/3992.
0.00358505811770.00.00105.74
18.236.92.193http/1.1

0-27-0/0/4073.
0.00358506140350.00.0096.72
209.160.113.229http/1.1localhost:80HEAD /backup HTTP/1.1

0-27-0/0/3732.
0.00358505398930.00.0063.30
216.209.3.200h2www.villagedesbasprix.com:443[0/0] init

0-27-0/0/3677.
0.00358505857380.00.0094.14
209.160.113.229http/1.1localhost:80HEAD /bc HTTP/1.1

0-27-0/0/3882.
0.00358505625660.00.0065.64
216.209.3.200http/1.1www.villagedesbasprix.com:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-27-0/0/3888.
0.00358505403920.00.0070.42
172.71.166.168h2www.daryam.com:443[1/1] done: stream 1, GET /

0-27-0/0/3648.
0.00358505680580.00.0056.41
92.154.32.204http/1.1www.greekvillaparos.gr:80GET /wp-content/uploads/2014/06/logo_greekvilla_new2.jpg HTTP/1

0-27-0/0/3667.
0.00358535558460.00.0061.67
69.65.10.231http/1.1www.the100wordproject.com:443POST /wp-cron.php?doing_wp_cron=1692273214.44063305854797363281

0-27-0/0/3633.
0.00358505526760.00.0068.16
49.7.20.78http/1.1localhost:80GET /archives/category/%e8%bf%9b%e5%8f%a3%e9%a3%9f%e5%93%81/%e8

0-27-0/0/3605.
0.0035859995639150.00.0055.76
107.170.123.196http/1.1www.greekvillaparos.gr:80GET /2018/wp-content/upgrade/backup.php HTTP/1.1

0-27-0/0/3591.
0.00358555597870.00.0047.01
207.46.13.224http/1.1www.kyaccidentinfo.com:443GET /heatgh364501 HTTP/2.0

0-27-0/0/3635.
0.00358505531620.00.0047.11
216.209.3.200h2www.villagedesbasprix.com:443[1/1] done: stream 15, POST /webmail/?_task=mail&_action=refres

0-27-0/0/3706.
0.00358505763620.00.0071.77
66.249.64.107http/1.1

Found on 2023-08-17 12:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1abc5de633

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Wednesday, 16-Aug-2023 07:49:32 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 24
Parent Server MPM Generation: 23
Server uptime:  23 hours 41 minutes 42 seconds
Server load: 0.88 0.83 0.49
Total accesses: 394426 - Total Traffic: 4.7 GB - Total Duration: 60640993
CPU Usage: u44.22 s14.23 cu1142.67 cs179.88 - 1.62% CPU load
4.62 requests/sec - 57.5 kB/second - 12.4 kB/request - 153.745 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
11739974no1yes361000
Sum101 361000

................................................................
________________________W____W_____W____________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-23-0/0/1889.
0.001531723282920.00.0022.92
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1843.
0.001531703493650.00.0017.88
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1858.
0.001531733183760.00.0015.59
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/2013.
0.001536793194960.00.0020.32
81.70.248.169http/1.1www.creativequesters.com:443POST /wp-login.php HTTP/1.1

0-23-0/0/1931.
0.001533753869020.00.0023.42
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1922.
0.001531693511600.00.0018.91
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1963.
0.0015313149870.00.0030.30
69.65.10.231http/1.1www.creativequesters.com:443POST /wp-cron.php?doing_wp_cron=1692190015.18683791160583496093

0-23-0/0/1908.
0.001532033046300.00.0020.52
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1856.
0.001531723430500.00.0018.41
64.62.197.76http/1.1

0-23-0/0/1988.
0.0015303173870.00.0030.49
64.62.197.76http/1.1shared.domain:80GET /geoserver/web/ HTTP/1.1

0-23-0/0/1925.
0.001533633272150.00.0017.28
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/2002.
0.001531803188410.00.0016.42
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/2097.
0.001533783368890.00.0023.03
216.209.3.200http/1.1www.villagedesbasprix.com:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-23-0/0/1910.
0.001531653162730.00.0024.13
157.245.39.85http/1.1

0-23-0/0/1899.
0.001533773170890.00.0025.69
217.113.194.88http/1.1www.carteblanchecollective.com:GET /help/kb/?id=35&lang=en_GB?id=35&lang=ja?id=35&lang=da HTTP

0-23-0/0/1825.
0.001531772963420.00.0021.29
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1849.
0.001531953428740.00.0017.15
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1929.
0.001533813328690.00.0023.95
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1850.
0.001531663328070.00.0014.91
172.70.38.40h2www.daryam.com:443[1/1] done: stream 1, GET /.well-known/

0-23-0/0/1957.
0.001532623645940.00.0026.65
194.169.175.26http/1.1www.teamsecurityllc.com:443GET /wp-content/themes/finley/min.php HTTP/1.1

0-23-0/0/1892.
0.0015303280590.00.0035.54
157.245.39.85http/1.1localhost:80GET / HTTP/1.1

0-23-0/0/1945.
0.0015307067580.00.0021.60
210.51.43.126http/1.1localhost:80GET / HTTP/1.1

0-23-0/0/1910.
0.001531743303670.00.0017.52
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1905.
0.001533873310850.00.0028.78
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1902.
0.001533833070730.00.0035.34
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1927.
0.001531613250480.00.0019.08
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1935.
0.001531793182360.00.0029.29
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1973.
0.001531693380100.00.0030.23
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1869.
0.001531684004600.00.0030.45
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1851.
0.001531703293440.00.0030.54
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1895.
0.0015303119410.00.0026.98
64.62.197.34http/1.1shared.domain:80GET /geoserver/web/ HTTP/1.1

0-23-0/0/1932.
0.001533633270430.00.0027.15
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1866.
0.001533783753150.00.0027.66
157.245.39.85http/1.1

0-23-0/0/1955.
0.001531672987390.00.0017.54
146.70.61.131h2localhost:443[0/0] done

0-23-0/0/1902.
0.001531693426830.00.0045.34
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1883.
0.001531753161610.00.0028.61
157.245.39.85h2localhost:443[0/0] Software caused connection abort

0-23-0/0/2014.
0.001531763248940.00.0031.76
146.70.61.131h2localhost:443[0/0] init

0-23-0/0/1888.
0.001533973379640.00.0019.74
216.209.3.200h2www.villagedesbasprix.com:443[0/0] init

0-23-0/0/1885.
0.001533703113120.00.0030.20
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1927.
0.001531633205020.00.0031.23
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1950.
0.001531783318040.00.0017.11
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/1868.
0.001533863362840.00.0021.25
40.83.38.158http/1.1www.xtinavations.com:443POST /wp//xmlrpc.php HTTP/1.1

0-23-0/0/1907.
0.001531773349030.00.0015.50
40.83.38.158http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-23-0/0/2025.
0.00153172</

Found on 2023-08-16 12:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aad7e3337

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Tuesday, 15-Aug-2023 16:34:36 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 21
Parent Server MPM Generation: 20
Server uptime:  8 hours 26 minutes 47 seconds
Server load: 1.36 1.53 1.44
Total accesses: 113255 - Total Traffic: 1.9 GB - Total Duration: 23351966
CPU Usage: u55.71 s13.68 cu339.99 cs63.25 - 1.55% CPU load
3.72 requests/sec - 66.8 kB/second - 17.9 kB/request - 206.189 ms/request
2 requests currently being processed, 62 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
3811578no5yes262013
Sum105 262013

................................................................
................................................................
................................................................
_______R__________________________________________________W_____
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-19-0/0/248.
0.0035710704980.00.002.41
74.125.215.34http/1.1

0-19-0/0/264.
0.003571839837010.00.003.65
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/223.
0.0035710496170.00.001.78
209.160.112.99http/1.1localhost:80HEAD /bc HTTP/1.1

0-19-0/0/248.
0.0035711017600390.00.002.61
66.249.64.106http/1.1

0-19-0/0/230.
0.00357134988010.00.0011.18
74.125.215.34http/1.1www.bncursillo.org:80GET /wp/wp-content/uploads/newsletter/thumbnails/2018/07/bncurs

0-19-0/0/241.
0.0035710558290.00.005.19
216.244.66.239http/1.1

0-19-0/0/212.
0.0035715376850.00.004.34
114.119.141.35http/1.1www.aoapracticegrowth.com:80GET /CL-K.php HTTP/1.1

0-19-0/0/236.
0.0035710509350.00.002.97
34.254.53.125http/1.1

0-19-0/0/224.
0.003571859704580.00.008.65
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/224.
0.0035710578960.00.004.85
154.28.229.183http/1.1www.gallery.josephpanizzo.com:4GET / HTTP/1.1

0-19-0/0/236.
0.003571840554910.00.003.83
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/271.
0.003571473513590.00.004.65
209.141.58.11http/1.1www.the100wordproject.com:443POST /wp-login.php HTTP/1.1

0-19-0/0/256.
0.0035710629670.00.002.08
34.254.53.125h2www.gallery.josephpanizzo.com:4[0/0] init

0-19-0/0/238.
0.003571832556670.00.002.26
34.254.53.125http/1.1

0-19-0/0/222.
0.003571842533970.00.005.65
41.249.195.145h2www.eljadidashow.com:443[0/0] init

0-19-0/0/243.
0.0035710470800.00.003.64
209.141.58.11http/1.1

0-19-0/0/217.
0.0035710695760.00.003.79
40.83.2.64http/1.1localhost:443GET /_christmas/herecomessanta/ HTTP/1.1

0-19-0/0/246.
0.0035710553190.00.007.73
216.244.66.249http/1.1

0-19-0/0/209.
0.0035710704070.00.002.82
216.244.66.239http/1.1www.kyaccidentinfo.com:80GET /robots.txt HTTP/1.1

0-19-0/0/205.
0.003571828699250.00.004.58
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/225.
0.0035710635540.00.0021.69
209.160.112.99http/1.1localhost:80HEAD /main HTTP/1.1

0-19-0/0/224.
0.00357101285910.00.003.91
216.244.66.239http/1.1

0-19-0/0/255.
0.0035710546650.00.003.35
74.125.215.38http/1.1

0-19-0/0/234.
0.0035710560100.00.007.25
120.196.186.248http/1.1www.homeinsite.net:80GET / HTTP/1.0

0-19-0/0/228.
0.0035710512820.00.003.67
40.83.2.64http/1.1

0-19-0/0/239.
0.0035711505210.00.005.30
188.121.104.92http/1.1

0-19-0/0/234.
0.0035710524060.00.0014.00
188.40.138.250http/1.1localhost:80GET /wp-content/plugins/ppus/up.php HTTP/1.1

0-19-0/0/237.
0.003571853497020.00.007.44
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/207.
0.00357101282920.00.006.46
85.208.96.197http/1.1www.con-voluted.com:80GET /productjr329625.html HTTP/1.1

0-19-0/0/212.
0.003571246641220.00.005.62
74.125.215.38http/1.1www.bncursillo.org:443GET /wp/?noti=MTI5OzMxO2Q0YzA3NGM2MGM1NzA4N2M5NWZkMGExN2Y5ODYyM

0-19-0/0/206.
0.0035710555920.00.0010.34
216.244.66.239http/1.1www.kyaccidentinfo.com:443GET /robots.txt HTTP/1.1

0-19-0/0/215.
0.0035710502740.00.001.80
137.184.201.29h2www.the100wordproject.com:443[0/0] Software caused connection abort

0-19-0/0/209.
0.00357101148400.00.0014.33
66.249.64.106http/1.1www.rossitergroup.co:443GET /gyrwxfhptk/md-63036.html HTTP/1.1

0-19-0/0/239.
0.003571511512570.00.003.13
210.16.189.15http/1.1www.greekvillaparos.gr:443POST /xmlrpc.php HTTP/1.1

0-19-0/0/217.
0.0035710447330.00.0015.10
34.254.53.125http/1.1

0-19-0/0/230.
0.0035710499960.00.002.47
188.121.104.92http/1.1www.tohealthebroken-hearted.netGET /.env HTTP/1.1

0-19-0/0/218.
0.003571785429320.00.003.51
188.121.104.92http/1.1www.tohealthebroken-hearted.netPOST / HTTP/1.1

0-19-0/0/236.
0.0035710789980.00.004.23
209.160.112.99http/1.1localhost:80HEAD /bk HTTP/1.1

0-19-0/0/220.
0.003571853524240.00.007.40
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/241.
0.0035710502090.00.0013.64
69.65.10.231http/1.1www.tohealthebroken-hearted.netPOST /wp-cron.php?doing_wp_cron=1692131684.93254303932189941406

0-19-0/0/245.
0.0035710586990.00.002.16
188.40.138.250http/1.1

0-19-0/0/235.
0.0035710925600.00.005.30
185.191.171.11http/1.1www.con-voluted.com:80GET /productje2571675.html HTTP/1.1

0-19-0/0/210.
0.0035710565740.00.002.77
120.196.186.248http/1.1www.homeinsite.net:80GET /schedule-online.html HTTP/1.0

0-19-0/0/206.
0.0035710907410.00.003.12
216.244.66.239http/1.1www.kyaccidentinfo.com:80GET /robots.txt HTTP/1.1

0-19-0/0/216.
0.0035710839100.00.004.68
35.88.136.166http/1.1localhost:80POST //wp-admin/css/colors/blue/blue.php?wall=ZWNobyBhRHJpdjQ7Z

Found on 2023-08-15 21:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a0710efb0

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 07-Aug-2023 04:06:24 CDT
Restart Time: Friday, 28-Jul-2023 02:00:23 CDT
Parent Server Config. Generation: 431
Parent Server MPM Generation: 430
Server uptime:  10 days 2 hours 6 minutes 1 second
Server load: 0.25 0.10 0.07
Total accesses: 1204920 - Total Traffic: 14.2 GB - Total Duration: 317976390
CPU Usage: u366.09 s126.05 cu3170.62 cs750.37 - .506% CPU load
1.38 requests/sec - 17.1 kB/second - 12.4 kB/request - 263.898 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02037674no32yes3610282
Sum1032 3610282

R______________W_________________________________________W______
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-43020376740/178/4405R
24.09108197300.00.7652.14
2604:a880:4:1d0::62e:a000http/1.1localhost:80GET / HTTP/1.1

0-43020376740/82/4001_
24.0602477002780.00.9442.34
172.70.85.51h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-43020376740/88/3981_
24.11006689470.01.7245.17
167.71.48.191http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-43020376740/85/4118_
23.81106256660.00.8245.05
172.70.46.31h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/94/3979_
24.13005909350.00.4744.44
167.71.48.191http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-43020376740/86/4031_
23.7102497335780.01.2174.84
172.70.85.51h2localhost:443[0/0] init

0-43020376740/89/3996_
23.97106523800.00.7538.30
172.71.158.157h2localhost:443[0/0] init

0-43020376740/85/4019_
24.150011168180.00.3245.79
167.71.48.191http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-43020376740/92/4212_
23.331015844800.01.6946.48
218.187.84.180h2localhost:443[0/0] init

0-43020376740/97/4046_
23.75016276110.00.5444.27
34.73.211.40http/1.1www.online-hoshuko.com:443GET /classes.html HTTP/1.0

0-43020376740/83/4006_
23.8803617101790.01.8152.93
172.71.182.37h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/87/4102_
24.1402068380530.01.5648.97
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-admin/edit-tags.php?taxonomy=category HTTP/1.1

0-43020376740/81/4419_
24.1201847363080.00.5134.95
172.70.46.37h2localhost:443[2/2] done: stream 3, GET /.vscode/sftp.json

0-43020376740/97/4028_
24.14066985060.00.6392.89
139.59.182.142http/1.1localhost:80GET /server-status HTTP/1.1

0-43020376740/94/4235_
24.12007733190.01.1265.56
218.187.84.180h2localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-43020376741/91/4102W
23.98005838170.01.4039.98
167.71.48.191http/1.1localhost:80GET /server-status HTTP/1.1

0-43020376740/77/3979_
23.9312487919810.00.6333.07
184.100.87.138h2localhost:443[0/0] init

0-43020376740/94/4167_
23.5007666371290.01.5534.81
218.187.84.180h2localhost:443[1/1] done: stream 1, POST /roundcube/?_task=mail&_action=refre

0-43020376740/86/4102_
23.97008010030.00.8736.72
172.70.46.37h2localhost:443[0/0] init

0-43020376740/93/4141_
24.09107232790.02.3569.33
167.71.48.191http/1.1localhost:80GET /.vscode/sftp.json HTTP/1.1

0-43020376740/73/4080_
24.1601915732990.01.2337.63
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.ottolenghillc.co

0-43020376740/108/3970_
24.09106041030.01.7441.50
139.59.182.142http/1.1localhost:80GET /about HTTP/1.1

0-43020376740/75/4026_
24.15007063040.00.7653.12
139.59.182.142http/1.1localhost:80GET /login.action HTTP/1.1

0-43020376740/91/3992_
23.970011397230.00.9936.05
172.71.178.172h2localhost:443[1/1] done: stream 1, GET /about

0-43020376740/121/4024_
23.9607627430500.01.9348.61
192.210.175.159http/1.1

0-43020376740/84/4135_
24.03136184260.02.5749.41
69.65.10.231http/1.1www.the100wordproject.com:443POST /wp-cron.php?doing_wp_cron=1691399176.15137696266174316406

0-43020376740/87/4036_
24.0502538902270.00.8731.38
172.71.102.148h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/95/4247_
23.970011056010.05.4149.04
35.211.206.89http/1.1localhost:80GET / HTTP/1.1

0-43020376740/83/4001_
24.0802467509320.01.7048.33
141.101.76.212h2localhost:443[1/1] done: stream 1, GET /about

0-43020376740/91/3997_
24.0214157087850.01.3147.26
172.71.154.89h2localhost:443[0/0] init

0-43020376740/78/4125_
24.12006848710.01.3538.57
139.59.182.142http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-43020376740/90/3994_
23.9401957255810.01.1965.85
208.109.25.227http/1.1www.seldnwritersgroup.com:443GET /wp-login.php HTTP/1.1

0-43020376740/104/3876_
24.01108019470.00.5539.48
216.244.66.231http/1.1localhost:80GET /robots.txt HTTP/1.1

0-43020376740/90/3908_
23.32106123530.01.3933.77
172.70.46.31h2localhost:443[0/0] init

0-43020376740/95/3960_
24.1011766449690.00.7446.39
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.ottolenghillc.co

0-43020376740/92/3984_
23.62106182240.01.3427.90
192.210.175.159http/1.1

0-43020376740/90/3975_
24.0412806201700.01.7843.42
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/90/3964_
24.10105959210.00.7554.26
167.71.48.191http/1.1localhost:80GET /about HTTP/1.1

0-43020376740/94/3878_
23.62105513310.00.7997.87
172.71.158.157h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/90/4152_
24.09109315420.01.0237.74
2a03:b0c0:1:d0::e2e:7001http/1.1localhost:80GET / HTTP/1.1

0-43020376740/98/4317_
24.1202506356110.01.3653.76
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/86/3885_
24.0912075962790.00.9134.90
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-admin/post-new.php HTTP/1.1

0-43020376740/133/4018_
23.4811805750480.0

Found on 2023-08-07 09:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a9318c2c8

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 07-Aug-2023 04:06:24 CDT
Restart Time: Friday, 28-Jul-2023 02:00:23 CDT
Parent Server Config. Generation: 431
Parent Server MPM Generation: 430
Server uptime:  10 days 2 hours 6 minutes
Server load: 0.25 0.10 0.07
Total accesses: 1204915 - Total Traffic: 14.2 GB - Total Duration: 317975985
CPU Usage: u366.06 s126.05 cu3170.62 cs750.37 - .506% CPU load
1.38 requests/sec - 17.1 kB/second - 12.4 kB/request - 263.899 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02037674no13yes3610121
Sum1013 3610121

___________W_W_______________________________R__________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-43020376740/178/4405_
24.09108197300.00.7652.14
2604:a880:4:1d0::62e:a000http/1.1localhost:80GET / HTTP/1.1

0-43020376740/82/4001_
24.0602477002780.00.9442.34
172.70.85.51h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-43020376740/88/3981_
24.11006689470.01.7245.17
167.71.48.191http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-43020376740/85/4118_
23.81006256660.00.8245.05
172.70.46.31h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/94/3979_
24.13005909350.00.4744.44
167.71.48.191http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-43020376740/86/4031_
23.7102497335780.01.2174.84
172.70.85.51h2localhost:443[0/0] init

0-43020376740/89/3996_
23.97106523800.00.7538.30
172.71.158.157h2localhost:443[0/0] init

0-43020376740/84/4018_
23.851311168180.00.3245.79
172.71.182.37h2localhost:443[0/0] init

0-43020376740/92/4212_
23.330015844800.01.6946.48
218.187.84.180h2localhost:443[0/0] init

0-43020376740/97/4046_
23.75116276110.00.5444.27
34.73.211.40http/1.1www.online-hoshuko.com:443GET /classes.html HTTP/1.0

0-43020376740/83/4006_
23.8813617101790.01.8152.93
172.71.182.37h2localhost:443[1/1] done: stream 1, GET /

0-43020376741/86/4101W
24.05008378470.01.5648.97
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-admin/edit-tags.php?taxonomy=category HTTP/1.1

0-43020376740/81/4419_
24.1201847363080.00.5134.95
172.70.46.37h2localhost:443[2/2] done: stream 3, GET /.vscode/sftp.json

0-43020376741/96/4027W
23.58006985000.00.6192.87
139.59.182.142http/1.1localhost:80GET /server-status HTTP/1.1

0-43020376740/94/4235_
24.12007733190.01.1265.56
218.187.84.180h2localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-43020376740/91/4102_
23.98110235838170.01.4039.98
172.70.91.82h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/77/3979_
23.9302487919810.00.6333.07
184.100.87.138h2localhost:443[0/0] init

0-43020376740/94/4167_
23.5007666371290.01.5534.81
218.187.84.180h2localhost:443[1/1] done: stream 1, POST /roundcube/?_task=mail&_action=refre

0-43020376740/86/4102_
23.97108010030.00.8736.72
172.70.46.37h2localhost:443[0/0] init

0-43020376740/93/4141_
24.09007232790.02.3569.33
167.71.48.191http/1.1localhost:80GET /.vscode/sftp.json HTTP/1.1

0-43020376740/72/4079_
23.59105731070.01.2337.63
172.70.91.82h2localhost:443[0/0] init

0-43020376740/108/3970_
24.09006041030.01.7441.50
139.59.182.142http/1.1localhost:80GET /about HTTP/1.1

0-43020376740/74/4025_
23.7314447063030.00.7653.12
40.77.167.1h2www.kyaccidentinfo.com:443[1/1] done: stream 1, GET /jafid1124555

0-43020376740/91/3992_
23.971011397230.00.9936.05
192.210.175.159http/1.1

0-43020376740/121/4024_
23.9607627430500.01.9348.61
192.210.175.159http/1.1

0-43020376740/84/4135_
24.03036184260.02.5749.41
69.65.10.231http/1.1www.the100wordproject.com:443POST /wp-cron.php?doing_wp_cron=1691399176.15137696266174316406

0-43020376740/87/4036_
24.0502538902270.00.8731.38
172.71.102.148h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/95/4247_
23.971011056010.05.4149.04
35.211.206.89http/1.1localhost:80GET / HTTP/1.1

0-43020376740/83/4001_
24.0812467509320.01.7048.33
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/91/3997_
24.0204157087850.01.3147.26
172.71.154.89h2localhost:443[0/0] init

0-43020376740/78/4125_
24.12006848710.01.3538.57
139.59.182.142http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-43020376740/90/3994_
23.9401957255810.01.1965.85
208.109.25.227http/1.1www.seldnwritersgroup.com:443GET /wp-login.php HTTP/1.1

0-43020376740/104/3876_
24.01008019470.00.5539.48
216.244.66.231http/1.1localhost:80GET /robots.txt HTTP/1.1

0-43020376740/90/3908_
23.32006123530.01.3933.77
172.70.46.31h2localhost:443[0/0] init

0-43020376740/95/3960_
24.1001766449690.00.7446.39
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.ottolenghillc.co

0-43020376740/92/3984_
23.62106182240.01.3427.90
192.210.175.159http/1.1

0-43020376740/90/3975_
24.0402806201700.01.7843.42
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/90/3964_
24.10005959210.00.7554.26
167.71.48.191http/1.1localhost:80GET /about HTTP/1.1

0-43020376740/94/3878_
23.62105513310.00.7997.87
172.71.158.157h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/90/4152_
24.09109315420.01.0237.74
2a03:b0c0:1:d0::e2e:7001http/1.1localhost:80GET / HTTP/1.1

0-43020376740/98/4317_
24.1202506356110.01.3653.76
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/86/3885_
24.0912075962790.00.9134.90
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-admin/post-new.php HTTP/1.1

0-43020376740/133/4018_
23.4801805750480.01.7445.63
40.77.167.195h2www.kyaccidentinfo.com:443[1/1] done: stream 1, GET /c

Found on 2023-08-07 09:05

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.24.129
Domain: nutritionsteps.org
Port: 443
URL: https://nutritionsteps.org

First seen 2023-08-07 09:05
Last seen 2023-09-12 21:18
Open for 36 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a5bafa5cd

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Tuesday, 12-Sep-2023 16:20:43 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 134
Parent Server MPM Generation: 133
Server uptime:  28 days 8 hours 12 minutes 53 seconds
Server load: 0.18 0.47 0.34
Total accesses: 9384520 - Total Traffic: 156.8 GB - Total Duration: 1383474717
CPU Usage: u290.94 s111.9 cu25415.7 cs4192.36 - 1.23% CPU load
3.83 requests/sec - 67.1 kB/second - 17.5 kB/request - 147.421 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
14132712no8yes361051
Sum108 361051

................................................................
________________________________________W___R______________R____
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-133-0/0/61116.
0.0040249487223560.00.001055.94
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /category/insurance/ HTTP/1.1

0-133-0/0/59942.
0.00402089526370.00.001050.98
165.227.197.92http/1.1www.fcbcorlando.org:443POST /xmlrpc.php HTTP/1.1

0-133-0/0/61194.
0.00402086847880.00.001006.73
183.136.225.44http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-133-0/0/59931.
0.0040252388713600.00.00949.56
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/truck/ HTTP/1.1

0-133-0/0/61008.
0.00402109389723000.00.001199.60
94.45.6.108http/1.1www.foxboromom.com:80GET /wp-admin/css/colors/blue/uploader.php HTTP/1.1

0-133-0/0/61716.
0.0040253088721560.00.001112.34
94.46.23.45http/1.1

0-133-0/0/60297.
0.0040265189708390.00.001004.26
37.139.13.81http/1.1www.fcbcorlando.org:443POST /wp-login.php HTTP/1.1

0-133-0/0/60986.
0.00402189907010.00.00985.82
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/PopAustin_files/cms-sh2c.html HTTP/1.1

0-133-0/0/60762.
0.00402087367210.00.001031.13
66.249.77.75http/1.1

0-133-0/0/60022.
0.00402089868010.00.001013.29
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Lunar_files/saved_resource.html HTTP/1.1

0-133-0/0/61380.
0.00402087133480.00.001149.56
66.249.77.75http/1.1www.rossitergroup.co:443GET /uvcyvgolmd/hy-158153569435.html HTTP/1.1

0-133-0/0/60589.
0.0040248492144030.00.00947.66
46.105.97.186http/1.1

0-133-0/0/61202.
0.0040249692036590.00.001074.65
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /page/3/ HTTP/1.1

0-133-0/0/60419.
0.00402187912710.00.001110.82
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Mercury_files/wjDNIDNrTQG.html HTTP/1.1

0-133-0/0/61434.
0.0040249091849540.00.001101.86
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/auto/ HTTP/1.1

0-133-0/0/60142.
0.00402087562550.00.001004.33
135.181.79.106http/1.1www.con-voluted.com:80GET /?productba11688.html HTTP/1.1

0-133-0/0/60152.
0.00402088458320.00.00984.30
183.136.225.44http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-133-0/0/60488.
0.00402088433010.00.00946.84
183.136.225.44http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-133-0/0/60868.
0.00402096289920.00.001008.32
46.105.97.186http/1.1

0-133-0/0/60606.
0.00402168190510310.00.001119.08
17.58.57.105http/1.1www.creativequesters.com:443HEAD /feed/podcast/ HTTP/1.1

0-133-0/0/59660.
0.00402289537930.00.001004.74
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Mercury_files/follow_button.450bd5fbaeab74caf

0-133-0/0/60380.
0.0040251192235390.00.001102.46
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/uninsured-motorists-coverage/ HTTP/1.1

0-133-0/0/59562.
0.0040248190230010.00.001190.61
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/pain/ HTTP/1.1

0-133-0/0/60712.
0.0040249689940050.00.001028.36
165.227.197.92http/1.1

0-133-0/0/60330.
0.00402189195750.00.001030.33
183.136.225.44http/1.1www.ghiblipoodles.com:443GET /js/publishscript/navigationMgr.js HTTP/1.1

0-133-0/0/60404.
0.00402088419370.00.001070.54
66.249.77.75http/1.1www.rossitergroup.co:443GET /yclwy/m191519.html HTTP/1.1

0-133-0/0/59752.
0.0040248388251780.00.00961.58
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/accident/ HTTP/1.1

0-133-0/0/59781.
0.00402089110010.00.001005.17
46.105.97.186http/1.1www.fcbcorlando.org:443POST /xmlrpc.php HTTP/1.1

0-133-0/0/61982.
0.00402193166240.00.001174.90
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Kat_files/wjDNIDNrTQG.html HTTP/1.1

0-133-0/0/60761.
0.0040248293493460.00.001132.25
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /2009/11/ HTTP/1.1

0-133-0/0/60083.
0.00402088824170.00.001017.28
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Lunar_files/placeholder.html HTTP/1.1

0-133-0/0/60177.
0.00402488709390.00.001090.32
183.136.225.44http/1.1www.ghiblipoodles.com:443GET /uikit/js/jquery-1.11.3.min.js HTTP/1.1

0-133-0/0/60593.
0.00402088641990.00.001034.51
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Mercury_files/saved_resource.html HTTP/1.1

0-133-0/0/60489.
0.00402189927150.00.001052.54
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Kat_files/like(1).html HTTP/1.1

0-133-0/0/59356.
0.0040220787745220.00.00929.72
51.91.151.60http/1.1www.penyourmasterpiece.com:443POST /wp-login.php HTTP/1.1

0-133-0/0/60090.
0.0040248388327180.00.00990.74
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/property/ HTTP/1.1

0-133-0/0/61576.
0.0040247891832330.00.001099.33
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /2019/06/ HTTP/1.1

0-133-0/0/60930.
0.00402090906470.00.001080.10
178.175.142.18http/1.1localhost:80GET /wp-login.php HTTP/1.1

0-133-0/0/59841.
0.0040247690822910.00.00989.60
184.154.139.3http/1.1www.kyaccidentinfo.com:443GET /tag/parking/ HTTP/1.1

0-133-0/0/60733.
0.00402089487540.00.001083.37
135.181.79.106http/1.1www.con-voluted.com:80GET /?productba1202088.html HTTP/1.1

0-133-0/0/60545.
0.00402189565540.00.001112.58
192.99.13.69http/1.1www.adelaandea.com:443GET /reviews/2015/Kat_files/wjDNIDNrTQG(1).html HTTP/1.1

0-133-0/0/59821.
0.00402086069350.00.00981.21
85.208.96.211

Found on 2023-09-12 21:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a117a9c6e

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 10-Sep-2023 06:58:54 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 130
Parent Server MPM Generation: 129
Server uptime:  25 days 22 hours 51 minutes 4 seconds
Server load: 0.21 0.22 0.22
Total accesses: 8793240 - Total Traffic: 146.9 GB - Total Duration: 1330035087
CPU Usage: u305.74 s110.68 cu24015.3 cs3948.99 - 1.27% CPU load
3.92 requests/sec - 68.7 kB/second - 17.5 kB/request - 151.257 ms/request
1 requests currently being processed, 127 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01460386no1yes064001
21425951no6yes163051
Sum207 1127052

________________________________________________________________
................................................................
________________________________R_______________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12914603860/32/57563_
7.192084116530.00.12964.95
172.70.251.208h2localhost:443[0/0] init

0-12914603860/26/56303_
7.1011946386581710.00.41983.22
45.136.118.143http/1.1www.christina-howell.com:443POST /wp-login.php HTTP/1.1

0-12914603860/32/57347_
6.87131084064110.00.12953.91
86.167.48.169h2www.memoirmentors.com:443[1/1] done: stream 15, GET /

0-12914603860/41/56367_
7.37233885887750.00.67903.25
172.70.251.208h2localhost:443[2/2] done: stream 3, GET /.vscode/sftp.json

0-12914603860/40/57445_
7.2883386646030.00.101140.04
69.65.10.231http/1.1www.creativequesters.com:443POST /wp-cron.php?doing_wp_cron=1694347050.03465795516967773437

0-12914603860/32/57624_
7.08122386064960.00.131035.67
107.152.11.62h2www.bncursillo.org:443[0/0] read: stream 0,  

0-12914603860/31/56647_
7.23131386506090.00.13948.77
69.65.10.231http/1.1www.casinogamesonline.com:443POST /wp-cron.php?doing_wp_cron=1694347002.93754601478576660156

0-12914603860/28/57310_
7.1351085068800.00.12932.76
70.55.83.7h2www.villagedesbasprix.com:443[1/1] done: stream 15, POST /webmail/?_task=mail&_action=refres

0-12914603860/29/56680_
6.5583084232230.00.16946.26
23.95.218.242http/1.1

0-12914603860/31/56451_
7.314921087155420.00.24943.58
70.55.83.7http/1.1www.villagedesbasprix.com:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-12914603860/32/57669_
7.366584041360.00.111095.70
119.247.179.61http/1.1www.fcbcorlando.org:443GET /apple-touch-icon-120x120.png HTTP/2.0

0-12914603860/35/56831_
7.368188624010.00.26884.04
85.208.96.203http/1.1www.chrisgossett.com:443GET /2010_NFL_Predictions_Wild_Card_Round.htm HTTP/1.1

0-12914603860/28/57550_
7.25115088813300.00.101005.14
107.152.11.62http/1.1www.bncursillo.org:443GET /cursillistas/signup/cursillo-signup.php?event=291 HTTP/2.0

0-12914603860/28/56607_
6.6984084781600.00.571043.00
23.95.218.242http/1.1

0-12914603860/38/57434_
6.9511088961600.00.241039.96
119.247.179.61h2www.fcbcorlando.org:443[0/0] init

0-12914603860/19/56362_
7.3328584491870.00.07934.07
114.119.133.237http/1.1www.draftboardguru.com:443GET /wkyo36880yorange-benri/draftboardguru.com HTTP/1.1

0-12914603860/40/56564_
7.03124084762880.00.19905.88
86.167.48.169h2www.memoirmentors.com:443[3/3] done: stream 19, GET /wp-content/et-cache/218/et-divi-dyn

0-12914603860/31/56880_
7.138325285079630.00.15895.05
45.199.132.131http/1.1www.ottolenghillc.com:80POST /topics/log-in?login=bounced HTTP/1.1

0-12914603860/40/56862_
7.09121092720010.00.16944.33
107.152.11.62h2www.bncursillo.org:443[1/1] done: stream 1, GET /wp/?nltr=MTMxOzExNTE7aHR0cDovL2JuY3V

0-12914603860/37/56356_
7.2786087596450.00.38940.39
114.119.136.88http/1.1www.laxitateyourself.com:443GET /gemmation2015712.html HTTP/1.1

0-12914603860/78/56037_
6.806086249210.00.45915.21
194.169.175.26http/1.1

0-12914603860/32/56661_
7.144918389564280.00.551044.18
154.202.111.115http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.ottolenghillc.co

0-12914603860/29/55796_
6.5011086514380.00.141135.38
216.244.66.226http/1.1

0-12914603860/44/57105_
7.2787087091480.00.74960.46
93.123.118.21http/1.1www.creativequesters.com:80GET /wp-content/plugins/classic-editor/wp-login.php HTTP/1.1

0-12914603860/38/56638_
7.1511386391040.00.51967.20
69.65.10.231http/1.1www.gofindglow.com:443POST /wp-cron.php?doing_wp_cron=1694346951.77516794204711914062

0-12914603860/40/56767_
7.2687085031500.00.461021.51
93.123.118.21http/1.1www.bncursillo.org:80GET /wp-content/plugins/seoo/alfa-ioxi.php HTTP/1.1

0-12914603860/36/56144_
6.5010084987860.01.53903.16
119.247.179.61h2www.fcbcorlando.org:443[1/1] done: stream 1, GET /apple-touch-icon-120x120-precomposed

0-12914603860/28/56279_
7.192085695420.00.07913.92
66.249.65.42http/1.1www.osmondebbe.com:443GET /uikit/css/components/form-select.min.css HTTP/1.1

0-12914603860/32/58166_
6.54117089031460.00.541116.80
51.89.22.139http/1.1www.csla.com:80HEAD /bk HTTP/1.1

0-12914603860/41/56685_
7.0113376590708260.00.181072.09
93.123.118.21http/1.1www.creativequesters.com:443GET /ioxi-rex4.php7 HTTP/1.1

0-12914603860/45/56426_
7.03123085152980.00.58967.92
46.101.103.192h2localhost:443[0/0] Software caused connection abort

0-12914603860/35/56478_
7.1285085100310.00.111022.08
213.152.161.15http/1.1www.creativequesters.com:443POST /xmlrpc.php HTTP/2.0

0-12914603860/32/57091_
6.6786086170960.00.11975.46
142.93.209.24http/1.1

0-12914603860/32/56944_
7.21133586724250.00.13988.83
114.119.131.14http/1.1www.draftboardguru.com:443GET /wkyo370snanshindo/draftboardguru.com HTTP/1.1

0-12914603860/37/55956_
6.66117084403770.00.16879.66
107.152.11.62h2www.bncursillo.org:443[0/0] init

0-12914603860/40/56410_
7.1351085499350.00.21906.29
70.55.83.7h2www.villagedesbasprix.com:443[0/0] init

0-12914603860/38/57861_
6.63122088022190.00.131045.16
209.126.3.222http/1.1shared.domain:80GET / HTTP/1.1

0-12914603860/35/57373_
7.187088117590.00.111037.14
194.169.175.26http/1.1localhost:443GET /wp-content/plugins/press/wp-class.php HTTP/1.1

0-12914603860/30/56236_
6.5485087551140.00.11931.59
213.152.161.15h2www.creativequesters.com:443[1/1] done: stream 1, POST /xmlrpc.php

0-12914603860/408/57022_
6.66117086503680.014.881026.49
107.152.11.62h2www.bncursillo.org:443[1/1] done: stream 1, GET /cursillistas/signup/cursillo-signup

Found on 2023-09-10 11:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a0ecf4dcd

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Wednesday, 06-Sep-2023 17:48:20 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 119
Parent Server MPM Generation: 118
Server uptime:  22 days 9 hours 40 minutes 31 seconds
Server load: 0.12 0.10 0.09
Total accesses: 7893520 - Total Traffic: 132.2 GB - Total Duration: 1248906283
CPU Usage: u272.15 s98.6 cu21833.6 cs3564.98 - 1.33% CPU load
4.08 requests/sec - 71.6 kB/second - 17.6 kB/request - 158.219 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
11350578no4yes361120
Sum104 361120

................................................................
__R__________________________R_________________________R________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-118-0/0/51964.
0.003688079300470.00.00873.10
114.119.131.253http/1.1www.laxitateyourself.com:443GET /groaning2025156.html HTTP/1.1

0-118-0/0/50640.
0.003688081529690.00.00804.38
167.99.94.234h2www.iamdmicrofinance.com:443[1/1] done: stream 1, GET /

0-118-0/0/51496.
0.003688079491060.00.00831.69
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /images/vmenublockheader.png HTTP/1.1

0-118-0/0/50548.
0.003688081219010.00.00814.81
70.55.83.7http/1.1www.villagedesbasprix.com:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-118-0/0/51450.
0.003688081783020.00.001007.96
160.238.137.179http/1.1localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-118-0/0/51135.
0.003688079675900.00.00905.18
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /images/page_gl.png HTTP/1.1

0-118-0/0/50693.
0.003688080153020.00.00849.26
104.140.148.106h2localhost:443[0/0] Software caused connection abort

0-118-0/0/51561.
0.003688080036080.00.00840.25
76.90.146.85http/1.1www.karinoza45.com:80GET /indexanibarraarriba3.gif HTTP/1.1

0-118-0/0/50717.
0.003688079694710.00.00850.02
104.140.148.106http/1.1

0-118-0/0/50486.
0.003688082437780.00.00781.38
104.140.148.106http/1.1

0-118-0/0/51766.
0.003688078984720.00.00998.12
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /images/subitem.png HTTP/1.1

0-118-0/0/51170.
0.003688083805470.00.00792.70
160.238.137.179h2localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-118-0/0/51614.
0.003688081721420.00.00902.27
66.249.75.78http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1896684 HTTP/2.0

0-118-0/0/50889.
0.003688079379720.00.00936.99
66.249.75.78http/1.1www.tampere-charter-buses.citytGET /mah.php?product=400841 HTTP/2.0

0-118-0/0/51741.
0.003688084570820.00.00951.90
66.175.44.25http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-118-0/0/50824.
0.003688079206290.00.00835.13
66.249.75.78http/1.1www.tampere-charter-buses.citytGET /mah.php?product=807481 HTTP/2.0

0-118-0/0/50763.
0.00368832879891330.00.00807.09
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /images/header.jpg HTTP/1.1

0-118-0/0/51177.
0.003688080509910.00.00793.78
104.140.148.106h2localhost:443[0/0] Software caused connection abort

0-118-0/0/50908.
0.003688484373270.00.00789.83
69.162.124.230http/1.1www.ecologytechnologyinc.com:80HEAD / HTTP/1.1

0-118-0/0/50914.
0.003688082937980.00.00866.12
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /favicon.ico HTTP/1.1

0-118-0/0/50291.
0.003688081542470.00.00774.01
66.249.75.78h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=1728976

0-118-0/0/50681.
0.003688084569680.00.00957.90
167.99.94.234h2www.iamdmicrofinance.com:443GET / HTTP/2.0

0-118-0/0/50060.
0.003688082234850.00.001058.18
66.249.75.78h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/51260.
0.003688081306330.00.00867.36
66.249.75.78h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=1896684

0-118-0/0/51028.
0.00368863181930060.00.00852.26
66.249.75.78h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=630215

0-118-0/0/51002.
0.003688080164090.00.00922.83
66.249.75.78h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/50402.
0.00368835280705670.00.00818.68
66.249.75.78http/1.1www.tampere-charter-buses.citytGET /ibqzfjvuvo/scripts/mail.js HTTP/2.0

0-118-0/0/50480.
0.003688080871600.00.00828.51
37.139.53.65http/1.1localhost:80GET / HTTP/1.0

0-118-0/0/52087.
0.003688084400380.00.001031.88
66.175.44.25http/1.1

0-118-0/0/50768.
0.003688685232070.00.00975.28
104.140.148.106h2localhost:443[0/0] Software caused connection abort

0-118-0/0/50412.
0.003688080315730.00.00883.44
76.90.146.85http/1.1

0-118-0/0/50836.
0.003688080146420.00.00944.84
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /images/button.png HTTP/1.1

0-118-0/0/51475.
0.003688081627360.00.00860.09
141.148.205.245http/1.1www.foxboromom.com:80POST /xmlrpc.php HTTP/1.1

0-118-0/0/50850.
0.003688082261150.00.00877.15
104.140.148.106http/1.1localhost:443GET /UEPs HTTP/1.1

0-118-0/0/50143.
0.003688079690680.00.00807.84
66.249.75.78h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/50764.
0.00368836480512180.00.00832.19
107.189.8.33http/1.1www.stefkaspiegel.com:443GET /wp-login.php HTTP/1.1

0-118-0/0/52164.
0.003688081028290.00.00961.50
37.139.53.65http/1.1localhost:80GET /home/photos/?unapproved=292&moderation-hash=4ee763b269bd79

0-118-0/0/51599.
0.0036887683366180.00.00957.30
167.99.94.234h2www.iamdmicrofinance.com:443[0/0] init

0-118-0/0/50655.
0.003688082391350.00.00829.13
66.249.75.78h2www.tampere-charter-buses.cityt[0/0] init

0-118-0/0/50837.
0.003688081851550.00.00948.80
104.140.148.106h2localhost:443[0/0] Software caused connection abort

0-118-0/0/51144.
0.003688080386830.00.00994.65
94.66.136.142http/1.1www.leonidas-hotel.co:80GET /images/header.jpg HTTP/1.1

0-118-0/0/50284.
0.003688078035730.00.00786.01
66.249.75.78h2www.tampere-charter-buses.cityt[2/2] done: stream 3, GET /ibqzfjvuvo/hy-1089641.html

0-118-

Found on 2023-09-06 22:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ad0f1a3e4

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 03-Sep-2023 17:35:19 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 108
Parent Server MPM Generation: 107
Server uptime:  19 days 9 hours 27 minutes 29 seconds
Server load: 0.35 0.17 0.11
Total accesses: 7023466 - Total Traffic: 118.4 GB - Total Duration: 1184803756
CPU Usage: u233.11 s86.11 cu19764.6 cs3191.52 - 1.39% CPU load
4.19 requests/sec - 74.1 kB/second - 17.7 kB/request - 168.692 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
12169606no11yes163091
Sum1011 163091

................................................................
_______________________________________R________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-107-0/0/46649.
0.001513076136490.00.00808.01
18.143.108.22http/1.1localhost:80GET /webmail HTTP/1.1

0-107-0/0/45732.
0.001513077894220.00.00737.48
64.124.8.28http/1.1

0-107-0/0/46493.
0.001513075798500.00.00741.07
216.244.66.226http/1.1

0-107-0/0/45718.
0.001513077802380.00.00689.98
50.31.152.196http/1.1localhost:80GET / HTTP/1.0

0-107-0/0/46568.
0.001513078368110.00.00917.38
66.249.69.132h2www.tampere-charter-buses.cityt[0/0] init

0-107-0/0/46294.
0.00151346276486840.00.00835.44
195.154.81.77http/1.1www.christina-howell.com:443POST /wp-login.php HTTP/1.1

0-107-0/0/45891.
0.001513076533450.00.00774.02
66.249.69.133h2www.tampere-charter-buses.cityt[0/0] init

0-107-0/0/46550.
0.001513076410120.00.00781.44
66.249.69.132h2www.tampere-charter-buses.cityt[5/5] done: stream 9, GET /mah.php?product=119235

0-107-0/0/45989.
0.001513076663500.00.00783.44
66.249.69.131h2www.tampere-charter-buses.cityt[4/4] done: stream 7, GET /mah.php?product=221467

0-107-0/0/45613.
0.001513178288790.00.00706.39
66.249.69.131h2www.tampere-charter-buses.cityt[8/8] done: stream 15, GET /mah.php?product=1666018

0-107-0/0/46571.
0.001513075444520.00.00905.86
66.249.69.131http/1.1www.tampere-charter-buses.citytGET /mah.php?product=992489 HTTP/2.0

0-107-0/0/46423.
0.001513079628560.00.00700.71
216.244.66.226http/1.1

0-107-0/0/46374.
0.001513077266360.00.00764.29
195.154.81.77http/1.1www.christina-howell.com:80POST /xmlrpc.php HTTP/1.1

0-107-0/0/46072.
0.001513075977530.00.00860.62
207.180.253.168http/1.1localhost:80GET /wp-login.php HTTP/1.1

0-107-0/0/46563.
0.00151346880970510.00.00857.67
66.249.69.131h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=1714062

0-107-0/0/46066.
0.00151399674712880.00.00760.16
66.249.69.132h2www.tampere-charter-buses.cityt[6/6] done: stream 11, GET /mah.php?product=1757800

0-107-0/0/45855.
0.001513076924190.00.00737.98
52.167.144.21http/1.1localhost:443GET /firstnames-oneletter.php?firstchar=J&tree=sidenblad HTTP/2

0-107-0/0/45992.
0.001513076973810.00.00721.15
216.244.66.194http/1.1www.adelaandea.com:443GET /reviews/2011/MAD_files/quant000.js HTTP/1.1

0-107-0/0/46117.
0.001513081179300.00.00729.81
216.244.66.226http/1.1www.advintechs.com:80GET /well-known/acme-challenge/h/i/i/?C=N;O=A HTTP/1.1

0-107-0/0/46082.
0.001513078562700.00.00804.81
216.244.66.226http/1.1www.advintechs.com:80GET /well-known/acme-challenge/f/b/f/?C=D;O=A HTTP/1.1

0-107-0/0/45339.
0.001513076843770.00.00691.38
64.124.8.28http/1.1

0-107-0/0/45796.
0.001513080136380.00.00880.11
66.249.69.131http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1031086 HTTP/2.0

0-107-0/0/45334.
0.001513078777510.00.00938.47
66.249.69.133http/1.1www.tampere-charter-buses.citytGET /mah.php?product=979213 HTTP/2.0

0-107-0/0/46517.
0.001513077815430.00.00788.98
185.191.171.17http/1.1www.con-voluted.com:80GET /productjc2518825.html HTTP/1.1

0-107-0/0/46270.
0.001513078209410.00.00788.54
195.154.81.77http/1.1www.christina-howell.com:80GET /wp-login.php HTTP/1.1

0-107-0/0/46148.
0.001513076413230.00.00833.03
172.68.174.147h2localhost:443[1/1] done: stream 1, GET /wp-login.php

0-107-0/0/45660.
0.001513076872010.00.00751.53
85.208.98.18h2www.10in1.org:443[0/0] Software caused connection abort

0-107-0/0/45853.
0.001513075495580.00.00754.16
66.249.69.131h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=772566

0-107-0/0/47060.
0.001513079980480.00.00940.49
216.244.66.226http/1.1www.advintechs.com:80GET /well-known/acme-challenge/h/a/h/?C=M;O=A HTTP/1.1

0-107-0/0/45933.
0.001513080858930.00.00895.41
216.244.66.226http/1.1www.advintechs.com:80GET /well-known/acme-challenge/c/g/f/k/ HTTP/1.1

0-107-0/0/45573.
0.001513076546440.00.00810.34
66.249.69.133h2www.tampere-charter-buses.cityt[1/1] done: stream 1, GET /mah.php?product=979213

0-107-0/0/46126.
0.001513076552930.00.00893.34
66.249.69.132h2www.tampere-charter-buses.cityt[4/4] done: stream 7, GET /mah.php?product=913927

0-107-0/0/46602.
0.001513077995350.00.00786.32
162.158.78.57h2localhost:443[1/1] done: stream 1, GET /firstnames-oneletter.php?firstchar=J

0-107-0/0/46002.
0.00151351777379890.00.00768.63
66.249.69.131h2www.tampere-charter-buses.cityt[2/2] done: stream 3, GET /mah.php?product=1240676

0-107-0/0/45259.
0.001513076167920.00.00739.88
66.249.69.131h2www.tampere-charter-buses.cityt[3/3] done: stream 5, GET /mah.php?product=1114107

0-107-0/0/45937.
0.00151328477170410.00.00741.98
66.249.69.131h2www.tampere-charter-buses.cityt[9/9] done: stream 17, GET /mah.php?product=992489

0-107-0/0/47353.
0.001513077430790.00.00902.52
66.249.69.133h2www.tampere-charter-buses.cityt[0/0] init

0-107-0/0/46392.
0.001513080087650.00.00832.96
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /mah.php?product=330598 HTTP/2.0

0-107-0/0/45810.
0.001513078482500.00.00773.81
18.143.108.22http/1.1localhost:80GET /webmail/ HTTP/1.1

0-107-0/0/46032.
0.001513077550120.00.00872.10
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /mah.php?product=1719768 HTTP/2.0

0-107-0/0/46081.
0.001513576907050.00.00933.49
216.244.66.194http/1.1

0-107-0/0/45447.
0.00151307399

Found on 2023-09-03 22:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aa199c758

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Thursday, 31-Aug-2023 11:23:00 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime:  16 days 3 hours 15 minutes 11 seconds
Server load: 0.53 0.35 0.24
Total accesses: 4903039 - Total Traffic: 72.0 GB - Total Duration: 901825873
CPU Usage: u301.03 s86.5 cu14872.9 cs2282.76 - 1.26% CPU load
3.52 requests/sec - 54.2 kB/second - 15.4 kB/request - 183.932 ms/request
3 requests currently being processed, 125 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02294814no2yes262001
52294820no2yes163200
Sum204 3125201

______________________________________________W___R_____________
................................................................
................................................................
................................................................
................................................................
____________________________________________________________W___
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-9922948140/88/32133_
41.784056967520.00.72528.48
134.209.110.133http/1.1localhost:80GET /misc/ajax.js HTTP/1.1

0-9922948140/99/31269_
40.4211301958567450.00.58426.54
51.222.253.3h2www.online-hoshuko.com:443[0/0] init

0-9922948140/95/31620_
41.75540156847240.00.84446.48
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/96/30842_
41.223058059540.00.72404.53
134.209.110.133http/1.1www.ishanghainyc.com:80GET /view-source: HTTP/1.1

0-9922948140/91/32036_
41.46841959614750.00.51605.52
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/99/31703_
41.13646156960940.00.46503.47
66.147.238.28http/1.1

0-9922948140/119/31293_
41.82339957314350.01.28473.51
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/96/31940_
41.591356724570.00.83479.55
69.65.10.231http/1.1www.aasiadrivingschool.com:443POST /wp-cron.php?doing_wp_cron=1693498965.66576194763183593750

0-9922948140/108/31460_
41.6311057351050.00.52432.49
87.236.176.92http/1.1localhost:443GET / HTTP/1.1

0-9922948140/93/31197_
41.3912057777310.01.22421.60
139.59.182.142http/1.1localhost:443GET /debug/default/view?panel=config HTTP/1.1

0-9922948140/94/31992_
41.4010056529320.00.35552.44
51.222.253.3http/1.1www.online-hoshuko.com:443GET / HTTP/2.0

0-9922948140/122/31766_
41.38052960456730.01.08439.47
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/99/31696_
41.80349557536780.02.44501.33
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/143/31418_
41.901156322830.01.10523.38
69.65.10.231http/1.1www.jimrush.net:443POST /wp/wp-cron.php?doing_wp_cron=1693498979.70310306549072265

0-9922948140/95/31776_
41.67847761311790.01.31473.87
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/127/31525_
41.58156756227240.01.17464.35
69.65.10.231http/1.1www.jasondurall.com:80POST /wp-cron.php?doing_wp_cron=1693498964.50613689422607421875

0-9922948140/120/31467_
41.726058203120.01.02443.13
134.209.110.133http/1.1localhost:80GET /misc/ajax.js HTTP/1.1

0-9922948140/87/31245_
41.775058084800.00.95422.01
134.209.110.133http/1.1localhost:80GET /administrator/index.php HTTP/1.1

0-9922948140/122/31662_
41.69852562003170.01.22386.66
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/109/31517_
40.934059332320.01.81503.43
66.249.69.131http/1.1

0-9922948140/100/30998_
41.803058095050.00.66430.73
134.209.110.133http/1.1www.jimrush.net:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

0-9922948140/130/31445_
41.14563361798500.01.90601.12
134.209.110.133http/1.1www.interface-imcs.com:443GET /view-source: HTTP/1.1

0-9922948140/89/31126_
40.237144359445500.00.36641.97
134.209.110.133http/1.1

0-9922948140/102/32273_
40.361058270270.00.92497.88
139.59.182.142h2localhost:443[0/0] Software caused connection abort

0-9922948140/116/31739_
41.679059073220.00.58505.24
134.209.110.133http/1.1localhost:80GET /view-source: HTTP/1.1

0-9922948140/105/31760_
41.706057653410.02.06453.37
134.209.110.133http/1.1localhost:80GET /view-source: HTTP/1.1

0-9922948140/163/31432_
40.865058147440.01.28477.21
134.209.110.133http/1.1

0-9922948140/90/31384_
40.410156999020.02.11469.81
172.70.230.147h2localhost:443[1/1] done: stream 1, GET /about

0-9922948140/94/32142_
40.371060630210.01.16538.15
139.59.182.142h2localhost:443[0/0] Software caused connection abort

0-9922948140/103/31418_
41.19441261867540.00.78584.40
134.209.110.133http/1.1

0-9922948140/104/31055_
41.630310657199240.00.39483.10
172.70.230.106h2localhost:443[0/0] init

0-9922948140/98/31630_
41.232057952170.01.36517.85
134.209.110.133http/1.1www.ishanghainyc.com:80GET /misc/ajax.js HTTP/1.1

0-9922948140/145/32083_
41.707059214740.01.07492.88
134.209.110.133http/1.1localhost:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

0-9922948140/97/31513_
40.99039158419700.00.58431.31
172.70.230.147h2localhost:443[0/0] init

0-9922948140/92/30843_
41.651042357294100.00.58467.19
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/102/31587_
41.910058181920.00.72449.98
66.249.75.107http/1.1www.rossitergroup.co:443GET /jwonbmenu-1072988.html/o/B290213 HTTP/1.1

0-9922948140/120/32289_
41.0312058581780.00.66574.43
134.209.110.133http/1.1

0-9922948140/115/31683_
41.72646860395060.01.96524.86
74.249.233.66http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-9922948140/110/31255_
41.57249359563830.00.84448.05
51.79.242.152http/1.1

0-9922948140/108/31663_
40.798058305820.00.64562.62
139.144.150.26http/1.1localhost:443GET / HTTP/1.1

0-9922948140/99/31462_
40.934057574260.00.39522.47
134.209.110.133http/1.1

0-9922948140/114/30859_
40.4210055373320.01.58405.71
51.222.253.3h2www.online-hoshuko.com:443[1/1] done: stream 1, GET /

0-9922948140/105/31411_
41.774439

Found on 2023-08-31 16:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ada4deeaf

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Tuesday, 29-Aug-2023 20:20:06 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 83
Parent Server MPM Generation: 82
Server uptime:  14 days 12 hours 12 minutes 17 seconds
Server load: 0.70 1.17 1.16
Total accesses: 4270179 - Total Traffic: 64.5 GB - Total Duration: 733542771
CPU Usage: u185.6 s66.77 cu12961.3 cs1995.63 - 1.21% CPU load
3.41 requests/sec - 53.9 kB/second - 15.8 kB/request - 171.783 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0325174no11yes361272
Sum1011 361272

________________________________________R__________R___________R
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-823251740/133/28231_
20.48040045382380.00.82458.44
172.70.86.62h2localhost:443[0/0] init

0-823251740/124/27273_
20.07231246755300.00.73382.21
172.64.238.23h2localhost:443[0/0] init

0-823251740/122/27644_
19.73050544758840.00.78414.69
172.64.238.83h2localhost:443[0/0] init

0-823251740/127/26949_
20.020046397940.00.86364.45
66.249.69.102http/1.1

0-823251740/132/28165_
20.540048284740.00.79572.02
82.223.118.56http/1.1localhost:443GET /sidenbladfamily.co.tgz HTTP/2.0

0-823251740/129/27688_
20.450045593160.01.09463.09
172.64.238.149h2localhost:443[1/1] done: stream 1, GET /www.sidenbladfamily.com.gz

0-823251740/120/27311_
20.292046607050.00.72439.55
82.223.118.56http/1.1localhost:443GET /sidenbladfami.tgz HTTP/2.0

0-823251740/123/27950_
20.311045825860.00.78445.67
66.249.69.102http/1.1

0-823251740/122/27218_
20.61040745764250.00.73388.04
128.199.199.216http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-823251740/116/27238_
20.601047060560.00.65380.56
139.144.150.26http/1.1localhost:443GET /.vscode/sftp.json HTTP/2.0

0-823251740/135/28068_
20.43248945236260.00.84505.86
144.126.198.24h2localhost:443[0/0] Software caused connection abort

0-823251740/146/27662_
20.572047808210.04.79392.35
66.249.69.102http/1.1www.con-voluted.com:443GET /?productyj2547060.html HTTP/1.1

0-823251740/135/27417_
20.352045993560.00.81454.79
144.126.198.24h2localhost:443[0/0] Software caused connection abort

0-823251740/129/27449_
20.60173245165080.02.27483.40
82.223.118.56http/1.1localhost:443GET /sidenbladfamily.com.rar HTTP/2.0

0-823251740/118/27854_
19.39140447322970.01.53444.09
141.101.99.164h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-823251740/119/27498_
20.440044246660.00.73398.59
172.64.238.149h2localhost:443[0/0] init

0-823251740/116/27456_
20.61048146982000.00.67387.87
139.144.150.26http/1.1localhost:443GET /about HTTP/2.0

0-823251740/125/27387_
20.502155446560120.01.00393.48
185.193.113.155http/1.1www.commonhive.com:80GET /wp-login.php HTTP/1.1

0-823251740/128/27336_
20.16140949778300.00.85336.04
172.70.86.65h2localhost:443[0/0] init

0-823251740/127/27527_
20.620046434220.00.78466.74
82.223.118.56http/1.1localhost:443GET /www.sidenbladfamily.com.tar HTTP/2.0

0-823251740/116/27105_
20.501046879820.00.71392.61
141.101.99.164h2localhost:443[0/0] init

0-823251740/122/27539_
20.58241549928100.01.42562.28
139.144.150.26http/1.1localhost:443GET / HTTP/2.0

0-823251740/120/27162_
20.44140547471680.00.75570.32
172.64.238.70h2localhost:443[1/1] done: stream 1, GET /www.sidenbladfamily.com.tgz

0-823251740/128/28210_
20.330046979890.00.77446.49
141.101.98.60h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-823251740/141/27667_
20.362046914360.00.85474.11
82.223.118.56http/1.1localhost:443GET /sidenbladfamily.tar HTTP/2.0

0-823251740/127/27644_
20.50140846524410.00.77408.38
82.223.118.56http/1.1localhost:443GET /sidenbladfamily.co.zip HTTP/2.0

0-823251740/130/27313_
19.61135146589630.01.50418.15
172.70.86.65h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-823251740/130/27478_
19.95050244872710.00.94430.48
144.126.198.24h2localhost:443[0/0] Software caused connection abort

0-823251740/137/28112_
20.480048390090.01.33505.79
82.223.118.56http/1.1localhost:443GET /sidenbladfamily.c.tgz HTTP/2.0

0-823251740/127/27463_
20.581050272280.00.86542.95
85.114.138.220http/1.1localhost:80GET /wp-content/uploads/xl2023.php HTTP/1.1

0-823251740/129/26994_
20.19040546468560.01.25390.06
172.68.134.153h2localhost:443[0/0] init

0-823251740/141/27643_
20.531046441600.00.83470.80
5.199.136.71http/1.1localhost:80GET /wp-includes/blocks/cover/ HTTP/1.1

0-823251740/130/27995_
20.22246947564950.01.00453.86
172.70.57.147h2localhost:443[0/0] init

0-823251740/125/27594_
20.620046588230.00.76397.90
66.249.69.102http/1.1www.con-voluted.com:443GET /?productnc2944729.html HTTP/1.1

0-823251740/117/26812_
20.29194246019100.00.74418.21
172.64.236.24h2localhost:443[0/0] init

0-823251740/124/27664_
20.51142047181790.00.75411.80
128.199.199.216http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-823251740/118/28295_
20.58241246291140.05.04542.38
128.199.199.216http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-823251740/131/27709_
20.581048590390.01.76421.11
82.223.118.56http/1.1localhost:443GET /sidenbladfamily.com.tgz HTTP/2.0

0-823251740/135/27331_
20.43141048405640.00.87416.16
172.70.85.231h2localhost:443[0/0] init

0-823251740/125/27629_
20.620046908930.01.08515.43
5.199.136.71http/1.1localhost:80GET /wp-includes/blocks/embed/ HTTP/1.1

0-823251740/133/27383R
20.202045449010.00.98471.99
172.70.86.62h2localhost:443[1/0] schedule: stream 1, GET /server-status

0-823251740/131/26912_
20.62043544431320.02.76374.77
139.144.150.26http/1.1localhost:443GET /debug/default/view?panel=config HTTP/2.0

0-823251740/133/27539_
19.78150346803110.01.01368.58
144.126.198.24http/1.1

Found on 2023-08-30 01:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a543ecd93

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 28-Aug-2023 15:35:41 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 71
Parent Server MPM Generation: 70
Server uptime:  13 days 7 hours 27 minutes 52 seconds
Server load: 1.32 1.27 1.47
Total accesses: 3839190 - Total Traffic: 58.4 GB - Total Duration: 661956386
CPU Usage: u176.49 s62.75 cu11644.1 cs1788.99 - 1.19% CPU load
3.34 requests/sec - 53.2 kB/second - 15.9 kB/request - 172.421 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
13166044no9yes361051
Sum109 361051

................................................................
_______________W________________R______________________________W
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-70-0/0/25801.
0.00150941741586230.00.00426.94
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24974.
0.00150942342791180.00.00354.06
160.238.137.179h2localhost:443[1/1] done: stream 1, POST /roundcube/?_task=mail&_action=refre

0-70-0/0/25384.
0.00150943441101550.00.00389.70
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24693.
0.00150925142374550.00.00341.38
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25896.
0.00150938544216420.00.00529.32
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25364.
0.001509041689260.00.00438.41
66.249.72.200http/1.1www.structdynamics.com:443GET /item/m6931943395 HTTP/1.1

0-70-0/0/24897.
0.00150925142646160.00.00418.37
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25680.
0.00150940342106280.00.00421.65
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24872.
0.00150941041580160.00.00353.00
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24903.
0.00150941543050100.00.00340.03
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25724.
0.00150943140985730.00.00456.32
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25360.
0.00150942743856730.00.00364.08
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25209.
0.001509041937960.00.00422.63
85.208.96.198http/1.1www.con-voluted.com:80GET /productnx2053604.html HTTP/1.1

0-70-0/0/25185.
0.00150942541438130.00.00448.98
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25521.
0.00150925343548810.00.00409.16
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25259.
0.00150938040352340.00.00376.01
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25251.
0.00150925843321930.00.00359.30
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25050.
0.00150925842402530.00.00363.48
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24992.
0.00150942045647020.00.00306.91
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25206.
0.00150937442238680.00.00440.45
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24859.
0.001509042856250.00.00352.25
123.149.78.113http/1.1www.sports-news.betowi.com:443GET /robots.txt HTTP/1.1

0-70-0/0/25267.
0.00150943145824690.00.00536.21
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24864.
0.00150925343599810.00.00490.47
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25974.
0.00150939642855580.00.00414.13
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25332.
0.001509042961110.00.00446.45
66.249.70.97http/1.1www.173tw.com.tw:443GET /robots.txt HTTP/1.1

0-70-0/0/25220.
0.00150924942607470.00.00382.84
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24967.
0.00150958941970470.00.00393.24
24.108.106.119http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-70-0/0/25175.
0.00150957141047330.00.00396.07
185.74.252.10http/1.1www.birthchoicewake.org:443GET /wp-login.php HTTP/1.1

0-70-0/0/25784.
0.001509140744534300.00.00474.46
114.119.141.40http/1.1www.greekvillaparos.gr:443GET / HTTP/1.1

0-70-0/0/25029.
0.00150925946398130.00.00509.19
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/24682.
0.00150942142467980.00.00355.50
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25341.
0.00150925342552530.00.00433.45
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25725.
0.00150925243388230.00.00425.10
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25153.
0.00150942242605000.00.00373.41
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24559.
0.00150938042212930.00.00384.03
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/25379.
0.00150942343236350.00.00378.34
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25871.
0.00150957542163710.00.00506.21
185.74.252.10http/1.1www.birthchoicewake.org:443GET /wp-login.php HTTP/1.1

0-70-0/0/25454.
0.00150939044447490.00.00390.48
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24921.
0.00150944344095070.00.00378.02
74.249.212.206http/1.1www.zacforsman.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25309.
0.00150924642863940.00.00487.42
23.101.126.83http/1.1www.kyaccidentinfo.com:443POST //xmlrpc.php HTTP/1.1

0-70-0/0/25002.
0.00150937541478700.00.00402.49
20.9.30.67http/1.1www.straytup.com:80POST /blog/wp-login.php HTTP/1.1

0-70-0/0/24643.
0.00150941640523850.00.00338.44
74.249.212.206http/1.1www.zacforsman.com:44

Found on 2023-08-28 20:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aa9214f82

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 27-Aug-2023 16:04:00 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 69
Parent Server MPM Generation: 68
Server uptime:  12 days 7 hours 56 minutes 11 seconds
Server load: 0.06 0.12 0.16
Total accesses: 3416369 - Total Traffic: 53.7 GB - Total Duration: 575553055
CPU Usage: u146.96 s53.27 cu10419.6 cs1596.19 - 1.15% CPU load
3.21 requests/sec - 52.8 kB/second - 16.5 kB/request - 168.469 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01931860no5yes361020
Sum105 361020

_______R______W_R_______________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-6819318600/9/23099_
5.55049835633690.00.05404.25
41.207.201.111http/1.1

0-6819318600/13/22353_
6.44349836914870.00.07328.87
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/10/22700_
6.49139435455300.00.05349.01
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/8/22177_
6.390036821160.00.03310.27
95.163.100.207http/1.1localhost:80GET /wp-22.php?sfilename=on.php&sfilecontent=<%3F%3D409723%2A20

0-6819318600/9/23202_
5.760036958100.00.04504.70
172.69.70.147h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-6819318600/13/22715_
6.140035906300.00.05408.26
41.207.201.111http/1.1localhost:80GET /xmlrpc.php HTTP/1.1

0-6819318600/11/22442_
6.33078036583420.00.09379.38
172.71.22.161h2localhost:443[1/1] done: stream 1, GET /

0-6819318600/15/22835R
5.334036346820.00.07381.62
172.69.70.172h2localhost:443[1/0] schedule: stream 1, GET /server-status

0-6819318600/9/22262_
6.281159435665320.00.04319.28
90.156.168.105http/1.1www.commonhive.com:80GET /wp-22.php?sfilename=on.php&sfilecontent=<%3F%3D409723%2A20

0-6819318600/13/22326_
6.551237450640.00.07314.74
20.15.240.85http/1.1www.draftboardguru.com:443GET /bxgv21542a647og.html HTTP/1.1

0-6819318600/10/22820_
6.350035342850.00.03421.61
66.249.72.238http/1.1www.cbplayground.com:443GET /r/Y1325972 HTTP/1.1

0-6819318600/10/22730_
6.47239037913160.00.05335.46
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/10/22576_
5.59039836007880.00.05375.18
172.69.70.172h2localhost:443[0/0] init

0-6819318600/8/22452_
5.79250535640720.00.04418.32
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318601/8/22278W
5.560038026860.00.04368.03
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/11/22649_
6.22252434957240.00.06349.55
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/10/22511R
6.16440537685600.00.04331.86
104.43.161.68http/1.1

0-6819318600/8/22552_
3.550036574530.00.03343.40
54.36.148.30h2www.gahpa.com:443[0/0] init

0-6819318600/11/22291_
5.86137939048130.00.07280.98
172.71.30.65h2localhost:443[1/1] done: stream 1, GET /

0-6819318600/15/22536_
6.27139836316640.00.08398.43
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/13/22353_
6.311236804450.00.06329.26
20.15.240.85http/1.1www.draftboardguru.com:443GET /ncmb30879dc-6rbd.htm HTTP/1.1

0-6819318600/10/22499_
6.21239940037460.00.04484.70
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/9/22084_
5.13340237808830.00.04449.47
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/11/23351_
6.45238636966760.00.05384.38
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/12/22846_
6.24239037160800.00.05417.13
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/10/22706_
6.44338236605660.00.06341.15
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/16/22425_
6.39050435768520.00.08363.65
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/11/22599_
5.812035253520.00.05365.39
66.249.72.6http/1.1localhost:80GET /robots.txt HTTP/1.1

0-6819318600/12/22645_
6.261038575350.00.05411.38
123.126.50.109http/1.1www.blackrangeobservatory.awkmlGET / HTTP/1.1

0-6819318600/11/22326_
6.551140869770.00.06431.04
69.65.10.231http/1.1www.the100wordproject.com:443POST /wp-cron.php?doing_wp_cron=1693170239.53263592720031738281

0-6819318600/12/21991_
5.37351336801950.00.10329.51
66.249.72.238http/1.1

0-6819318600/11/22850_
6.35039636679450.00.07401.80
172.71.30.9h2localhost:443[1/1] done: stream 1, GET /about

0-6819318600/10/23112_
6.28138937466890.00.06400.05
172.71.30.65h2localhost:443[0/0] init

0-6819318600/18/22568_
6.01349536877640.00.11346.32
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/11/21947_
6.27180636124760.00.05358.29
69.65.10.231http/1.1www.commonhive.com:80POST /wp-cron.php?doing_wp_cron=1693170232.17904305458068847656

0-6819318600/13/22730_
6.31140737298320.00.07350.45
20.15.240.85http/1.1

0-6819318600/12/23145_
5.89039036236720.00.06481.73
52.167.144.189h2www.adelaandea.com:443[0/0] init

0-6819318600/10/22926_
6.28151638893300.00.05354.00
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/14/22354_
6.18440638222250.00.07352.79
40.122.169.163http/1.1www.gofindglow.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/10/22627_
6.49250636269140.00.06454.66
104.43.161.68http/1.1www.the100wordproject.com:443POST //xmlrpc.php HTTP/1.1

0-6819318600/9/22520_
6.492235766550.00.26380.13
172.100.171.75http/1.1localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-6819318600/10/22095_
6.14038634716290.00.05305.99
172.69.70.147h2localhost:443[0/0] init

0-68</

Found on 2023-08-27 21:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a13b27da9

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Saturday, 26-Aug-2023 14:16:40 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 65
Parent Server MPM Generation: 64
Server uptime:  11 days 6 hours 8 minutes 50 seconds
Server load: 0.28 0.20 0.17
Total accesses: 3132381 - Total Traffic: 49.4 GB - Total Duration: 522973026
CPU Usage: u148.53 s51.65 cu9427.77 cs1448.21 - 1.14% CPU load
3.22 requests/sec - 53.3 kB/second - 16.5 kB/request - 166.957 ms/request
2 requests currently being processed, 62 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0698117no2yes262101
Sum102 262101

________________________________________________________R______R
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-646981170/91/21231_
18.240432599370.00.86372.38
172.70.114.177h2localhost:443[0/0] init

0-646981170/69/20494_
18.707133699730.00.35307.01
213.202.211.149http/1.1

0-646981170/81/20865_
19.0112031633890.00.48322.56
114.119.146.179http/1.1localhost:80GET /contact/short-and-long-term-storage/custom-crating-service

0-646981170/71/20326_
18.74115733154410.01.57290.20
66.249.72.238http/1.1

0-646981170/125/21016_
18.960033874910.00.54466.63
162.158.154.5h2localhost:443[0/0] init

0-646981170/70/20889_
18.706032834160.00.58377.68
20.15.240.85http/1.1

0-646981170/70/20566_
18.960633586330.02.66341.12
162.158.155.29h2localhost:443[1/1] done: stream 1, GET /

0-646981170/80/20789_
19.027032314000.01.91348.30
185.174.159.245http/1.1www.1mrd.com:80GET /webalizer/usage_201604.html HTTP/1.0

0-646981170/73/20383_
19.043032683960.00.43292.48
86.31.102.3h2localhost:443[5/5] done: stream 7, GET /roundcube/program/js/tinymce/tinymce

0-646981170/80/20545_
19.026034316680.01.05292.88
123.183.224.24http/1.1shared.domain:80GET /?wpsc_product_category=men&paged=3 HTTP/1.1

0-646981170/66/20956_
18.970031952230.01.16397.22
66.249.72.238http/1.1www.cbplayground.com:443GET /r/P1793781 HTTP/1.1

0-646981170/73/20893_
18.73055634055850.00.35313.18
86.31.102.3h2localhost:443[0/0] init

0-646981170/84/20689_
18.97065932389550.03.55341.40
172.70.110.58h2localhost:443[1/1] done: stream 1, GET /debug/default/view?panel=config

0-646981170/100/20295_
18.94090732420820.02.67361.96
20.15.240.85http/1.1

0-646981170/76/20374_
18.941034116630.02.41308.59
69.65.10.231http/1.1www.tohealthebroken-hearted.netPOST /wp-cron.php?doing_wp_cron=1693077380.61793303489685058593

0-646981170/65/20297_
18.7511131917820.00.57307.65
20.15.240.85http/1.1

0-646981170/74/20576_
19.110134281410.00.30307.82
86.31.102.3h2localhost:443POST /roundcube/?_task=mail&_action=autocomplete HTTP/2.0

0-646981170/67/20776_
19.000033569450.01.94311.12
66.249.79.35http/1.1www.rossitergroup.co:443GET /lpnkemenu-714058.html HTTP/1.1

0-646981170/79/20415_
18.980235936720.01.80252.67
114.119.146.16http/1.1www.draftboardguru.com:443GET /xefg24868yar-shop/draftboardguru.com HTTP/1.1

0-646981170/75/20491_
18.900033121460.00.59358.98
172.70.114.177h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-646981170/70/20388_
18.93438833664340.01.55297.25
86.31.102.3h2localhost:443[1/1] done: stream 1, GET /roundcube/?_task=mail&_action=compos

0-646981170/79/20648_
18.93487136363010.00.59455.36
86.31.102.3h2localhost:443[2/2] done: stream 3, GET /roundcube/?_task=mail&_action=compos

0-646981170/69/20206_
18.900034239360.01.96422.33
162.158.158.191h2localhost:443[0/0] init

0-646981170/100/21356_
18.96060333578660.02.18351.47
152.228.213.76http/1.1www.tohealthebroken-hearted.netGET //wp-includes/wlwmanifest.xml HTTP/1.1

0-646981170/83/20912_
19.070133739730.02.78384.59
20.15.240.85http/1.1www.draftboardguru.com:443GET /igpg16359rs-21fg.htm HTTP/1.1

0-646981170/78/20771_
18.934033322820.00.84308.63
213.202.211.149http/1.1www.christina-howell.com:80GET /wp-includes/js/dist/vendor/ HTTP/1.1

0-646981170/86/20632_
18.6610032819360.01.34336.49
51.222.253.1h2localhost:443[0/0] init

0-646981170/75/20713_
18.4310131997440.01.81334.63
20.15.240.85http/1.1www.draftboardguru.com:443GET /tvfd13027nop1-dsbdn- HTTP/1.1

0-646981170/84/20718_
18.810035004000.00.80349.13
172.70.110.150h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-646981170/90/20521_
18.940036923650.01.06410.88
162.158.154.172h2localhost:443[1/1] done: stream 1, GET /

0-646981170/79/20163_
18.560933474410.00.88308.80
86.31.102.3h2localhost:443[2/2] done: stream 3, POST /roundcube/?_task=mail&_action=autoc

0-646981170/67/20934_
18.710033098280.00.79367.18
94.156.6.167http/1.1

0-646981170/73/21072_
18.614334356070.010.17368.48
86.31.102.3h2localhost:443[0/0] init

0-646981170/86/20614_
18.940033427190.01.08311.43
35.86.85.177http/1.1www.boundandbroken.com:443GET /favicon.ico HTTP/1.1

0-646981170/61/20108_
18.6610032866170.01.25335.96
66.249.72.200http/1.1

0-646981170/81/20857_
19.0211133962040.02.38323.73
20.15.240.85http/1.1www.draftboardguru.com:443GET /flpu34502m24202.html HTTP/1.1

0-646981170/86/21227_
18.936032924800.00.86456.97
185.191.171.6http/1.1www.con-voluted.com:80GET /productin1501599.html HTTP/1.1

0-646981170/82/21062_
18.98067535701270.02.20338.01
152.228.213.76http/1.1www.tohealthebroken-hearted.netGET //wp-login.php HTTP/1.1

0-646981170/69/20528_
18.9006334658170.00.67328.23
162.158.158.191h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-646981170/79/20612_
18.400033249800.01.92428.14
162.158.154.48h2localhost:443[0/0] init

0-646981170/111/20557_
18.99081331442400.01.39337.97
81.88.52.143http/1.1www.the100wordproject.com:443POST /xmlrpc.php HTTP/1.1

0-646981170/82/20177_
18.710031824760.01.71281.73
162.158.154.172h2localhost:443[0/0] init

0-646981170/58/20636_
18.990333284330.00.6228

Found on 2023-08-26 19:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a7180f6f3

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Friday, 25-Aug-2023 07:37:42 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 64
Parent Server MPM Generation: 63
Server uptime:  9 days 23 hours 29 minutes 53 seconds
Server load: 0.02 0.08 0.14
Total accesses: 2832097 - Total Traffic: 44.9 GB - Total Duration: 479630170
CPU Usage: u155.28 s51.28 cu8512.11 cs1303.58 - 1.16% CPU load
3.28 requests/sec - 54.6 kB/second - 16.6 kB/request - 169.355 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
13459395no5yes163050
Sum105 163050

................................................................
__________________________________________________L_____________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-63-0/0/18773.
0.00411776429514540.00.00339.84
34.215.190.224http/1.1

0-63-0/0/18148.
0.004117030501790.00.00282.40
216.244.66.238http/1.1localhost:80GET /ak-koyachoppv-0045/ HTTP/1.1

0-63-0/0/18440.
0.004117028643140.00.00270.77
52.167.144.206h2www.erandalln.com:443[0/0] init

0-63-0/0/17957.
0.004117151029867010.00.00258.14
216.244.66.238http/1.1

0-63-0/0/18640.
0.004117030507820.00.00437.74
183.136.225.46http/1.1localhost:80GET /plugins/revolution/js/extensions/revolution.extension.navi

0-63-0/0/18630.
0.004117029742700.00.00353.90
183.136.225.46http/1.1localhost:80GET /plugins/revolution/js/extensions/revolution.extension.migr

0-63-0/0/17980.
0.004117029754020.00.00298.80
66.249.69.132http/1.1

0-63-0/0/18336.
0.004117029141080.00.00314.12
216.244.66.238http/1.1localhost:80GET /ai-outsideppv-0268/ HTTP/1.1

0-63-0/0/18091.
0.004117029599170.00.00265.71
216.244.66.238http/1.1

0-63-0/0/18260.
0.004117031340550.00.00263.13
183.136.225.46http/1.1

0-63-0/0/18547.
0.00411734329291770.00.00356.37
66.249.69.132http/1.1www.tampere-charter-buses.citytGET /semokijbuc/xo-1125485.html HTTP/1.1

0-63-0/0/18423.
0.004117030921310.00.00274.21
183.136.225.46http/1.1localhost:80GET /plugins/revolution/js/extensions/revolution.extension.caro

0-63-0/0/18321.
0.004117029413170.00.00305.48
216.244.66.238http/1.1

0-63-0/0/17889.
0.004117129164930.00.00334.23
216.244.66.238http/1.1

0-63-0/0/17893.
0.004117031048490.00.00269.72
216.244.66.238http/1.1

0-63-0/0/17766.
0.004117028933700.00.00279.56
51.81.242.4h2www.creativequesters.com:443GET /feed/podcast/ HTTP/2.0

0-63-0/0/18264.
0.004117031202800.00.00277.91
216.244.66.238http/1.1localhost:80GET /ar-arenappv-0012/ HTTP/1.1

0-63-0/0/18340.
0.004117030367770.00.00274.91
216.244.66.238http/1.1localhost:80GET /ai-apappv-0076/ HTTP/1.1

0-63-0/0/17984.
0.004117032675050.00.00227.35
66.249.72.238http/1.1

0-63-0/0/17917.
0.004117030320680.00.00286.46
216.244.66.238http/1.1

0-63-0/0/18031.
0.004117030595290.00.00267.06
188.68.217.102http/1.1

0-63-0/0/18196.
0.004117033361410.00.00414.45
216.244.66.238http/1.1localhost:80GET /an-anymateppv-0005/ HTTP/1.1

0-63-0/0/17878.
0.004117030649670.00.00337.66
51.81.242.4h2www.creativequesters.com:443[1/1] done: stream 1, GET /feed/podcast/

0-63-0/0/18947.
0.004117030387430.00.00312.97
216.244.66.238http/1.1localhost:80GET /an-kirinppv-0067/ HTTP/1.1

0-63-0/0/18431.
0.004117030628730.00.00346.22
52.167.144.206h2www.erandalln.com:443GET /shopping/home.html HTTP/2.0

0-63-0/0/18367.
0.004117030323810.00.00264.26
183.136.225.46http/1.1localhost:80GET /favicon.ico HTTP/1.1

0-63-0/0/18266.
0.004117029979300.00.00284.52
183.136.225.46http/1.1localhost:80GET /plugins/revolution/js/extensions/revolution.extension.laye

0-63-0/0/18351.
0.0041175529144740.00.00308.34
216.244.66.238http/1.1

0-63-0/0/18319.
0.004117031636100.00.00317.84
183.136.225.46http/1.1localhost:80GET /plugins/jquery-1.12.4/jquery-1.12.4.min.js HTTP/1.1

0-63-0/0/18161.
0.004117034011890.00.00371.23
216.244.66.238http/1.1localhost:80GET /ap-actressppv-0107/ HTTP/1.1

0-63-0/0/17848.
0.004117030362160.00.00278.65
216.244.66.238http/1.1localhost:80GET /aj-naniwappv-0148/ HTTP/1.1

0-63-0/0/18676.
0.004117030134490.00.00338.33
51.81.242.4h2www.creativequesters.com:443[0/0] init

0-63-0/0/18535.
0.004117031205070.00.00315.98
216.244.66.238http/1.1

0-63-0/0/18297.
0.004117030127730.00.00276.05
85.208.96.198http/1.1www.con-voluted.com:80GET /productfl305942.html HTTP/1.1

0-63-0/0/17774.
0.004117030027900.00.00302.31
183.136.225.46http/1.1www.everyonetherapy.com:80GET /favicon.ico HTTP/1.1

0-63-0/0/18539.
0.004117030855260.00.00291.38
216.244.66.238http/1.1

0-63-0/0/18907.
0.004117029716320.00.00427.07
216.244.66.238http/1.1localhost:80GET /aj-naniwappv-0154/ HTTP/1.1

0-63-0/0/18302.
0.004117031010540.00.00308.22
216.244.66.238http/1.1localhost:80GET /af-waapppv-0283/ HTTP/1.1

0-63-0/0/18215.
0.004117031478750.00.00304.85
66.249.72.238http/1.1www.cbplayground.com:443GET /r/C1257960 HTTP/1.1

0-63-0/0/18148.
0.004117030158240.00.00380.22
216.244.66.238http/1.1localhost:80GET /ap-actressppv-0084/ HTTP/1.1

0-63-0/0/18210.
0.00411763728352180.00.00302.12
34.215.190.224http/1.1www.greekvillaparos.gr:443GET / HTTP/1.1

0-63-0/0/17810.
0.004117029030840.00.00251.35
52.167.144.206h2www.erandalln.com:443[1/1] done: stream 1, GET /shopping/home.html

0-63-0/0/18299.
0.004117530173570.00.00255.21
114.119.153.112http/1.1www.draftboardguru.com:443GET /stlm8647b9044pm HTTP/1.1

0-63-0/0/18465.
0.004117030357560.00.00410.28
183.136.225.46http/1.1localhost:80GET /robots.txt HTTP/1.1

0-63-0/0/18308.
0.004117829658830.0

Found on 2023-08-25 12:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a2c8fbbe7

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Thursday, 24-Aug-2023 07:23:41 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 63
Parent Server MPM Generation: 62
Server uptime:  8 days 23 hours 15 minutes 51 seconds
Server load: 0.14 0.19 0.13
Total accesses: 2576242 - Total Traffic: 40.8 GB - Total Duration: 440451871
CPU Usage: u144.52 s48.31 cu7807.8 cs1188.56 - 1.19% CPU load
3.32 requests/sec - 55.1 kB/second - 16.6 kB/request - 170.967 ms/request
1 requests currently being processed, 127 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02295329no0yes064000
52295335no9yes163043
Sum209 1127043

________________________________________________________________
................................................................
................................................................
................................................................
................................................................
___________________R____________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-6222953290/16/17026_
5.1183027107700.00.04315.79
95.108.213.172http/1.1www.press-releases.sbo.ag:80GET / HTTP/1.1

0-6222953290/20/16341_
4.6575128041630.00.51249.08
66.249.75.68http/1.1

0-6222953290/17/16572_
5.1475326806880.00.06248.35
69.65.10.231http/1.1www.casinogamesonline.com:443POST /wp-cron.php?doing_wp_cron=1692879744.89460110664367675781

0-6222953290/15/16104_
4.8073027568010.00.82234.22
66.249.72.238http/1.1www.cbplayground.com:443GET /item/m3441590799 HTTP/1.1

0-6222953290/21/16881_
5.0234028371120.00.13413.76
216.244.66.231http/1.1

0-6222953290/25/16575_
4.8996327533370.00.08316.61
69.65.10.231http/1.1www.magiceducation.es:443POST /wp-cron.php?doing_wp_cron=1692879622.65103197097778320312

0-6222953290/19/16243_
4.8433327601060.01.34276.25
69.65.10.231http/1.1www.casinogamesonline.com:443POST /wp-cron.php?doing_wp_cron=1692879585.12383103370666503906

0-6222953290/15/16656_
4.5337126943500.00.09292.96
20.172.187.165http/1.1

0-6222953290/22/16124_
4.7135127494970.00.48245.79
68.183.201.61h2localhost:443[0/0] Software caused connection abort

0-6222953290/15/16349_
4.6732128648130.00.08231.78
157.90.209.77http/1.1www.rovaniemi-coach-travel.cityGET /rent-a-coach-harnosand.html HTTP/1.1

0-6222953290/20/16758_
5.1732026868160.00.58327.44
188.68.217.102http/1.1www.alviniaagency.com:80GET /favicon.ico HTTP/1.1

0-6222953290/20/16599_
5.0996328445430.00.07251.74
70.55.83.7http/1.1www.villagedesbasprix.com:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-6222953290/19/16513_
5.191127233800.01.86278.17
51.222.253.13http/1.1www.karinoza45.com:80GET /ElDiaDelAmor.htm HTTP/1.1

0-6222953290/19/16195_
5.1732026745130.00.08294.35
114.119.156.175http/1.1www.laxitateyourself.com:443GET /lora1213773.html HTTP/1.1

0-6222953290/15/16101_
4.860328065430.00.12244.98
199.30.231.5http/1.1

0-6222953290/18/15861_
4.8430426435900.00.82243.12
162.55.85.218http/1.1www.hhsclassof66.com:80GET /guestbook/gbook.php?a=reply&num=2 HTTP/1.1

0-6222953290/21/16554_
4.7330029049490.01.57257.12
162.55.85.218http/1.1www.hhsclassof66.com:80GET /class2016/DSC_0007.html HTTP/1.1

0-6222953290/23/16572_
4.851178827925750.00.40251.82
69.65.10.231http/1.1www.commonhive.com:80POST /wp-cron.php?doing_wp_cron=1692879590.62057304382324218750

0-6222953290/19/16247_
5.0310430512900.00.04198.90
162.55.85.218http/1.1www.hhsclassof66.com:80GET /guestbook/gbook.php?a=viewprivate&num=9 HTTP/1.1

0-6222953290/23/16140_
4.86190828431470.00.12265.42
51.222.253.13http/1.1

0-6222953290/15/16182_
5.07111928395530.00.15236.21
185.191.171.7http/1.1www.larrywiki.com:443GET /wpn/HiNet(5_11_2023%205_18_08%20AM).html HTTP/1.1

0-6222953290/20/16346_
5.05111431433080.00.05265.06
162.55.85.218http/1.1www.hhsclassof66.com:80GET /guestbook/gbook.php?page=4 HTTP/1.1

0-6222953290/17/16121_
4.699872127823330.00.15288.80
70.55.83.7h2www.villagedesbasprix.com:443[0/0] init

0-6222953290/17/17157_
4.75109028217100.00.05290.60
162.55.85.218http/1.1www.hhsclassof66.com:80GET /class2016/DSC_0299.html HTTP/1.1

0-6222953290/18/16656_
5.0511434128219420.00.06313.79
188.68.217.102http/1.1www.allthingzspirit.com:443GET /favicon.ico HTTP/2.0

0-6222953290/21/16581_
5.0797027893530.00.07227.95
66.55.64.96http/1.1localhost:80GET /wp-includes/SimplePie/index.php HTTP/1.1

0-6222953290/18/16293_
4.87114027060220.00.05258.04
66.55.64.96http/1.1localhost:80GET /xmlrpc.php HTTP/1.1

0-6222953290/16/16504_
4.74111026702160.00.06282.13
70.55.83.7h2www.villagedesbasprix.com:443[0/0] init

0-6222953290/18/16618_
4.7082029267480.00.79298.12
70.55.83.7h2www.villagedesbasprix.com:443[1/1] done: stream 15, POST /webmail/?_task=mail&_action=refres

0-6222953290/15/16405_
4.68109131667390.00.05353.33
66.249.72.225http/1.1

0-6222953290/21/16133_
4.7697127320440.00.07254.20
157.90.209.77http/1.1www.rovaniemi-coach-travel.cityGET /sightseeing-tours-rovaniemi.html HTTP/1.1

0-6222953290/21/16807_
4.909390528045020.06.38307.10
96.233.61.243h2localhost:443[0/0] Software caused connection abort

0-6222953290/16/16777_
4.6996029013420.00.13286.44
185.74.210.250h2www.brockie.fo:443[0/0] Software caused connection abort

0-6222953290/17/16503_
4.6097127660370.00.06249.92
66.55.64.96http/1.1

0-6222953290/19/16031_
4.589842927907710.01.17280.25
70.55.83.7h2www.villagedesbasprix.com:443[1/1] done: stream 15, POST /webmail/?_task=mail&_action=refres

0-6222953290/20/16771_
4.7796028740910.00.08258.48
162.55.85.218http/1.1www.hhsclassof66.com:80GET /guestbook.php HTTP/1.1

0-6222953290/20/16859_
5.1093027353320.00.09401.11
66.249.72.238http/1.1www.cbplayground.com:443GET /r/W10864 HTTP/1.1

0-6222953290/20/16430_
4.8898428791540.00.09270.97
70.55.83.7h2www.villagedesbasprix.com:443[1/1] done: stream 15, POST /webmail/?_task=mail&_action=refres

0-6222953290/15/16492_
5.10908429418720.00.04265.81
178.62.207.191http/1.1www.customaccesssolutions.co.ukGET / HTTP/1.1

0-6222953290/14/16368_
4.95805728084390.00.15259.94
114.119.157.234http/1.1www.greekvillaparos.com:443GET /ugolovno-ispolnitelnoe-pravo/magazin-gloriya-dzhins-mozhno

0-6222953290/18/16330_
4.9580026050970.00.83278.33
149.102.238.160http/1.1</

Found on 2023-08-24 12:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1ad2ac7f8b

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Wednesday, 23-Aug-2023 01:10:47 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 52
Parent Server MPM Generation: 51
Server uptime:  7 days 17 hours 2 minutes 57 seconds
Server load: 1.34 1.29 1.10
Total accesses: 2198146 - Total Traffic: 34.8 GB - Total Duration: 344283755
CPU Usage: u142.98 s43.43 cu6410.36 cs998.33 - 1.14% CPU load
3.3 requests/sec - 54.7 kB/second - 16.6 kB/request - 156.625 ms/request
2 requests currently being processed, 62 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0500800no2yes262010
Sum102 262010

_____________________________________W______R___________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-515008000/192/14729_
46.58023922404970.01.83279.94
162.158.154.140h2localhost:443[0/0] init

0-515008000/168/13873_
45.86236723268010.00.65208.80
172.69.254.69http/1.1

0-515008000/181/14335_
46.28323622172980.01.84211.11
172.69.254.69http/1.1

0-515008000/201/13870_
46.644221937020.01.51196.98
3.224.220.101http/1.1www.aandea.com:80GET /reviews/2017/artmaze.html HTTP/1.1

0-515008000/195/14695_
46.59024523544020.02.97275.48
162.158.154.140h2localhost:443[1/1] done: stream 1, GET /

0-515008000/184/14374_
46.65323722466400.02.47252.23
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/172/14127_
46.384022915400.02.88247.45
57.128.17.219http/1.1www.fouracrefarm.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/190/14351_
46.360022458240.07.76253.25
57.128.17.219http/1.1www.fouracrefarm.com:80GET / HTTP/1.1

0-515008000/180/13881_
46.370022449040.01.75222.17
172.70.111.151h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-515008000/227/14123_
46.54474923523800.02.61204.33
90.161.165.113h2www.magiceducation.es:443[0/0] init

0-515008000/199/14573_
46.571022390670.01.60294.99
114.119.142.84http/1.1www.eljadidashow.com:443GET /robots.txt HTTP/1.1

0-515008000/190/14384_
46.553022427130.03.30211.36
172.69.254.69http/1.1

0-515008000/187/14231_
46.644021906730.02.36229.95
113.207.1.133http/1.1localhost:80GET /photos/tajrish-player.jpg HTTP/1.1

0-515008000/165/13988_
46.64323621609510.00.93252.53
90.161.165.113h2www.magiceducation.es:443[2/2] done: stream 3, POST /wp-admin/admin-ajax.php?_fs_blog_ad

0-515008000/171/13999_
46.46050123415890.02.95218.80
69.65.10.231http/1.1www.greekvillaparos.gr:443POST /wp-cron.php?doing_wp_cron=1692771026.35108995437622070312

0-515008000/160/13678_
46.44011821450380.01.44214.84
195.171.52.95http/1.1www.dcflow.com:80GET /index.php/administrator/ HTTP/1.1

0-515008000/174/14332_
46.58024124123230.00.96227.03
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/219/14403_
46.61083823040510.02.41217.74
172.70.110.97h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-515008000/201/13926_
46.64424421569340.01.52176.63
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/186/13972_
46.555022377930.00.99239.67
123.126.50.88http/1.1www.10in1.org:80GET / HTTP/1.1

0-515008000/182/13858_
46.60024723686370.01.22198.40
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/169/14087_
46.44023226894960.01.42236.07
172.70.111.14h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-515008000/242/14066_
46.464022898540.02.98256.86
90.161.165.113h2www.magiceducation.es:443[3/3] done: stream 5, POST /wp-admin/admin-ajax.php?_fs_blog_ad

0-515008000/173/14485_
46.494023423680.01.24231.19
164.90.222.93http/1.1localhost:80GET /v2/_catalog HTTP/1.1

0-515008000/298/14422_
46.540622615580.04.06293.01
172.70.110.120h2localhost:443[0/0] init

0-515008000/237/14440_
46.503022635150.03.42204.49
164.90.222.93http/1.1localhost:80GET /login.action HTTP/1.1

0-515008000/277/14029_
46.384022181160.02.92236.27
57.128.17.219http/1.1www.fouracrefarm.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1

0-515008000/274/14210_
45.87224121854740.01.86252.32
172.71.142.72h2localhost:443[0/0] init

0-515008000/171/14435_
46.61023424206780.02.01259.60
172.70.111.151h2localhost:443[0/0] init

0-515008000/194/14113_
46.530025807810.06.03325.18
172.70.111.95h2localhost:443[0/0] init

0-515008000/190/13837_
46.661522322450.01.74227.56
3.224.220.101http/1.1www.aandea.com:80GET /reviews/2015/PopAustin.html HTTP/1.1

0-515008000/182/14396_
46.494022148270.01.58261.37
164.90.222.93http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-515008000/185/14650_
46.54024224034010.01.25264.77
172.70.115.2h2localhost:443[1/1] done: stream 1, GET /debug/default/view?panel=config

0-515008000/161/14324_
46.512022912350.05.54222.51
51.222.253.5h2www.tajhiz.net:443[0/0] init

0-515008000/188/13917_
46.59024423254790.01.39257.27
90.161.165.113h2www.magiceducation.es:443POST /wp-admin/admin-ajax.php?_fs_blog_admin=true HTTP/2.0

0-515008000/182/14619_
46.66224023676090.04.45236.12
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/183/14700_
46.570021999450.04.67377.81
162.158.155.49h2localhost:443[1/1] done: stream 1, GET /

0-515008001/176/14205W
46.530023447810.02.22234.44
165.232.173.104http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-515008000/178/14050_
46.610224483760.02.09232.19
172.70.110.97h2localhost:443[0/0] init

0-515008000/189/14162_
46.42023023284110.02.19226.36
162.158.155.49h2localhost:443[0/0] init

0-515008000/186/14256_
46.494221521440.02.80245.52
113.207.1.133http/1.1

0-515008000/195/13777_
46.680121892340.01.29191.08
51.222.253.14http/1.1www.tajhiz.net:443GET / HTTP/2.0

0-515008000/205/14256_
46.2920230953

Found on 2023-08-23 06:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a239818d6

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 21-Aug-2023 08:02:30 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 49
Parent Server MPM Generation: 48
Server uptime:  5 days 23 hours 54 minutes 40 seconds
Server load: 0.12 0.15 0.11
Total accesses: 1794705 - Total Traffic: 28.3 GB - Total Duration: 285491970
CPU Usage: u118.29 s36.46 cu5263.01 cs814.89 - 1.2% CPU load
3.46 requests/sec - 57.2 kB/second - 16.5 kB/request - 159.075 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03086392no5yes163140
Sum105 163140

__________________________R_____________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4830863920/84/11432_
28.172017330280.01.55221.66
181.168.52.98http/1.1localhost:80GET /wp-content/uploads/2013/09/paypal-retirar-a-banco-300x238.

0-4830863920/104/11063_
27.9613018554190.01.26175.69
37.139.53.75http/1.1localhost:80GET / HTTP/1.0

0-4830863920/100/11506_
27.59066017727450.03.81174.50
167.172.229.3http/1.1

0-4830863920/94/10912_
28.181017312640.04.46156.77
138.197.47.6http/1.1localhost:80GET / HTTP/1.1

0-4830863920/102/11606_
27.543018837280.06.33215.88
161.35.87.10h2www.zacforsman.com:443[0/0] Software caused connection abort

0-4830863920/84/11449_
27.661618244750.01.02217.16
138.197.47.6http/1.1

0-4830863920/93/11022_
28.167018057990.06.19175.14
3.239.99.84http/1.1www.bncursillo.org:443GET /wp/wp-includes/js/wp-embed.min.js?ver=5.4.6 HTTP/2.0

0-4830863920/77/11396_
28.1510517665180.03.32151.88
188.166.182.248http/1.1www.overflowingcup.info:80GET / HTTP/1.1

0-4830863920/100/10888_
27.610017589220.05.19163.59
172.69.214.188h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-4830863920/85/11140_
28.172418679500.00.86161.15
188.166.182.248http/1.1www.webrangers.com.ng:80GET / HTTP/1.1

0-4830863920/137/11598_
28.173017467440.02.63200.05
3.224.220.101http/1.1www.webturbos.com:80GET /robots.txt HTTP/1.1

0-4830863920/88/11500_
28.173017847810.00.83166.96
3.224.220.101http/1.1www.webturbos.com:80GET /robots.txt HTTP/1.1

0-4830863920/102/11212_
28.061017463950.02.27177.86
138.197.47.6h2localhost:443[0/0] Software caused connection abort

0-4830863920/88/10886_
27.861116948100.021.68161.57
138.197.47.6h2localhost:443[0/0] Software caused connection abort

0-4830863920/113/11044_
27.648218615080.04.53172.24
104.248.51.208http/1.1

0-4830863920/95/10818_
27.89830417179170.05.55174.02
3.239.99.84h2www.bncursillo.org:443[1/1] done: stream 3, GET /robots.txt

0-4830863920/92/11399_
27.940019350760.06.06177.94
108.162.242.30h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-4830863920/86/11346_
27.93167817840200.04.15172.44
138.197.47.6h2localhost:443[0/0] Software caused connection abort

0-4830863920/85/11016_
27.663317048040.01.97141.91
216.244.66.246http/1.1

0-4830863920/94/11032_
27.968017597050.00.89200.53
3.239.99.84h2www.bncursillo.org:443[0/0] init

0-4830863920/112/11007_
27.690018599630.03.87152.49
167.172.229.3http/1.1

0-4830863920/113/10984_
27.861022120000.07.61179.07
138.197.47.6h2localhost:443[0/0] Software caused connection abort

0-4830863920/78/11186_
27.85728518265990.010.92202.53
3.239.99.84h2www.bncursillo.org:443[0/0] init

0-4830863920/92/11626_
28.071018900870.04.91197.10
138.197.47.6h2localhost:443[0/0] Software caused connection abort

0-4830863920/90/11411_
27.54339918050970.017.26238.81
161.35.87.10h2www.zacforsman.com:443[0/0] Software caused connection abort

0-4830863920/93/11442_
28.163017861110.01.96168.17
185.191.171.12http/1.1www.con-voluted.com:80GET /productfh754542.html HTTP/1.1

0-4830863920/86/11140R
28.151333717662040.05.16199.47
172.69.214.34h2localhost:443[1/0] schedule: stream 1, GET /server-status

0-4830863920/85/11265_
28.270017335270.04.74200.72
172.69.214.51h2localhost:443[2/2] done: stream 3, GET /about

0-4830863920/153/11465_
27.820019108220.046.81218.16
188.166.182.248http/1.1

0-4830863920/100/11134_
28.071021154580.01.10201.64
138.197.47.6http/1.1

0-4830863920/140/10955_
28.150017490330.03.91177.58
216.244.66.239http/1.1www.kyaccidentinfo.com:80GET /robots.txt HTTP/1.1

0-4830863920/84/11595_
27.801017552450.02.52221.72
108.162.241.204h2localhost:443[0/0] init

0-4830863920/100/11454_
27.861018759290.06.04220.86
138.197.47.6http/1.1

0-4830863920/163/11316_
27.90749718335800.02.21181.02
104.248.51.208h2www.shop.astanadesign.com:443[0/0] Software caused connection abort

0-4830863920/94/11032_
27.940018539940.01.80220.39
167.172.229.3h2localhost:443[0/0] Software caused connection abort

0-4830863920/91/11495_
28.270018643740.02.70185.48
108.162.242.30h2localhost:443[3/3] done: stream 5, GET /ecp/Current/exporttool/microsoft.exc

0-4830863920/91/11783_
28.270017340340.04.79334.29
108.162.242.30h2localhost:443[2/2] done: stream 3, GET /debug/default/view?panel=config

0-4830863920/106/11046_
27.277018193300.05.76171.45
104.248.51.208h2www.shop.astanadesign.com:443[0/0] Software caused connection abort

0-4830863920/89/11157_
27.907133820166240.01.07167.31
3.239.99.84h2www.bncursillo.org:443[1/1] done: stream 3, GET /wp/wp-includes/js/wp-embed.min.js?ve

0-4830863920/84/11333_
28.1513018204910.010.93181.26
216.244.66.239http/1.1www.kyaccidentinfo.com:443GET /robots.txt HTTP/1.1

0-4830863920/94/11224_
28.041017043160.01.21147.10
138.197.47.6http/1.1

0-4830863920/140/10799_
27.780017510360.011.40152.71
172.69.214.188h2localhost:443[0/0] init

0-4830863920/101/11151_
27.798018469380.03.25146.43
104.248.51.208h2www.shop.astanadesign.com:443[0/0] Software caused connection abort

0-483086392<

Found on 2023-08-21 13:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a15fb95fd

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 20-Aug-2023 05:44:00 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 48
Parent Server MPM Generation: 47
Server uptime:  4 days 21 hours 36 minutes 11 seconds
Server load: 0.18 0.11 0.12
Total accesses: 1532052 - Total Traffic: 23.0 GB - Total Duration: 245829422
CPU Usage: u112.74 s34.85 cu4489.88 cs696.6 - 1.26% CPU load
3.62 requests/sec - 56.9 kB/second - 15.7 kB/request - 160.458 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01874645no21yes1633153
Sum1021 1633153

______________________________________________________R_________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4718746450/93/9454_
27.621414436800.08.74183.52
51.222.253.6http/1.1www.handwritingcoaching.com:443GET / HTTP/2.0

0-4718746450/103/9215_
27.621015583840.01.41144.22
134.122.63.192http/1.1localhost:80GET /?rest_route=/wp/v2/users/ HTTP/1.1

0-4718746450/101/9327_
27.640014939960.01.16132.76
46.101.103.192http/1.1localhost:443GET /about HTTP/2.0

0-4718746450/104/8950_
27.581314444720.00.58130.66
165.22.74.203http/1.1localhost:443GET / HTTP/2.0

0-4718746450/474/9612_
27.570016299750.015.71172.12
162.158.87.60h2localhost:443[0/0] init

0-4718746450/103/9407_
27.560015330010.01.43174.10
162.158.111.221h2localhost:443[1/1] done: stream 1, GET /server-status

0-4718746450/106/9083_
27.400015257910.01.20136.01
172.70.251.45h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/174/9439_
26.860014706420.01.32122.42
172.70.251.169h2localhost:443[0/0] init

0-4718746450/106/8919_
27.291014422610.01.25132.26
185.191.171.6http/1.1www.con-voluted.com:80GET /productjn825975.html HTTP/1.1

0-4718746450/101/9241_
27.560016097110.00.62138.94
206.81.1.88http/1.1localhost:80GET /config.json HTTP/1.1

0-4718746450/98/9475_
27.610014818170.01.15164.41
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-template/ HTTP/1.1

0-4718746450/94/9447_
27.630514936560.02.78144.64
165.22.74.203http/1.1localhost:443GET /.vscode/sftp.json HTTP/2.0

0-4718746450/111/9332_
27.610014607280.01.38151.77
162.158.111.173h2localhost:443[0/0] init

0-4718746450/97/9013_
27.570014301620.00.81114.58
172.70.250.34h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-4718746450/92/9207_
26.920014905270.00.85146.28
172.70.247.52h2localhost:443[0/0] init

0-4718746450/101/8967_
27.581014779950.00.96140.79
2a03:b0c0:3:d0::fae:a001http/1.1localhost:443GET / HTTP/2.0

0-4718746450/108/9402_
27.510016280650.00.49134.08
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/195/9395_
27.410014816990.02.70150.95
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-date/ HTTP/1.1

0-4718746450/104/9087_
27.521014583350.01.24116.47
51.222.253.6h2www.handwritingcoaching.com:443[0/0] init

0-4718746450/86/9153_
27.541014964520.00.50140.00
206.81.1.88http/1.1localhost:80GET /login.action HTTP/1.1

0-4718746450/98/9128_
27.62142014957440.00.86126.66
2a03:b0c0:3:d0::fae:a001http/1.1localhost:443GET / HTTP/2.0

0-4718746450/94/9012_
27.490019163360.01.39129.67
172.70.250.34h2localhost:443[0/0] init

0-4718746450/114/9238_
27.620015607700.00.58166.29
46.101.103.192http/1.1localhost:443GET /.vscode/sftp.json HTTP/2.0

0-4718746450/104/9621_
27.541016067190.00.49171.64
162.158.94.51h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-4718746450/95/9390_
27.47189014919500.00.80172.36
172.70.242.124h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-4718746450/105/9425_
27.080015103800.01.51132.44
162.158.94.143h2localhost:443[0/0] init

0-4718746450/108/9218_
27.521014993720.01.40166.49
134.122.63.192http/1.1localhost:80GET /about HTTP/1.1

0-4718746450/120/9223_
26.860014643730.01.21159.37
162.158.94.20h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/110/9538_
26.640015819750.01.29152.40
213.202.211.149http/1.1

0-4718746450/109/9174_
27.550015989070.01.18156.17
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-template/ HTTP/1.1

0-4718746450/98/8999_
27.581014731600.00.54153.68
134.122.63.192http/1.1localhost:80GET /.env HTTP/1.1

0-4718746450/116/9638_
27.521015116080.00.47183.22
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/102/9475_
27.640015721070.01.67181.32
165.22.74.203http/1.1localhost:443GET /about HTTP/2.0

0-4718746450/105/9237_
27.521015091950.01.40156.87
134.122.63.192http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-4718746450/98/9070_
27.470015500740.00.88182.23
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-featured-image/ HTTP/1.1

0-4718746450/97/9580_
26.611615724160.01.43151.20
51.222.253.6h2www.handwritingcoaching.com:443[1/1] done: stream 1, GET /

0-4718746450/105/9311_
27.581014396000.00.81143.45
46.101.103.192http/1.1localhost:443GET / HTTP/2.0

0-4718746450/101/8985_
27.131015525670.00.64130.51
172.70.242.124h2localhost:443[0/0] init

0-4718746450/107/9110_
26.651014930670.00.39141.48
172.71.250.84h2localhost:443[0/0] init

0-4718746450/110/9399_
27.480015714060.00.53142.60
52.167.144.93http/1.1www.rossitergroup.co:80GET /sitemap684.xml HTTP/1.1

0-4718746450/112/9274_
27.510014578770.07.11124.23
172.70.242.245h2localhost:443[0/0] init

0-4718746450/115/8924_
27.550014867570.01.62118.66
172.69.150.44h2localhost:443[0/0] init

0-4718746450/112/9246_
27.630015676430.01.12123.73
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:443GET / HTTP/2.0

0-4718746450/118/9187_
26.860015824180.0

Found on 2023-08-20 10:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aa803178a

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Sunday, 20-Aug-2023 05:44:00 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 48
Parent Server MPM Generation: 47
Server uptime:  4 days 21 hours 36 minutes 10 seconds
Server load: 0.18 0.11 0.12
Total accesses: 1532050 - Total Traffic: 23.0 GB - Total Duration: 245829422
CPU Usage: u112.73 s34.85 cu4489.88 cs696.6 - 1.26% CPU load
3.62 requests/sec - 56.9 kB/second - 15.7 kB/request - 160.458 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01874645no25yes1632194
Sum1025 1632194

_____R__________________________________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4718746450/93/9454_
27.620414436800.08.74183.52
51.222.253.6http/1.1www.handwritingcoaching.com:443GET / HTTP/2.0

0-4718746450/103/9215_
27.620015583840.01.41144.22
134.122.63.192http/1.1localhost:80GET /?rest_route=/wp/v2/users/ HTTP/1.1

0-4718746450/100/9326_
27.420014939960.01.16132.76
162.158.111.188h2localhost:443[0/0] init

0-4718746450/104/8950_
27.580314444720.00.58130.66
165.22.74.203http/1.1localhost:443GET / HTTP/2.0

0-4718746450/474/9612_
27.570016299750.015.71172.12
162.158.87.60h2localhost:443[0/0] init

0-4718746450/103/9407R
27.560015330010.01.43174.10
162.158.111.221h2localhost:443[1/0] schedule: stream 1, GET /server-status

0-4718746450/106/9083_
27.400015257910.01.20136.01
172.70.251.45h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/174/9439_
26.860014706420.01.32122.42
172.70.251.169h2localhost:443[0/0] init

0-4718746450/106/8919_
27.290014422610.01.25132.26
185.191.171.6http/1.1www.con-voluted.com:80GET /productjn825975.html HTTP/1.1

0-4718746450/101/9241_
27.560016097110.00.62138.94
206.81.1.88http/1.1localhost:80GET /config.json HTTP/1.1

0-4718746450/98/9475_
27.610014818170.01.15164.41
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-template/ HTTP/1.1

0-4718746450/94/9447_
27.630514936560.02.78144.64
165.22.74.203http/1.1localhost:443GET /.vscode/sftp.json HTTP/2.0

0-4718746450/111/9332_
27.610014607280.01.38151.77
134.122.63.192http/1.1localhost:80GET /telescope/requests HTTP/1.1

0-4718746450/97/9013_
27.570014301620.00.81114.58
172.70.250.34h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-4718746450/92/9207_
26.920014905270.00.85146.28
172.70.247.52h2localhost:443[0/0] init

0-4718746450/101/8967_
27.580014779950.00.96140.79
2a03:b0c0:3:d0::fae:a001http/1.1localhost:443GET / HTTP/2.0

0-4718746450/108/9402_
27.510016280650.00.49134.08
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/195/9395_
27.410014816990.02.70150.95
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-date/ HTTP/1.1

0-4718746450/104/9087_
27.520014583350.01.24116.47
51.222.253.6h2www.handwritingcoaching.com:443[0/0] init

0-4718746450/86/9153_
27.540014964520.00.50140.00
206.81.1.88http/1.1localhost:80GET /login.action HTTP/1.1

0-4718746450/98/9128_
27.62042014957440.00.86126.66
2a03:b0c0:3:d0::fae:a001http/1.1localhost:443GET / HTTP/2.0

0-4718746450/94/9012_
27.490019163360.01.39129.67
172.70.250.34h2localhost:443[0/0] init

0-4718746450/114/9238_
27.620015607700.00.58166.29
46.101.103.192http/1.1localhost:443GET /.vscode/sftp.json HTTP/2.0

0-4718746450/104/9621_
27.540016067190.00.49171.64
162.158.94.51h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-4718746450/95/9390_
27.47089014919500.00.80172.36
172.70.242.124h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-4718746450/105/9425_
27.080015103800.01.51132.44
162.158.94.143h2localhost:443[0/0] init

0-4718746450/108/9218_
27.520014993720.01.40166.49
134.122.63.192http/1.1localhost:80GET /about HTTP/1.1

0-4718746450/120/9223_
26.860014643730.01.21159.37
162.158.94.20h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/110/9538_
26.640015819750.01.29152.40
213.202.211.149http/1.1

0-4718746450/109/9174_
27.550015989070.01.18156.17
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-template/ HTTP/1.1

0-4718746450/98/8999_
27.580014731600.00.54153.68
134.122.63.192http/1.1localhost:80GET /.env HTTP/1.1

0-4718746450/116/9638_
27.520015116080.00.47183.22
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:80GET / HTTP/1.1

0-4718746450/101/9474_
27.280015721070.01.67181.32
162.158.87.215h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-4718746450/105/9237_
27.520015091950.01.40156.87
134.122.63.192http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-4718746450/98/9070_
27.470015500740.00.88182.23
213.202.211.149http/1.1localhost:80GET /wp-includes/blocks/post-featured-image/ HTTP/1.1

0-4718746450/97/9580_
26.610615724160.01.43151.20
51.222.253.6h2www.handwritingcoaching.com:443[1/1] done: stream 1, GET /

0-4718746450/105/9311_
27.580014396000.00.81143.45
46.101.103.192http/1.1localhost:443GET / HTTP/2.0

0-4718746450/101/8985_
27.130015525670.00.64130.51
172.70.242.124h2localhost:443[0/0] init

0-4718746450/107/9110_
26.650014930670.00.39141.48
172.71.250.84h2localhost:443[0/0] init

0-4718746450/110/9399_
27.480015714060.00.53142.60
52.167.144.93http/1.1www.rossitergroup.co:80GET /sitemap684.xml HTTP/1.1

0-4718746450/112/9274_
27.510014578770.07.11124.23
162.158.111.188h2localhost:443[1/1] done: stream 1, GET /

0-4718746450/115/8924_
27.550014867570.01.62118.66
172.69.150.44h2localhost:443[0/0] init

0-4718746450/112/9246_
27.630015676430.01.12123.73
2a03:b0c0:3:d0::d4f:c001http/1.1localhost:443GET / HTTP/2.0

0-4718746450/118/9187_
2

Found on 2023-08-20 10:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a9c5c2654

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Saturday, 19-Aug-2023 10:13:54 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 46
Parent Server MPM Generation: 45
Server uptime:  4 days 2 hours 6 minutes 5 seconds
Server load: 1.21 1.29 1.01
Total accesses: 1318845 - Total Traffic: 20.6 GB - Total Duration: 191475960
CPU Usage: u118.26 s34.8 cu3827.34 cs594.34 - 1.3% CPU load
3.73 requests/sec - 61.2 kB/second - 16.4 kB/request - 145.185 ms/request
4 requests currently being processed, 124 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0974103no2yes361002
2974105no7yes163024
Sum209 4124026

_________R___________W_______________________________R__________
................................................................
_____________________________R__________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-459741030/31/7863_
7.389010908130.00.47164.44
52.176.91.210h2www.timimishop.com:443[0/0] init

0-459741030/27/7620_
7.18172411892540.00.05113.29
172.71.102.49h2localhost:443[0/0] init

0-459741030/34/7683_
7.4622011034780.00.53120.17
34.255.10.30http/1.1localhost:80GET /robots.txt HTTP/1.1

0-459741030/43/7277_
7.19074510545670.00.64117.60
52.176.91.210h2www.timimishop.com:443[1/1] done: stream 1, GET /wp-2018.php/wp_filemanager.php

0-459741030/31/7627_
7.181012051870.00.50135.69
141.101.77.7h2localhost:443[0/0] init

0-459741030/26/7829_
7.530011595620.00.54148.24
161.35.155.246http/1.1localhost:443GET /telescope/requests HTTP/1.1

0-459741030/31/7415_
7.42071511468340.00.08114.44
172.71.102.49h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-459741030/30/7776_
7.071010891230.00.12107.37
141.101.77.7h2localhost:443[1/1] done: stream 1, GET /debug/default/view?panel=config

0-459741030/33/7343_
6.970010659030.00.72116.13
185.200.116.219h2www.albrite.com.tw:443[0/0] init

0-459741030/31/7557R
7.2033012224180.00.86118.80
172.71.182.110h2localhost:443[1/0] schedule: stream 1, GET /server-status

0-459741030/37/7893_
7.351873411419540.00.20144.23
52.176.91.210h2www.timimishop.com:443[104/104] done: stream 207, GET /wp-2018.php/wp-content/themes/

0-459741030/39/7846_
7.310011049360.00.12123.89
52.176.91.210h2www.timimishop.com:443GET /wp-2018.php/xxl.php HTTP/2.0

0-459741030/38/7737_
7.481071610942520.00.11130.37
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/34/7421_
7.2129510616680.00.11101.75
52.176.91.210h2www.timimishop.com:443[101/101] done: stream 201, GET /wp-2018.php/xxl

0-459741030/32/7577_
7.2131011103130.00.67117.79
52.176.91.210h2www.timimishop.com:443[100/100] done: stream 199, GET /wp-2018.php/xxl

0-459741030/35/7351_
7.471273510988880.00.20119.97
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/37/7730_
6.86071112359470.00.38114.83
94.142.141.230http/1.1

0-459741030/35/7717_
7.3617010967680.00.13132.62
52.176.91.210http/1.1

0-459741030/37/7439_
7.38773210726470.00.2196.66
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/23/7596_
7.310011432120.00.07126.75
172.70.46.111h2localhost:443[0/0] init

0-459741030/35/7496_
7.540011249510.00.36107.66
94.142.141.230http/1.1www.georgiaboxerclub.com:80HEAD / HTTP/1.1

0-459741031/23/7408W
7.440015223580.00.66114.24
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/32/7623_
7.471770911461940.00.10142.33
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/38/8005_
7.452974112336870.00.46150.70
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/33/7731_
7.388011058550.00.11157.04
85.208.96.206http/1.1www.con-voluted.com:80GET /productiw1004299.html HTTP/1.1

0-459741030/35/7825_
7.462572011261940.00.57116.72
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/25/7568_
6.921271710806590.00.13151.33
52.176.91.210h2www.timimishop.com:443[108/108] done: stream 215, GET /wp-2018.php/wp-content/themes/

0-459741030/41/7615_
7.38975010844410.00.55146.48
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/31/7918_
7.352171611949280.00.38140.37
52.176.91.210h2www.timimishop.com:443GET /wp-2018.php/wp-content/themes/finley/min.php HTTP/2.0

0-459741030/29/7570_
7.443157611825720.00.58127.17
52.176.91.210http/1.1www.timimishop.com:443GET /wp-2018.php/wp-content/plugins/hellopress/wp_filemanager.p

0-459741030/27/7382_
7.471672511119690.00.12135.34
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/35/8023_
7.288011235790.00.49170.79
52.176.91.210h2www.timimishop.com:443[89/89] done: stream 177, GET /wp-2018.php/wp-includes/wp-class

0-459741030/39/7888_
7.4620011719960.00.26155.59
194.169.175.158http/1.1www.actuallypressingrecords.comGET /wp-content/themes/finley/min.php HTTP/1.1

0-459741030/40/7643_
7.4621010942860.00.27121.61
34.255.10.30http/1.1localhost:80GET / HTTP/1.1

0-459741030/29/7506_
7.200011584310.00.08167.77
172.71.182.110h2localhost:443[0/0] init

0-459741030/41/7932_
7.3522011907120.00.11128.65
216.244.66.201http/1.1localhost:80GET /events/category/fundraisers/list/?tribe-bar-date=2022-07-1

0-459741030/33/7705_
7.50873910785670.00.13128.06
69.65.10.231http/1.1www.commonhive.com:80POST /wp-cron.php?doing_wp_cron=1692458025.68292593955993652343

0-459741030/30/7434_
7.27873211658520.00.08116.56
52.176.91.210h2www.timimishop.com:443GET /wp-2018.php/wp-includes/wp-class.php HTTP/2.0

0-459741030/30/7558_
7.39522711201900.00.12125.15
54.37.156.240http/1.1www.ehsthetics.zacforsman.com:8POST /wp-login.php HTTP/1.1

0-459741030/28/7484_
7.50772311524720.00.65128.42
209.209.41.75http/1.1www.commonhive.com:80POST //xmlrpc.php HTTP/1.1

0-459741030/39/7634_
7.3810010861500.00.13104.05
52.176.91.210h2www.timimishop.com:443GET /wp-2018.php/wp-content/themes/finley/min HTTP/2.0

0-459741030/40/7305_
7.34

Found on 2023-08-19 15:12

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a58f0475a

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Friday, 18-Aug-2023 10:16:10 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 38
Parent Server MPM Generation: 37
Server uptime:  3 days 2 hours 8 minutes 21 seconds
Server load: 0.16 0.20 0.17
Total accesses: 1038345 - Total Traffic: 15.8 GB - Total Duration: 152459577
CPU Usage: u79.57 s26.04 cu2901.17 cs464.15 - 1.3% CPU load
3.89 requests/sec - 62.1 kB/second - 16.0 kB/request - 146.829 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
14030660no8yes361161
Sum108 361161

................................................................
______________R________W__________________________L_____________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-37-0/0/6098.
0.00640408307700.00.00129.19
69.65.3.168http/1.1localhost:80GET /.well-known/acme-challenge/H4HRD_V63OD6HC0P0T-46AQVPG1FHBC

0-37-0/0/5893.
0.00640409276260.00.0092.44
87.236.176.31http/1.1shared.domain:443GET / HTTP/1.1

0-37-0/0/5916.
0.00640448822860.00.0095.53
69.65.10.251http/1.1localhost:80POST /wp-cron.php?doing_wp_cron=1692365193.86712002754211425781

0-37-0/0/5574.
0.00640428153750.00.0061.19
20.15.240.78http/1.1www.rovaniemi-coach-travel.cityGET /coach-booking-murmansk.html HTTP/1.1

0-37-0/0/5731.
0.0064042749303540.00.0094.75
5.199.136.71http/1.1www.teamsecurityllc.com:80GET /install.php HTTP/1.1

0-37-0/0/5973.
0.0064045369109960.00.0075.45
69.65.3.168http/1.1

0-37-0/0/5688.
0.00640408795040.00.0092.91
69.65.3.168http/1.1localhost:80GET /.well-known/acme-challenge/0M33DDWY_EB7L1NQFX2M_QHGWTM4-C3

0-37-0/0/6061.
0.0064044738532620.00.0087.91
69.65.3.168http/1.1

0-37-0/0/5550.
0.00640408322080.00.0090.13
69.65.3.168http/1.1localhost:80GET /.well-known/acme-challenge/BE8LSQ5BLHMI3NELG-17O5ZXNZMST8Q

0-37-0/0/5834.
0.00640409206010.00.0087.88
69.65.3.168http/1.1

0-37-0/0/6161.
0.00640408826530.00.00106.34
69.65.3.168http/1.1localhost:80GET /.well-known/acme-challenge/TBKU83J5PIKD_ZU9RQVOH_NT613D0QS

0-37-0/0/6061.
0.00640408495660.00.0079.87
69.65.3.168http/1.1

0-37-0/0/5962.
0.00640408641050.00.00106.10
69.65.3.168http/1.1localhost:80GET /.well-known/acme-challenge/YOB8T972MQSH18N_BMWWKP9MYV_BRZD

0-37-0/0/5675.
0.00640408099680.00.0078.07
69.65.3.168http/1.1

0-37-0/0/5769.
0.0064045248484830.00.0087.19
69.65.3.168http/1.1www.christina-howell.com:80GET /.well-known/acme-challenge/B2I3NJ8PVEZ3JCXDZPAWFVG6UXWQA1X

0-37-0/0/5566.
0.00640408577020.00.0082.12
69.65.3.168http/1.1

0-37-0/0/5907.
0.0064042059258990.00.0080.07
183.136.225.44http/1.1

0-37-0/0/5868.
0.0064044778227910.00.0099.45
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-37-0/0/5700.
0.00640408507560.00.0064.18
194.169.175.22http/1.1

0-37-0/0/5856.
0.00640409133050.00.0090.43
194.169.175.22http/1.1www.bsa75.org:443GET /xxl.php HTTP/1.1

0-37-0/0/5528.
0.00640408767120.00.0082.63
85.208.96.198http/1.1www.con-voluted.com:80GET /productiy1520949.html HTTP/1.1

0-37-0/0/5587.
0.006404012658560.00.0074.49
194.169.175.22http/1.1www.bsa75.org:443GET /class.api.php HTTP/1.1

0-37-0/0/5523.
0.0064043888889740.00.0097.93
69.65.3.168http/1.1www.penyourmasterpiece.com:80GET /.well-known/acme-challenge/P4N733MQV75KE1KVL90P7NKQO4R210T

0-37-0/0/6155.
0.0064045229165290.00.00120.47
69.65.3.168http/1.1

0-37-0/0/5912.
0.00640408365260.00.0093.88
69.65.3.168http/1.1www.yntinfotech.com:80GET /.well-known/acme-challenge/JFHRKILSJLEZ8SYC97XFYVHUH45UTL4

0-37-0/0/6078.
0.0064044968832970.00.0096.39
69.65.3.168http/1.1

0-37-0/0/5871.
0.00640408292310.00.00101.49
69.65.3.168http/1.1www.arpg.yntinfotech.com:80GET /.well-known/acme-challenge/70FGE7LIT6NYCY2VFJ1K9H5JHSU1K-M

0-37-0/0/5701.
0.0064045018447180.00.0096.89
69.65.3.168http/1.1

0-37-0/0/6070.
0.00640409446470.00.00112.85
69.65.3.168http/1.1localhost:80GET /.well-known/acme-challenge/-3AJ7PUHA1OM7NFD5JCL4C0OA-IVSN_

0-37-0/0/5763.
0.0064045408910410.00.0096.94
69.65.3.168http/1.1

0-37-0/0/5630.
0.00640468269370.00.0093.82
69.65.3.168http/1.1www.dailyz.yntinfotech.com:80GET /.well-known/acme-challenge/_68QILRBPXDP2PH1BGRTGKYKHXCSGGA

0-37-0/0/6222.
0.0064044958886360.00.00136.46
69.65.3.168http/1.1

0-37-0/0/6142.
0.00640409370390.00.00122.41
69.65.3.168http/1.1www.edu.yntinfotech.com:80GET /.well-known/acme-challenge/32DS6XOMO0U423PKYG5H9TKTWZLW85S

0-37-0/0/5843.
0.00640408130330.00.0086.33
69.65.3.168http/1.1

0-37-0/0/5726.
0.0064042538678290.00.00126.16
5.199.136.71http/1.1www.teamsecurityllc.com:80GET /autoload_classmap.php HTTP/1.1

0-37-0/0/6104.
0.0064042389437810.00.0096.82
92.205.20.160http/1.1www.seldnwritersgroup.com:443POST /xmlrpc.php HTTP/1.1

0-37-0/0/5967.
0.00640408413530.00.00101.67
69.65.3.168http/1.1www.dailyz-dev.yntinfotech.com:GET /.well-known/acme-challenge/BZC_KRQQE_E6608XGIXP4C538HVLF7C

0-37-0/0/5657.
0.0064045159372770.00.0082.84
69.65.3.168http/1.1

0-37-0/0/5759.
0.0064044808605190.00.00102.95
138.199.60.176http/1.1www.jasondurall.com:443POST //xmlrpc.php HTTP/1.1

0-37-0/0/5646.
0.00640408165180.00.0093.89
194.169.175.22http/1.1

0-37-0/0/5794.
0.00640418600290.00.0082.49
20.15.240.70http/1.1www.rovaniemi-coach-travel.cityGET /rent-car-rovaniemi.html HTTP/1.1

0-37-0/0/5626.
0.0064042208507890.00.0075.27
46.48.13.161h2localhost:443[0/0] init

0-37-0/0/5709.
0.0064044869223910.00.0075.70
194.169.175.22http/1.1

0-37-0/0/5817.
0.0064044998974790.00.00102.03
46.48.13.161h2localhost:443[1/1] done: stream 1, GET /

0-37-0/0/5964

Found on 2023-08-18 15:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a9a612bcf

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Thursday, 17-Aug-2023 08:13:13 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 28
Parent Server MPM Generation: 27
Server uptime:  2 days 5 minutes 24 seconds
Server load: 0.13 0.21 0.18
Total accesses: 697319 - Total Traffic: 10.8 GB - Total Duration: 103723741
CPU Usage: u105.2 s22.87 cu1960.79 cs309.92 - 1.39% CPU load
4.03 requests/sec - 65.2 kB/second - 16.2 kB/request - 148.746 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
12845256no5yes163131
Sum105 163131

................................................................
______________________________________________R_________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-27-0/0/4045.
0.00474205768220.00.0080.86
92.154.32.204http/1.1www.greekvillaparos.gr:80GET /parosholiday/wp-content/uploads/sites/3/2017/12/logo.png H

0-27-0/0/3692.
0.00474206162130.00.0059.03
185.191.171.3http/1.1www.con-voluted.com:80GET /productki1831451.html HTTP/1.1

0-27-0/0/3695.
0.00474205617160.00.0060.32
209.160.113.229http/1.1localhost:80HEAD /bk HTTP/1.1

0-27-0/0/3660.
0.00474205322510.00.0040.99
209.160.113.229http/1.1localhost:80HEAD / HTTP/1.1

0-27-0/0/3650.
0.00474206160640.00.0062.16
172.70.250.199h2www.carteblanchecollective.com:[0/0] init

0-27-0/0/3602.
0.0047424085860520.00.0041.63
65.49.1.116http/1.1

0-27-0/0/3647.
0.00474205652460.00.0064.28
205.169.39.155http/1.1www.daryam.com:443GET / HTTP/2.0

0-27-0/0/3904.
0.00474205428230.00.0051.98
162.158.111.131h2www.carteblanchecollective.com:[0/0] init

0-27-0/0/3482.
0.00474205599070.00.0057.51
209.160.113.229http/1.1localhost:80HEAD /wp HTTP/1.1

0-27-0/0/3725.
0.00474205467080.00.0062.35
20.15.240.106http/1.1www.adelaandea.com:80GET /reviews/2021/bild.html HTTP/1.1

0-27-0/0/4079.
0.00474206097280.00.0072.74
64.124.8.50http/1.1www.online-hoshuko.com:443GET /img/syukudai-1.png HTTP/1.1

0-27-0/0/3810.
0.00474205502240.00.0053.50
209.160.113.229http/1.1localhost:80HEAD /home HTTP/1.1

0-27-0/0/3853.
0.00474255721870.00.0075.90
61.135.159.129http/1.1www.ikscd.com:443GET / HTTP/1.1

0-27-0/0/3669.
0.00474275258900.00.0053.73
20.15.240.106http/1.1www.adelaandea.com:80GET /reviews/2021/bild.html HTTP/1.1

0-27-0/0/3585.
0.00474205378360.00.0062.29
107.22.51.239h2localhost:443[0/0] done

0-27-0/0/3549.
0.00474205395580.00.0055.22
209.160.113.229http/1.1localhost:80HEAD /old HTTP/1.1

0-27-0/0/3735.
0.00474206083710.00.0048.84
209.160.113.229http/1.1localhost:80HEAD /old HTTP/1.1

0-27-0/0/3830.
0.00474225557740.00.0063.15
162.158.86.226h2www.carteblanchecollective.com:[0/0] init

0-27-0/0/3564.
0.00474205580610.00.0039.64
209.160.113.229http/1.1

0-27-0/0/3753.
0.00474236268300.00.0055.42
199.167.131.27http/1.1

0-27-0/0/3538.
0.00474205565390.00.0061.09
52.167.144.225h2www.advintechs.com:443GET /pickup/G397364 HTTP/2.0

0-27-0/0/3631.
0.00474209332160.00.0053.40
40.77.167.131http/1.1

0-27-0/0/3535.
0.00474205631870.00.0058.35
199.167.131.27http/1.1localhost:80GET /.well-known/acme-challenge/_YH5I2G7Z-OOPJTI8X8EISC_M4PDP6_

0-27-0/0/4123.
0.00474206020990.00.0094.80
209.160.113.229http/1.1localhost:80HEAD /wordpress HTTP/1.1

0-27-0/0/3807.
0.0047427085228460.00.0071.56
208.109.24.33http/1.1www.the100wordproject.com:443POST /xmlrpc.php HTTP/1.1

0-27-0/0/4044.
0.00474205502800.00.0072.26
92.154.32.204http/1.1www.greekvillaparos.gr:80GET /parosholiday/wp-content/uploads/sites/3/2017/12/logo.png H

0-27-0/0/3791.
0.0047423705366530.00.0067.14
110.39.55.29http/1.1www.stefkaspiegel.com:443POST /xmlrpc.php HTTP/1.1

0-27-0/0/3644.
0.0047422355748950.00.0064.44
199.167.131.27http/1.1

0-27-0/0/4011.
0.00474206328230.00.0079.74
209.160.113.229http/1.1localhost:80HEAD / HTTP/1.1

0-27-0/0/3757.
0.00474205837820.00.0068.72
40.83.2.72http/1.1www.adelaandea.com:80GET /3d.html HTTP/1.1

0-27-0/0/3577.
0.0047422945355810.00.0063.65
128.199.62.55http/1.1www.ehsthetics.zacforsman.com:8GET /about HTTP/1.1

0-27-0/0/3992.
0.00474205811770.00.00105.74
18.236.92.193http/1.1

0-27-0/0/4073.
0.00474206140350.00.0096.72
209.160.113.229http/1.1localhost:80HEAD /backup HTTP/1.1

0-27-0/0/3732.
0.00474205398930.00.0063.30
216.209.3.200h2www.villagedesbasprix.com:443[0/0] init

0-27-0/0/3677.
0.00474205857380.00.0094.14
209.160.113.229http/1.1localhost:80HEAD /bc HTTP/1.1

0-27-0/0/3882.
0.00474205625660.00.0065.64
216.209.3.200http/1.1www.villagedesbasprix.com:443POST /webmail/?_task=mail&_action=refresh HTTP/2.0

0-27-0/0/3888.
0.00474205403920.00.0070.42
172.71.166.168h2www.daryam.com:443[1/1] done: stream 1, GET /

0-27-0/0/3648.
0.00474205680580.00.0056.41
92.154.32.204http/1.1www.greekvillaparos.gr:80GET /wp-content/uploads/2014/06/logo_greekvilla_new2.jpg HTTP/1

0-27-0/0/3667.
0.00474235558460.00.0061.67
69.65.10.231http/1.1www.the100wordproject.com:443POST /wp-cron.php?doing_wp_cron=1692273214.44063305854797363281

0-27-0/0/3633.
0.00474205526760.00.0068.16
49.7.20.78http/1.1localhost:80GET /archives/category/%e8%bf%9b%e5%8f%a3%e9%a3%9f%e5%93%81/%e8

0-27-0/0/3605.
0.0047429995639150.00.0055.76
107.170.123.196http/1.1www.greekvillaparos.gr:80GET /2018/wp-content/upgrade/backup.php HTTP/1.1

0-27-0/0/3591.
0.00474255597870.00.0047.01
207.46.13.224http/1.1www.kyaccidentinfo.com:443GET /heatgh364501 HTTP/2.0

0-27-0/0/3635.
0.00474205531620.00.0047.11
216.209.3.200h2www.villagedesbasprix.com:443[1/1] done: stream 15, POST /webmail/?_task=mail&_action=refres

0-27-0/0/3706.
0.00474205763620.00.0071.77
66.249.64.107http/1.1

Found on 2023-08-17 13:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a7e161327

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Wednesday, 16-Aug-2023 06:29:47 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 24
Parent Server MPM Generation: 23
Server uptime:  22 hours 21 minutes 58 seconds
Server load: 0.28 0.22 0.18
Total accesses: 373870 - Total Traffic: 4.4 GB - Total Duration: 56916407
CPU Usage: u59.17 s16.13 cu1056.6 cs168.17 - 1.61% CPU load
4.64 requests/sec - 57.6 kB/second - 12.4 kB/request - 152.236 ms/request
1 requests currently being processed, 63 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
11688929no7yes163151
Sum107 163151

................................................................
__________________________R_____________________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-23-0/0/1678.
0.0019102372844330.00.0020.94
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1664.
0.0019105273189040.00.0016.28
125.164.18.2http/1.1

0-23-0/0/1664.
0.0019102352830940.00.0013.86
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1784.
0.00191002796270.00.0018.43
185.150.118.39http/1.1www.1mrd.com:80GET /webalizer/usage_201604.html HTTP/1.0

0-23-0/0/1732.
0.00191003462620.00.0022.07
196.206.106.9h2localhost:443GET /webmail/?_task=mail&_caps=pdf%3D1%2Cflash%3D0%2Ctiff%3D0%2

0-23-0/0/1713.
0.00191033083140.00.0017.71
216.209.3.200h2www.villagedesbasprix.com:443[3/3] done: stream 19, GET /webmail/plugins/jqueryui/themes/ela

0-23-0/0/1764.
0.00191002813010.00.0028.75
125.164.23.155http/1.1

0-23-0/0/1720.
0.00191002650300.00.0019.10
103.67.163.79http/1.1localhost:443POST / HTTP/1.1

0-23-0/0/1666.
0.00191003037860.00.0017.05
196.206.106.9http/1.1

0-23-0/0/1798.
0.0019101982845130.00.0027.20
128.199.229.154http/1.1www.seldnwritersgroup.com:443GET //xmlrpc.php?rsd HTTP/1.1

0-23-0/0/1692.
0.00191017212920630.00.0014.79
52.167.144.238h2www.kyaccidentinfo.com:443GET /outwciyas39074 HTTP/2.0

0-23-0/0/1810.
0.0019102402764540.00.0014.91
216.209.3.200h2www.villagedesbasprix.com:443[2/2] done: stream 17, GET /webmail/skins/elastic/deps/bootstra

0-23-0/0/1886.
0.00191003043260.00.0021.40
125.164.17.188http/1.1

0-23-0/0/1708.
0.00191002842620.00.0020.04
185.191.171.17http/1.1www.con-voluted.com:80GET /productkz1456126.html HTTP/1.1

0-23-0/0/1718.
0.00191002801130.00.0024.52
216.209.3.200h2www.villagedesbasprix.com:443[1/1] done: stream 15, GET /webmail/

0-23-0/0/1637.
0.0019102362620250.00.0019.06
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1688.
0.0019102403118250.00.0015.53
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1742.
0.0019102392974360.00.0021.89
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1677.
0.00191002968790.00.0012.94
216.209.3.200h2www.villagedesbasprix.com:443[4/4] done: stream 21, GET /webmail/skins/elastic/images/logo.s

0-23-0/0/1751.
0.00191003294170.00.0025.30
66.249.72.202http/1.1www.structdynamics.com:443GET /item/m6931603001 HTTP/1.1

0-23-0/0/1710.
0.001910552917410.00.0033.82
114.119.143.14http/1.1www.greekvillaparos.com:443GET /tamozhennoe-pravo/kakova-dolya-krazh-v-strukture-prestupno

0-23-0/0/1757.
0.0019102376722060.00.0020.46
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1715.
0.00191002972670.00.0015.33
135.181.183.170http/1.1localhost:80GET /mygov.zip HTTP/1.1

0-23-0/0/1716.
0.0019102372947660.00.0019.37
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1731.
0.001910120192743150.00.0033.14
108.162.241.179h2www.daryam.com:443[1/1] done: stream 1, GET /

0-23-0/0/1701.
0.00191002894730.00.0016.86
17.58.59.23http/1.1www.creativequesters.com:443HEAD /wp-content/uploads/2023/04/Podcast-Episode-Thumbnails-1.p

0-23-0/0/1737.
0.00191002764930.00.0027.28
194.210.235.3http/1.1localhost:80GET / HTTP/1.0

0-23-0/0/1771.
0.00191012952870.00.0023.22
40.77.167.221h2localhost:443[0/0] init

0-23-0/0/1688.
0.0019101253641190.00.0029.05
172.71.123.43h2www.daryam.com:443[0/0] init

0-23-0/0/1640.
0.00191002890820.00.0029.02
85.208.96.205http/1.1www.con-voluted.com:80GET /productjm2063750.html HTTP/1.1

0-23-0/0/1689.
0.00191002789960.00.0021.73
135.181.183.170http/1.1localhost:80GET /mygov/MyGov/personal.html HTTP/1.1

0-23-0/0/1732.
0.00191002952430.00.0025.91
125.164.23.155http/1.1localhost:80GET //.env HTTP/1.1

0-23-0/0/1674.
0.00191033395670.00.0025.39
40.77.167.221h2localhost:443[1/1] done: stream 1, GET /area/%E8%8C%A8%E5%9F%8E%E7%9C%8C

0-23-0/0/1769.
0.00191010932613730.00.0016.19
40.113.203.22http/1.1www.citytours-finland.com:80GET /robots.txt HTTP/1.1

0-23-0/0/1679.
0.00191003104890.00.0042.41
194.210.235.3http/1.1localhost:80GET /robots.txt HTTP/1.0

0-23-0/0/1686.
0.00191002743090.00.0026.48
125.164.18.2http/1.1localhost:80GET //vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1

0-23-0/0/1749.
0.0019102402830820.00.0030.01
128.199.229.154http/1.1www.seldnwritersgroup.com:443POST //xmlrpc.php HTTP/1.1

0-23-0/0/1655.
0.00191002975390.00.0016.24
125.164.23.155http/1.1localhost:443GET //.env HTTP/1.1

0-23-0/0/1700.
0.0019102012774830.00.0027.29
66.249.72.202http/1.1

0-23-0/0/1730.
0.00191012874820.00.0028.67
125.164.18.2http/1.1localhost:443POST / HTTP/1.1

0-23-0/0/1739.
0.00191002884000.00.0014.90
216.209.3.200h2www.villagedesbasprix.com:443[6/6] done: stream 25, GET /webmail/skins/elastic/fonts/fa-soli

0-23-0/0/1686.
0.00191003008630.00.0019.65
66.249.69.104http/1.1www.con-voluted.com:443GET /?productog611405.html HTTP/1.1

0-23-0/0/1698.
0.00191022999380.00.0013.93
17.58.59.20http/1.1www.

Found on 2023-08-16 11:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a0f96071b

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Tuesday, 15-Aug-2023 15:37:06 CDT
Restart Time: Tuesday, 15-Aug-2023 08:07:49 CDT
Parent Server Config. Generation: 21
Parent Server MPM Generation: 20
Server uptime:  7 hours 29 minutes 17 seconds
Server load: 0.72 0.82 0.76
Total accesses: 95577 - Total Traffic: 1.7 GB - Total Duration: 17693066
CPU Usage: u37.51 s11.39 cu281.05 cs56.61 - 1.43% CPU load
3.55 requests/sec - 67.6 kB/second - 19.1 kB/request - 185.118 ms/request
2 requests currently being processed, 126 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
3811578no0yes064000
4811580no8yes262042
Sum208 2126042

................................................................
................................................................
................................................................
________________________________________________________________
________________________________________________________W____R__
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-19-0/0/248.
0.001210704980.00.002.41
74.125.215.34http/1.1

0-19-0/0/264.
0.00121839837010.00.003.65
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/223.
0.001210496170.00.001.78
209.160.112.99http/1.1localhost:80HEAD /bc HTTP/1.1

0-19-0/0/248.
0.001211017600390.00.002.61
66.249.64.106http/1.1

0-19-0/0/230.
0.0012134988010.00.0011.18
74.125.215.34http/1.1www.bncursillo.org:80GET /wp/wp-content/uploads/newsletter/thumbnails/2018/07/bncurs

0-19-0/0/241.
0.001210558290.00.005.19
216.244.66.239http/1.1

0-19-0/0/212.
0.001215376850.00.004.34
114.119.141.35http/1.1www.aoapracticegrowth.com:80GET /CL-K.php HTTP/1.1

0-19-0/0/236.
0.001210509350.00.002.97
34.254.53.125http/1.1

0-19-0/0/224.
0.00121859704580.00.008.65
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/224.
0.001210578960.00.004.85
154.28.229.183http/1.1www.gallery.josephpanizzo.com:4GET / HTTP/1.1

0-19-0/0/236.
0.00121840554910.00.003.83
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/271.
0.00121473513590.00.004.65
209.141.58.11http/1.1www.the100wordproject.com:443POST /wp-login.php HTTP/1.1

0-19-0/0/256.
0.001210629670.00.002.08
34.254.53.125h2www.gallery.josephpanizzo.com:4[0/0] init

0-19-0/0/238.
0.00121832556670.00.002.26
34.254.53.125http/1.1

0-19-0/0/222.
0.00121842533970.00.005.65
41.249.195.145h2www.eljadidashow.com:443[0/0] init

0-19-0/0/243.
0.001210470800.00.003.64
209.141.58.11http/1.1

0-19-0/0/217.
0.001210695760.00.003.79
40.83.2.64http/1.1localhost:443GET /_christmas/herecomessanta/ HTTP/1.1

0-19-0/0/246.
0.001210553190.00.007.73
216.244.66.249http/1.1

0-19-0/0/209.
0.001210704070.00.002.82
216.244.66.239http/1.1www.kyaccidentinfo.com:80GET /robots.txt HTTP/1.1

0-19-0/0/205.
0.00121828699250.00.004.58
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/225.
0.001210635540.00.0021.69
209.160.112.99http/1.1localhost:80HEAD /main HTTP/1.1

0-19-0/0/224.
0.0012101285910.00.003.91
216.244.66.239http/1.1

0-19-0/0/255.
0.001210546650.00.003.35
74.125.215.38http/1.1

0-19-0/0/234.
0.001210560100.00.007.25
120.196.186.248http/1.1www.homeinsite.net:80GET / HTTP/1.0

0-19-0/0/228.
0.001210512820.00.003.67
40.83.2.64http/1.1

0-19-0/0/239.
0.001211505210.00.005.30
188.121.104.92http/1.1

0-19-0/0/234.
0.001210524060.00.0014.00
188.40.138.250http/1.1localhost:80GET /wp-content/plugins/ppus/up.php HTTP/1.1

0-19-0/0/237.
0.00121853497020.00.007.44
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/207.
0.0012101282920.00.006.46
85.208.96.197http/1.1www.con-voluted.com:80GET /productjr329625.html HTTP/1.1

0-19-0/0/212.
0.00121246641220.00.005.62
74.125.215.38http/1.1www.bncursillo.org:443GET /wp/?noti=MTI5OzMxO2Q0YzA3NGM2MGM1NzA4N2M5NWZkMGExN2Y5ODYyM

0-19-0/0/206.
0.001210555920.00.0010.34
216.244.66.239http/1.1www.kyaccidentinfo.com:443GET /robots.txt HTTP/1.1

0-19-0/0/215.
0.001210502740.00.001.80
137.184.201.29h2www.the100wordproject.com:443[0/0] Software caused connection abort

0-19-0/0/209.
0.0012101148400.00.0014.33
66.249.64.106http/1.1www.rossitergroup.co:443GET /gyrwxfhptk/md-63036.html HTTP/1.1

0-19-0/0/239.
0.00121511512570.00.003.13
210.16.189.15http/1.1www.greekvillaparos.gr:443POST /xmlrpc.php HTTP/1.1

0-19-0/0/217.
0.001210447330.00.0015.10
34.254.53.125http/1.1

0-19-0/0/230.
0.001210499960.00.002.47
188.121.104.92http/1.1www.tohealthebroken-hearted.netGET /.env HTTP/1.1

0-19-0/0/218.
0.00121785429320.00.003.51
188.121.104.92http/1.1www.tohealthebroken-hearted.netPOST / HTTP/1.1

0-19-0/0/236.
0.001210789980.00.004.23
209.160.112.99http/1.1localhost:80HEAD /bk HTTP/1.1

0-19-0/0/220.
0.00121853524240.00.007.40
40.83.35.186http/1.1www.casinogamesonline.com:443POST //xmlrpc.php HTTP/1.1

0-19-0/0/241.
0.001210502090.00.0013.64
69.65.10.231http/1.1www.tohealthebroken-hearted.netPOST /wp-cron.php?doing_wp_cron=1692131684.93254303932189941406

0-19-0/0/245.
0.001210586990.00.002.16
188.40.138.250http/1.1

0-19-0/0/235.
0.001210925600.00.005.30
185.191.171.11http/1.1www.con-voluted.com:80GET /productje2571675.html HTTP/1.1

0-19-0/0/210.
0.001210565740.00.002.77
120.196.186.248http/1.1www.homeinsite.net:80GET /schedule-online.html HTTP/1.0

0-19-0/0/206.
0.001210907410.00.003.12
216.244.66.239http/1.1www.kyaccidentinfo.com:80GET /robots.txt HTTP/1.1

0-19-0/0/216.
0.001210839100.00.004.68
35.88.136.166http/1.1localhost:80

Found on 2023-08-15 20:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1aae63255e

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 07-Aug-2023 04:06:26 CDT
Restart Time: Friday, 28-Jul-2023 02:00:23 CDT
Parent Server Config. Generation: 431
Parent Server MPM Generation: 430
Server uptime:  10 days 2 hours 6 minutes 2 seconds
Server load: 0.25 0.10 0.07
Total accesses: 1204950 - Total Traffic: 14.2 GB - Total Duration: 317978351
CPU Usage: u366.17 s126.06 cu3170.62 cs750.37 - .506% CPU load
1.38 requests/sec - 17.1 kB/second - 12.4 kB/request - 263.893 ms/request
3 requests currently being processed, 61 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02037674no29yes3610233
Sum1029 3610233

__________________________________________W___________R___W_____
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-43020376740/179/4406_
24.2302398199700.00.7752.14
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-admin/post-new.php HTTP/1.1

0-43020376740/82/4001_
24.0602477002780.00.9442.34
172.70.85.51h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-43020376740/88/3981_
24.11106689470.01.7245.17
167.71.48.191http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-43020376740/86/4119_
24.17006256670.00.8245.05
139.59.182.142http/1.1localhost:80GET /.DS_Store HTTP/1.1

0-43020376740/94/3979_
24.13005909350.00.4744.44
172.71.242.194h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-43020376740/86/4031_
23.7102497335780.01.2174.84
172.70.85.51h2localhost:443[0/0] init

0-43020376740/89/3996_
23.97006523800.00.7538.30
172.70.91.81h2localhost:443[0/0] init

0-43020376740/86/4020_
24.190011168180.00.3245.79
2604:a880:4:1d0::524:6000http/1.1localhost:443GET / HTTP/2.0

0-43020376740/92/4212_
23.330015844800.01.6946.48
218.187.84.180h2localhost:443[0/0] init

0-43020376740/98/4047_
24.21006276120.00.5444.28
139.59.182.142http/1.1localhost:80GET /s/733323e2831323e27363e2237313/_/;/META-INF/maven/com.atla

0-43020376740/83/4006_
23.8803617101790.01.8152.93
192.210.175.159http/1.1

0-43020376740/88/4103_
24.2404058384580.01.5748.99
138.199.55.214http/1.1www.christina-howell.com:443GET / HTTP/1.0

0-43020376740/82/4420_
24.1902477365560.00.5234.96
192.210.175.159http/1.1www.ottolenghillc.com:80POST /topics/log-in?login=bounced HTTP/1.1

0-43020376740/98/4029_
24.19006985060.00.6392.89
139.59.182.142http/1.1localhost:80GET /.git/config HTTP/1.1

0-43020376740/94/4235_
24.12107733190.01.1265.56
218.187.84.180h2localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-43020376740/93/4104_
24.21005838240.01.4240.00
167.71.48.191http/1.1localhost:80GET /.DS_Store HTTP/1.1

0-43020376740/79/3981_
24.1702487919810.00.6333.07
172.71.102.148h2localhost:443[2/2] done: stream 3, GET /v2/_catalog

0-43020376740/95/4168_
24.18106371290.01.5534.81
139.59.182.142http/1.1localhost:80GET /.env HTTP/1.1

0-43020376740/86/4102_
23.97008010030.00.8736.72
172.70.46.37h2localhost:443[0/0] init

0-43020376740/94/4142_
24.23007232790.02.3569.33
139.59.182.142http/1.1localhost:80GET /config.json HTTP/1.1

0-43020376740/73/4080_
24.1601915732990.01.2337.63
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.ottolenghillc.co

0-43020376740/109/3971_
24.17006041030.01.7441.50
2604:a880:4:1d0::524:6000http/1.1localhost:443GET / HTTP/2.0

0-43020376740/75/4026_
24.15007063040.00.7653.12
139.59.182.142http/1.1localhost:80GET /login.action HTTP/1.1

0-43020376740/92/3993_
24.23039911401230.01.0036.05
173.236.168.10http/1.1www.gofindglow.com:443GET /wp-login.php HTTP/1.1

0-43020376740/122/4025_
24.18007430510.01.9348.61
167.71.48.191http/1.1localhost:80GET /_all_dbs HTTP/1.1

0-43020376740/85/4136_
24.25006184270.02.5749.42
139.59.182.142http/1.1localhost:80GET /telescope/requests HTTP/1.1

0-43020376740/87/4036_
24.0502538902270.00.8731.38
172.71.242.194h2localhost:443[0/0] init

0-43020376740/96/4248_
24.210011056010.05.4149.04
139.59.182.142http/1.1localhost:443GET / HTTP/2.0

0-43020376740/84/4002_
24.1902467509320.01.7048.33
2a03:b0c0:2:d0::e30:8001http/1.1localhost:443GET / HTTP/2.0

0-43020376740/91/3997_
24.0204157087850.01.3147.26
172.71.154.89h2localhost:443[0/0] init

0-43020376740/78/4125_
24.12006848710.01.3538.57
139.59.182.142http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-43020376740/90/3994_
23.9411957255810.01.1965.85
192.210.175.159http/1.1

0-43020376740/105/3877_
24.1802498021960.00.5639.49
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/90/3908_
23.32006123530.01.3933.77
172.70.46.31h2localhost:443[0/0] init

0-43020376740/96/3961_
24.23006449690.00.7446.39
167.71.48.191http/1.1localhost:80GET /.env HTTP/1.1

0-43020376740/92/3984_
23.62006182240.01.3427.90
192.210.175.159http/1.1

0-43020376740/90/3975_
24.0402806201700.01.7843.42
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/90/3964_
24.10005959210.00.7554.26
172.71.182.211h2localhost:443[1/1] done: stream 1, GET /server-status

0-43020376740/94/3878_
23.62005513310.00.7997.87
172.71.158.157h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/90/4152_
24.09009315420.01.0237.74
172.71.182.211h2localhost:443[0/0] init

0-43020376740/98/4317_
24.1212506356110.01.3653.76
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/86/3885_
24.0902075962790.00.9134.90
172.70.91.81h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-43020376741/133/4018W
23.48005750480.01.7445.63
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F

Found on 2023-08-07 09:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ca226f1aca226f1a348c07f3

Apache Status

Apache Server Status for nutritionsteps.org (via 69.65.10.231)

Server Version: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
Server MPM: event
Server Built: Jul 21 2023 07:47:12

Current Time: Monday, 07-Aug-2023 04:06:26 CDT
Restart Time: Friday, 28-Jul-2023 02:00:23 CDT
Parent Server Config. Generation: 431
Parent Server MPM Generation: 430
Server uptime:  10 days 2 hours 6 minutes 2 seconds
Server load: 0.25 0.10 0.07
Total accesses: 1204944 - Total Traffic: 14.2 GB - Total Duration: 317977307
CPU Usage: u366.15 s126.06 cu3170.62 cs750.37 - .506% CPU load
1.38 requests/sec - 17.1 kB/second - 12.4 kB/request - 263.894 ms/request
4 requests currently being processed, 60 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02037674no30yes4601233
Sum1030 4601233

W__________W___________W_____________R__________________________
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-43020376741/178/4405W
24.09008197300.00.7652.14
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-admin/post-new.php HTTP/1.1

0-43020376740/82/4001_
24.0602477002780.00.9442.34
172.70.85.51h2localhost:443[1/1] done: stream 1, GET /.vscode/sftp.json

0-43020376740/88/3981_
24.11006689470.01.7245.17
167.71.48.191http/1.1localhost:80GET /debug/default/view?panel=config HTTP/1.1

0-43020376740/86/4119_
24.17106256670.00.8245.05
139.59.182.142http/1.1localhost:80GET /.DS_Store HTTP/1.1

0-43020376740/94/3979_
24.13005909350.00.4744.44
172.71.242.194h2localhost:443[1/1] done: stream 1, GET /v2/_catalog

0-43020376740/86/4031_
23.7102497335780.01.2174.84
172.70.85.51h2localhost:443[0/0] init

0-43020376740/89/3996_
23.97006523800.00.7538.30
172.70.91.81h2localhost:443[0/0] init

0-43020376740/86/4020_
24.190011168180.00.3245.79
2604:a880:4:1d0::524:6000http/1.1localhost:443GET / HTTP/2.0

0-43020376740/92/4212_
23.330015844800.01.6946.48
218.187.84.180h2localhost:443[0/0] init

0-43020376740/98/4047_
24.21006276120.00.5444.28
139.59.182.142http/1.1localhost:80GET /s/733323e2831323e27363e2237313/_/;/META-INF/maven/com.atla

0-43020376740/83/4006_
23.8803617101790.01.8152.93
192.210.175.159http/1.1

0-43020376741/87/4102W
24.14008380530.01.5648.97
138.199.55.214http/1.1www.christina-howell.com:443GET / HTTP/1.0

0-43020376740/82/4420_
24.1902477365560.00.5234.96
192.210.175.159http/1.1www.ottolenghillc.com:80POST /topics/log-in?login=bounced HTTP/1.1

0-43020376740/98/4029_
24.19006985060.00.6392.89
139.59.182.142http/1.1localhost:80GET /.git/config HTTP/1.1

0-43020376740/94/4235_
24.12007733190.01.1265.56
218.187.84.180h2localhost:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0

0-43020376740/93/4104_
24.21005838240.01.4240.00
167.71.48.191http/1.1localhost:80GET /.DS_Store HTTP/1.1

0-43020376740/79/3981_
24.1702487919810.00.6333.07
172.71.102.148h2localhost:443[2/2] done: stream 3, GET /v2/_catalog

0-43020376740/95/4168_
24.18006371290.01.5534.81
139.59.182.142http/1.1localhost:80GET /.env HTTP/1.1

0-43020376740/86/4102_
23.97008010030.00.8736.72
172.70.46.37h2localhost:443[0/0] init

0-43020376740/94/4142_
24.23007232790.02.3569.33
139.59.182.142http/1.1localhost:80GET /config.json HTTP/1.1

0-43020376740/73/4080_
24.1601915732990.01.2337.63
192.210.175.159http/1.1www.ottolenghillc.com:80GET /wp-login.php?redirect_to=http%3A%2F%2Fwww.ottolenghillc.co

0-43020376740/109/3971_
24.17006041030.01.7441.50
2604:a880:4:1d0::524:6000http/1.1localhost:443GET / HTTP/2.0

0-43020376740/75/4026_
24.15007063040.00.7653.12
139.59.182.142http/1.1localhost:80GET /login.action HTTP/1.1

0-43020376741/91/3992W
23.970011397230.00.9936.05
173.236.168.10http/1.1www.gofindglow.com:443GET /wp-login.php HTTP/1.1

0-43020376740/122/4025_
24.18007430510.01.9348.61
167.71.48.191http/1.1localhost:80GET /_all_dbs HTTP/1.1

0-43020376740/84/4135_
24.03036184260.02.5749.41
172.70.162.194h2localhost:443[1/1] done: stream 1, GET /debug/default/view?panel=config

0-43020376740/87/4036_
24.0502538902270.00.8731.38
172.71.242.194h2localhost:443[0/0] init

0-43020376740/96/4248_
24.210011056010.05.4149.04
139.59.182.142http/1.1localhost:443GET / HTTP/2.0

0-43020376740/84/4002_
24.1902467509320.01.7048.33
2a03:b0c0:2:d0::e30:8001http/1.1localhost:443GET / HTTP/2.0

0-43020376740/91/3997_
24.0214157087850.01.3147.26
172.71.154.89h2localhost:443[0/0] init

0-43020376740/78/4125_
24.12006848710.01.3538.57
139.59.182.142http/1.1localhost:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-43020376740/90/3994_
23.9401957255810.01.1965.85
192.210.175.159http/1.1

0-43020376740/105/3877_
24.1802498021960.00.5639.49
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/90/3908_
23.32006123530.01.3933.77
172.70.46.31h2localhost:443[0/0] init

0-43020376740/96/3961_
24.23006449690.00.7446.39
167.71.48.191http/1.1localhost:80GET /.env HTTP/1.1

0-43020376740/92/3984_
23.62006182240.01.3427.90
192.210.175.159http/1.1

0-43020376740/90/3975_
24.0402806201700.01.7843.42
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/90/3964R
24.10105959210.00.7554.26
172.71.182.211h2localhost:443[1/0] schedule: stream 1, GET /server-status

0-43020376740/94/3878_
23.62005513310.00.7997.87
172.71.158.157h2localhost:443[1/1] done: stream 1, GET /

0-43020376740/90/4152_
24.09009315420.01.0237.74
172.71.182.211h2localhost:443[0/0] init

0-43020376740/98/4317_
24.1202506356110.01.3653.76
192.210.175.159http/1.1www.ottolenghillc.com:80GET /topics/log-in?login=bounced HTTP/1.1

0-43020376740/86/3885_
24.0902075962790.00.9134.90
172.70.91.81h2localhost:443[1/1] done: stream 1, GET /ecp/Current/exporttool/microsoft.exc

0-43020376740/133/4018_
23.4801805750480.01.7445.63
40.77.167.195h2www.kyaccidentinfo.com:443[1/1

Found on 2023-08-07 09:05

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: phipipolesend.gq
Port: 80
URL: http://phipipolesend.gq

First seen 2022-12-16 07:33
Last seen 2023-09-06 18:35
Open for 264 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-16 07:33
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: phipipolesend.gq
Port: 443
URL: https://phipipolesend.gq

First seen 2022-12-16 07:33
Last seen 2023-09-06 18:35
Open for 264 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-16 07:33
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: dharlilritetheve.tk
Port: 443
URL: https://dharlilritetheve.tk

First seen 2022-09-06 01:23
Last seen 2023-09-03 16:12
Open for 362 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-06 01:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: dharlilritetheve.tk
Port: 80
URL: http://dharlilritetheve.tk

First seen 2022-09-06 01:23
Last seen 2023-09-03 16:12
Open for 362 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-06 01:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: derloadram.tk
Port: 80
URL: http://derloadram.tk

First seen 2022-11-02 02:19
Last seen 2023-08-31 17:06
Open for 302 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 02:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: derloadram.tk
Port: 443
URL: https://derloadram.tk

First seen 2022-11-02 02:19
Last seen 2023-08-31 17:06
Open for 302 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 02:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: thankmapulim.tk
Port: 443
URL: https://thankmapulim.tk

First seen 2022-09-10 08:09
Last seen 2023-08-30 15:18
Open for 354 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-10 08:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: neysecniarisifi.tk
Port: 80
URL: http://neysecniarisifi.tk

First seen 2022-10-21 01:06
Last seen 2023-08-30 10:36
Open for 313 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-21 01:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: crowunepne.tk
Port: 80
URL: http://crowunepne.tk

First seen 2022-10-14 01:19
Last seen 2023-08-29 11:12
Open for 319 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 01:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: crowunepne.tk
Port: 443
URL: https://crowunepne.tk

First seen 2022-10-14 01:19
Last seen 2023-08-29 11:12
Open for 319 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 01:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: prechoxarpo.gq
Port: 80
URL: http://prechoxarpo.gq

First seen 2022-09-08 21:36
Last seen 2023-08-29 03:56
Open for 354 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-08 21:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: loinerscunerceepe.tk
Port: 443
URL: https://loinerscunerceepe.tk

First seen 2022-09-26 07:36
Last seen 2023-08-27 06:06
Open for 334 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 07:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: loinerscunerceepe.tk
Port: 80
URL: http://loinerscunerceepe.tk

First seen 2022-09-26 07:36
Last seen 2023-08-27 06:06
Open for 334 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 07:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: neutracterpwa.tk
Port: 80
URL: http://neutracterpwa.tk

First seen 2022-12-23 02:22
Last seen 2023-08-22 01:15
Open for 241 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-23 02:22
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: neutracterpwa.tk
Port: 443
URL: https://neutracterpwa.tk

First seen 2022-12-23 02:22
Last seen 2023-08-22 01:15
Open for 241 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-23 02:22
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: trannondiepear.tk
Port: 443
URL: https://trannondiepear.tk

First seen 2022-12-28 02:06
Last seen 2023-08-21 10:13
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-28 02:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: doppgefitlarealse.tk
Port: 443
URL: https://doppgefitlarealse.tk

First seen 2022-10-24 00:55
Last seen 2023-08-20 02:16
Open for 300 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-24 00:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: kezocentjest.tk
Port: 443
URL: https://kezocentjest.tk

First seen 2022-12-22 00:55
Last seen 2023-08-16 09:10
Open for 237 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-22 00:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: kezocentjest.tk
Port: 80
URL: http://kezocentjest.tk

First seen 2022-12-22 00:55
Last seen 2023-08-16 09:10
Open for 237 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-22 00:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: aphuasirafu.gq
Port: 443
URL: https://aphuasirafu.gq

First seen 2022-12-13 02:58
Last seen 2023-08-06 12:21
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-13 02:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: aphuasirafu.gq
Port: 80
URL: http://aphuasirafu.gq

First seen 2022-12-13 02:58
Last seen 2023-08-06 12:21
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-13 02:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: stomustentheicrozas.tk
Port: 443
URL: https://stomustentheicrozas.tk

First seen 2022-09-03 01:21
Last seen 2023-08-04 02:39
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-03 01:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: reibridofacon.gq
Port: 443
URL: https://reibridofacon.gq

First seen 2022-09-02 00:46
Last seen 2023-08-03 02:14
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-02 00:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: reibridofacon.gq
Port: 80
URL: http://reibridofacon.gq

First seen 2022-09-02 00:46
Last seen 2023-08-03 02:14
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-02 00:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: rupsilant.gq
Port: 443
URL: https://rupsilant.gq

First seen 2023-05-31 03:59
Last seen 2023-07-29 10:06
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-31 03:59
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: tragsurilgomathelp.tk
Port: 80
URL: http://tragsurilgomathelp.tk

First seen 2022-10-23 03:31
Last seen 2023-07-26 03:09
Open for 275 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-23 03:31
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: inunplexopunig.tk
Port: 443
URL: https://inunplexopunig.tk

First seen 2023-05-24 15:47
Last seen 2023-07-22 08:58
Open for 58 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-24 15:47
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: caicrosulin.cf
Port: 443
URL: https://caicrosulin.cf

First seen 2023-05-24 03:05
Last seen 2023-07-22 08:55
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-24 03:05
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: progagru.ml
Port: 80
URL: http://progagru.ml

First seen 2022-09-06 16:46
Last seen 2023-07-12 00:48
Open for 308 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-06 16:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: progagru.ml
Port: 443
URL: https://progagru.ml

First seen 2022-09-06 16:46
Last seen 2023-07-12 00:48
Open for 308 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-06 16:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: arunphemoweb.gq
Port: 80
URL: http://arunphemoweb.gq

First seen 2022-10-02 04:46
Last seen 2023-07-09 22:33
Open for 280 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-02 04:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: divalgolddeftlivi.tk
Port: 443
URL: https://divalgolddeftlivi.tk

First seen 2022-11-03 01:38
Last seen 2023-06-30 01:37
Open for 238 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-03 01:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: divalgolddeftlivi.tk
Port: 80
URL: http://divalgolddeftlivi.tk

First seen 2022-11-03 01:38
Last seen 2023-06-30 01:37
Open for 238 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-03 01:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: taipickcheap.tk
Port: 443
URL: https://taipickcheap.tk

First seen 2022-12-27 03:57
Last seen 2023-06-22 06:36
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-27 03:57
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: hyercalling.org
Port: 80
URL: http://hyercalling.org

First seen 2023-06-22 01:43
Last seen 2023-06-22 01:43
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e2cd21bea3d58be63b317bf3d668637bd
```
Found 6 files trough .DS_Store spidering:

/assets
/assets/media
/assets2
/assets2/assets
/images
/images/team
```
  Found on 2023-06-22 01:43
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: hyercalling.org
Port: 443
URL: https://hyercalling.org

First seen 2023-02-22 23:42
Last seen 2023-06-22 01:43
Open for 119 days

Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e2cd21bea3d58be63b317bf3d668637bd
```
Found 6 files trough .DS_Store spidering:

/assets
/assets/media
/assets2
/assets2/assets
/images
/images/team
```
Found on 2023-06-22 01:43

Severity: low
Fingerprint: 5f32cf5d6962f09c026392ab026392abfba5f9f589a4b13d77a666d0ef8e1383

Found 7 files trough .DS_Store spidering:

/assets2
/assets2/assets
/assets2/assets/dist
/assets2/assets/source
/assets2/color-switcher
/images
/includes

Found on 2023-02-22 23:42

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcfb764f911f3defde148a28f9c3b82478f

Found 25 files trough .DS_Store spidering:

/assets2
/assets2/assets
/assets2/assets/dist
/assets2/assets/source
/assets2/assets/source/css
/assets2/assets/source/js
/assets2/assets/source/scss
/assets2/assets/source/scss/colors
/assets2/assets/source/scss/scss-bootstrap
/assets2/assets/source/scss/scss-core
/assets2/assets/source/scss/scss-core/footer
/assets2/assets/source/scss/scss-core/header
/assets2/assets/source/scss/scss-core/mixins
/assets2/assets/source/scss/scss-core/news
/assets2/assets/source/scss/scss-core/parts
/assets2/assets/source/scss/scss-core/shop
/assets2/assets/source/scss/scss-core/shortcodes
/assets2/assets/source/scss/scss-core/widgets
/assets2/assets/source/scss/scss-dark
/assets2/assets/source/scss/scss-extend-plugins
/assets2/assets/source/scss/scss-override
/assets2/assets/source/scss/scss-override-colors
/assets2/color-switcher
/images
/includes

Found on 2023-02-22 23:42

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: tiokingting.ml
Port: 443
URL: https://tiokingting.ml

First seen 2023-06-11 03:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-11 03:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: hubchandliphake.ml
Port: 443
URL: https://hubchandliphake.ml

First seen 2022-10-23 04:01
Last seen 2023-06-01 21:40
Open for 221 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-23 04:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: treamunlimibackmang.ga
Port: 80
URL: http://treamunlimibackmang.ga

First seen 2022-09-14 02:15
Last seen 2023-05-12 23:11
Open for 240 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-14 02:15
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: putty-candys.xyz
Port: 443
URL: https://putty-candys.xyz

First seen 2023-05-11 14:44

Severity: medium
Fingerprint: 5f32cf5d6962f09cb7af8d83b7af8d8337fcba0b6cc1eac049bb5cd18f9bb8cb

Found 87 files trough .DS_Store spidering:

/alllang
/alllang/static
/alllang/static/css
/alllang/static/font
/alllang/static/image
/alllang/static/images
/alllang/static/js
/alllang/static/picture
/app
/app/static
/get-test
/layer
/layer/mobile
/layer/theme
/p_static1
/p_static1/css
/p_static1/img
/p_static1/img1
/p_static1/js
/public
/public/css
/public/img
/public/js
/public/js/layer_mobile
/public/js/picker
/red
/red/bootstrap
/red/bootstrap/css
/red/bootstrap/js
/red/swiper
/static
/static/images
/static/myself
/static/plugs
/static/plugs/angular
/static/plugs/awesome
/static/plugs/ckeditor
/static/plugs/echarts
/static/plugs/jquery
/static/plugs/layui
/static/plugs/michat
/static/plugs/require
/static/plugs/socket
/static/plugs/supersized
/static/plugs/ztree
/static/theme
/static/theme/css
/static/theme/img
/static/theme/img/login
/static/theme/img/wechat
/static_down
/static_down/css
/static_down/images
/static_down/js
/static_down/picture
/static_indonesia
/static_indonesia/headimg
/static_indonesia/img
/static_new
/static_new/css
/static_new/img
/static_new/js
/static_new/mobiscroll
/static_new6
/static_new6/css
/static_new6/headimg
/static_new6/img
/static_new6/js
/statics
/statics/css
/statics/img
/statics/js
/statics/vender
/statics/vender/intl-tel-input-master
/statics/vender/intl-tel-input-master/css
/statics/vender/intl-tel-input-master/img
/statics/vender/intl-tel-input-master/js
/upload
/upload/07f9bd299a7e293c
/upload/0ecd73550d517532
/upload/1394cea241781fa6
/upload/down
/upload/goods_img
/upload/goods_img/大家电
/upload/goods_img/户外服饰
/upload/goods_img/手机数码
/upload/goods_img/特色美食

Found on 2023-05-11 14:44

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: leparwebstidite.tk
Port: 443
URL: https://leparwebstidite.tk

First seen 2022-12-27 02:49
Last seen 2023-04-24 03:30
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-27 02:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: climbereb.tk
Port: 80
URL: http://climbereb.tk

First seen 2022-12-24 02:23
Last seen 2023-04-21 09:17
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-24 02:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: climbereb.tk
Port: 443
URL: https://climbereb.tk

First seen 2022-12-24 02:23
Last seen 2023-04-21 09:16
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-24 02:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: boldpaver.cf
Port: 80
URL: http://boldpaver.cf

First seen 2022-09-16 11:38
Last seen 2023-03-23 18:28
Open for 188 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 11:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: boldpaver.cf
Port: 443
URL: https://boldpaver.cf

First seen 2022-09-16 11:38
Last seen 2023-03-23 18:28
Open for 188 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 11:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: durchguter.ga
Port: 80
URL: http://durchguter.ga

First seen 2022-09-13 00:38
Last seen 2023-03-09 01:10
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-13 00:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: terlisurmondge.tk
Port: 80
URL: http://terlisurmondge.tk

First seen 2022-12-22 01:01
Last seen 2023-03-05 20:10
Open for 73 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-22 01:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: samtijonday.gq
Port: 80
URL: http://samtijonday.gq

First seen 2023-02-17 20:54
Last seen 2023-02-26 05:39
Open for 8 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-17 20:54
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: probcomgazest.gq
Port: 80
URL: http://probcomgazest.gq

First seen 2022-09-25 21:41
Last seen 2023-01-25 22:58
Open for 122 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-25 21:41
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: probcomgazest.gq
Port: 443
URL: https://probcomgazest.gq

First seen 2022-09-25 21:41
Last seen 2023-01-25 22:58
Open for 122 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-25 21:41
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: silkcoxycasur.ga
Port: 80
URL: http://silkcoxycasur.ga

First seen 2022-09-12 23:33
Last seen 2023-01-09 03:14
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-12 23:33
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: silkcoxycasur.ga
Port: 443
URL: https://silkcoxycasur.ga

First seen 2022-09-12 23:34
Last seen 2023-01-09 03:14
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-12 23:34
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: lyalithinketatorch.tk
Port: 80
URL: http://lyalithinketatorch.tk

First seen 2022-11-02 02:18
Last seen 2022-12-31 16:36
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 02:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: warrerapapereg.ga
Port: 443
URL: https://warrerapapereg.ga

First seen 2022-10-29 02:09
Last seen 2022-12-27 13:31
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-29 02:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: warrerapapereg.ga
Port: 80
URL: http://warrerapapereg.ga

First seen 2022-10-29 02:09
Last seen 2022-12-27 13:31
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-29 02:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: thandcansconstemtarl.tk
Port: 80
URL: http://thandcansconstemtarl.tk

First seen 2022-10-20 02:28
Last seen 2022-12-18 10:56
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-20 02:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: hepweipa.ga
Port: 443
URL: https://hepweipa.ga

First seen 2022-10-19 03:58
Last seen 2022-12-17 12:00
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-19 03:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: veylyradesal.tk
Port: 443
URL: https://veylyradesal.tk

First seen 2022-10-14 01:13
Last seen 2022-12-12 01:38
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 01:13
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: perssokersvingparu.tk
Port: 443
URL: https://perssokersvingparu.tk

First seen 2022-09-23 02:15
Last seen 2022-11-21 05:13
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-23 02:15
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: opprovinensisho.ml
Port: 443
URL: https://opprovinensisho.ml

First seen 2022-09-23 01:39
Last seen 2022-11-21 04:22
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-23 01:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: opprovinensisho.ml
Port: 80
URL: http://opprovinensisho.ml

First seen 2022-09-23 01:39
Last seen 2022-11-21 04:22
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-23 01:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: eboutdrenxeboldtrax.ga
Port: 80
URL: http://eboutdrenxeboldtrax.ga

First seen 2022-11-03 01:15
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-03 01:15
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: paubanlearnleg.tk
Port: 443
URL: https://paubanlearnleg.tk

First seen 2022-08-31 23:14
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-31 23:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: paubanlearnleg.tk
Port: 80
URL: http://paubanlearnleg.tk

First seen 2022-08-31 23:14
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-31 23:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: wiecredrepji.ga
Port: 80
URL: http://wiecredrepji.ga

First seen 2022-08-30 01:48
Last seen 2022-08-30 01:48
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-30 01:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.24.129
Domain: wiecredrepji.ga
Port: 443
URL: https://wiecredrepji.ga

First seen 2022-08-30 01:48
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-30 01:48
Create report

Open service 104.21.24.129:443 · bonoraottoni.com

2026-01-26 10:44

HTTP/1.1 200 OK
Date: Mon, 26 Jan 2026 10:44:52 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=LRLrziTaggEVzv6b3GZfwJrKEMkRNQl7FRS0TQes7RGjiy4cINe1KraIilY2A4zgwhCxxb9QeftJTWlHqKhQ1H6Mtu1UDAL4fxbRYES2jFs%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-cache-status: DYNAMIC
Set-Cookie: __cf_bm=MTr31z9wdaYEcIa1r_zOyjd5yQmL2J3ALXbMuHSvlAc-1769424292-1.0.1.1-SDGoBMkkOPxKqSjk6XJliS3Dy6WpXgz3K3gN9VCBAKj1cdvOuC7nBriouVJkG2NaMzzYVJ_eQ7swtlfg.7NaOb7r5E3WZl66uzzguZt28TawgHn_M8GJ_9TUgvvigrMB; path=/; expires=Mon, 26-Jan-26 11:14:52 GMT; domain=.bonoraottoni.com; HttpOnly; Secure; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 9c3f6ae5cbe6c236-SJC

Page title: Cloudflare

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="UTF-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
    <title>Cloudflare</title>
    <link rel="stylesheet" href="style.css" />
  </head>
  <body>
    <main>
      <header>
        <h1><span id="domain-name"></span></h1>
        <h2>
          The owner of this domain hasn't put up a website yet. Try visiting
          again soon. This domain is registered using
          <a
            href="https://www.cloudflare.com/products/registrar/"
            target="_blank"
            >Cloudflare Registrar.
            <svg
              width="16"
              height="16"
              viewBox="0 0 16 16"
              fill="none"
              xmlns="http://www.w3.org/2000/svg"
            >
              <path
                d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z"
                fill="currentColor"
              />
              <path
                d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z"
                fill="currentColor"
              />
            </svg>
          </a>
        </h2>
      </header>

      <h3>Are you the domain owner?</h3>

      <section>
        <p>
          Log in to the Cloudflare Dashboard to
          <a
            href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/"
            target="_blank"
            >create a root domain record.
            <svg
              width="16"
              height="16"
              viewBox="0 0 16 16"
              fill="none"
              xmlns="http://www.w3.org/2000/svg"
            >
              <path
                d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z"
                fill="currentColor"
              />
              <path
                d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z"
                fill="currentColor"
              />
            </svg>
          </a>
        </p>
      </section>

      <h3>What is Cloudflare?</h3>

      <section>
        <p>
          Cloudflare is a global cloud provider designed to make everything you
          connect to the Internet secure, private, fast, and reliable. Our
          mission is to help build a better Internet.
        </p>
      </section>

      <section class="promotional-cards">
        <a href="https://1.1.1.1/" target="_blank">
          <section>
            <h2>
              Download 1.1.1.1 — the free app that makes your Internet safer.
            </h2>
            <p>
              Protect your traffic and speed up your connection on all your
              devices.
            </p>
          </section>
        </a>
        <a
          href="https://www.cloudflare.com/products/registrar/"
          target="_blank"
        >
          <section>
            <h2>
              Register your own domain name for the lowest cost, every time.
            </h2>
            <p>
              Cloudflare Registrar charges wholesale prices, without sneaky
              markups.
            </p>
          </section>
        </a>
      </section>
      <div class="animation_wrapper">
        <div class="animation animation_center"></div>
        <div class="animation animation_left"></div>
        <div class="animation animation_right"></div>
      </div>
    </main>
    <footer>
      <div class="footer-border">
        <div class="footer-left">
          <svg
            width="80"
            height="2"
            fill="none"
            xmlns="http://www.w3.org/2000/svg"
          >
            <mask
              id="b"
              style="mask-type: alpha"
              maskUnits="userSpaceOnUse"
              x="0"
              y="0"
              width="80"
              height="2"
            >
              <path fill="

Found 2026-01-26 by HttpPlugin

Host 104.21.24.129

United States

Software information

Git configuration and history exposed

MacOS file listing through .DS_Store file

GraphQL introspection is enabled.

Swagger API description is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Apache server-status page is publicly available

Apache server-status page is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Apache server-status page is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

Git configuration and history exposed

Apache server-status page is publicly available

Apache server-status page is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file