Host 104.21.46.114
Software information
cloudflare
tcp/443 tcp/80 tcp/8443
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2024-09-01 10:36
Last seen 2026-02-09 21:47
Open for 526 days-
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df139a1678Found 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp /template/alpha/desktop/assets/7winbet/img/home/Device.webp /template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif /template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp /template/alpha/desktop/assets/7winbet/img/home/Our Game /template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive /template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino /template/alpha/desktop/assets/7winbet/img/home/Provider /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp /template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp /template/alpha/desktop/assets/7winbet/img/logo/bank /template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/white /template/alpha/desktop/assets/7winbet/img/logo/bank-depo /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bca.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bni.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/cimb.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/dana.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/gopay.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/jenius.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/linkaja.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mandiri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/maybank.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mega.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/ovo.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/panin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/permata.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/qr /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/va /template/alpha/desktop/assets/7winbet/img/logo/bank-footer /template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp /template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp /template/alpha/desktop/assets/7winbet/img/logo/Caution.webp /template/alpha/desktop/assets/7winbet/img/logo/cautious.webp /template/alpha/desktop/assets/7winbet/img/logo/check.webp /template/alpha/desktop/assets/7winbet/img/logo/cross.webp /template/alpha/desktop/assets/7winbet/img/logo/favicon.webp /template/alpha/desktop/assets/7winbet/img/logo/flag /template/alpha/desktop/assets/7winbet/img/logo/history-game.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp /template/alpha/desktop/assets/7winbet/img/logo/idnlive /template/alpha/desktop/assets/7winbet/img/logo/logo.webp /template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif /template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp /template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp /template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp /template/alpha/desktop/assets/7winbet/img/logo/slots /template/alpha/desktop/assets/7winbet/img/logo/tembak /template/alpha/desktop/assets/7winbet/img/logo/template-background.webp /template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/Maintenance/gameMT /template/alpha/desktop/assets/7winbet/img/Maintenance/games /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook
Found on 2026-02-09 21:47 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193dd5522a3d95d73832101a8d379d81292Found 36 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/js /template/alpha/desktop /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-30 23:17 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd53ac2c85bb142a19dd6321012ce2ec5cFound 38 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-28 17:52 -
Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45e7880e7d12ff5e81f47e5999206d7535Found 30 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/js /template/alpha/desktop /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-28 08:04 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3dfc70f6c7cFound 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp /template/alpha/desktop/assets/7winbet/img/home/Device.webp /template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif /template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp /template/alpha/desktop/assets/7winbet/img/home/Our Game /template/alpha/desktop/assets/7winbet/img/home/Provider /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak /template/alpha/desktop/assets/7winbet/img/togel /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot /template/alpha/desktop/assets/klik99 /template/alpha/desktop/assets/klikslots /template/alpha/desktop/assets/klubslot /template/alpha/desktop/assets/koinid /template/alpha/desktop/assets/koinslots /template/alpha/desktop/assets/koinvegas /template/alpha/desktop/assets/landslot /template/alpha/desktop/assets/ligaplay88 /template/alpha/desktop/assets/maniaslot /template/alpha/desktop/assets/megahoki88 /template/alpha/desktop/assets/nagagg /template/alpha/desktop/assets/niagabet /template/alpha/desktop/assets/nyalabet /template/alpha/desktop/assets/permatabet /template/alpha/desktop/assets/playslots88 /template/alpha/desktop/assets/powernet /template/alpha/desktop/assets/qq88bet /template/alpha/desktop/assets/shienslot /template/alpha/desktop/assets/shiobet /template/alpha/desktop/assets/simplebet8 /template/alpha/desktop/assets/slotasiabet /template/alpha/desktop/assets/slotid88 /template/alpha/desktop/assets/slotsgg /template/alpha/desktop/assets/stasiunplay /template/alpha/desktop/assets/tester /template/alpha/desktop/assets/tester2 /template/alpha/desktop/assets/tradisibet /template/alpha/desktop/assets/ubocash /template/alpha/desktop/assets/vegasgg /template/alpha/desktop/assets/vegashoki88 /template/alpha/desktop/assets/vipbet88
Found on 2025-11-26 22:54 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df143f7f6eFound 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp /template/alpha/desktop/assets/7winbet/img/home/Device.webp /template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif /template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp /template/alpha/desktop/assets/7winbet/img/home/Our Game /template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive /template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino /template/alpha/desktop/assets/7winbet/img/home/Provider /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp /template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp /template/alpha/desktop/assets/7winbet/img/logo/bank /template/alpha/desktop/assets/7winbet/img/logo/bank-depo /template/alpha/desktop/assets/7winbet/img/logo/bank-footer /template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp /template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp /template/alpha/desktop/assets/7winbet/img/logo/Caution.webp /template/alpha/desktop/assets/7winbet/img/logo/cautious.webp /template/alpha/desktop/assets/7winbet/img/logo/check.webp /template/alpha/desktop/assets/7winbet/img/logo/cross.webp /template/alpha/desktop/assets/7winbet/img/logo/favicon.webp /template/alpha/desktop/assets/7winbet/img/logo/flag /template/alpha/desktop/assets/7winbet/img/logo/history-game.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp /template/alpha/desktop/assets/7winbet/img/logo/idnlive /template/alpha/desktop/assets/7winbet/img/logo/logo.webp /template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif /template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp /template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp /template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp /template/alpha/desktop/assets/7winbet/img/logo/slots /template/alpha/desktop/assets/7winbet/img/logo/tembak /template/alpha/desktop/assets/7winbet/img/logo/template-background.webp /template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak /template/alpha/desktop/assets/7winbet/img/togel /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot
Found on 2025-11-23 04:14 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8ee05d8b8ee05d8b6d0b3c2b5ae4df5b8f99131bdfdaadbdFound 124 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak /template/alpha/desktop/assets/7winbet/img/togel /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot /template/alpha/desktop/assets/klik99 /template/alpha/desktop/assets/klikslots /template/alpha/desktop/assets/klubslot /template/alpha/desktop/assets/koinid /template/alpha/desktop/assets/koinslots /template/alpha/desktop/assets/koinvegas /template/alpha/desktop/assets/landslot /template/alpha/desktop/assets/ligaplay88 /template/alpha/desktop/assets/maniaslot /template/alpha/desktop/assets/megahoki88 /template/alpha/desktop/assets/nagagg /template/alpha/desktop/assets/niagabet /template/alpha/desktop/assets/nyalabet /template/alpha/desktop/assets/permatabet /template/alpha/desktop/assets/playslots88 /template/alpha/desktop/assets/powernet /template/alpha/desktop/assets/qq88bet /template/alpha/desktop/assets/shienslot /template/alpha/desktop/assets/shiobet /template/alpha/desktop/assets/simplebet8 /template/alpha/desktop/assets/slotasiabet /template/alpha/desktop/assets/slotid88 /template/alpha/desktop/assets/slotsgg /template/alpha/desktop/assets/stasiunplay /template/alpha/desktop/assets/tester /template/alpha/desktop/assets/tester2 /template/alpha/desktop/assets/tradisibet /template/alpha/desktop/assets/ubocash /template/alpha/desktop/assets/vegasgg /template/alpha/desktop/assets/vegashoki88 /template/alpha/desktop/assets/vipbet88 /template/alpha/desktop/assets/visabet88 /template/alpha/desktop/assets/winslots8 /template/alpha/desktop/master /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-21 06:40 -
Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcbef89d5c598630bcda716e6866f3ab8fFound 22 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-16 22:16 -
Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d4047824166c30944d691044893c6860b1ce9d8dFound 35 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/js /template/alpha/desktop /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-14 18:16 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df81606fa7Found 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp /template/alpha/desktop/assets/7winbet/img/home/Device.webp /template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif /template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp /template/alpha/desktop/assets/7winbet/img/home/Our Game /template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive /template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino /template/alpha/desktop/assets/7winbet/img/home/Provider /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp /template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp /template/alpha/desktop/assets/7winbet/img/logo/bank /template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/white /template/alpha/desktop/assets/7winbet/img/logo/bank-depo /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bca.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bni.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/cimb.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/dana.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/gopay.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/jenius.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/linkaja.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mandiri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/maybank.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mega.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/ovo.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/panin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/permata.webp /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/qr /template/alpha/desktop/assets/7winbet/img/logo/bank-depo/va /template/alpha/desktop/assets/7winbet/img/logo/bank-footer /template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp /template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp /template/alpha/desktop/assets/7winbet/img/logo/Caution.webp /template/alpha/desktop/assets/7winbet/img/logo/cautious.webp /template/alpha/desktop/assets/7winbet/img/logo/check.webp /template/alpha/desktop/assets/7winbet/img/logo/cross.webp /template/alpha/desktop/assets/7winbet/img/logo/favicon.webp /template/alpha/desktop/assets/7winbet/img/logo/flag /template/alpha/desktop/assets/7winbet/img/logo/history-game.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp /template/alpha/desktop/assets/7winbet/img/logo/idnlive /template/alpha/desktop/assets/7winbet/img/logo/logo.webp /template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif /template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp /template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp /template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp /template/alpha/desktop/assets/7winbet/img/logo/slots /template/alpha/desktop/assets/7winbet/img/logo/tembak /template/alpha/desktop/assets/7winbet/img/logo/template-background.webp /template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak
Found on 2025-11-10 23:15 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c2d9d96002d9d960017d08b18e5887b208f2546c491751e6eFound 109 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot /template/alpha/desktop/assets/klik99 /template/alpha/desktop/assets/klikslots /template/alpha/desktop/assets/klubslot /template/alpha/desktop/assets/koinid /template/alpha/desktop/assets/koinslots /template/alpha/desktop/assets/koinvegas /template/alpha/desktop/assets/landslot /template/alpha/desktop/assets/ligaplay88 /template/alpha/desktop/assets/maniaslot /template/alpha/desktop/assets/megahoki88 /template/alpha/desktop/assets/nagagg /template/alpha/desktop/assets/niagabet /template/alpha/desktop/assets/nyalabet /template/alpha/desktop/assets/permatabet /template/alpha/desktop/assets/playslots88 /template/alpha/desktop/assets/powernet /template/alpha/desktop/assets/qq88bet /template/alpha/desktop/assets/shienslot /template/alpha/desktop/assets/shiobet /template/alpha/desktop/assets/simplebet8 /template/alpha/desktop/assets/slotasiabet /template/alpha/desktop/assets/slotid88 /template/alpha/desktop/assets/slotsgg /template/alpha/desktop/assets/stasiunplay /template/alpha/desktop/assets/tester /template/alpha/desktop/assets/tester2 /template/alpha/desktop/assets/tradisibet /template/alpha/desktop/assets/ubocash /template/alpha/desktop/assets/vegasgg /template/alpha/desktop/assets/vegashoki88 /template/alpha/desktop/assets/vipbet88 /template/alpha/desktop/assets/visabet88 /template/alpha/desktop/assets/winslots8 /template/alpha/desktop/master /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-11-08 21:00 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df2728235fFound 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp /template/alpha/desktop/assets/7winbet/img/home/Device.webp /template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif /template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp /template/alpha/desktop/assets/7winbet/img/home/Our Game /template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive /template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino /template/alpha/desktop/assets/7winbet/img/home/Provider /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak /template/alpha/desktop/assets/7winbet/img/togel /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot /template/alpha/desktop/assets/klik99 /template/alpha/desktop/assets/klikslots /template/alpha/desktop/assets/klubslot /template/alpha/desktop/assets/koinid /template/alpha/desktop/assets/koinslots /template/alpha/desktop/assets/koinvegas /template/alpha/desktop/assets/landslot /template/alpha/desktop/assets/ligaplay88 /template/alpha/desktop/assets/maniaslot /template/alpha/desktop/assets/megahoki88 /template/alpha/desktop/assets/nagagg /template/alpha/desktop/assets/niagabet /template/alpha/desktop/assets/nyalabet /template/alpha/desktop/assets/permatabet /template/alpha/desktop/assets/playslots88 /template/alpha/desktop/assets/powernet /template/alpha/desktop/assets/qq88bet /template/alpha/desktop/assets/shienslot /template/alpha/desktop/assets/shiobet /template/alpha/desktop/assets/simplebet8 /template/alpha/desktop/assets/slotasiabet /template/alpha/desktop/assets/slotid88 /template/alpha/desktop/assets/slotsgg /template/alpha/desktop/assets/stasiunplay /template/alpha/desktop/assets/tester /template/alpha/desktop/assets/tester2 /template/alpha/desktop/assets/tradisibet /template/alpha/desktop/assets/ubocash /template/alpha/desktop/assets/vegasgg
Found on 2025-11-04 10:26 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df431456efFound 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak /template/alpha/desktop/assets/7winbet/img/togel /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot /template/alpha/desktop/assets/klik99 /template/alpha/desktop/assets/klikslots /template/alpha/desktop/assets/klubslot /template/alpha/desktop/assets/koinid /template/alpha/desktop/assets/koinslots /template/alpha/desktop/assets/koinvegas /template/alpha/desktop/assets/landslot /template/alpha/desktop/assets/ligaplay88 /template/alpha/desktop/assets/maniaslot /template/alpha/desktop/assets/megahoki88 /template/alpha/desktop/assets/nagagg /template/alpha/desktop/assets/niagabet /template/alpha/desktop/assets/nyalabet /template/alpha/desktop/assets/permatabet /template/alpha/desktop/assets/playslots88 /template/alpha/desktop/assets/powernet /template/alpha/desktop/assets/qq88bet /template/alpha/desktop/assets/shienslot /template/alpha/desktop/assets/shiobet /template/alpha/desktop/assets/simplebet8 /template/alpha/desktop/assets/slotasiabet /template/alpha/desktop/assets/slotid88 /template/alpha/desktop/assets/slotsgg /template/alpha/desktop/assets/stasiunplay /template/alpha/desktop/assets/tester /template/alpha/desktop/assets/tester2 /template/alpha/desktop/assets/tradisibet /template/alpha/desktop/assets/ubocash /template/alpha/desktop/assets/vegasgg /template/alpha/desktop/assets/vegashoki88 /template/alpha/desktop/assets/vipbet88 /template/alpha/desktop/assets/visabet88 /template/alpha/desktop/assets/winslots8 /template/alpha/desktop/master /template/alpha/mobile /template/bolatangkas /template/casino
Found on 2025-10-18 18:38 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3dff993b044Found 128 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/7winbet/css /template/alpha/desktop/assets/7winbet/img /template/alpha/desktop/assets/7winbet/img/download /template/alpha/desktop/assets/7winbet/img/esport /template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp /template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp /template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp /template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp /template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp /template/alpha/desktop/assets/7winbet/img/esport/KOG.webp /template/alpha/desktop/assets/7winbet/img/esport/LOL.webp /template/alpha/desktop/assets/7winbet/img/esport/ML.webp /template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp /template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp /template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp /template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp /template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp /template/alpha/desktop/assets/7winbet/img/home /template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp /template/alpha/desktop/assets/7winbet/img/home/Device.webp /template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif /template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp /template/alpha/desktop/assets/7winbet/img/home/Our Game /template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive /template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino /template/alpha/desktop/assets/7winbet/img/home/Provider /template/alpha/desktop/assets/7winbet/img/idnlive /template/alpha/desktop/assets/7winbet/img/livecasino /template/alpha/desktop/assets/7winbet/img/logo /template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp /template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp /template/alpha/desktop/assets/7winbet/img/logo/bank /template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp /template/alpha/desktop/assets/7winbet/img/logo/bank/white /template/alpha/desktop/assets/7winbet/img/logo/bank-depo /template/alpha/desktop/assets/7winbet/img/logo/bank-footer /template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp /template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp /template/alpha/desktop/assets/7winbet/img/logo/Caution.webp /template/alpha/desktop/assets/7winbet/img/logo/cautious.webp /template/alpha/desktop/assets/7winbet/img/logo/check.webp /template/alpha/desktop/assets/7winbet/img/logo/cross.webp /template/alpha/desktop/assets/7winbet/img/logo/favicon.webp /template/alpha/desktop/assets/7winbet/img/logo/flag /template/alpha/desktop/assets/7winbet/img/logo/history-game.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp /template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp /template/alpha/desktop/assets/7winbet/img/logo/idnlive /template/alpha/desktop/assets/7winbet/img/logo/logo.webp /template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif /template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp /template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp /template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp /template/alpha/desktop/assets/7winbet/img/logo/slots /template/alpha/desktop/assets/7winbet/img/logo/tembak /template/alpha/desktop/assets/7winbet/img/logo/template-background.webp /template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp /template/alpha/desktop/assets/7winbet/img/Maintenance /template/alpha/desktop/assets/7winbet/img/poker /template/alpha/desktop/assets/7winbet/img/referral /template/alpha/desktop/assets/7winbet/img/register /template/alpha/desktop/assets/7winbet/img/Slots /template/alpha/desktop/assets/7winbet/img/Sportbook /template/alpha/desktop/assets/7winbet/img/tangkas /template/alpha/desktop/assets/7winbet/img/tembak /template/alpha/desktop/assets/7winbet/img/togel /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata
Found on 2025-10-07 05:36 -
Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87726028bc72d1f19bf6cd740c7288741009Found 11 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /web.config
Found on 2025-08-21 13:25 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c88c2190688c219061d32035ec632256a9804734eadc3f10cFound 107 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/assets/7winbet /template/alpha/desktop/assets/ajaibslots /template/alpha/desktop/assets/alphaslot88 /template/alpha/desktop/assets/anekaslots /template/alpha/desktop/assets/areaslots /template/alpha/desktop/assets/asianwin88 /template/alpha/desktop/assets/betcoin /template/alpha/desktop/assets/bethoki77 /template/alpha/desktop/assets/betslots88 /template/alpha/desktop/assets/bolagg /template/alpha/desktop/assets/capital303 /template/alpha/desktop/assets/caspo777 /template/alpha/desktop/assets/cemeslot /template/alpha/desktop/assets/coin303 /template/alpha/desktop/assets/dash86 /template/alpha/desktop/assets/dewata /template/alpha/desktop/assets/duniabet /template/alpha/desktop/assets/enterslots /template/alpha/desktop/assets/exabet88 /template/alpha/desktop/assets/gaskeunbet /template/alpha/desktop/assets/gladiator88 /template/alpha/desktop/assets/gobetasia /template/alpha/desktop/assets/holyslots /template/alpha/desktop/assets/ibetwin /template/alpha/desktop/assets/idncash /template/alpha/desktop/assets/idngg /template/alpha/desktop/assets/ihokibet /template/alpha/desktop/assets/ilucky88 /template/alpha/desktop/assets/indogame888 /template/alpha/desktop/assets/indoslots /template/alpha/desktop/assets/jagoslots /template/alpha/desktop/assets/javaplay88 /template/alpha/desktop/assets/kemonbet /template/alpha/desktop/assets/kerabatslot /template/alpha/desktop/assets/klik99 /template/alpha/desktop/assets/klikslots /template/alpha/desktop/assets/klubslot /template/alpha/desktop/assets/koinid /template/alpha/desktop/assets/koinslots /template/alpha/desktop/assets/koinvegas /template/alpha/desktop/assets/landslot /template/alpha/desktop/assets/ligaplay88 /template/alpha/desktop/assets/maniaslot /template/alpha/desktop/assets/megahoki88 /template/alpha/desktop/assets/nagagg /template/alpha/desktop/assets/niagabet /template/alpha/desktop/assets/nyalabet /template/alpha/desktop/assets/permatabet /template/alpha/desktop/assets/playslots88 /template/alpha/desktop/assets/powernet /template/alpha/desktop/assets/qq88bet /template/alpha/desktop/assets/shienslot /template/alpha/desktop/assets/shiobet /template/alpha/desktop/assets/simplebet8 /template/alpha/desktop/assets/slotasiabet /template/alpha/desktop/assets/slotid88 /template/alpha/desktop/assets/slotsgg /template/alpha/desktop/assets/stasiunplay /template/alpha/desktop/assets/tester /template/alpha/desktop/assets/tester2 /template/alpha/desktop/assets/tradisibet /template/alpha/desktop/assets/ubocash /template/alpha/desktop/assets/vegasgg /template/alpha/desktop/assets/vegashoki88 /template/alpha/desktop/assets/vipbet88 /template/alpha/desktop/assets/visabet88 /template/alpha/desktop/assets/winslots8 /template/alpha/desktop/master /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-08-21 13:25 -
Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b4254f9024ff9259f4f01f0310b01a7f46Found 40 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/assets/css /template/alpha/assets/favico /template/alpha/assets/font /template/alpha/assets/img /template/alpha/assets/img/depositvirtual /template/alpha/assets/img/depositvirtual/qr /template/alpha/assets/img/download /template/alpha/assets/img/games /template/alpha/assets/img/icon /template/alpha/assets/img/maintenance /template/alpha/assets/img/maintenance/desktop /template/alpha/assets/img/maintenance/mobile /template/alpha/assets/js /template/alpha/desktop /template/alpha/desktop/assets /template/alpha/desktop/master /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-07-29 11:25 -
Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf7c01fcc72b83f3ef11e604a7c48dd5b2Found 25 files trough .DS_Store spidering: /css /favicon.ico /img /img/placeholder /index.php /js /mix-manifest.json /plugins /sw.js /template /template/alpha /template/alpha/assets /template/alpha/desktop /template/alpha/mobile /template/bolatangkas /template/casino /template/dewa21crypto /template/dewagames /template/dewatangkas /template/idncash /template/kdslots /template/luckysafe /template/tangkas /template/template1 /web.config
Found on 2025-01-26 10:27
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2024-07-31 18:29
Last seen 2026-02-09 11:59
Open for 557 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6dFound 1 files trough .DS_Store spidering: /img
Found on 2026-02-09 11:59
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 104.21.46.114
Domain: textlaneebookfilingportal.com
Port: 80
URL: http://textlaneebookfilingportal.comFirst seen 2025-07-24 08:30
Last seen 2026-02-08 19:24
Open for 199 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88dbaa39ff2f5f0f7e892f5a01dFound 14 files trough .DS_Store spidering: /assets /assets/earbuds /assets/gadgetstore /assets/owner-1 /assets/skincareproducts /assets/skincareproducts/assets /assets/skincareproducts/assets/css /assets/skincareproducts/assets/fonts /assets/skincareproducts/assets/js /assets/skincareproducts/assets/utils /assets/smartbulb /assets/topratedebooks /assets/touchbuds /assets/toys
Found on 2026-02-08 19:24
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2024-07-31 18:29
Last seen 2026-02-02 12:01
Open for 550 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6dFound 1 files trough .DS_Store spidering: /img
Found on 2026-02-02 12:01
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 172.67.168.119
Domain: mail.textlaneebookfilingportal.com
Port: 443
URL: https://mail.textlaneebookfilingportal.comFirst seen 2025-07-22 19:22
Last seen 2026-02-02 01:23
Open for 194 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88dbaa39ff2f5f0f7e892f5a01dFound 14 files trough .DS_Store spidering: /assets /assets/earbuds /assets/gadgetstore /assets/owner-1 /assets/skincareproducts /assets/skincareproducts/assets /assets/skincareproducts/assets/css /assets/skincareproducts/assets/fonts /assets/skincareproducts/assets/js /assets/skincareproducts/assets/utils /assets/smartbulb /assets/topratedebooks /assets/touchbuds /assets/toys
Found on 2026-02-02 01:23 -
Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af247259b6c8633c27c955ce4fe856eceb51f53Found 9 files trough .DS_Store spidering: /assets /assets/earbuds /assets/gadgetstore /assets/owner-1 /assets/skincareproducts /assets/smartbulb /assets/topratedebooks /assets/touchbuds /assets/toys
Found on 2025-10-21 02:16 -
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fa0a2250175fb6066960e67049d5b9d72Found 10 files trough .DS_Store spidering: /assets /assets/earbuds /assets/gadgetstore /assets/owner-1 /assets/skincareproducts /assets/skincareproducts/assets /assets/smartbulb /assets/topratedebooks /assets/touchbuds /assets/toys
Found on 2025-07-22 19:22
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 172.67.168.119
Domain: www.textlaneebookfilingportal.com
Port: 443
URL: https://www.textlaneebookfilingportal.comFirst seen 2025-07-22 19:22
Last seen 2026-01-21 21:20
Open for 183 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bf639e88dbaa39ff2f5f0f7e892f5a01dFound 14 files trough .DS_Store spidering: /assets /assets/earbuds /assets/gadgetstore /assets/owner-1 /assets/skincareproducts /assets/skincareproducts/assets /assets/skincareproducts/assets/css /assets/skincareproducts/assets/fonts /assets/skincareproducts/assets/js /assets/skincareproducts/assets/utils /assets/smartbulb /assets/topratedebooks /assets/touchbuds /assets/toys
Found on 2026-01-21 21:20 -
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fa0a2250175fb6066960e67049d5b9d72Found 10 files trough .DS_Store spidering: /assets /assets/earbuds /assets/gadgetstore /assets/owner-1 /assets/skincareproducts /assets/skincareproducts/assets /assets/smartbulb /assets/topratedebooks /assets/touchbuds /assets/toys
Found on 2025-07-22 19:22
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-08-01 05:36
Last seen 2025-09-20 21:29
Open for 50 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f079f92662993e9562993e9562993e95Found 2 files trough .DS_Store spidering: /favicon.ico /iPhone13.png
Found on 2025-09-20 21:29
-
-
Apache server-status page is publicly available
The server-status page (usually
/server-status) allows server administrators to find out how well their server is performing.This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
IP: 104.21.46.114
Domain: bayer-application.fi-careers.online
Port: 443
URL: https://bayer-application.fi-careers.onlineFirst seen 2025-05-22 22:52
Last seen 2025-09-01 04:42
Open for 101 days-
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fdc4638a3Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 01-Sep-2025 04:42:38 UTC Restart Time: Sunday, 31-Aug-2025 13:41:13 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 15 hours 1 minute 24 seconds Server load: 1.55 2.08 2.35 Total accesses: 22102 - Total Traffic: 337.5 MB - Total Duration: 551637 CPU Usage: u13.92 s8.38 cu224.14 cs36.44 - .523% CPU load .409 requests/sec - 6.4 kB/second - 15.6 kB/request - 24.9587 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01166354no0yes0025000 11166355no0yes1024000 Sum200 1049000 ______________________________________R___________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-111663540/47/331_ 6.2102161970.00.164.49 172.71.102.171h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-111663540/46/330_ 5.5119832481020.00.353.14 143.110.209.240http/1.1 0-111663540/51/340_ 6.122031768030.02.805.42 172.70.143.45http/1.1api.msz-pl.com:80GET /wordpress/ HTTP/1.1 0-111663540/61/355_ 6.14290107070.00.2534.28 104.23.221.193h2comms.ivarse.com:443GET /wp-admin/setup-config.php HTTP/2.0 0-111663540/47/330_ 6.1725957350.00.493.28 172.71.102.162h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-111663540/49/347_ 5.751982774180.00.582.76 172.71.183.216h2careers-lwb.smart-careers.com:4GET / HTTP/2.0 0-111663540/52/337_ 6.2015067710.00.253.40 172.71.102.148h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-111663540/57/342_ 6.192073940.00.253.37 172.71.178.153h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-111663540/55/359_ 5.4822070430.00.263.41 157.66.49.18http/1.1 0-111663540/49/331_ 6.163455080.00.242.92 172.70.47.89h2bayer-application.fi-careers.onGET / HTTP/2.0 0-111663540/46/336_ 6.1921757820.00.183.09 104.23.166.77h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-111663540/50/344_ 5.763411873820.00.223.95 172.68.234.105h2careers-lwb.smart-careers.com:4GET / HTTP/2.0 0-111663540/53/340_ 6.1543696210.00.533.10 172.71.102.162h2bayer-application.fi-careers.onGET / HTTP/2.0 0-111663540/48/338_ 6.14392784990.00.173.73 162.158.41.45h2crypto-ft.investments:443GET /robots.txt HTTP/2.0 0-111663540/56/342_ 5.89295079230.00.222.83 172.68.147.220http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-111663540/52/327_ 5.9124172160.01.014.52 157.66.49.18http/1.1comms.ivarse.com:443POST / HTTP/1.1 0-111663540/58/342_ 5.8324178084700.00.343.69 162.158.22.240h2careers-lwb.smart-careers.com:4GET /wp-includes/js/wp-emoji-release.min.js?ver=6.8.2 HTTP/2.0 0-111663540/56/347_ 5.810087880.02.365.68 143.110.209.240http/1.1 0-111663540/57/342_ 5.37342685290.00.182.58 64.62.197.146h2comms.ivarse.com:443[0/0] Software caused connection abort 0-111663540/52/337_ 5.8924077380.00.253.52 172.71.166.84http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-111663540/55/337_ 5.793192878090.00.7711.76 216.81.248.33http/1.1 0-111663540/60/347_ 5.871054980.00.233.06 104.23.172.85h2careers-lwb.smart-careers.com:4[1/0] done: stream 1, POST /wp-admin/admin-ajax.php 0-111663540/53/336_ 6.1735772210.00.365.90 172.71.98.97h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-111663540/49/334_ 6.172075080.00.223.60 104.23.170.166h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-111663540/53/334_ 5.4728567500.00.252.77 157.66.49.18http/1.1 1-111663550/109/557_ 11.44027162000.02.056.40 172.70.163.78h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-111663550/101/529_ 11.36250155720.02.6212.16 172.71.152.97http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-111663550/102/541_ 11.34039169240.01.5917.29 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 1-111663550/103/539_ 11.44016143590.02.486.25 104.23.166.31h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-111663550/107/565_ 11.40427143710.02.124.92 172.69.43.225h2bayer-application.fi-careers.onGET / HTTP/2.0 1-111663550/104/529_ 11.42121151340.01.835.44 172.70.162.59h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-111663550/109/565_ 11.36427137960.01.814.60 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-xml.php HTTP/1.1 1-111663550/95/534_ 11.37028141490.01.855.23 205.210.31.172http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x02\x01o\x01 1-111663550/105/545_ 11.42120134970.01.627.12 172.68.229.147h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-111663550/101/542_ 11.37117146560.01.905.52 52.147.64.200http/1.1api.msz-pl.com:80GET /JPG.php HTTP/1.1 1-111663550/95/521_ 11.34021143170.01.429.35 52.147.64.200http/1.1api.msz-pl.com:80GET /class-wp-header.php HTTP/1.1 1-111663550/85/512_ 11.36125176270.01.959.62 52.147.64.200http/1.1api.msz-pl.com:80GET /log.php HTTP/1.1 1-111663550/109/554_ 11.36319126530.03.7712.89 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-content/themes/twentytwentytwo/index.php HTTP/1.1 1-111663550/102/543R 11.383927163750.01.345.02 172.70.46.193h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-111663550/94/531_ 11.36128125640.02.445.62 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-includes/blocks/chosen.php HTTP/1.1 1-111663550/106/540_ 11.44017141210.03.187.16 172.70.86.227h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-111663550/103/541_ 11.39428143750.012.5718.44 104.23.195.86h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1756701753.83363103866577148437 1-111663550/106/554_ 11.343418159450.02.8710.28 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-content/plugins/wp-conflg.php HTTP/1.1 1-111663550/117/572_ 11.41233148690.02.5712.42 172.68.229.71h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-111663550/107/548_ 11.43133144560.03.546.69 172.71.182.16h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-111663550/111/558_ 11.45028156860.01.604.63 172.69.224.59h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-111663550/118/572_ 11.41324140260.07.079.48 141.101.98.38h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-111663550/108/550_ 11.343928134450.01.524.96 52.147.64.200http/1.1api.msz-pl.com:80GET /new4.php HTTP/1.1 1-111663550/98/541_ 11.353421129120.02.349.81 52.147.64.200
Found on 2025-09-01 04:42 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fa45e2a0aApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 01-Sep-2025 04:42:38 UTC Restart Time: Sunday, 31-Aug-2025 13:41:13 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 15 hours 1 minute 24 seconds Server load: 1.55 2.08 2.35 Total accesses: 22103 - Total Traffic: 337.5 MB - Total Duration: 551637 CPU Usage: u13.92 s8.38 cu224.14 cs36.44 - .523% CPU load .409 requests/sec - 6.4 kB/second - 15.6 kB/request - 24.9576 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01166354no0yes1024000 11166355no0yes1024000 Sum200 2048000 __R_____________________________________________R_.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-111663540/47/331_ 6.2102161970.00.164.49 172.71.102.171h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-111663540/46/330_ 5.5119832481020.00.353.14 143.110.209.240http/1.1 0-111663540/51/340R 6.122031768030.02.805.42 172.68.229.76h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-111663540/61/355_ 6.14290107070.00.2534.28 104.23.221.193h2comms.ivarse.com:443GET /wp-admin/setup-config.php HTTP/2.0 0-111663540/47/330_ 6.1735957350.00.493.28 172.71.102.162h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-111663540/49/347_ 5.751982774180.00.582.76 172.71.183.216h2careers-lwb.smart-careers.com:4GET / HTTP/2.0 0-111663540/52/337_ 6.2025067710.00.253.40 172.71.102.148h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-111663540/57/342_ 6.192073940.00.253.37 172.71.178.153h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-111663540/55/359_ 5.4822070430.00.263.41 157.66.49.18http/1.1 0-111663540/49/331_ 6.164455080.00.242.92 172.70.47.89h2bayer-application.fi-careers.onGET / HTTP/2.0 0-111663540/46/336_ 6.1921757820.00.183.09 104.23.166.77h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-111663540/50/344_ 5.763511873820.00.223.95 172.68.234.105h2careers-lwb.smart-careers.com:4GET / HTTP/2.0 0-111663540/53/340_ 6.1543696210.00.533.10 172.71.102.162h2bayer-application.fi-careers.onGET / HTTP/2.0 0-111663540/48/338_ 6.14402784990.00.173.73 162.158.41.45h2crypto-ft.investments:443GET /robots.txt HTTP/2.0 0-111663540/56/342_ 5.89295079230.00.222.83 172.68.147.220http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-111663540/52/327_ 5.9124172160.01.014.52 157.66.49.18http/1.1comms.ivarse.com:443POST / HTTP/1.1 0-111663540/58/342_ 5.8324178084700.00.343.69 162.158.22.240h2careers-lwb.smart-careers.com:4GET /wp-includes/js/wp-emoji-release.min.js?ver=6.8.2 HTTP/2.0 0-111663540/56/347_ 5.810087880.02.365.68 143.110.209.240http/1.1 0-111663540/57/342_ 5.37352685290.00.182.58 64.62.197.146h2comms.ivarse.com:443[0/0] Software caused connection abort 0-111663540/52/337_ 5.8924077380.00.253.52 172.71.166.84http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-111663540/55/337_ 5.793192878090.00.7711.76 216.81.248.33http/1.1 0-111663540/60/347_ 5.872054980.00.233.06 104.23.172.85h2careers-lwb.smart-careers.com:4[1/0] done: stream 1, POST /wp-admin/admin-ajax.php 0-111663540/53/336_ 6.1735772210.00.365.90 172.71.98.97h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-111663540/49/334_ 6.173075080.00.223.60 104.23.170.166h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-111663540/53/334_ 5.4738567500.00.252.77 157.66.49.18http/1.1 1-111663550/109/557_ 11.44027162000.02.056.40 172.70.163.78h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-111663550/101/529_ 11.36250155720.02.6212.16 172.71.152.97http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-111663550/102/541_ 11.34139169240.01.5917.29 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 1-111663550/103/539_ 11.44116143590.02.486.25 104.23.166.31h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-111663550/107/565_ 11.40427143710.02.124.92 172.69.43.225h2bayer-application.fi-careers.onGET / HTTP/2.0 1-111663550/104/529_ 11.42121151340.01.835.44 172.70.162.59h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-111663550/109/565_ 11.36427137960.01.814.60 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-xml.php HTTP/1.1 1-111663550/95/534_ 11.37028141490.01.855.23 205.210.31.172http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x02\x01o\x01 1-111663550/105/545_ 11.42220134970.01.627.12 172.68.229.147h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-111663550/101/542_ 11.37117146560.01.905.52 52.147.64.200http/1.1api.msz-pl.com:80GET /JPG.php HTTP/1.1 1-111663550/95/521_ 11.34121143170.01.429.35 52.147.64.200http/1.1api.msz-pl.com:80GET /class-wp-header.php HTTP/1.1 1-111663550/85/512_ 11.36125176270.01.959.62 52.147.64.200http/1.1api.msz-pl.com:80GET /log.php HTTP/1.1 1-111663550/109/554_ 11.36319126530.03.7712.89 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-content/themes/twentytwentytwo/index.php HTTP/1.1 1-111663550/103/544_ 11.45027163750.01.345.03 172.70.46.193h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-111663550/94/531_ 11.36228125640.02.445.62 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-includes/blocks/chosen.php HTTP/1.1 1-111663550/106/540_ 11.44117141210.03.187.16 172.70.86.227h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-111663550/103/541_ 11.39428143750.012.5718.44 104.23.195.86h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1756701753.83363103866577148437 1-111663550/106/554_ 11.34018159450.02.8710.28 52.147.64.200http/1.1api.msz-pl.com:80GET /wp-content/plugins/wp-conflg.php HTTP/1.1 1-111663550/117/572_ 11.41333148690.02.5712.42 172.68.229.71h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-111663550/107/548_ 11.43133144560.03.546.69 172.71.182.16h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-111663550/111/558_ 11.45028156860.01.604.63 172.69.224.59h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-111663550/118/572_ 11.41324140260.07.079.48 141.101.98.38h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-111663550/108/550_ 11.34028134450.01.524.96 52.147.64.200http/1.1api.msz-pl.com:80GET /new4.php HTTP/1.1 1-111663550/98/541R 11.353521129120.02.349.81 104.23
Found on 2025-09-01 04:42 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f05a7660dApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Saturday, 30-Aug-2025 06:44:18 UTC Restart Time: Friday, 29-Aug-2025 15:42:51 UTC Parent Server Config. Generation: 14 Parent Server MPM Generation: 13 Server uptime: 15 hours 1 minute 26 seconds Server load: 2.16 1.71 1.47 Total accesses: 27203 - Total Traffic: 763.6 MB - Total Duration: 1015536 CPU Usage: u21.17 s11.57 cu283.46 cs61.06 - .698% CPU load .503 requests/sec - 14.5 kB/second - 28.7 kB/request - 37.3318 ms/request 3 requests currently being processed, 0 workers gracefully restarting, 47 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01745533no10yes0025081 21745534no13yes30220111 Sum2023 30470192 _________________________........................._R_________R__ __________R..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1317455330/153/546_ 10.362624167730.01.0221.22 172.68.35.180h2lwb-polska-jobs.smart-careers.cGET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runt 0-1317455330/150/540_ 10.35018170380.01.2725.30 172.68.3.127h2lwb-polska-jobs.smart-careers.cGET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.3 HTTP/2.0 0-1317455330/151/546_ 10.31029159270.01.1222.48 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/156/545_ 10.50428207720.01.5110.42 104.23.195.50h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1756536253.49804592132568359375 0-1317455330/141/558_ 10.53124165070.01.3042.41 172.69.74.196h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1317455330/147/529_ 10.52322190160.01.1943.27 172.71.172.59h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-1317455330/149/523_ 10.48121157690.01.6212.31 162.158.163.227http/1.1api.msz-pl.com:80GET /admin/controller/extension/extension/ HTTP/1.1 0-1317455330/140/516_ 10.40318155580.01.149.78 172.68.35.167h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/rubik-ijwk 0-1317455330/150/507_ 10.372428175570.01.3014.57 172.68.3.109h2lwb-polska-jobs.smart-careers.cGET /wp-content/plugins/pro-elements/assets/js/elements-handler 0-1317455330/140/530_ 10.56018189970.00.9412.05 104.23.195.86h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1317455330/153/539_ 10.42230161410.00.9828.43 162.158.244.146http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/xz07YSCOtGBwie4opnfLK-HJa3qqRVq 0-1317455330/145/548_ 10.53119173870.01.1431.92 172.70.46.193h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1317455330/154/530_ 10.29240176280.01.1648.54 162.158.90.193http/1.1api.msz-pl.com:80GET /.env HTTP/1.1 0-1317455330/140/544_ 10.30258172670.01.3721.41 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/143/530_ 10.312560183390.01.5011.05 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/151/522_ 10.55127185790.06.3714.56 172.71.183.122h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1317455330/140/540_ 10.40330496140.01.3517.25 172.68.35.93h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/roboto-kfo 0-1317455330/149/541_ 10.49836175630.01.3012.79 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/152/541_ 10.51326195400.01.2219.36 104.23.239.39h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1317455330/155/551_ 10.42331169140.01.1914.03 104.23.203.182http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/yWc-_9YApLuNlV0WBFv45FCHfGP2Z-C 0-1317455330/151/541_ 10.38528138450.01.1617.92 104.23.168.14h2bayer-application.fi-careers.on[1/0] done: stream 1, GET / 0-1317455330/150/535_ 10.48128158840.00.959.69 172.69.176.24http/1.1api.msz-pl.com:80GET /files/ HTTP/1.1 0-1317455330/158/540_ 10.452541184540.01.6014.15 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/143/533_ 10.51327205430.04.0632.52 141.101.76.47h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1317455330/149/537_ 10.52238161720.01.1412.65 162.158.94.90h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-11-0/0/377. 0.00174201886940.00.005.09 4.218.16.157http/1.1api.msz-pl.com:80GET /x.php HTTP/1.1 1-11-0/0/378. 0.00174202772360.00.005.67 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/355. 0.00174202443670.00.0022.88 4.218.16.157http/1.1api.msz-pl.com:80GET /class20.php HTTP/1.1 1-11-0/0/358. 0.00174202155150.00.004.67 4.218.16.157http/1.1api.msz-pl.com:80GET /ll.php HTTP/1.1 1-11-0/0/361. 0.00174202451630.00.0013.78 104.234.115.66http/1.1 1-11-0/0/365. 0.0017420203082800.00.005.44 4.218.16.157http/1.1api.msz-pl.com:80GET /wp-gr.php HTTP/1.1 1-11-0/0/359. 0.00174204762410.00.007.25 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/346. 0.00174201955870.00.008.38 4.218.16.157http/1.1api.msz-pl.com:80GET /pp.php HTTP/1.1 1-11-0/0/357. 0.00174201949690.00.006.27 4.218.16.157http/1.1api.msz-pl.com:80GET /system_log.php HTTP/1.1 1-11-0/0/360. 0.00174201755900.00.003.95 4.218.16.157http/1.1api.msz-pl.com:80GET /wp-mn.php HTTP/1.1 1-11-0/0/360. 0.00174201850590.00.005.39 4.218.16.157http/1.1api.msz-pl.com:80GET /asus.php HTTP/1.1 1-11-0/0/367. 0.00174201892010.00.007.23 4.218.16.157http/1.1api.msz-pl.com:80GET /wp.php HTTP/1.1 1-11-0/0/362. 0.00174201656300.00.007.67 4.218.16.157http/1.1api.msz-pl.com:80GET /xx.php HTTP/1.1 1-11-0/0/361. 0.00174201764890.00.004.21 4.218.16.157http/1.1api.msz-pl.com:80GET /css.php HTTP/1.1 1-11-0/0/356. 0.00174201752090.00.006.79 4.218.16.157http/1.1api.msz-pl.com:80GET /jp.php HTTP/1.1 1-11-0/0/370. 0.00174201869540.00.0018.98 4.218.16.157http/1.1api.msz-pl.com:80GET /dropdown.php HTTP/1.1 1-11-0/0/393. 0.00174202358390.00.004.42 4.218.16.157http/1.1api.msz-pl.com:80GET /html.php HTTP/1.1 1-11-0/0/357. 0.00174202448030.00.005.97 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/360. 0.00174201764680.00.003.28 4.218.16.157http/1.1api.msz-pl.com:80GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php 1-11-0/0/363. 0.00174201855620.00.004.29 4.218.16.157http/1.1api.msz-pl.com:80GET /2x.php HTTP/1.1 1-11-0/0/352. 0.00174202556320.00.004.20 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/366. 0.00174201993050.00.0027.17 4.218.16.157http/1.1api.msz-pl.com:80GET /pepe.php HTTP/1.1 1-11-0/0/354. 0.00174202177850.00.005.97 4.218.16.157http/1.1api.msz-pl.com:80GET /goods.php HTTP/1.1 1-11-0/0/355. 0.0017420
Found on 2025-08-30 06:44 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f9cef8d8fApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Saturday, 30-Aug-2025 06:44:18 UTC Restart Time: Friday, 29-Aug-2025 15:42:51 UTC Parent Server Config. Generation: 14 Parent Server MPM Generation: 13 Server uptime: 15 hours 1 minute 26 seconds Server load: 2.39 1.76 1.49 Total accesses: 27207 - Total Traffic: 763.6 MB - Total Duration: 1015536 CPU Usage: u21.2 s11.58 cu283.46 cs61.06 - .698% CPU load .503 requests/sec - 14.5 kB/second - 28.7 kB/request - 37.3263 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01745533no10yes0025081 21745534no13yes10240111 Sum2023 10490192 _________________________.........................______________ ______R____..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1317455330/153/546_ 10.362624167730.01.0221.22 172.68.35.180h2lwb-polska-jobs.smart-careers.cGET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runt 0-1317455330/150/540_ 10.35018170380.01.2725.30 172.68.3.127h2lwb-polska-jobs.smart-careers.cGET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.3 HTTP/2.0 0-1317455330/151/546_ 10.31029159270.01.1222.48 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/156/545_ 10.50428207720.01.5110.42 104.23.195.50h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1756536253.49804592132568359375 0-1317455330/141/558_ 10.53224165070.01.3042.41 172.69.74.196h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1317455330/147/529_ 10.52322190160.01.1943.27 172.71.172.59h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-1317455330/149/523_ 10.48221157690.01.6212.31 162.158.163.227http/1.1api.msz-pl.com:80GET /admin/controller/extension/extension/ HTTP/1.1 0-1317455330/140/516_ 10.40318155580.01.149.78 172.68.35.167h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/rubik-ijwk 0-1317455330/150/507_ 10.372528175570.01.3014.57 172.68.3.109h2lwb-polska-jobs.smart-careers.cGET /wp-content/plugins/pro-elements/assets/js/elements-handler 0-1317455330/140/530_ 10.56018189970.00.9412.05 104.23.195.86h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1317455330/153/539_ 10.42230161410.00.9828.43 162.158.244.146http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/xz07YSCOtGBwie4opnfLK-HJa3qqRVq 0-1317455330/145/548_ 10.53219173870.01.1431.92 172.70.46.193h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1317455330/154/530_ 10.29250176280.01.1648.54 162.158.90.193http/1.1api.msz-pl.com:80GET /.env HTTP/1.1 0-1317455330/140/544_ 10.30358172670.01.3721.41 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/143/530_ 10.312660183390.01.5011.05 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/151/522_ 10.55127185790.06.3714.56 172.71.183.122h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1317455330/140/540_ 10.40330496140.01.3517.25 172.68.35.93h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/roboto-kfo 0-1317455330/149/541_ 10.49836175630.01.3012.79 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/152/541_ 10.51426195400.01.2219.36 104.23.239.39h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1317455330/155/551_ 10.42331169140.01.1914.03 104.23.203.182http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/yWc-_9YApLuNlV0WBFv45FCHfGP2Z-C 0-1317455330/151/541_ 10.38528138450.01.1617.92 104.23.168.14h2bayer-application.fi-careers.on[1/0] done: stream 1, GET / 0-1317455330/150/535_ 10.48128158840.00.959.69 172.69.176.24http/1.1api.msz-pl.com:80GET /files/ HTTP/1.1 0-1317455330/158/540_ 10.452641184540.01.6014.15 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1317455330/143/533_ 10.51327205430.04.0632.52 141.101.76.47h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1317455330/149/537_ 10.52338161720.01.1412.65 162.158.94.90h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-11-0/0/377. 0.00174201886940.00.005.09 4.218.16.157http/1.1api.msz-pl.com:80GET /x.php HTTP/1.1 1-11-0/0/378. 0.00174202772360.00.005.67 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/355. 0.00174202443670.00.0022.88 4.218.16.157http/1.1api.msz-pl.com:80GET /class20.php HTTP/1.1 1-11-0/0/358. 0.00174202155150.00.004.67 4.218.16.157http/1.1api.msz-pl.com:80GET /ll.php HTTP/1.1 1-11-0/0/361. 0.00174202451630.00.0013.78 104.234.115.66http/1.1 1-11-0/0/365. 0.0017420203082800.00.005.44 4.218.16.157http/1.1api.msz-pl.com:80GET /wp-gr.php HTTP/1.1 1-11-0/0/359. 0.00174204762410.00.007.25 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/346. 0.00174201955870.00.008.38 4.218.16.157http/1.1api.msz-pl.com:80GET /pp.php HTTP/1.1 1-11-0/0/357. 0.00174201949690.00.006.27 4.218.16.157http/1.1api.msz-pl.com:80GET /system_log.php HTTP/1.1 1-11-0/0/360. 0.00174201755900.00.003.95 4.218.16.157http/1.1api.msz-pl.com:80GET /wp-mn.php HTTP/1.1 1-11-0/0/360. 0.00174201850590.00.005.39 4.218.16.157http/1.1api.msz-pl.com:80GET /asus.php HTTP/1.1 1-11-0/0/367. 0.00174201892010.00.007.23 4.218.16.157http/1.1api.msz-pl.com:80GET /wp.php HTTP/1.1 1-11-0/0/362. 0.00174201656300.00.007.67 4.218.16.157http/1.1api.msz-pl.com:80GET /xx.php HTTP/1.1 1-11-0/0/361. 0.00174201764890.00.004.21 4.218.16.157http/1.1api.msz-pl.com:80GET /css.php HTTP/1.1 1-11-0/0/356. 0.00174201752090.00.006.79 4.218.16.157http/1.1api.msz-pl.com:80GET /jp.php HTTP/1.1 1-11-0/0/370. 0.00174201869540.00.0018.98 4.218.16.157http/1.1api.msz-pl.com:80GET /dropdown.php HTTP/1.1 1-11-0/0/393. 0.00174202358390.00.004.42 4.218.16.157http/1.1api.msz-pl.com:80GET /html.php HTTP/1.1 1-11-0/0/357. 0.00174202448030.00.005.97 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/360. 0.00174201764680.00.003.28 4.218.16.157http/1.1api.msz-pl.com:80GET /modules/mod_simplefileuploadv1.3/elements/filemanager.php 1-11-0/0/363. 0.00174201855620.00.004.29 4.218.16.157http/1.1api.msz-pl.com:80GET /2x.php HTTP/1.1 1-11-0/0/352. 0.00174202556320.00.004.20 172.17.0.2http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-11-0/0/366. 0.00174201993050.00.0027.17 4.218.16.157http/1.1api.msz-pl.com:80GET /pepe.php HTTP/1.1 1-11-0/0/354. 0.00174202177850.00.005.97 4.218.16.157http/1.1api.msz-pl.com:80GET /goods.php HTTP/1.1 1-11-0/0/355. 0.0017420
Found on 2025-08-30 06:44 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543faf164a0bApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 28-Aug-2025 10:07:43 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 15 Parent Server MPM Generation: 14 Server uptime: 7 days 3 hours 30 minutes 49 seconds Server load: 3.44 3.09 2.56 Total accesses: 385694 - Total Traffic: 3.1 GB - Total Duration: 10854067 CPU Usage: u36.87 s32.79 cu4209.75 cs834.67 - .828% CPU load .625 requests/sec - 5.2 kB/second - 8.3 kB/request - 28.1417 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 23422217no1yes2023000 33422370no0yes0025000 43422435no0yes0025000 Sum301 2073000 ..................................................R_______W_____ _____________________________________________________________... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-14-0/0/4386. 0.001242431401103700.00.0025.05 172.71.222.233http/1.1api.msz-pl.com:80GET /webservices.zip HTTP/1.1 0-14-0/0/4253. 0.001242426925900.00.0028.16 172.68.245.78http/1.1api.msz-pl.com:80GET /export.zip HTTP/1.1 0-14-0/0/4311. 0.00124242030890960.00.0029.98 172.71.223.11http/1.1api.msz-pl.com:80GET /users.zip HTTP/1.1 0-14-0/0/4297. 0.001242435961440.00.0036.36 104.23.213.107http/1.1api.msz-pl.com:80GET /security.zip HTTP/1.1 0-14-0/0/4251. 0.00124240939540.00.0028.91 104.23.213.142http/1.1jointdivisoncxvii.me:80GET /var.zip HTTP/1.1 0-14-0/0/4303. 0.00124242874984390.00.0031.37 104.23.213.56http/1.1api.msz-pl.com:80GET /gallery.zip HTTP/1.1 0-14-0/0/4226. 0.0012424221023950.00.0030.17 104.23.211.139http/1.1api.msz-pl.com:80GET /cloudflare.zip HTTP/1.1 0-14-0/0/4266. 0.00124242069906480.00.0028.55 172.70.39.19http/1.1api.msz-pl.com:80GET /postgres.zip HTTP/1.1 0-14-0/0/4356. 0.001242435914620.00.0030.28 172.68.245.42http/1.1api.msz-pl.com:80GET /sys.zip HTTP/1.1 0-14-0/0/4236. 0.0012424481020850.00.0027.53 172.68.245.202http/1.1api.msz-pl.com:80GET /ui.zip HTTP/1.1 0-14-0/0/4317. 0.00124244037998290.00.0026.30 104.23.213.161http/1.1api.msz-pl.com:80GET /backup_daily.zip HTTP/1.1 0-14-0/0/4303. 0.001242424971540.00.0028.79 104.23.209.94http/1.1api.msz-pl.com:80GET /kernel.zip HTTP/1.1 0-14-0/0/4327. 0.001242455945870.00.0031.98 172.70.175.196http/1.1api.msz-pl.com:80GET /license.zip HTTP/1.1 0-14-0/0/4188. 0.00124241027921330.00.0026.77 104.23.211.18http/1.1api.msz-pl.com:80GET /icons.zip HTTP/1.1 0-14-0/0/4253. 0.00124243122951770.00.0027.59 172.70.34.138http/1.1api.msz-pl.com:80GET /applications.zip HTTP/1.1 0-14-0/0/4196. 0.00124244037982170.00.0026.80 172.70.35.105http/1.1api.msz-pl.com:80GET /oracle.zip HTTP/1.1 0-14-0/0/4187. 0.001242418870800.00.0033.26 172.68.15.200http/1.1api.msz-pl.com:80GET /drivers.zip HTTP/1.1 0-14-0/0/4242. 0.001242430969660.00.0034.49 172.71.223.81http/1.1api.msz-pl.com:80GET /policy.zip HTTP/1.1 0-14-0/0/4256. 0.0012424561042700.00.0051.12 104.23.209.32http/1.1api.msz-pl.com:80GET /standard.zip HTTP/1.1 0-14-0/0/4219. 0.00124243142939740.00.0037.44 172.70.43.58http/1.1api.msz-pl.com:80GET /sites.zip HTTP/1.1 0-14-0/0/4220. 0.001242443927520.00.0031.97 172.68.245.158http/1.1api.msz-pl.com:80GET /onedrive.zip HTTP/1.1 0-14-0/0/4260. 0.001242450912260.00.0026.11 172.71.223.179http/1.1api.msz-pl.com:80GET /credentials.zip HTTP/1.1 0-14-0/0/4309. 0.00124242300928810.00.0025.07 172.71.191.86http/1.1api.msz-pl.com:80GET /public.zip HTTP/1.1 0-14-0/0/4347. 0.00124240977370.00.0026.62 172.71.190.100http/1.1jointdivisoncxvii.me:80GET /unique.zip HTTP/1.1 0-14-0/0/4283. 0.00124243082945280.00.0027.14 104.23.211.46http/1.1api.msz-pl.com:80GET /backup_5.zip HTTP/1.1 1-14-0/0/5312. 0.0012423331325990.00.0077.42 104.23.211.17http/1.1api.msz-pl.com:80GET /terms.zip HTTP/1.1 1-14-0/0/5354. 0.0012423621149110.00.0074.20 172.71.222.218http/1.1api.msz-pl.com:80GET /help.zip HTTP/1.1 1-14-0/0/5296. 0.001242341121248480.00.0067.04 104.23.213.63http/1.1api.msz-pl.com:80GET /database.zip HTTP/1.1 1-14-0/0/5238. 0.001242301158690.00.0043.88 104.23.211.42http/1.1jointdivisoncxvii.me:80GET /common.zip HTTP/1.1 1-14-0/0/5251. 0.0012423211133950.00.0038.58 104.23.211.228http/1.1api.msz-pl.com:80GET /privacy.zip HTTP/1.1 1-14-0/0/5260. 0.001242336841272570.00.0049.10 172.70.35.105http/1.1api.msz-pl.com:80GET /rest.zip HTTP/1.1 1-14-0/0/5208. 0.001242331091337020.00.0041.54 104.23.213.39http/1.1api.msz-pl.com:80GET /wp-config.zip HTTP/1.1 1-14-0/0/5174. 0.001242301262160.00.0043.46 172.71.190.242http/1.1jointdivisoncxvii.me:80GET /general.zip HTTP/1.1 1-14-0/0/5271. 0.001242301522050.00.0049.75 162.158.152.207http/1.1jointdivisoncxvii.me:80GET /miscellaneous.zip HTTP/1.1 1-14-0/0/5293. 0.001242321211287190.00.0047.98 172.70.175.53http/1.1api.msz-pl.com:80GET /db.zip HTTP/1.1 1-14-0/0/5273. 0.001242330601268040.00.0041.41 104.23.213.104http/1.1api.msz-pl.com:80GET /backup.zip HTTP/1.1 1-14-0/0/5244. 0.001242330591207580.00.0040.89 104.23.211.156http/1.1api.msz-pl.com:80GET /back_up.zip HTTP/1.1 1-14-0/0/5247. 0.001242331421325090.00.0042.89 172.68.245.152http/1.1api.msz-pl.com:80GET /dbdump.zip HTTP/1.1 1-14-0/0/5251. 0.001242301166190.00.0045.20 172.70.175.163http/1.1jointdivisoncxvii.me:80GET /changelog.zip HTTP/1.1 1-14-0/0/5217. 0.001242320871380210.00.0038.31 172.70.43.130http/1.1api.msz-pl.com:80GET /testing.zip HTTP/1.1 1-14-0/0/5282. 0.001242301257240.00.0045.88 172.71.195.130http/1.1jointdivisoncxvii.me:80GET /system.zip HTTP/1.1 1-14-0/0/5232. 0.0012423551256980.00.0046.51 172.70.34.28http/1.1api.msz-pl.com:80GET /themes.zip HTTP/1.1 1-14-0/0/5289. 0.0012423431257000.00.0041.94 104.23.211.37http/1.1api.msz-pl.com:80GET /special.zip HTTP/1.1 1-14-0/0/5260. 0.001242301319680.00.0043.96 172.68.138.192http/1.1jointdivisoncxvii.me:80GET /other.zip HTTP/1.1 1-14-0/0/5197. 0.001242301312100.00.0086.66 104.23.213.22http/1.1jointdivisoncxvii.me:80GET /shared.zip HTTP/1.1 1-14-0/0/5261. 0.001242301201880.00.0041.87 172.70.135.213http/1.1jointdivisoncxvii.me:80GET /creative.zip HTTP/1.1 1-14-0/0/5153. 0.001242331271128940.00.0044.15 172.70.42.51http/1.1api.msz-pl.com:80GET /portal.zip HTTP/1.1 1-14-0/0/5275. 0.0012423381462800.00.0064.10 104.23.211.32http/1.1api.msz-pl.com:80GET /proc.zip HTTP/1.1 1-14-0/0/5295. 0.001242310791270190.00.0040.75 172.71.222.121http/1.1api.msz-pl.com:80GET /xml.zip HTTP
Found on 2025-08-28 10:07 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f3ee0b94aApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 28-Aug-2025 10:07:45 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 15 Parent Server MPM Generation: 14 Server uptime: 7 days 3 hours 30 minutes 51 seconds Server load: 3.40 3.09 2.56 Total accesses: 385701 - Total Traffic: 3.1 GB - Total Duration: 10854067 CPU Usage: u36.91 s32.8 cu4209.75 cs834.67 - .828% CPU load .625 requests/sec - 5.2 kB/second - 8.3 kB/request - 28.1411 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 23422217no10yes1024081 33422370no3yes0025021 43422435no13yes10240121 Sum3026 20730223 ..................................................________W_____ ______________________________________R______________________... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-14-0/0/4386. 0.001242731401103700.00.0025.05 172.71.222.233http/1.1api.msz-pl.com:80GET /webservices.zip HTTP/1.1 0-14-0/0/4253. 0.001242726925900.00.0028.16 172.68.245.78http/1.1api.msz-pl.com:80GET /export.zip HTTP/1.1 0-14-0/0/4311. 0.00124272030890960.00.0029.98 172.71.223.11http/1.1api.msz-pl.com:80GET /users.zip HTTP/1.1 0-14-0/0/4297. 0.001242735961440.00.0036.36 104.23.213.107http/1.1api.msz-pl.com:80GET /security.zip HTTP/1.1 0-14-0/0/4251. 0.00124270939540.00.0028.91 104.23.213.142http/1.1jointdivisoncxvii.me:80GET /var.zip HTTP/1.1 0-14-0/0/4303. 0.00124272874984390.00.0031.37 104.23.213.56http/1.1api.msz-pl.com:80GET /gallery.zip HTTP/1.1 0-14-0/0/4226. 0.0012427221023950.00.0030.17 104.23.211.139http/1.1api.msz-pl.com:80GET /cloudflare.zip HTTP/1.1 0-14-0/0/4266. 0.00124272069906480.00.0028.55 172.70.39.19http/1.1api.msz-pl.com:80GET /postgres.zip HTTP/1.1 0-14-0/0/4356. 0.001242735914620.00.0030.28 172.68.245.42http/1.1api.msz-pl.com:80GET /sys.zip HTTP/1.1 0-14-0/0/4236. 0.0012427481020850.00.0027.53 172.68.245.202http/1.1api.msz-pl.com:80GET /ui.zip HTTP/1.1 0-14-0/0/4317. 0.00124274037998290.00.0026.30 104.23.213.161http/1.1api.msz-pl.com:80GET /backup_daily.zip HTTP/1.1 0-14-0/0/4303. 0.001242724971540.00.0028.79 104.23.209.94http/1.1api.msz-pl.com:80GET /kernel.zip HTTP/1.1 0-14-0/0/4327. 0.001242755945870.00.0031.98 172.70.175.196http/1.1api.msz-pl.com:80GET /license.zip HTTP/1.1 0-14-0/0/4188. 0.00124271027921330.00.0026.77 104.23.211.18http/1.1api.msz-pl.com:80GET /icons.zip HTTP/1.1 0-14-0/0/4253. 0.00124273122951770.00.0027.59 172.70.34.138http/1.1api.msz-pl.com:80GET /applications.zip HTTP/1.1 0-14-0/0/4196. 0.00124274037982170.00.0026.80 172.70.35.105http/1.1api.msz-pl.com:80GET /oracle.zip HTTP/1.1 0-14-0/0/4187. 0.001242718870800.00.0033.26 172.68.15.200http/1.1api.msz-pl.com:80GET /drivers.zip HTTP/1.1 0-14-0/0/4242. 0.001242730969660.00.0034.49 172.71.223.81http/1.1api.msz-pl.com:80GET /policy.zip HTTP/1.1 0-14-0/0/4256. 0.0012427561042700.00.0051.12 104.23.209.32http/1.1api.msz-pl.com:80GET /standard.zip HTTP/1.1 0-14-0/0/4219. 0.00124273142939740.00.0037.44 172.70.43.58http/1.1api.msz-pl.com:80GET /sites.zip HTTP/1.1 0-14-0/0/4220. 0.001242743927520.00.0031.97 172.68.245.158http/1.1api.msz-pl.com:80GET /onedrive.zip HTTP/1.1 0-14-0/0/4260. 0.001242750912260.00.0026.11 172.71.223.179http/1.1api.msz-pl.com:80GET /credentials.zip HTTP/1.1 0-14-0/0/4309. 0.00124272300928810.00.0025.07 172.71.191.86http/1.1api.msz-pl.com:80GET /public.zip HTTP/1.1 0-14-0/0/4347. 0.00124270977370.00.0026.62 172.71.190.100http/1.1jointdivisoncxvii.me:80GET /unique.zip HTTP/1.1 0-14-0/0/4283. 0.00124273082945280.00.0027.14 104.23.211.46http/1.1api.msz-pl.com:80GET /backup_5.zip HTTP/1.1 1-14-0/0/5312. 0.0012426331325990.00.0077.42 104.23.211.17http/1.1api.msz-pl.com:80GET /terms.zip HTTP/1.1 1-14-0/0/5354. 0.0012426621149110.00.0074.20 172.71.222.218http/1.1api.msz-pl.com:80GET /help.zip HTTP/1.1 1-14-0/0/5296. 0.001242641121248480.00.0067.04 104.23.213.63http/1.1api.msz-pl.com:80GET /database.zip HTTP/1.1 1-14-0/0/5238. 0.001242601158690.00.0043.88 104.23.211.42http/1.1jointdivisoncxvii.me:80GET /common.zip HTTP/1.1 1-14-0/0/5251. 0.0012426211133950.00.0038.58 104.23.211.228http/1.1api.msz-pl.com:80GET /privacy.zip HTTP/1.1 1-14-0/0/5260. 0.001242636841272570.00.0049.10 172.70.35.105http/1.1api.msz-pl.com:80GET /rest.zip HTTP/1.1 1-14-0/0/5208. 0.001242631091337020.00.0041.54 104.23.213.39http/1.1api.msz-pl.com:80GET /wp-config.zip HTTP/1.1 1-14-0/0/5174. 0.001242601262160.00.0043.46 172.71.190.242http/1.1jointdivisoncxvii.me:80GET /general.zip HTTP/1.1 1-14-0/0/5271. 0.001242601522050.00.0049.75 162.158.152.207http/1.1jointdivisoncxvii.me:80GET /miscellaneous.zip HTTP/1.1 1-14-0/0/5293. 0.001242621211287190.00.0047.98 172.70.175.53http/1.1api.msz-pl.com:80GET /db.zip HTTP/1.1 1-14-0/0/5273. 0.001242630601268040.00.0041.41 104.23.213.104http/1.1api.msz-pl.com:80GET /backup.zip HTTP/1.1 1-14-0/0/5244. 0.001242630591207580.00.0040.89 104.23.211.156http/1.1api.msz-pl.com:80GET /back_up.zip HTTP/1.1 1-14-0/0/5247. 0.001242631421325090.00.0042.89 172.68.245.152http/1.1api.msz-pl.com:80GET /dbdump.zip HTTP/1.1 1-14-0/0/5251. 0.001242601166190.00.0045.20 172.70.175.163http/1.1jointdivisoncxvii.me:80GET /changelog.zip HTTP/1.1 1-14-0/0/5217. 0.001242620871380210.00.0038.31 172.70.43.130http/1.1api.msz-pl.com:80GET /testing.zip HTTP/1.1 1-14-0/0/5282. 0.001242601257240.00.0045.88 172.71.195.130http/1.1jointdivisoncxvii.me:80GET /system.zip HTTP/1.1 1-14-0/0/5232. 0.0012426551256980.00.0046.51 172.70.34.28http/1.1api.msz-pl.com:80GET /themes.zip HTTP/1.1 1-14-0/0/5289. 0.0012426431257000.00.0041.94 104.23.211.37http/1.1api.msz-pl.com:80GET /special.zip HTTP/1.1 1-14-0/0/5260. 0.001242601319680.00.0043.96 172.68.138.192http/1.1jointdivisoncxvii.me:80GET /other.zip HTTP/1.1 1-14-0/0/5197. 0.001242601312100.00.0086.66 104.23.213.22http/1.1jointdivisoncxvii.me:80GET /shared.zip HTTP/1.1 1-14-0/0/5261. 0.001242601201880.00.0041.87 172.70.135.213http/1.1jointdivisoncxvii.me:80GET /creative.zip HTTP/1.1 1-14-0/0/5153. 0.001242631271128940.00.0044.15 172.70.42.51http/1.1api.msz-pl.com:80GET /portal.zip HTTP/1.1 1-14-0/0/5275. 0.0012426381462800.00.0064.10 104.23.211.32http/1.1api.msz-pl.com:80GET /proc.zip HTTP/1.1 1-14-0/0/5295. 0.001242610791270190.00.0040.75 172.71.222.121http/1.1api.msz-pl.com:80GET /xml.zip
Found on 2025-08-28 10:07 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f9966ab86Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Tuesday, 26-Aug-2025 08:58:05 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 11 Parent Server MPM Generation: 10 Server uptime: 5 days 2 hours 21 minutes 11 seconds Server load: 2.42 2.24 2.19 Total accesses: 282706 - Total Traffic: 2.0 GB - Total Duration: 5980500 CPU Usage: u33.24 s26.69 cu2854.55 cs571.18 - .791% CPU load .642 requests/sec - 4803 B/second - 7.3 kB/request - 21.1545 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03146677no0yes0025000 13146678no1yes2023010 Sum201 2048010 _______________________________R________________R_.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1031466770/109/3282_ 9.3621753450.00.6118.50 172.69.195.239h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1031466770/96/3140_ 9.27350586660.00.4420.16 172.69.223.156http/1.1comms.ivarse.com:80GET /packages/plugin-qiankun/examples/app2/.env HTTP/1.1 0-1031466770/110/3202_ 9.3300600600.00.6523.28 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/wp-load.php HTTP/1.1 0-1031466770/97/3197_ 9.33039622330.00.5230.25 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/99/3139_ 9.25650610710.00.5318.37 172.69.223.156http/1.1comms.ivarse.com:80GET /Nuke.App.Ui/.env HTTP/1.1 0-1031466770/116/3202_ 9.4000619280.00.6522.20 162.158.159.145h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1031466770/91/3126_ 9.27200691010.00.5618.87 172.69.223.156http/1.1comms.ivarse.com:80GET /ch6-mytodo/.env HTTP/1.1 0-1031466770/96/3161_ 9.3720586150.00.5920.98 104.23.190.171h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1031466770/105/3185_ 9.3710596250.00.4618.24 104.23.187.26h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1031466770/90/3145_ 9.27350584930.00.6020.99 172.70.130.152http/1.1comms.ivarse.com:80GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1 0-1031466770/120/3221_ 9.3810636290.00.5719.94 172.70.230.81h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1031466770/101/3199_ 9.25620610620.00.4718.53 172.69.223.156http/1.1comms.ivarse.com:80GET /api/config/config.yml HTTP/1.1 0-1031466770/93/3236_ 9.306532613350.00.5824.94 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/106/3140_ 9.3620620500.00.5519.83 141.101.99.69h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-1031466770/102/3140_ 9.352538659800.00.6421.13 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/100/3145_ 9.4100611100.00.6018.48 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-1031466770/87/3092_ 9.3310577730.00.4024.53 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/11.php HTTP/1.1 0-1031466770/100/3179_ 9.3210599350.00.5525.31 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/file.php HTTP/1.1 0-1031466770/104/3160_ 9.344045632300.00.5645.04 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/100/3152_ 9.25202625260.00.6719.28 172.69.223.156http/1.1comms.ivarse.com:80GET /info.php HTTP/1.1 0-1031466770/96/3125_ 9.3220570340.00.4420.08 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/atomlib.php HTTP/1.1 0-1031466770/107/3187_ 9.3900601900.00.4618.46 162.158.155.39h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1031466770/109/3207_ 9.346234593320.00.5917.05 162.158.210.244http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1031466770/114/3239_ 9.3810631580.00.6119.09 172.70.231.108h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1031466770/107/3211_ 9.3210623290.00.5120.18 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/about.php HTTP/1.1 1-1031466780/198/3513_ 15.3910735140.01.1853.33 172.69.223.156http/1.1comms.ivarse.com:80GET /.env.mail_settings.local HTTP/1.1 1-1031466780/188/3525_ 15.3810666800.01.5224.82 172.69.223.156http/1.1comms.ivarse.com:80GET /admin/phpinfo HTTP/1.1 1-1031466780/189/3507_ 15.4000689180.00.9050.78 172.70.91.53h2bayer-application.fi-careers.on[0/0] init 1-1031466780/189/3465_ 15.4050662150.00.9323.21 172.69.223.156http/1.1comms.ivarse.com:80GET /.env.production HTTP/1.1 1-1031466780/186/3501_ 15.451048652170.00.9323.50 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1031466780/199/3499_ 15.40500756260.01.5327.28 162.158.91.168http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1031466780/198/3424R 15.4455364741840.01.0425.62 104.23.187.52h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-1031466780/198/3430_ 15.53045605230.01.0022.40 162.158.159.208h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-1031466780/186/3482_ 15.3450871270.01.0824.43 172.69.223.155http/1.1comms.ivarse.com:80GET /.env1 HTTP/1.1 1-1031466780/188/3525_ 15.4910716790.01.3727.83 141.101.99.71h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-1031466780/200/3492_ 15.4910643450.00.9825.08 162.158.63.51h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-1031466780/208/3499_ 15.345061620290.01.6125.14 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1031466780/195/3488_ 15.48259745510.00.8823.55 104.23.190.28h2bayer-application.fi-careers.onGET / HTTP/2.0 1-1031466780/195/3473_ 15.5300644870.01.0527.25 162.158.154.159h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-1031466780/212/3468_ 15.5200708600.01.1123.34 172.70.91.53h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-1031466780/203/3492_ 15.3700682050.01.2925.87 172.69.223.155http/1.1comms.ivarse.com:80GET /etc/named.conf HTTP/1.1 1-1031466780/203/3499_ 15.4400734600.01.3930.65 162.158.210.244http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1031466780/186/3535_ 15.42132671540.01.0022.88 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1031466780/192/3470_ 15.40047697190.01.0326.50 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1031466780/194/3408_ 15.3900693890.00.9253.85 172.69.223.156http/1.1comms.ivarse.com:80GET /my_env/palash.py HTTP/1.1 1-1031466780/196/3452_ 15.50163686380.01.1326.42 172.68.186.116h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-1031466780/192/3394_ 15.4000562690.01.0521.53 172.69.223.156http/1.1comms.ivarse.com:80GET /marketing/.env HTTP/1.1 1-1031466780/197/3496_
Found on 2025-08-26 08:58 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f45fb6366Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Tuesday, 26-Aug-2025 08:58:07 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 11 Parent Server MPM Generation: 10 Server uptime: 5 days 2 hours 21 minutes 12 seconds Server load: 2.42 2.24 2.19 Total accesses: 282716 - Total Traffic: 2.0 GB - Total Duration: 5980500 CPU Usage: u33.29 s26.71 cu2854.55 cs571.18 - .791% CPU load .642 requests/sec - 4803 B/second - 7.3 kB/request - 21.1537 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03146677no0yes1024000 13146678no18yes10240161 Sum2018 20480161 ______________________R_________R_________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1031466770/109/3282_ 9.3641753450.00.6118.50 172.69.195.239h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1031466770/96/3140_ 9.27370586660.00.4420.16 172.69.223.156http/1.1comms.ivarse.com:80GET /packages/plugin-qiankun/examples/app2/.env HTTP/1.1 0-1031466770/110/3202_ 9.3320600600.00.6523.28 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/wp-load.php HTTP/1.1 0-1031466770/97/3197_ 9.33239622330.00.5230.25 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/100/3140_ 9.4100610710.00.5318.37 172.70.86.228h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-1031466770/116/3202_ 9.4020619280.00.6522.20 162.158.159.145h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1031466770/91/3126_ 9.27220691010.00.5618.87 172.69.223.156http/1.1comms.ivarse.com:80GET /ch6-mytodo/.env HTTP/1.1 0-1031466770/96/3161_ 9.3730586150.00.5920.98 104.23.190.171h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1031466770/105/3185_ 9.3730596250.00.4618.24 104.23.187.26h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1031466770/90/3145_ 9.27370584930.00.6020.99 172.70.130.152http/1.1comms.ivarse.com:80GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1 0-1031466770/120/3221_ 9.3820636290.00.5719.94 172.70.230.81h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1031466770/101/3199_ 9.25630610620.00.4718.53 172.69.223.156http/1.1comms.ivarse.com:80GET /api/config/config.yml HTTP/1.1 0-1031466770/93/3236_ 9.30032613350.00.5824.94 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/106/3140_ 9.3630620500.00.5519.83 141.101.99.69h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-1031466770/102/3140_ 9.352738659800.00.6421.13 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/100/3145_ 9.4110611100.00.6018.48 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-1031466770/87/3092_ 9.3320577730.00.4024.53 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/11.php HTTP/1.1 0-1031466770/100/3179_ 9.3230599350.00.5525.31 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/file.php HTTP/1.1 0-1031466770/104/3160_ 9.344245632300.00.5645.04 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1031466770/100/3152_ 9.25222625260.00.6719.28 172.69.223.156http/1.1comms.ivarse.com:80GET /info.php HTTP/1.1 0-1031466770/96/3125_ 9.3230570340.00.4420.08 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/atomlib.php HTTP/1.1 0-1031466770/107/3187_ 9.3920601900.00.4618.46 162.158.155.39h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1031466770/109/3207R 9.346434593320.00.5917.05 162.158.158.58http/1.1bayer-application.fi-careers.on 0-1031466770/114/3239_ 9.3820631580.00.6119.09 172.70.231.108h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1031466770/107/3211_ 9.3220623290.00.5120.18 172.71.182.241http/1.1futurefocusfarm.com:80GET /.well-known/acme-challenge/about.php HTTP/1.1 1-1031466780/198/3513_ 15.3900735140.01.1853.33 172.69.223.156http/1.1comms.ivarse.com:80GET /.env.mail_settings.local HTTP/1.1 1-1031466780/188/3525_ 15.3800666800.01.5224.82 172.69.223.156http/1.1comms.ivarse.com:80GET /admin/phpinfo HTTP/1.1 1-1031466780/190/3508_ 15.6000689180.00.9050.78 104.23.187.52h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 1-1031466780/189/3465_ 15.4000662150.00.9323.21 162.158.159.116h2bayer-application.fi-careers.on[0/0] init 1-1031466780/187/3502_ 15.56148652170.00.9323.50 162.158.159.156h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 1-1031466780/199/3499_ 15.4010756260.01.5327.28 162.158.91.168http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1031466780/199/3425_ 15.551364741840.01.0525.62 104.23.187.52h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-1031466780/198/3430R 15.53145605230.01.0022.40 162.158.216.145h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-1031466780/186/3482_ 15.3410871270.01.0824.43 172.69.223.155http/1.1comms.ivarse.com:80GET /.env1 HTTP/1.1 1-1031466780/188/3525_ 15.4900716790.01.3727.83 162.158.155.70h2bayer-application.fi-careers.on[0/0] init 1-1031466780/201/3493_ 15.5900643450.00.9925.08 162.158.159.227h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-1031466780/208/3499_ 15.34161620290.01.6125.14 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1031466780/196/3489_ 15.58059745510.00.8823.55 162.158.159.116h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 1-1031466780/195/3473_ 15.5300644870.01.0527.25 162.158.154.159h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-1031466780/213/3469_ 15.6000708600.01.1123.34 104.23.190.64h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 1-1031466780/203/3492_ 15.3710682050.01.2925.87 172.69.223.155http/1.1comms.ivarse.com:80GET /etc/named.conf HTTP/1.1 1-1031466780/203/3499_ 15.4400734600.01.3930.65 162.158.210.244http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1031466780/187/3536_ 15.60032671540.01.0022.88 141.101.98.112h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-1031466780/192/3470_ 15.40047697190.01.0326.50 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1031466780/194/3408_ 15.3900693890.00.9253.85 172.69.223.156http/1.1comms.ivarse.com:80GET /my_env/palash.py HTTP/1.1 1-1031466780/197/3453_ 15.60063686380.01.1326.42 162.158.155.70h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-1031466780/192/3394_ 15.4000562690.01.0521.53 172.69.223.156http/1.1comms.ivarse.com:80GET /marketing/.env HTTP/1.1
Found on 2025-08-26 08:58 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f2437d494Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Sunday, 24-Aug-2025 05:56:41 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 8 Parent Server MPM Generation: 7 Server uptime: 2 days 23 hours 19 minutes 47 seconds Server load: 1.88 1.16 0.98 Total accesses: 170442 - Total Traffic: 1.0 GB - Total Duration: 3274701 CPU Usage: u42.86 s25.19 cu1550.73 cs335.19 - .761% CPU load .664 requests/sec - 4219 B/second - 6.2 kB/request - 19.213 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 33713398no0yes1024000 43713399no0yes0025000 Sum200 1049000 ................................................................ ...........___________R______________________________________... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-2-0/0/2286. 0.00390903427940.00.0013.42 172.71.31.153h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2195. 0.00390901348930.00.0013.28 172.68.35.129h2staplefordwingstravels.co.uk:44[0/0] init 0-2-0/0/2245. 0.00390904363290.00.0013.96 172.69.224.185h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2264. 0.00390901368070.00.0013.55 172.71.182.69http/1.1cryptofnpro.com:80GET / HTTP/1.1 0-2-0/0/2182. 0.00390902353040.00.0013.09 172.68.12.29h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2200. 0.00390901369430.00.0016.96 172.68.7.192h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2183. 0.00390901400760.00.0014.34 104.23.248.154h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2217. 0.00390901376000.00.0015.93 172.70.94.178h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-2-0/0/2212. 0.003909031387520.00.0013.00 172.70.86.231h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2196. 0.00390901356650.00.0015.49 172.70.116.213h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2252. 0.003909023369580.00.0015.32 162.158.108.170h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2227. 0.00390901364570.00.0013.73 172.69.60.130http/1.1comms.ivarse.com:80GET /ext.php HTTP/1.1 0-2-0/0/2284. 0.00390902370310.00.0019.35 172.71.148.170h2staplefordwingstravels.co.uk:44[0/0] init 0-2-0/0/2181. 0.0039090120394900.00.0013.40 172.71.95.116http/1.1api.msz-pl.com:80GET / HTTP/1.1 0-2-0/0/2221. 0.00390901439900.00.0013.72 172.71.190.247h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2209. 0.00390900367770.00.0013.83 172.69.60.130http/1.1comms.ivarse.com:80GET /classwithtostring.php HTTP/1.1 0-2-0/0/2177. 0.00390903346670.00.0020.00 104.23.170.194http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-2-0/0/2194. 0.00390902374930.00.0013.06 162.158.193.3h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2196. 0.00390902389190.00.0039.48 104.23.172.120http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-2-0/0/2184. 0.00390904350370.00.0012.46 172.68.35.129h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2192. 0.003909054351130.00.0014.37 172.71.100.180h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2213. 0.00390901355920.00.0013.39 172.70.179.213h2drumreed.co.uk:443GET /indexb4a1.html?pg=completed_projects&filter[]=10 HTTP/2.0 0-2-0/0/2229. 0.003909012348890.00.0011.48 172.71.148.170h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2241. 0.00390901415630.00.0014.58 162.158.216.83h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2246. 0.00390907370350.00.0013.82 172.68.3.145h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-1-0/0/1822. 0.001088950285220.00.008.25 172.70.93.93http/1.1comms.ivarse.com:80GET /global.zip HTTP/1.1 1-1-0/0/1836. 0.001088950282670.00.0010.64 172.69.176.114http/1.1comms.ivarse.com:80GET /pinterest.zip HTTP/1.1 1-1-0/0/1888. 0.001088950320500.00.0034.78 172.71.82.54http/1.1comms.ivarse.com:80GET /business.zip HTTP/1.1 1-1-0/0/1813. 0.001088950310040.00.008.06 172.71.124.96http/1.1comms.ivarse.com:80GET /department.zip HTTP/1.1 1-1-0/0/1850. 0.001088950314950.00.008.38 172.71.152.96http/1.1comms.ivarse.com:80GET /authentication.zip HTTP/1.1 1-1-0/0/1816. 0.001088950326950.00.0012.05 162.158.88.121http/1.1comms.ivarse.com:80GET /work.zip HTTP/1.1 1-1-0/0/1778. 0.001088950324170.00.009.15 172.70.142.51http/1.1comms.ivarse.com:80GET /division.zip HTTP/1.1 1-1-0/0/1756. 0.001088950301980.00.008.94 108.162.227.138http/1.1comms.ivarse.com:80GET /privacy.zip HTTP/1.1 1-1-0/0/1825. 0.001088950354130.00.0011.50 172.69.176.41http/1.1comms.ivarse.com:80GET /backup_monthly.zip HTTP/1.1 1-1-0/0/1862. 0.001088950341400.00.0010.39 172.71.124.205http/1.1comms.ivarse.com:80GET /ini.zip HTTP/1.1 1-1-0/0/1828. 0.001088950282260.00.009.54 172.70.93.118http/1.1comms.ivarse.com:80GET /universal.zip HTTP/1.1 1-1-0/0/1822. 0.001088950333740.00.008.56 172.71.82.144http/1.1comms.ivarse.com:80GET /sqlite.zip HTTP/1.1 1-1-0/0/1807. 0.001088950354020.00.009.86 172.71.152.33http/1.1comms.ivarse.com:80GET /cdn.zip HTTP/1.1 1-1-0/0/1808. 0.001088950285470.00.008.71 172.70.142.107http/1.1comms.ivarse.com:80GET /other.zip HTTP/1.1 1-1-0/0/1778. 0.001088950314450.00.008.54 172.69.176.48http/1.1comms.ivarse.com:80GET /customer.zip HTTP/1.1 1-1-0/0/1833. 0.001088950340970.00.0011.43 172.71.124.76http/1.1comms.ivarse.com:80GET /misc.zip HTTP/1.1 1-1-0/0/1832. 0.001088950342290.00.0014.91 162.158.88.26http/1.1comms.ivarse.com:80GET /control.zip HTTP/1.1 1-1-0/0/1878. 0.001088950342330.00.008.67 172.70.208.101http/1.1comms.ivarse.com:80GET /group.zip HTTP/1.1 1-1-0/0/1825. 0.001088950386990.00.0011.39 172.71.81.76http/1.1comms.ivarse.com:80GET /team.zip HTTP/1.1 1-1-0/0/1758. 0.001088950329340.00.0038.85 162.158.88.94http/1.1comms.ivarse.com:80GET /guide.zip HTTP/1.1 1-1-0/0/1799. 0.001088950324660.00.0011.29 162.158.108.62http/1.1comms.ivarse.com:80GET /shared.zip HTTP/1.1 1-1-0/0/1767. 0.001088950290750.00.007.83 162.158.88.132http/1.1comms.ivarse.com:80GET /common.zip HTTP/1.1 1-1-0/0/1827. 0.001088950322150.00.008.74 172.71.82.61http/1.1comms.ivarse.com:80GET /miscellaneous.zip HTTP/1.1 1-1-0/0/1828. 0.001088950322210.00.008.02 162.158.163.105http/1.1comms.ivarse.com:80GET /process.zip HTTP/1.1 1-1-0/0/1840. 0.00108895029142
Found on 2025-08-24 05:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f5026f9c7Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Sunday, 24-Aug-2025 05:56:42 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 8 Parent Server MPM Generation: 7 Server uptime: 2 days 23 hours 19 minutes 48 seconds Server load: 1.88 1.16 0.98 Total accesses: 170443 - Total Traffic: 1.0 GB - Total Duration: 3274701 CPU Usage: u42.87 s25.19 cu1550.73 cs335.19 - .761% CPU load .664 requests/sec - 4219 B/second - 6.2 kB/request - 19.2129 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 33713398no0yes1024000 43713399no0yes0025000 Sum200 1049000 ................................................................ ...........__________R_______________________________________... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-2-0/0/2286. 0.00390903427940.00.0013.42 172.71.31.153h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2195. 0.00390901348930.00.0013.28 172.68.35.129h2staplefordwingstravels.co.uk:44[0/0] init 0-2-0/0/2245. 0.00390904363290.00.0013.96 172.69.224.185h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2264. 0.00390901368070.00.0013.55 172.71.182.69http/1.1cryptofnpro.com:80GET / HTTP/1.1 0-2-0/0/2182. 0.00390902353040.00.0013.09 172.68.12.29h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2200. 0.00390901369430.00.0016.96 172.68.7.192h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2183. 0.00390901400760.00.0014.34 104.23.248.154h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2217. 0.00390901376000.00.0015.93 172.70.94.178h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-2-0/0/2212. 0.003909031387520.00.0013.00 172.70.86.231h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2196. 0.00390901356650.00.0015.49 172.70.116.213h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2252. 0.003909023369580.00.0015.32 162.158.108.170h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2227. 0.00390901364570.00.0013.73 172.69.60.130http/1.1comms.ivarse.com:80GET /ext.php HTTP/1.1 0-2-0/0/2284. 0.00390902370310.00.0019.35 172.71.148.170h2staplefordwingstravels.co.uk:44[0/0] init 0-2-0/0/2181. 0.0039090120394900.00.0013.40 172.71.95.116http/1.1api.msz-pl.com:80GET / HTTP/1.1 0-2-0/0/2221. 0.00390901439900.00.0013.72 172.71.190.247h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2209. 0.00390900367770.00.0013.83 172.69.60.130http/1.1comms.ivarse.com:80GET /classwithtostring.php HTTP/1.1 0-2-0/0/2177. 0.00390903346670.00.0020.00 104.23.170.194http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-2-0/0/2194. 0.00390902374930.00.0013.06 162.158.193.3h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2196. 0.00390902389190.00.0039.48 104.23.172.120http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-2-0/0/2184. 0.00390904350370.00.0012.46 172.68.35.129h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2192. 0.003909054351130.00.0014.37 172.71.100.180h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2213. 0.00390901355920.00.0013.39 172.70.179.213h2drumreed.co.uk:443GET /indexb4a1.html?pg=completed_projects&filter[]=10 HTTP/2.0 0-2-0/0/2229. 0.003909012348890.00.0011.48 172.71.148.170h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2241. 0.00390901415630.00.0014.58 162.158.216.83h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/2246. 0.00390907370350.00.0013.82 172.68.3.145h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-1-0/0/1822. 0.001088960285220.00.008.25 172.70.93.93http/1.1comms.ivarse.com:80GET /global.zip HTTP/1.1 1-1-0/0/1836. 0.001088960282670.00.0010.64 172.69.176.114http/1.1comms.ivarse.com:80GET /pinterest.zip HTTP/1.1 1-1-0/0/1888. 0.001088960320500.00.0034.78 172.71.82.54http/1.1comms.ivarse.com:80GET /business.zip HTTP/1.1 1-1-0/0/1813. 0.001088960310040.00.008.06 172.71.124.96http/1.1comms.ivarse.com:80GET /department.zip HTTP/1.1 1-1-0/0/1850. 0.001088960314950.00.008.38 172.71.152.96http/1.1comms.ivarse.com:80GET /authentication.zip HTTP/1.1 1-1-0/0/1816. 0.001088960326950.00.0012.05 162.158.88.121http/1.1comms.ivarse.com:80GET /work.zip HTTP/1.1 1-1-0/0/1778. 0.001088960324170.00.009.15 172.70.142.51http/1.1comms.ivarse.com:80GET /division.zip HTTP/1.1 1-1-0/0/1756. 0.001088960301980.00.008.94 108.162.227.138http/1.1comms.ivarse.com:80GET /privacy.zip HTTP/1.1 1-1-0/0/1825. 0.001088960354130.00.0011.50 172.69.176.41http/1.1comms.ivarse.com:80GET /backup_monthly.zip HTTP/1.1 1-1-0/0/1862. 0.001088960341400.00.0010.39 172.71.124.205http/1.1comms.ivarse.com:80GET /ini.zip HTTP/1.1 1-1-0/0/1828. 0.001088960282260.00.009.54 172.70.93.118http/1.1comms.ivarse.com:80GET /universal.zip HTTP/1.1 1-1-0/0/1822. 0.001088960333740.00.008.56 172.71.82.144http/1.1comms.ivarse.com:80GET /sqlite.zip HTTP/1.1 1-1-0/0/1807. 0.001088960354020.00.009.86 172.71.152.33http/1.1comms.ivarse.com:80GET /cdn.zip HTTP/1.1 1-1-0/0/1808. 0.001088960285470.00.008.71 172.70.142.107http/1.1comms.ivarse.com:80GET /other.zip HTTP/1.1 1-1-0/0/1778. 0.001088960314450.00.008.54 172.69.176.48http/1.1comms.ivarse.com:80GET /customer.zip HTTP/1.1 1-1-0/0/1833. 0.001088960340970.00.0011.43 172.71.124.76http/1.1comms.ivarse.com:80GET /misc.zip HTTP/1.1 1-1-0/0/1832. 0.001088960342290.00.0014.91 162.158.88.26http/1.1comms.ivarse.com:80GET /control.zip HTTP/1.1 1-1-0/0/1878. 0.001088960342330.00.008.67 172.70.208.101http/1.1comms.ivarse.com:80GET /group.zip HTTP/1.1 1-1-0/0/1825. 0.001088960386990.00.0011.39 172.71.81.76http/1.1comms.ivarse.com:80GET /team.zip HTTP/1.1 1-1-0/0/1758. 0.001088960329340.00.0038.85 162.158.88.94http/1.1comms.ivarse.com:80GET /guide.zip HTTP/1.1 1-1-0/0/1799. 0.001088960324660.00.0011.29 162.158.108.62http/1.1comms.ivarse.com:80GET /shared.zip HTTP/1.1 1-1-0/0/1767. 0.001088960290750.00.007.83 162.158.88.132http/1.1comms.ivarse.com:80GET /common.zip HTTP/1.1 1-1-0/0/1827. 0.001088960322150.00.008.74 172.71.82.61http/1.1comms.ivarse.com:80GET /miscellaneous.zip HTTP/1.1 1-1-0/0/1828. 0.001088960322210.00.008.02 162.158.163.105http/1.1comms.ivarse.com:80GET /process.zip HTTP/1.1 1-1-0/0/1840. 0.00108896029142
Found on 2025-08-24 05:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fe9335f52Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Friday, 22-Aug-2025 07:14:25 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 1 day 37 minutes 31 seconds Server load: 0.78 0.94 0.97 Total accesses: 62447 - Total Traffic: 457.3 MB - Total Duration: 1872887 CPU Usage: u47.34 s24.37 cu469.14 cs96.7 - .719% CPU load .704 requests/sec - 5.3 kB/second - 7.5 kB/request - 29.9916 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0915215no30yes10240272 1915216no11yes1024091 Sum2041 20480363 ________________R______________________R__________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-19152150/313/890_ 34.1220226940.02.024.31 104.23.190.184http/1.1bayer-application.fi-careers.onGET /config.json HTTP/1.1 0-19152150/296/808_ 33.9811164230.01.924.35 172.71.22.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/327/836_ 34.1120171510.02.335.03 172.70.111.146http/1.1bayer-application.fi-careers.onGET /.DS_Store HTTP/1.1 0-19152150/302/833_ 34.1220162060.01.854.84 162.158.158.38http/1.1bayer-application.fi-careers.onGET /.env HTTP/1.1 0-19152150/291/809_ 34.1100172710.01.694.06 104.23.190.17http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 0-19152150/306/825_ 34.1000189800.01.634.04 172.70.231.101http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 0-19152150/290/802_ 34.1100197960.01.824.24 104.23.187.26http/1.1bayer-application.fi-careers.onGET /_all_dbs HTTP/1.1 0-19152150/305/820_ 34.0720206210.01.877.12 104.23.239.76h2bayer-application.fi-careers.onGET / HTTP/2.0 0-19152150/312/820_ 34.1011194020.01.924.08 162.158.94.74h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-19152150/295/800_ 34.1000175740.01.206.01 172.71.148.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-19152150/312/840_ 34.1321143970.02.715.14 162.158.155.122http/1.1bayer-application.fi-careers.onGET /info.php HTTP/1.1 0-19152150/290/827_ 34.1220139490.01.754.47 172.71.250.58h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-19152150/310/847_ 34.1311180530.01.8710.74 172.69.151.148h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-19152150/283/789_ 34.1120196970.01.014.59 172.70.248.27h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-19152150/314/834_ 33.8201169690.01.804.27 172.64.236.146h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/278/820_ 34.1220158270.01.444.01 172.70.251.67h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-19152150/286/785R 34.1032170860.01.6810.59 172.70.247.188h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-19152150/295/809_ 34.0820154290.02.024.54 162.158.159.115http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-19152150/306/797_ 34.1220193600.021.2430.13 162.158.154.18http/1.1bayer-application.fi-careers.onGET /s/931313e2836313e27363e2237313/_/;/META-INF/maven/com.atla 0-19152150/297/801_ 34.1401183110.01.203.56 172.71.144.146h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-19152150/309/814_ 34.1500157840.02.525.25 172.71.148.88h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-19152150/287/841_ 34.1220147200.02.414.76 172.71.250.35h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-19152150/293/833_ 34.062469184900.01.574.11 162.158.63.88http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-19152150/297/819_ 34.0922166900.01.463.95 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-19152150/308/857_ 34.1410157000.01.295.33 162.158.86.201h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-19152160/240/1187_ 30.734117216870.00.995.31 172.68.211.43http/1.1api.msz-pl.com:80GET /faq.php HTTP/1.1 1-19152160/233/1174_ 30.73029206760.00.737.65 172.68.211.43http/1.1api.msz-pl.com:80GET /file6.php HTTP/1.1 1-19152160/249/1210_ 30.71127230510.01.0230.35 172.68.211.43http/1.1api.msz-pl.com:80GET /content.php HTTP/1.1 1-19152160/255/1140_ 30.75321223140.01.074.80 172.70.240.21h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-19152160/239/1175_ 30.70329211020.00.975.50 172.68.211.43http/1.1api.msz-pl.com:80GET /simple.php HTTP/1.1 1-19152160/249/1153_ 30.7520233360.00.745.44 104.23.190.224http/1.1bayer-application.fi-careers.onGET /telescope/requests HTTP/1.1 1-19152160/235/1126_ 30.75420242290.00.845.83 172.70.240.90h2bayer-application.fi-careers.onGET / HTTP/2.0 1-19152160/257/1138_ 30.761119225490.01.086.23 104.23.190.64http/1.1bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/1.1 1-19152160/234/1149_ 30.734119274520.00.798.80 172.68.211.43http/1.1api.msz-pl.com:80GET /file19.php HTTP/1.1 1-19152160/265/1221_ 30.73020259640.01.327.56 172.68.211.43http/1.1api.msz-pl.com:80GET /file4.php HTTP/1.1 1-19152160/241/1184_ 30.72019214960.01.056.68 172.68.211.43http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-19152160/261/1169_ 30.73519244700.01.175.91 172.70.250.42h2bayer-application.fi-careers.onGET / HTTP/2.0 1-19152160/244/1152_ 30.76136261550.00.756.58 162.158.94.248h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-19152160/260/1173_ 30.76120177470.01.216.06 172.70.248.28h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-19152160/246/1159R 30.734229227240.01.045.86 172.70.248.123http/1.1bayer-application.fi-careers.on 1-19152160/263/1150_ 30.703523246620.01.258.43 172.68.211.43http/1.1api.msz-pl.com:80GET /packed.php HTTP/1.1 1-19152160/244/1142_ 30.734124228890.00.7911.48 172.68.211.43http/1.1api.msz-pl.com:80GET /log.php HTTP/1.1 1-19152160/257/1189_ 30.71133246050.00.895.33 172.68.211.43http/1.1api.msz-pl.com:80GET /mah.php HTTP/1.1 1-19152160/251/1189_ 30.734117262790.00.978.49 172.68.211.43http/1.1api.msz-pl.com:80GET /file.php HTTP/1.1 1-19152160/229/1121_ 30.734025238950.00.9035.99 172.68.211.43http/1.1api.msz-pl.com:80GET /file18.php HTTP/1.1 1-19152160/264/1166_ 30.7520238820.01.098.65 104.23.190.104http/1.1bayer-application.fi-careers.onGET /.git/config HTTP/1.1 1-19152160/238/1138_ 30.77017187290.00.985.19 172.71.164.160h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-19152160/255/1176_ 30.7530243100.01.366.09 104.23.190.104http/1.1bayer-application.fi-careers.on
Found on 2025-08-22 07:14 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fa65ac7c1Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Friday, 22-Aug-2025 07:14:25 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 1 day 37 minutes 31 seconds Server load: 0.78 0.94 0.97 Total accesses: 62448 - Total Traffic: 457.3 MB - Total Duration: 1872887 CPU Usage: u47.34 s24.37 cu469.14 cs96.7 - .719% CPU load .704 requests/sec - 5.3 kB/second - 7.5 kB/request - 29.9911 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0915215no30yes00250272 1915216no11yes1024091 Sum2041 10490363 _______________________________________R__________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-19152150/313/890_ 34.1220226940.02.024.31 104.23.190.184http/1.1bayer-application.fi-careers.onGET /config.json HTTP/1.1 0-19152150/296/808_ 33.9811164230.01.924.35 172.71.22.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/327/836_ 34.1120171510.02.335.03 172.70.111.146http/1.1bayer-application.fi-careers.onGET /.DS_Store HTTP/1.1 0-19152150/302/833_ 34.1220162060.01.854.84 162.158.158.38http/1.1bayer-application.fi-careers.onGET /.env HTTP/1.1 0-19152150/291/809_ 34.1100172710.01.694.06 104.23.190.17http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 0-19152150/306/825_ 34.1000189800.01.634.04 172.70.231.101http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 0-19152150/290/802_ 34.1100197960.01.824.24 104.23.187.26http/1.1bayer-application.fi-careers.onGET /_all_dbs HTTP/1.1 0-19152150/305/820_ 34.0720206210.01.877.12 104.23.239.76h2bayer-application.fi-careers.onGET / HTTP/2.0 0-19152150/312/820_ 34.1011194020.01.924.08 162.158.94.74h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-19152150/295/800_ 34.1000175740.01.206.01 172.71.148.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-19152150/312/840_ 34.1321143970.02.715.14 162.158.155.122http/1.1bayer-application.fi-careers.onGET /info.php HTTP/1.1 0-19152150/290/827_ 34.1220139490.01.754.47 172.71.250.58h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-19152150/310/847_ 34.1311180530.01.8710.74 172.69.151.148h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-19152150/283/789_ 34.1120196970.01.014.59 172.70.248.27h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-19152150/314/834_ 33.8201169690.01.804.27 172.64.236.146h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/278/820_ 34.1220158270.01.444.01 172.70.251.67h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-19152150/287/786_ 34.1502170860.01.6910.60 172.70.247.188h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 0-19152150/295/809_ 34.0820154290.02.024.54 162.158.159.115http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-19152150/306/797_ 34.1220193600.021.2430.13 162.158.154.18http/1.1bayer-application.fi-careers.onGET /s/931313e2836313e27363e2237313/_/;/META-INF/maven/com.atla 0-19152150/297/801_ 34.1401183110.01.203.56 172.71.144.146h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-19152150/309/814_ 34.1500157840.02.525.25 172.71.148.88h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-19152150/287/841_ 34.1220147200.02.414.76 172.71.250.35h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-19152150/293/833_ 34.062469184900.01.574.11 162.158.63.88http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-19152150/297/819_ 34.0922166900.01.463.95 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-19152150/308/857_ 34.1410157000.01.295.33 162.158.86.201h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-19152160/240/1187_ 30.734117216870.00.995.31 172.68.211.43http/1.1api.msz-pl.com:80GET /faq.php HTTP/1.1 1-19152160/233/1174_ 30.73029206760.00.737.65 172.68.211.43http/1.1api.msz-pl.com:80GET /file6.php HTTP/1.1 1-19152160/249/1210_ 30.71127230510.01.0230.35 172.68.211.43http/1.1api.msz-pl.com:80GET /content.php HTTP/1.1 1-19152160/255/1140_ 30.75321223140.01.074.80 172.70.240.21h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-19152160/239/1175_ 30.70329211020.00.975.50 172.68.211.43http/1.1api.msz-pl.com:80GET /simple.php HTTP/1.1 1-19152160/249/1153_ 30.7520233360.00.745.44 104.23.190.224http/1.1bayer-application.fi-careers.onGET /telescope/requests HTTP/1.1 1-19152160/235/1126_ 30.75420242290.00.845.83 172.70.240.90h2bayer-application.fi-careers.onGET / HTTP/2.0 1-19152160/257/1138_ 30.761119225490.01.086.23 104.23.190.64http/1.1bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/1.1 1-19152160/234/1149_ 30.734119274520.00.798.80 172.68.211.43http/1.1api.msz-pl.com:80GET /file19.php HTTP/1.1 1-19152160/265/1221_ 30.73020259640.01.327.56 172.68.211.43http/1.1api.msz-pl.com:80GET /file4.php HTTP/1.1 1-19152160/241/1184_ 30.72019214960.01.056.68 172.68.211.43http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-19152160/261/1169_ 30.73519244700.01.175.91 172.70.250.42h2bayer-application.fi-careers.onGET / HTTP/2.0 1-19152160/244/1152_ 30.76136261550.00.756.58 162.158.94.248h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-19152160/260/1173_ 30.76120177470.01.216.06 172.70.248.28h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-19152160/246/1159R 30.734229227240.01.045.86 172.70.248.123h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-19152160/263/1150_ 30.703523246620.01.258.43 172.68.211.43http/1.1api.msz-pl.com:80GET /packed.php HTTP/1.1 1-19152160/244/1142_ 30.734124228890.00.7911.48 172.68.211.43http/1.1api.msz-pl.com:80GET /log.php HTTP/1.1 1-19152160/257/1189_ 30.71133246050.00.895.33 172.68.211.43http/1.1api.msz-pl.com:80GET /mah.php HTTP/1.1 1-19152160/251/1189_ 30.734117262790.00.978.49 172.68.211.43http/1.1api.msz-pl.com:80GET /file.php HTTP/1.1 1-19152160/229/1121_ 30.734025238950.00.9035.99 172.68.211.43http/1.1api.msz-pl.com:80GET /file18.php HTTP/1.1 1-19152160/264/1166_ 30.7520238820.01.098.65 104.23.190.104http/1.1bayer-application.fi-careers.onGET /.git/config HTTP/1.1 1-19152160/238/1138_ 30.77017187290.00.985.19 172.71.164.160h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-19152160/255/1176_ 30.7530243100.01.366.09 104.23.190.104http/1.1bayer-application.fi-careers.on</
Found on 2025-08-22 07:14 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fab7e81caApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 21-Aug-2025 10:25:54 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 3 hours 48 minutes 59 seconds Server load: 0.95 0.89 0.89 Total accesses: 8936 - Total Traffic: 119.2 MB - Total Duration: 144996 CPU Usage: u27.92 s13.87 cu0 cs0 - .304% CPU load .65 requests/sec - 8.9 kB/second - 13.7 kB/request - 16.2261 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02574580no0yes0025000 12574581no5yes2023031 Sum205 2048031 ___________________________________________R_____R.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-025745800/131/131_ 15.741547340260.01.121.12 172.70.254.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/117/117_ 15.650212360.01.351.35 172.69.214.154http/1.1ivarse.com:80GET /server-status HTTP/1.1 0-025745800/111/111_ 15.781395229080.01.711.71 108.162.226.106h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/124/124_ 15.82149013430.01.981.98 162.158.86.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/125/125_ 15.641592816310.01.461.46 104.23.217.152http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-025745800/128/128_ 15.8312709080.01.181.18 172.70.94.58http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-025745800/125/125_ 15.66144020340.01.041.04 172.69.17.71h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/119/119_ 15.8202029230.04.114.11 172.70.230.60h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/131/131_ 15.72158018680.01.271.27 172.70.218.237h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/113/113_ 15.65127027830.03.673.67 172.70.80.44http/1.1ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-025745800/128/128_ 15.51154310000.01.451.45 104.23.248.13h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/124/124_ 15.781496013910.01.651.65 104.23.221.203h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/134/134_ 15.80128011120.07.437.43 172.68.35.129h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/111/111_ 15.880015730.01.111.11 172.70.247.12h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/132/132_ 15.831441825090.01.541.54 141.101.96.9h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/132/132_ 15.860014470.01.611.61 162.158.167.107h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/117/117_ 15.7715806830.07.837.83 172.71.122.10h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/115/115_ 15.83133314240.01.151.15 172.69.74.221h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/127/127_ 15.88022110560.07.807.80 104.23.175.226http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-025745800/120/120_ 15.741442510380.01.311.31 108.162.237.49h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/117/117_ 15.87008690.01.411.41 162.158.167.172h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-025745800/134/134_ 15.75139247510.01.181.18 104.23.203.131http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/gzcE9EW6hg4xMImw9AnL6hHjQmMbMEm 0-025745800/136/136_ 15.861018930.01.321.32 162.158.94.191h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/123/123_ 15.641442811790.01.291.29 162.158.94.160http/1.1api.msz-pl.com:80GET /wp-includes/css/buttons.css HTTP/1.1 0-025745800/119/119_ 15.57128016300.02.602.60 162.158.158.111h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/240/240_ 24.630136010.01.081.08 162.158.49.73http/1.1comms.ivarse.com:80GET /classwithtostring.php HTTP/1.1 1-025745810/244/244_ 24.730034900.01.621.62 172.69.134.69h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-025745810/245/245_ 24.740137140.01.791.79 162.158.167.207h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-025745810/218/218_ 24.640143230.01.051.05 162.158.49.73http/1.1comms.ivarse.com:80GET /g.php HTTP/1.1 1-025745810/242/242_ 24.684044280.01.481.48 172.70.216.10h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/226/226_ 24.730132760.02.442.44 172.69.135.126h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-025745810/220/220_ 24.630136160.01.371.37 162.158.49.73http/1.1comms.ivarse.com:80GET /1aa.php HTTP/1.1 1-025745810/229/229_ 24.710150500.01.461.46 172.71.155.36h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-025745810/243/243_ 24.630487350.04.214.21 162.158.49.73http/1.1comms.ivarse.com:80GET /xp.php HTTP/1.1 1-025745810/254/254_ 24.711027080.03.073.07 172.69.135.131h2bayer-application.fi-careers.onGET / HTTP/2.0 1-025745810/255/255_ 24.711229410.01.981.98 104.23.195.86h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1755771952.75213789939880371093 1-025745810/225/225_ 24.630137180.01.491.49 162.158.49.73http/1.1comms.ivarse.com:80GET /asasx.php HTTP/1.1 1-025745810/222/222_ 24.640147270.03.073.07 162.158.49.73http/1.1comms.ivarse.com:80GET /1.php HTTP/1.1 1-025745810/230/230_ 24.71026241440.01.461.46 172.70.143.182http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-025745810/226/226_ 24.544130430.01.531.53 162.158.217.131http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-025745810/230/230_ 24.730153110.04.114.11 162.158.167.124h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-025745810/235/235_ 24.720147110.07.917.91 172.69.134.66h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-025745810/220/220_ 24.650157110.01.241.24 162.158.49.73http/1.1comms.ivarse.com:80GET /ext.php HTTP/1.1 1-025745810/248/248R 24.655126320.04.224.22 172.70.240.30http/1.1bayer-application.fi-careers.on 1-025745810/237/237_ 24.600028330.01.321.32 162.158.49.73http/1.1comms.ivarse.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 1-025745810/237/237_ 24.720150020.04.024.02 172.69.134.70h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-025745810/220/220_ 24.552136380.01.261.26 172.70.80.135h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/239/239_ 24.652150750.01.491.49 162.158.49.73http/1.1comms.ivarse.com:80GET /akcc.php HTTP/1.1 1-025745810/233/233_
Found on 2025-08-21 10:25 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f0ac2d700Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 21-Aug-2025 10:25:58 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 3 hours 49 minutes 3 seconds Server load: 0.95 0.89 0.89 Total accesses: 8965 - Total Traffic: 119.2 MB - Total Duration: 144999 CPU Usage: u27.99 s13.89 cu0 cs0 - .305% CPU load .652 requests/sec - 8.9 kB/second - 13.6 kB/request - 16.1739 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02574580no12yes00250111 12574581no27yes10240251 Sum2039 10490362 _______________________________R__________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-025745800/132/132_ 15.8927340260.01.121.12 162.158.110.30h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-025745800/117/117_ 15.655212360.01.351.35 172.69.214.154http/1.1ivarse.com:80GET /server-status HTTP/1.1 0-025745800/111/111_ 15.781435229080.01.711.71 108.162.226.106h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/124/124_ 15.822013430.01.981.98 162.158.86.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/126/126_ 15.8932816310.01.461.46 172.69.134.75h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 0-025745800/128/128_ 15.8313109080.01.181.18 172.70.94.58http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-025745800/125/125_ 15.660020340.01.041.04 172.69.17.71h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/119/119_ 15.8242029230.04.114.11 172.70.230.60h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/131/131_ 15.723018680.01.271.27 172.70.218.237h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/113/113_ 15.65131027830.03.673.67 172.70.80.44http/1.1ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-025745800/129/129_ 15.892010010.01.451.45 162.158.189.152http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-025745800/125/125_ 15.891013910.01.651.65 172.69.176.61http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-025745800/134/134_ 15.80132011120.07.437.43 172.68.35.129h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/111/111_ 15.884015730.01.111.11 172.70.247.12h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/133/133_ 15.900125100.01.551.55 172.70.92.171http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-025745800/132/132_ 15.864014470.01.611.61 162.158.167.107h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/118/118_ 15.89206830.07.837.83 104.23.175.184http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-025745800/115/115_ 15.83137314240.01.151.15 172.69.74.221h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/127/127_ 15.88422110560.07.807.80 104.23.175.226http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-025745800/120/120_ 15.7402510380.01.311.31 108.162.237.49h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/117/117_ 15.87408690.01.411.41 162.158.167.172h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-025745800/134/134_ 15.75143247510.01.181.18 104.23.203.131http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/gzcE9EW6hg4xMImw9AnL6hHjQmMbMEm 0-025745800/136/136_ 15.865018930.01.321.32 162.158.94.191h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/124/124_ 15.9002811790.01.291.29 172.70.246.131h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-025745800/119/119_ 15.57132016300.02.602.60 162.158.158.111h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/241/241_ 24.773036020.01.081.08 172.69.166.108http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-025745810/244/244_ 24.733034900.01.621.62 172.69.134.69h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-025745810/245/245_ 24.742137140.01.791.79 162.158.167.207h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-025745810/219/219_ 24.782143230.01.051.05 162.158.95.114h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-025745810/243/243_ 24.792044280.01.481.48 172.69.134.6h2bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/2.0 1-025745810/226/226_ 24.733132760.02.442.44 172.69.135.126h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-025745810/220/220R 24.633136160.01.371.37 172.70.243.42h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-025745810/230/230_ 24.770150500.01.461.46 172.71.155.36h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-025745810/244/244_ 24.770487350.04.214.21 172.69.134.66h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 1-025745810/255/255_ 24.810027080.03.073.07 172.70.208.55http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-025745810/256/256_ 24.761229410.01.981.98 172.69.23.187h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 1-025745810/226/226_ 24.770137180.01.491.49 162.158.167.207h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-025745810/223/223_ 24.792147270.03.073.07 172.71.155.12h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 1-025745810/231/231_ 24.77026241440.01.461.46 172.69.134.187h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-025745810/228/228_ 24.801030440.01.531.53 172.71.246.23h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-025745810/230/230_ 24.732153110.04.114.11 162.158.167.124h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-025745810/237/237_ 24.810047120.07.917.91 172.69.176.58http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 1-025745810/220/220_ 24.650157110.01.241.24 162.158.49.73http/1.1comms.ivarse.com:80GET /ext.php HTTP/1.1 1-025745810/249/249_ 24.761126320.04.224.22 172.70.240.30h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-025745810/238/238_ 24.782028330.01.321.32 162.158.167.105h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 1-025745810/238/238_ 24.773150020.04.024.02 104.23.239.39h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-025745810/221/221_ 24.801036380.01.261.26 162.158.108.48http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-025745810/241/241_ 24.801150750.01.491.49 172.70.240.156h2
Found on 2025-08-21 10:25 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f66f83ca9Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 18-Aug-2025 12:56:41 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 4 days 6 hours 47 minutes 41 seconds Server load: 1.52 1.00 0.92 Total accesses: 200811 - Total Traffic: 1.9 GB - Total Duration: 44027016 CPU Usage: u19.65 s17.13 cu1809.55 cs344.57 - .592% CPU load .543 requests/sec - 5.3 kB/second - 9.8 kB/request - 219.246 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 1905043no21yes00250183 21015311no0yes0025000 31015381no25yes10240222 Sum3046 10740405 ........................._______________________________________ ________________R___________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/1366. 0.0091492090379460.00.0029.16 141.101.76.36http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1358. 0.0091492143309020.00.007.75 172.71.98.94http/1.1api.msz-pl.com:80GET /test/.git/config HTTP/1.1 0-6-0/0/1385. 0.0091492121278920.00.0010.24 172.71.98.108http/1.1api.msz-pl.com:80GET /dev/.git/config HTTP/1.1 0-6-0/0/1342. 0.0091492066401630.00.0013.52 172.70.47.180http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1206. 0.009149178027899100.00.006.69 172.70.47.180http/1.1api.msz-pl.com:80GET /git/config HTTP/1.1 0-6-0/0/1417. 0.0091491086319490.00.0010.75 172.71.183.32http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1381. 0.0091491793336980.00.007.71 104.23.170.164http/1.1api.msz-pl.com:80GET /build/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091493110316100.00.0014.91 104.23.168.66http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1380. 0.0091491793301290.00.0010.12 104.23.170.190http/1.1api.msz-pl.com:80GET /web/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091491022338130.00.0011.61 104.23.170.190http/1.1api.msz-pl.com:80GET /assets/.git/config HTTP/1.1 0-6-0/0/1382. 0.0091492127274720.00.007.27 172.71.182.25http/1.1api.msz-pl.com:80GET /html/.git/config HTTP/1.1 0-6-0/0/1359. 0.0091492126324890.00.007.91 172.71.182.161http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1340. 0.00914935029267460.00.009.07 172.70.46.188http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091492088321060.00.007.63 104.23.166.165http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091493134377280.00.009.75 172.71.183.32http/1.1api.msz-pl.com:80GET /main/.git/config HTTP/1.1 0-6-0/0/1365. 0.0091493126278000.00.007.30 172.71.183.34http/1.1api.msz-pl.com:80GET /cms/.git/config HTTP/1.1 0-6-0/0/1378. 0.0091493092358910.00.0011.11 104.23.166.117http/1.1api.msz-pl.com:80GET /wp-admin/.git/config HTTP/1.1 0-6-0/0/1321. 0.0091492138322530.00.009.89 104.23.170.165http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1377. 0.0091492093437490.00.0024.21 104.23.170.194http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1356. 0.0091492092298660.00.007.51 172.70.47.82http/1.1api.msz-pl.com:80GET /administrator/.git/config HTTP/1.1 0-6-0/0/1329. 0.0091492065306600.00.0013.56 104.23.172.47http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1376. 0.0091492098672260.00.007.83 172.71.102.162http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1387. 0.0091492108282680.00.007.25 172.71.98.109http/1.1api.msz-pl.com:80GET /static/.git/config HTTP/1.1 0-6-0/0/1333. 0.0091492060385080.00.006.81 104.23.166.166http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1373. 0.0091492151273060.00.008.81 172.70.46.23http/1.1api.msz-pl.com:80GET /backup/.git/config HTTP/1.1 1-69050430/51/798_ 3.55117198510.00.814.41 172.71.102.173h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-69050430/56/793_ 3.5410245860.01.866.23 162.158.94.232http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 1-69050430/64/800_ 3.5320224040.00.8111.01 172.71.164.164http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-69050430/58/815_ 3.4620266100.01.037.27 172.70.92.199http/1.1bayer-application.fi-careers.onGET /.well-known/acme-challenge/RqSRzkMR-MrIiXqLRcxNhqAB3fGYrNq 1-69050430/56/817_ 3.55017195430.01.825.97 104.23.170.59h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-69050430/56/821_ 3.5500237930.00.384.91 172.71.148.83http/1.1bayer-application.fi-careers.onGET /.DS_Store HTTP/1.1 1-69050430/61/798_ 3.54218219830.00.905.39 104.23.170.137h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-69050430/60/800_ 3.56020214300.00.834.86 162.158.94.75h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-69050430/58/804_ 3.42217258090.00.6113.85 172.71.154.47h2futurefocusfarm.com:443GET /who-we-are/mission-and-values.html HTTP/2.0 1-69050430/63/768_ 3.5420244390.01.047.50 162.158.111.51http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-69050430/57/776_ 3.501198237810.00.825.89 172.71.250.56http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-69050430/67/794_ 3.5420198820.01.055.79 104.23.239.39http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-69050430/66/825_ 3.5100193110.01.998.96 172.71.148.83http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/59/825_ 3.52050244390.01.655.96 172.68.193.180h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/58/777_ 3.5510218890.00.665.73 172.70.248.52http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 1-69050430/58/824_ 3.3600217870.00.314.87 172.71.148.90http/1.1comms.ivarse.com:80GET /website.tar.gz HTTP/1.1 1-69050430/55/804_ 3.4000198480.01.456.99 172.71.223.131h2staplefordwingstravels.co.uk:44GET /apply/ HTTP/2.0 1-69050430/58/783_ 3.5412202120.01.235.46 162.158.95.102http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-69050430/57/798_ 3.5100232160.00.624.71 172.68.193.213http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/56/787_ 3.52020189100.00.605.40 104.23.170.100h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-69050430/56/790_ 3.34218185540.01.145.25 172.70.240.148http/1.1api.msz-pl.com:80GET /wp-admin/css/colors/ocean/ HTTP/1.1 1-69050430/53/784_ 3.32019214180.01.628.80 172.70.240.148http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-69050430/50/809_ 3.32218194650.00.7914.45 172.70.240.148http/1.1a
Found on 2025-08-18 12:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f69b2f9c5Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 18-Aug-2025 12:56:41 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 4 days 6 hours 47 minutes 42 seconds Server load: 1.52 1.00 0.92 Total accesses: 200814 - Total Traffic: 1.9 GB - Total Duration: 44027017 CPU Usage: u19.65 s17.13 cu1809.55 cs344.57 - .592% CPU load .543 requests/sec - 5.3 kB/second - 9.8 kB/request - 219.243 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 1905043no18yes00250171 21015311no11yes0025092 31015381no26yes20230241 Sum3055 20730504 ........................._______________________________________ ______________________R________R____............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/1366. 0.0091492090379460.00.0029.16 141.101.76.36http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1358. 0.0091492143309020.00.007.75 172.71.98.94http/1.1api.msz-pl.com:80GET /test/.git/config HTTP/1.1 0-6-0/0/1385. 0.0091492121278920.00.0010.24 172.71.98.108http/1.1api.msz-pl.com:80GET /dev/.git/config HTTP/1.1 0-6-0/0/1342. 0.0091492066401630.00.0013.52 172.70.47.180http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1206. 0.009149178027899100.00.006.69 172.70.47.180http/1.1api.msz-pl.com:80GET /git/config HTTP/1.1 0-6-0/0/1417. 0.0091491086319490.00.0010.75 172.71.183.32http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1381. 0.0091491793336980.00.007.71 104.23.170.164http/1.1api.msz-pl.com:80GET /build/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091493110316100.00.0014.91 104.23.168.66http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1380. 0.0091491793301290.00.0010.12 104.23.170.190http/1.1api.msz-pl.com:80GET /web/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091491022338130.00.0011.61 104.23.170.190http/1.1api.msz-pl.com:80GET /assets/.git/config HTTP/1.1 0-6-0/0/1382. 0.0091492127274720.00.007.27 172.71.182.25http/1.1api.msz-pl.com:80GET /html/.git/config HTTP/1.1 0-6-0/0/1359. 0.0091492126324890.00.007.91 172.71.182.161http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1340. 0.00914935029267460.00.009.07 172.70.46.188http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091492088321060.00.007.63 104.23.166.165http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091493134377280.00.009.75 172.71.183.32http/1.1api.msz-pl.com:80GET /main/.git/config HTTP/1.1 0-6-0/0/1365. 0.0091493126278000.00.007.30 172.71.183.34http/1.1api.msz-pl.com:80GET /cms/.git/config HTTP/1.1 0-6-0/0/1378. 0.0091493092358910.00.0011.11 104.23.166.117http/1.1api.msz-pl.com:80GET /wp-admin/.git/config HTTP/1.1 0-6-0/0/1321. 0.0091492138322530.00.009.89 104.23.170.165http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1377. 0.0091492093437490.00.0024.21 104.23.170.194http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1356. 0.0091492092298660.00.007.51 172.70.47.82http/1.1api.msz-pl.com:80GET /administrator/.git/config HTTP/1.1 0-6-0/0/1329. 0.0091492065306600.00.0013.56 104.23.172.47http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1376. 0.0091492098672260.00.007.83 172.71.102.162http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1387. 0.0091492108282680.00.007.25 172.71.98.109http/1.1api.msz-pl.com:80GET /static/.git/config HTTP/1.1 0-6-0/0/1333. 0.0091492060385080.00.006.81 104.23.166.166http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1373. 0.0091492151273060.00.008.81 172.70.46.23http/1.1api.msz-pl.com:80GET /backup/.git/config HTTP/1.1 1-69050430/51/798_ 3.55117198510.00.814.41 172.71.102.173h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-69050430/56/793_ 3.5410245860.01.866.23 162.158.94.232http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 1-69050430/64/800_ 3.5300224040.00.8111.01 172.71.164.164http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-69050430/58/815_ 3.4600266100.01.037.27 172.70.92.199http/1.1bayer-application.fi-careers.onGET /.well-known/acme-challenge/RqSRzkMR-MrIiXqLRcxNhqAB3fGYrNq 1-69050430/56/817_ 3.55117195430.01.825.97 104.23.170.59h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-69050430/56/821_ 3.5510237930.00.384.91 172.71.148.83http/1.1bayer-application.fi-careers.onGET /.DS_Store HTTP/1.1 1-69050430/61/798_ 3.54018219830.00.905.39 104.23.170.137h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-69050430/60/800_ 3.56020214300.00.834.86 162.158.94.75h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-69050430/58/804_ 3.42017258090.00.6113.85 172.71.154.47h2futurefocusfarm.com:443GET /who-we-are/mission-and-values.html HTTP/2.0 1-69050430/63/768_ 3.5420244390.01.047.50 162.158.111.51http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-69050430/57/776_ 3.501198237810.00.825.89 172.71.250.56http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-69050430/67/794_ 3.5420198820.01.055.79 104.23.239.39http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-69050430/66/825_ 3.5110193110.01.998.96 172.71.148.83http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/59/825_ 3.52150244390.01.655.96 172.68.193.180h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/58/777_ 3.5510218890.00.665.73 172.70.248.52http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 1-69050430/58/824_ 3.3600217870.00.314.87 172.71.148.90http/1.1comms.ivarse.com:80GET /website.tar.gz HTTP/1.1 1-69050430/55/804_ 3.4000198480.01.456.99 172.71.223.131h2staplefordwingstravels.co.uk:44GET /apply/ HTTP/2.0 1-69050430/58/783_ 3.5422202120.01.235.46 162.158.95.102http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-69050430/57/798_ 3.5110232160.00.624.71 172.68.193.213http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/56/787_ 3.52020189100.00.605.40 104.23.170.100h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-69050430/56/790_ 3.34218185540.01.145.25 172.70.240.148http/1.1api.msz-pl.com:80GET /wp-admin/css/colors/ocean/ HTTP/1.1 1-69050430/53/784_ 3.32019214180.01.628.80 172.70.240.148http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-69050430/50/809_ 3.32018194650.00.7914.45 172.70.240.148http/1.1
Found on 2025-08-18 12:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f8ef7d495Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Saturday, 16-Aug-2025 19:34:30 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 2 days 13 hours 25 minutes 30 seconds Server load: 0.60 0.85 0.89 Total accesses: 108418 - Total Traffic: 1.0 GB - Total Duration: 25061326 CPU Usage: u73.3 s40.29 cu740.4 cs148 - .453% CPU load .49 requests/sec - 4907 B/second - 9.8 kB/request - 231.155 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 3985309no2yes0025011 4985461no0yes1024000 5985540no10yes0025081 Sum3012 1074092 ................................................................ ...........____________________________________R________________ ______________________ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-2-0/0/623. 0.00666472062128950.00.006.70 162.158.79.22http/1.1 0-2-0/0/645. 0.00666474087122590.00.003.10 172.70.34.20http/1.1api.msz-pl.com:80GET /data.zip HTTP/1.1 0-2-0/0/651. 0.0066647205476190.00.002.42 172.71.191.85http/1.1 0-2-0/0/627. 0.0066647304890580.00.008.50 172.68.245.87http/1.1api.msz-pl.com:80GET /configuration_backup.zip HTTP/1.1 0-2-0/0/640. 0.0066647202768800.00.003.00 104.23.211.42http/1.1api.msz-pl.com:80GET /www.zipuploads.zip HTTP/1.1 0-2-0/0/662. 0.00666474106117040.00.005.41 162.158.79.22http/1.1api.msz-pl.com:80GET /home.zip HTTP/1.1 0-2-0/0/640. 0.00666474115116950.00.003.88 104.23.211.113http/1.1 0-2-0/0/666. 0.006664747104940.00.007.16 172.68.245.60http/1.1api.msz-pl.com:80GET /plugin.zip HTTP/1.1 0-2-0/0/638. 0.0066647304587970.00.002.37 104.23.213.188http/1.1api.msz-pl.com:80GET /settings_backup.zip HTTP/1.1 0-2-0/0/641. 0.00666474118119950.00.005.72 172.70.38.176http/1.1api.msz-pl.com:80GET /www.ziphtml.zip HTTP/1.1 0-2-0/0/667. 0.0066647305887220.00.002.56 172.71.195.101http/1.1api.msz-pl.com:80GET /lite.zip HTTP/1.1 0-2-0/0/623. 0.00666472081101540.00.003.71 104.23.211.113http/1.1api.msz-pl.com:80GET /project.zip HTTP/1.1 0-2-0/0/635. 0.00666471039143000.00.004.67 104.23.209.145http/1.1api.msz-pl.com:80GET /mysql.zip HTTP/1.1 0-2-0/0/663. 0.00666473182710.00.003.07 104.23.209.61http/1.1 0-2-0/0/637. 0.00666471870110.00.004.70 172.71.190.242http/1.1api.msz-pl.com:80GET /php_site.zip HTTP/1.1 0-2-0/0/632. 0.00666471788150.00.002.91 172.70.58.5h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/640. 0.00666472044118990.00.002.42 172.71.191.85http/1.1api.msz-pl.com:80GET /db_backup.zip HTTP/1.1 0-2-0/0/603. 0.00666474090123960.00.003.37 172.70.35.155http/1.1api.msz-pl.com:80GET /credentials_backup.zip HTTP/1.1 0-2-0/0/649. 0.00666473991720.00.008.83 172.70.34.20http/1.1 0-2-0/0/644. 0.0066647305888230.00.002.75 172.71.194.40http/1.1api.msz-pl.com:80GET /package.zip HTTP/1.1 0-2-0/0/637. 0.0066647101864340.00.002.46 172.68.15.226http/1.1api.msz-pl.com:80GET /users.zip HTTP/1.1 0-2-0/0/610. 0.0066647204276730.00.002.51 172.70.38.176http/1.1 0-2-0/0/641. 0.0066647204296520.00.002.92 172.71.190.7http/1.1 0-2-0/0/612. 0.00666473063162300.00.002.09 104.23.209.137http/1.1api.msz-pl.com:80GET /.env.zip HTTP/1.1 0-2-0/0/618. 0.0066647203579380.00.002.46 172.71.190.7http/1.1api.msz-pl.com:80GET /joomla.zip HTTP/1.1 1-2-0/0/657. 0.00666465042105910.00.002.36 172.70.43.127http/1.1api.msz-pl.com:80GET /ftp.zip HTTP/1.1 1-2-0/0/654. 0.00666463039125600.00.002.82 104.23.211.9http/1.1api.msz-pl.com:80GET /api.zip HTTP/1.1 1-2-0/0/649. 0.00666461037125910.00.002.96 172.71.195.36http/1.1api.msz-pl.com:80GET /vendor.zip HTTP/1.1 1-2-0/0/667. 0.00666461020152460.00.003.15 172.68.138.130http/1.1api.msz-pl.com:80GET /src_backup.zip HTTP/1.1 1-2-0/0/656. 0.0066646307697980.00.003.01 172.71.195.6http/1.1api.msz-pl.com:80GET /media.zip HTTP/1.1 1-2-0/0/670. 0.00666465042119530.00.003.05 172.70.43.127http/1.1 1-2-0/0/644. 0.00666463077123240.00.003.01 172.68.245.73http/1.1api.msz-pl.com:80GET /shared.zip HTTP/1.1 1-2-0/0/648. 0.00666464045102690.00.002.97 172.71.223.68http/1.1api.msz-pl.com:80GET /token_backup.zip HTTP/1.1 1-2-0/0/655. 0.00666462051134520.00.0010.80 172.70.42.100http/1.1api.msz-pl.com:80GET /test.zip HTTP/1.1 1-2-0/0/620. 0.00666464087120870.00.005.26 172.70.42.139http/1.1api.msz-pl.com:80GET /dot_env.zip HTTP/1.1 1-2-0/0/630. 0.00666461042114170.00.002.81 172.71.190.58http/1.1api.msz-pl.com:80GET /archive.zip HTTP/1.1 1-2-0/0/633. 0.00666465057108000.00.002.43 162.158.79.27http/1.1api.msz-pl.com:80GET /back_up.zip HTTP/1.1 1-2-0/0/677. 0.0066646102375940.00.005.11 162.158.79.27http/1.1 1-2-0/0/659. 0.00666463048135560.00.002.33 172.68.245.120http/1.1api.msz-pl.com:80GET /websites.zip HTTP/1.1 1-2-0/0/631. 0.00666463061119960.00.003.04 172.70.34.162http/1.1api.msz-pl.com:80GET /webapp.zip HTTP/1.1 1-2-0/0/655. 0.00666463037112740.00.002.65 172.68.138.181http/1.1 1-2-0/0/659. 0.0066646207390740.00.003.16 172.70.42.139http/1.1 1-2-0/0/639. 0.0066646102078170.00.002.80 162.158.79.99http/1.1api.msz-pl.com:80GET /site_data.zip HTTP/1.1 1-2-0/0/653. 0.00666461018102530.00.003.03 104.23.211.190http/1.1 1-2-0/0/643. 0.0066646203889560.00.002.96 172.70.42.3http/1.1 1-2-0/0/632. 0.00666463038102750.00.002.79 172.70.38.62http/1.1api.msz-pl.com:80GET /monthly_backup.zip HTTP/1.1 1-2-0/0/644. 0.00666464063114730.00.005.57 172.70.42.3http/1.1api.msz-pl.com:80GET /plugin_backup.zip HTTP/1.1 1-2-0/0/671. 0.00666463040110850.00.0011.20 172.71.222.241http/1.1api.msz-pl.com:80GET /joomla_backup.zip HTTP/1.1 1-2-0/0/645. 0.00666465036141620.00.002.69 172.68.138.181http/1.1api.msz-pl.com:80GET /administration.zip HTTP/1.1 1-2-0/0/637. 0.00666461026107580.00.002.98 104.23.211.9http/1.1 2-2-0/0/1106. 0.0066647302420352210.00.0021.67 172.71.191.11http/1.1api.msz-pl.com:80GET /sql.zip HTTP/1.1 2-2-0/0/1086. 0.00666473064795230.00.0014.27 162.158.152.137
Found on 2025-08-16 19:34 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f8c1a7e60Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Saturday, 16-Aug-2025 19:34:28 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 2 days 13 hours 25 minutes 29 seconds Server load: 0.60 0.85 0.89 Total accesses: 108413 - Total Traffic: 1.0 GB - Total Duration: 25061326 CPU Usage: u73.27 s40.28 cu740.4 cs148 - .453% CPU load .49 requests/sec - 4907 B/second - 9.8 kB/request - 231.165 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 3985309no0yes0025000 4985461no0yes1024000 5985540no6yes1024060 Sum306 2073060 ................................................................ ..........._____________________________________R_______________ ___________R__________ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-2-0/0/623. 0.00666462062128950.00.006.70 162.158.79.22http/1.1 0-2-0/0/645. 0.00666464087122590.00.003.10 172.70.34.20http/1.1api.msz-pl.com:80GET /data.zip HTTP/1.1 0-2-0/0/651. 0.0066646205476190.00.002.42 172.71.191.85http/1.1 0-2-0/0/627. 0.0066646304890580.00.008.50 172.68.245.87http/1.1api.msz-pl.com:80GET /configuration_backup.zip HTTP/1.1 0-2-0/0/640. 0.0066646202768800.00.003.00 104.23.211.42http/1.1api.msz-pl.com:80GET /www.zipuploads.zip HTTP/1.1 0-2-0/0/662. 0.00666464106117040.00.005.41 162.158.79.22http/1.1api.msz-pl.com:80GET /home.zip HTTP/1.1 0-2-0/0/640. 0.00666464115116950.00.003.88 104.23.211.113http/1.1 0-2-0/0/666. 0.006664647104940.00.007.16 172.68.245.60http/1.1api.msz-pl.com:80GET /plugin.zip HTTP/1.1 0-2-0/0/638. 0.0066646304587970.00.002.37 104.23.213.188http/1.1api.msz-pl.com:80GET /settings_backup.zip HTTP/1.1 0-2-0/0/641. 0.00666464118119950.00.005.72 172.70.38.176http/1.1api.msz-pl.com:80GET /www.ziphtml.zip HTTP/1.1 0-2-0/0/667. 0.0066646305887220.00.002.56 172.71.195.101http/1.1api.msz-pl.com:80GET /lite.zip HTTP/1.1 0-2-0/0/623. 0.00666462081101540.00.003.71 104.23.211.113http/1.1api.msz-pl.com:80GET /project.zip HTTP/1.1 0-2-0/0/635. 0.00666461039143000.00.004.67 104.23.209.145http/1.1api.msz-pl.com:80GET /mysql.zip HTTP/1.1 0-2-0/0/663. 0.00666463182710.00.003.07 104.23.209.61http/1.1 0-2-0/0/637. 0.00666461870110.00.004.70 172.71.190.242http/1.1api.msz-pl.com:80GET /php_site.zip HTTP/1.1 0-2-0/0/632. 0.00666461788150.00.002.91 172.70.58.5h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-2-0/0/640. 0.00666462044118990.00.002.42 172.71.191.85http/1.1api.msz-pl.com:80GET /db_backup.zip HTTP/1.1 0-2-0/0/603. 0.00666464090123960.00.003.37 172.70.35.155http/1.1api.msz-pl.com:80GET /credentials_backup.zip HTTP/1.1 0-2-0/0/649. 0.00666463991720.00.008.83 172.70.34.20http/1.1 0-2-0/0/644. 0.0066646305888230.00.002.75 172.71.194.40http/1.1api.msz-pl.com:80GET /package.zip HTTP/1.1 0-2-0/0/637. 0.0066646101864340.00.002.46 172.68.15.226http/1.1api.msz-pl.com:80GET /users.zip HTTP/1.1 0-2-0/0/610. 0.0066646204276730.00.002.51 172.70.38.176http/1.1 0-2-0/0/641. 0.0066646204296520.00.002.92 172.71.190.7http/1.1 0-2-0/0/612. 0.00666463063162300.00.002.09 104.23.209.137http/1.1api.msz-pl.com:80GET /.env.zip HTTP/1.1 0-2-0/0/618. 0.0066646203579380.00.002.46 172.71.190.7http/1.1api.msz-pl.com:80GET /joomla.zip HTTP/1.1 1-2-0/0/657. 0.00666455042105910.00.002.36 172.70.43.127http/1.1api.msz-pl.com:80GET /ftp.zip HTTP/1.1 1-2-0/0/654. 0.00666453039125600.00.002.82 104.23.211.9http/1.1api.msz-pl.com:80GET /api.zip HTTP/1.1 1-2-0/0/649. 0.00666451037125910.00.002.96 172.71.195.36http/1.1api.msz-pl.com:80GET /vendor.zip HTTP/1.1 1-2-0/0/667. 0.00666451020152460.00.003.15 172.68.138.130http/1.1api.msz-pl.com:80GET /src_backup.zip HTTP/1.1 1-2-0/0/656. 0.0066645307697980.00.003.01 172.71.195.6http/1.1api.msz-pl.com:80GET /media.zip HTTP/1.1 1-2-0/0/670. 0.00666455042119530.00.003.05 172.70.43.127http/1.1 1-2-0/0/644. 0.00666453077123240.00.003.01 172.68.245.73http/1.1api.msz-pl.com:80GET /shared.zip HTTP/1.1 1-2-0/0/648. 0.00666454045102690.00.002.97 172.71.223.68http/1.1api.msz-pl.com:80GET /token_backup.zip HTTP/1.1 1-2-0/0/655. 0.00666452051134520.00.0010.80 172.70.42.100http/1.1api.msz-pl.com:80GET /test.zip HTTP/1.1 1-2-0/0/620. 0.00666454087120870.00.005.26 172.70.42.139http/1.1api.msz-pl.com:80GET /dot_env.zip HTTP/1.1 1-2-0/0/630. 0.00666451042114170.00.002.81 172.71.190.58http/1.1api.msz-pl.com:80GET /archive.zip HTTP/1.1 1-2-0/0/633. 0.00666455057108000.00.002.43 162.158.79.27http/1.1api.msz-pl.com:80GET /back_up.zip HTTP/1.1 1-2-0/0/677. 0.0066645102375940.00.005.11 162.158.79.27http/1.1 1-2-0/0/659. 0.00666453048135560.00.002.33 172.68.245.120http/1.1api.msz-pl.com:80GET /websites.zip HTTP/1.1 1-2-0/0/631. 0.00666453061119960.00.003.04 172.70.34.162http/1.1api.msz-pl.com:80GET /webapp.zip HTTP/1.1 1-2-0/0/655. 0.00666453037112740.00.002.65 172.68.138.181http/1.1 1-2-0/0/659. 0.0066645207390740.00.003.16 172.70.42.139http/1.1 1-2-0/0/639. 0.0066645102078170.00.002.80 162.158.79.99http/1.1api.msz-pl.com:80GET /site_data.zip HTTP/1.1 1-2-0/0/653. 0.00666451018102530.00.003.03 104.23.211.190http/1.1 1-2-0/0/643. 0.0066645203889560.00.002.96 172.70.42.3http/1.1 1-2-0/0/632. 0.00666453038102750.00.002.79 172.70.38.62http/1.1api.msz-pl.com:80GET /monthly_backup.zip HTTP/1.1 1-2-0/0/644. 0.00666454063114730.00.005.57 172.70.42.3http/1.1api.msz-pl.com:80GET /plugin_backup.zip HTTP/1.1 1-2-0/0/671. 0.00666453040110850.00.0011.20 172.71.222.241http/1.1api.msz-pl.com:80GET /joomla_backup.zip HTTP/1.1 1-2-0/0/645. 0.00666455036141620.00.002.69 172.68.138.181http/1.1api.msz-pl.com:80GET /administration.zip HTTP/1.1 1-2-0/0/637. 0.00666451026107580.00.002.98 104.23.211.9http/1.1 2-2-0/0/1106. 0.0066646302420352210.00.0021.67 172.71.191.11http/1.1api.msz-pl.com:80GET /sql.zip HTTP/1.1 2-2-0/0/1086. 0.00666463064795230.00.0014.27 162.158.152.137
Found on 2025-08-16 19:34 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f260d08aeApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 14-Aug-2025 06:31:50 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 22 minutes 50 seconds Server load: 0.95 0.90 0.92 Total accesses: 459 - Total Traffic: 2.2 MB - Total Duration: 10139 CPU Usage: u.98 s.45 cu0 cs0 - .104% CPU load .335 requests/sec - 1649 B/second - 4923 B/request - 22.0893 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03071791no2yes1024020 13071792no2yes1024000 Sum204 2048020 _______________________R______________R___________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-030717910/13/13_ 0.4611111020.00.040.04 172.71.131.56h2comms.ivarse.com:443GET / HTTP/2.0 0-030717910/8/8_ 0.4218528580.00.020.02 141.101.95.61http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/10/10_ 0.45142189350.00.020.02 104.23.221.72http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/9/9_ 0.371413990.00.020.02 172.71.24.107http/1.1crypto-ft.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 0-030717910/11/11_ 0.46703650.00.020.02 162.158.244.162h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/8/8_ 0.43653940.00.020.02 162.158.244.156h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/9/9_ 0.43111760.00.020.02 172.71.1.187http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/6/6_ 0.436110.00.370.37 172.70.220.62http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/10/10_ 0.4782203060.00.030.03 172.71.184.155http/1.1api.msz-pl.com:80GET /wp-admin/setup-config.php HTTP/1.1 0-030717910/6/6_ 0.3951230.00.010.01 172.71.24.107http/1.1crypto-ft.com:80GET /file28.php HTTP/1.1 0-030717910/7/7_ 0.43319420.00.020.02 108.162.249.65http/1.1api.msz-pl.com:80GET /images/wso.php HTTP/1.1 0-030717910/7/7_ 0.3933320.00.010.01 172.71.24.107http/1.1crypto-ft.com:80GET /file30.php HTTP/1.1 0-030717910/10/10_ 0.481321260.00.040.04 172.70.248.95h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-030717910/6/6_ 0.4814250.00.560.56 104.23.187.158h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-030717910/7/7_ 0.43101030.00.030.03 172.69.222.81http/1.1comms.ivarse.com:80GET /_profiler/phpinfo HTTP/1.1 0-030717910/8/8_ 0.4310850.00.020.02 172.69.222.81http/1.1comms.ivarse.com:80GET /tool/view/phpinfo.view.php HTTP/1.1 0-030717910/12/12_ 0.4802810.00.030.03 162.158.158.5h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-030717910/9/9_ 0.43016570.00.030.03 172.69.222.81http/1.1comms.ivarse.com:80GET /info.php HTTP/1.1 0-030717910/6/6_ 0.48021210.00.010.01 104.23.187.158h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-030717910/7/7_ 0.48033340.00.010.01 104.23.239.107h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-030717910/9/9_ 0.490761180.00.020.02 162.158.158.21h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-030717910/6/6_ 0.37031590.00.020.02 172.68.103.84http/1.1api.msz-pl.com:80GET /favicon.ico HTTP/1.1 0-030717910/6/6_ 0.44052780.00.020.02 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/7/7R 0.42185511530.00.030.03 162.158.63.88h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-030717910/8/8_ 0.3865110860.00.020.02 172.71.24.107http/1.1crypto-ft.com:80GET /file23.php HTTP/1.1 1-030717920/13/13_ 0.552361550.00.030.03 172.69.74.215h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1755153107.44040298461914062500 1-030717920/11/11_ 0.43221660.00.030.03 104.23.203.208h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/12/12_ 0.549010980.00.040.04 104.23.203.208h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/11/11_ 0.57118670.00.040.04 104.23.187.178h2bayer-application.fi-careers.onGET / HTTP/2.0 1-030717920/9/9_ 0.57220440.00.030.03 172.70.242.60h2bayer-application.fi-careers.onGET / HTTP/2.0 1-030717920/9/9_ 0.57120220.00.010.01 104.23.190.75h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-030717920/11/11_ 0.50121470.00.020.02 104.23.166.168http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/9/9_ 0.581251120.00.020.02 172.70.111.112h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-030717920/10/10_ 0.501251640.00.030.03 104.23.203.209h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/11/11_ 0.490201120.00.040.04 108.162.249.97http/1.1api.msz-pl.com:80GET /file2.php HTTP/1.1 1-030717920/8/8_ 0.58036960.00.030.03 172.71.164.198h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-030717920/8/8_ 0.48028690.00.030.03 108.162.249.97http/1.1api.msz-pl.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 1-030717920/10/10_ 0.58025710.00.030.03 162.158.158.3h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-030717920/10/10R 0.32782715880.00.030.03 162.158.111.72http/1.1bayer-application.fi-careers.on 1-030717920/14/14_ 0.60030990.00.040.04 172.70.111.38h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-030717920/8/8_ 0.450181910.00.020.02 172.71.223.72http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/13/13_ 0.4678251110.00.080.08 172.69.74.230h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/9/9_ 0.52680380.00.020.02 172.71.147.73h2drumreed.co.uk:443GET /project-mg_marketing-22.html HTTP/2.0 1-030717920/8/8_ 0.49630470.00.020.02 172.71.254.44http/1.1comms.ivarse.com:80GET /config/.env HTTP/1.1 1-030717920/6/6_ 0.49680200.00.010.01 172.71.122.177http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 1-030717920/10/10_ 0.296325850.00.030.03 162.158.216.38http/1.1 1-030717920/14/14_ 0.474191630.00.050.05 172.70.39.2h2pmsepharm.ca:443GET / HTTP/2.0 1-030717920/13/13_ 0.484411090.00.030.03 172.71.246.56h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 1-030717920/8/8_ 0.33220260.00.010.01 172.71.172.83h2bayer-application.fi-careers.on[1/0] done: stream 1, GET / 1-0</
Found on 2025-08-14 06:31 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f4c11a808Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 14-Aug-2025 06:31:52 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 22 minutes 52 seconds Server load: 0.95 0.90 0.92 Total accesses: 476 - Total Traffic: 2.2 MB - Total Duration: 10139 CPU Usage: u1.04 s.46 cu0 cs0 - .109% CPU load .347 requests/sec - 1656 B/second - 4773 B/request - 21.3004 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03071791no2yes0025020 13071792no17yes10240151 Sum2019 10490171 _____________________________R____________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-030717910/13/13_ 0.461111020.00.040.04 172.71.131.56h2comms.ivarse.com:443GET / HTTP/2.0 0-030717910/8/8_ 0.42228580.00.020.02 141.101.95.61http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/11/11_ 0.512189350.00.020.02 162.158.159.214h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 0-030717910/9/9_ 0.3723990.00.020.02 172.71.24.107http/1.1crypto-ft.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 0-030717910/12/12_ 0.5113650.00.020.02 172.71.144.92h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-030717910/9/9_ 0.5213940.00.020.02 172.70.111.198h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 0-030717910/10/10_ 0.5211760.00.020.02 172.70.114.12h2bayer-application.fi-careers.onGET /.env HTTP/2.0 0-030717910/7/7_ 0.521110.00.370.37 162.158.63.33h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 0-030717910/10/10_ 0.4712203060.00.030.03 172.71.184.155http/1.1api.msz-pl.com:80GET /wp-admin/setup-config.php HTTP/1.1 0-030717910/6/6_ 0.3911230.00.010.01 172.71.24.107http/1.1crypto-ft.com:80GET /file28.php HTTP/1.1 0-030717910/8/8_ 0.53019420.00.020.02 172.71.164.191h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-030717910/7/7_ 0.3903320.00.010.01 172.71.24.107http/1.1crypto-ft.com:80GET /file30.php HTTP/1.1 0-030717910/10/10_ 0.480321260.00.040.04 172.70.248.95h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-030717910/7/7_ 0.5304250.00.560.56 172.71.154.48h2comms.ivarse.com:443GET / HTTP/2.0 0-030717910/8/8_ 0.54001030.00.030.03 172.70.230.81h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 0-030717910/8/8_ 0.4300850.00.020.02 172.69.222.81http/1.1comms.ivarse.com:80GET /tool/view/phpinfo.view.php HTTP/1.1 0-030717910/13/13_ 0.5402810.00.030.03 172.70.111.114h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 0-030717910/9/9_ 0.43016570.00.030.03 172.69.222.81http/1.1comms.ivarse.com:80GET /info.php HTTP/1.1 0-030717910/6/6_ 0.48321210.00.010.01 104.23.187.158h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-030717910/7/7_ 0.48233340.00.010.01 104.23.239.107h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-030717910/9/9_ 0.492761180.00.020.02 162.158.158.21h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-030717910/6/6_ 0.37231590.00.020.02 172.68.103.84http/1.1api.msz-pl.com:80GET /favicon.ico HTTP/1.1 0-030717910/6/6_ 0.44252780.00.020.02 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/8/8_ 0.492511530.00.030.03 162.158.63.88h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 0-030717910/8/8_ 0.381110860.00.020.02 172.71.24.107http/1.1crypto-ft.com:80GET /file23.php HTTP/1.1 1-030717920/14/14_ 0.620361550.00.030.03 172.71.144.88h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-030717920/11/11_ 0.43021660.00.030.03 104.23.203.208h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/13/13_ 0.611010980.00.040.04 104.23.190.38h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 1-030717920/11/11_ 0.57018670.00.040.04 104.23.187.178h2bayer-application.fi-careers.onGET / HTTP/2.0 1-030717920/9/9R 0.57420440.00.030.03 172.71.144.107h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-030717920/9/9_ 0.57320220.00.010.01 104.23.190.75h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-030717920/11/11_ 0.50321470.00.020.02 104.23.166.168http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/9/9_ 0.583251120.00.020.02 172.70.111.112h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-030717920/10/10_ 0.503251640.00.030.03 104.23.203.209h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/11/11_ 0.493201120.00.040.04 108.162.249.97http/1.1api.msz-pl.com:80GET /file2.php HTTP/1.1 1-030717920/8/8_ 0.58336960.00.030.03 172.71.164.198h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-030717920/8/8_ 0.48328690.00.030.03 108.162.249.97http/1.1api.msz-pl.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 1-030717920/10/10_ 0.58325710.00.030.03 162.158.158.3h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-030717920/11/11_ 0.6022715880.00.030.03 162.158.111.72h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-030717920/14/14_ 0.60230990.00.040.04 172.70.111.38h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-030717920/8/8_ 0.452181910.00.020.02 172.71.223.72http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/13/13_ 0.462251110.00.080.08 172.69.74.230h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-030717920/10/10_ 0.6110380.00.020.02 162.158.154.43h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 1-030717920/9/9_ 0.6110470.00.020.02 172.70.248.52h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-030717920/6/6_ 0.4910200.00.010.01 172.71.122.177http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 1-030717920/10/10_ 0.29125850.00.030.03 162.158.216.38http/1.1 1-030717920/14/14_ 0.471191630.00.050.05 172.70.39.2h2pmsepharm.ca:443GET / HTTP/2.0 1-030717920/14/14_ 0.620411090.00.030.03 104.23.187.27h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-030717920/8/8_ 0.33020260.00.010.01 172.71.172.83h2bayer-application.fi-careers.on[1/0] done: stream 1, GET /
Found on 2025-08-14 06:31 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f7cf39489Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Tuesday, 12-Aug-2025 10:14:20 UTC Restart Time: Sunday, 10-Aug-2025 17:04:11 UTC Parent Server Config. Generation: 49 Parent Server MPM Generation: 48 Server uptime: 1 day 17 hours 10 minutes 9 seconds Server load: 0.83 1.10 1.32 Total accesses: 95059 - Total Traffic: 661.7 MB - Total Duration: 24962738 CPU Usage: u52.21 s26.75 cu681.19 cs144.75 - .611% CPU load .641 requests/sec - 4681 B/second - 7.1 kB/request - 262.603 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0637237no0yes2023000 13550937no0yes0025000 33550938no0yes0025000 Sum300 2073000 _____R______________R_____________________________.............. ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-486372370/71/1131_ 4.9111294226220.00.398.31 104.23.213.8h2drumreed.co.uk:443GET /crop2869.jpg?f=upload/project/66271Gallery-3.jpg&h=400&w=4 0-486372370/59/1137_ 4.721661209630.00.447.56 162.158.49.37http/1.1usconsular-dept.com:80GET /simple.php HTTP/1.1 0-486372370/80/1147_ 4.98028190410.01.9711.20 172.70.243.137h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-486372370/66/1126_ 4.9016170301990.00.307.14 172.70.39.127h2drumreed.co.uk:443GET /project-ko_awatea_2_middlemore_hospital_auckland-85.html H 0-486372370/61/1145_ 4.801660219080.00.349.67 104.23.213.109h2drumreed.co.uk:443[0/0] init 0-486372370/71/1101R 4.7717828173770.00.176.80 172.70.230.81h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-486372370/66/1122_ 4.830207357540.00.137.36 172.70.34.92h2drumreed.co.uk:443GET /project-statistics_new_zealand_fit-out-61.html HTTP/2.0 0-486372370/68/1084_ 4.76021208060.00.107.84 172.71.124.214http/1.1api.msz-pl.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 0-486372370/70/1131_ 4.9521211440.00.0815.66 172.69.74.249h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1754993657.34821295738220214843 0-486372370/65/1132_ 4.8617720270460.00.216.72 172.70.38.28h2drumreed.co.uk:443GET /crop90f7.jpg?f=upload/project/Les%20Mills%201.jpg&h=400&w= 0-486372370/68/1089_ 4.97152249510.00.387.04 104.23.190.215h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-486372370/66/1088_ 4.92027154490.00.309.24 172.70.35.209h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-486372370/67/1095_ 4.99019230910.00.088.38 172.70.248.27h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-486372370/69/1103_ 4.99020185530.00.097.27 104.23.190.239h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-486372370/72/1145_ 4.9611235140.00.7114.41 104.23.190.17h2bayer-application.fi-careers.onGET / HTTP/2.0 0-486372370/70/1104_ 4.801733125290560.00.218.17 143.110.213.72http/1.1ivarse.com:80GET / HTTP/1.1 0-486372370/70/1092_ 4.98024219280.00.096.55 104.23.190.170h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-486372370/71/1114_ 4.941660175170.00.218.25 104.23.213.109h2drumreed.co.uk:443GET /cropa05c.jpg?f=upload/project/2383719-02-Drumreed-England- 0-486372370/71/1145_ 4.92020364050.00.199.74 104.23.211.215h2drumreed.co.uk:443GET /crop73af.jpg?f=upload/project/60073Gallery-2.jpg&h=400&w=4 0-486372370/69/1126_ 4.891660196450.00.218.14 172.70.174.131h2drumreed.co.uk:443GET /upload/project/78276RMB_Commercial_Projects_Awards_2010_Go 0-486372370/70/1172R 4.80177391602200.00.1712.48 172.71.148.67http/1.1bayer-application.fi-careers.on 0-486372370/65/1114_ 4.8817321229330.00.556.70 172.71.223.103h2drumreed.co.uk:443GET /project-hornby_retail_complex-44.html HTTP/2.0 0-486372370/67/1123_ 4.811612495220.00.227.84 143.110.213.72http/1.1ivarse.com:80GET /server-status HTTP/1.1 0-486372370/72/1140_ 4.76022256350.00.257.49 172.71.124.214http/1.1api.msz-pl.com:80GET /xmlrpc.php?rsd HTTP/1.1 0-486372370/74/1125_ 4.9611211780.00.117.74 172.71.246.46h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-4835509370/283/1378_ 18.2720670202420.02.6810.98 162.158.138.221http/1.1api.msz-pl.com:80GET /bless8.php HTTP/1.1 1-4835509370/281/1393_ 18.242429248790.01.6210.86 162.158.138.221http/1.1api.msz-pl.com:80GET /bless.php HTTP/1.1 1-4835509370/279/1374_ 18.243033270300.01.849.55 104.23.195.51h2n-cloud.ivarse.com:443[0/0] init 1-4835509370/289/1370_ 18.281953212860710.03.1312.19 104.23.223.102http/1.1api.msz-pl.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 1-4835509370/265/1369_ 18.4016222286900.08.2617.08 162.158.216.142h2cryptofnpro.com:443GET /video/hero.mp4 HTTP/2.0 1-4835509370/271/1377_ 18.4420048303150.02.2610.60 172.70.230.61h2iscotenants.com:443GET /server-status HTTP/2.0 1-4835509370/273/1389_ 18.46340337900.02.1311.11 87.121.84.23http/1.1 1-4835509370/278/1352_ 18.2215423228990.02.249.70 162.158.138.221http/1.1api.msz-pl.com:80GET /file9.php HTTP/1.1 1-4835509370/275/1346_ 18.5015468255120.02.0515.03 172.68.245.55h2drumreed.co.uk:443GET /crop7aca.jpg?f=upload/project/Les%20Mills%204.jpg&h=400&w= 1-4835509370/276/1343_ 18.441950215010.02.369.54 143.110.213.72http/1.1ivarse.com:80GET /about HTTP/1.1 1-4835509370/268/1341_ 18.412444213170.02.2313.57 104.23.211.176http/1.1dashboard.crypto-ft.investmentsGET /login HTTP/1.1 1-4835509370/276/1347_ 18.4820020239320.03.1416.91 172.70.34.8h2drumreed.co.uk:443GET /apprenticeships.html HTTP/2.0 1-4835509370/285/1383_ 18.422664721016030.03.3310.36 162.158.62.162http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-4835509370/283/1354_ 18.413040275230.02.4311.01 172.71.98.119http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-4835509370/262/1346_ 18.53347228990.02.0410.20 87.121.84.23http/1.1api.msz-pl.com:80CONNECT cloudflare.com:443 HTTP/1.1 1-4835509370/277/1359_ 18.451570218270.02.229.17 143.110.213.72http/1.1ivarse.com:80GET /s/33e24343e2035323e23363/_/;/META-INF/maven/com.atlassian. 1-4835509370/275/1353_ 18.451570668620.02.5511.40 143.110.213.72http/1.1ivarse.com:80GET /config.json HTTP/1.1 1-4835509370/274/1337_ 18.262663213894880.01.688.53 162.158.138.221http/1.1api.msz-pl.com:80GET /bless6.php HTTP/1.1 1-4835509370/263/1334_ 18.4721130210240.02.1111.46 162.158.244.162h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-4835509370/263/1353_ 18.2214930226790.01.8810.36 162.158.138.221http/1.1api.msz-pl.com:80GET /file5.php HTTP/1.1 1-4835509370/284/1365_ 18.4320652246410.03.6111.87 172.70.111.174http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-4835509370/282/1334_ 18.491620227570.01.9110.21 172.71.191.127h2drumreed.co.uk:443GET /crop73d3.j
Found on 2025-08-12 10:14 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f7e2c5f29Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Tuesday, 12-Aug-2025 10:14:23 UTC Restart Time: Sunday, 10-Aug-2025 17:04:11 UTC Parent Server Config. Generation: 49 Parent Server MPM Generation: 48 Server uptime: 1 day 17 hours 10 minutes 12 seconds Server load: 0.77 1.08 1.32 Total accesses: 95077 - Total Traffic: 661.8 MB - Total Duration: 24962774 CPU Usage: u52.29 s26.77 cu681.19 cs144.75 - .611% CPU load .641 requests/sec - 4681 B/second - 7.1 kB/request - 262.553 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0637237no17yes00250161 13550937no2yes0025011 33550938no10yes1024091 Sum3029 10740263 __________________________________________________.............. ..........._______________R_________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-486372370/72/1132_ 5.0411294226220.00.398.31 162.158.158.175h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 0-486372370/60/1138_ 5.0221209630.00.447.56 104.23.239.39h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-486372370/80/1147_ 4.98028190410.01.9711.20 172.70.243.137h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-486372370/67/1127_ 5.03170301990.00.307.14 104.23.190.116h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 0-486372370/61/1145_ 4.8020219080.00.349.67 104.23.213.109h2drumreed.co.uk:443[0/0] init 0-486372370/72/1102_ 5.00328173770.00.176.80 172.70.230.81h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 0-486372370/66/1122_ 4.830207357540.00.137.36 172.70.34.92h2drumreed.co.uk:443GET /project-statistics_new_zealand_fit-out-61.html HTTP/2.0 0-486372370/68/1084_ 4.76021208060.00.107.84 172.71.124.214http/1.1api.msz-pl.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 0-486372370/70/1131_ 4.9511211440.00.0815.66 172.69.74.249h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1754993657.34821295738220214843 0-486372370/65/1132_ 4.86220270460.00.216.72 172.70.38.28h2drumreed.co.uk:443GET /crop90f7.jpg?f=upload/project/Les%20Mills%201.jpg&h=400&w= 0-486372370/68/1089_ 4.97152249510.00.387.04 104.23.190.215h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-486372370/66/1088_ 4.92027154490.00.309.24 172.70.35.209h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-486372370/67/1095_ 4.99319230910.00.088.38 172.70.248.27h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-486372370/69/1103_ 4.99020185530.00.097.27 104.23.190.239h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-486372370/73/1146_ 5.0311235140.00.7114.41 172.70.247.80h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-486372370/71/1105_ 5.0123125290560.00.218.17 104.23.187.26h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 0-486372370/71/1093_ 5.05024219280.00.096.55 172.71.164.198h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-486372370/71/1114_ 4.9420175170.00.218.25 104.23.213.109h2drumreed.co.uk:443GET /cropa05c.jpg?f=upload/project/2383719-02-Drumreed-England- 0-486372370/71/1145_ 4.92320364050.00.199.74 104.23.211.215h2drumreed.co.uk:443GET /crop73af.jpg?f=upload/project/60073Gallery-2.jpg&h=400&w=4 0-486372370/70/1127_ 5.0220196450.00.218.14 162.158.159.7h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 0-486372370/71/1173_ 5.012391602200.00.1812.49 172.71.148.67h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-486372370/65/1114_ 4.88221229330.00.556.70 172.71.223.103h2drumreed.co.uk:443GET /project-hornby_retail_complex-44.html HTTP/2.0 0-486372370/67/1123_ 4.8122495220.00.227.84 143.110.213.72http/1.1ivarse.com:80GET /server-status HTTP/1.1 0-486372370/73/1141_ 5.04122256350.00.257.49 172.71.148.89h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-486372370/74/1125_ 4.9611211780.00.117.74 172.71.246.46h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-4835509370/283/1378_ 18.27170202420.02.6810.98 162.158.138.221http/1.1api.msz-pl.com:80GET /bless8.php HTTP/1.1 1-4835509370/281/1393_ 18.242729248790.01.6210.86 162.158.138.221http/1.1api.msz-pl.com:80GET /bless.php HTTP/1.1 1-4835509370/279/1374_ 18.243333270300.01.849.55 104.23.195.51h2n-cloud.ivarse.com:443[0/0] init 1-4835509370/289/1370_ 18.281983212860710.03.1312.19 104.23.223.102http/1.1api.msz-pl.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 1-4835509370/265/1369_ 18.4016522286900.08.2617.08 162.158.216.142h2cryptofnpro.com:443GET /video/hero.mp4 HTTP/2.0 1-4835509370/271/1377_ 18.4420348303150.02.2610.60 172.70.230.61h2iscotenants.com:443GET /server-status HTTP/2.0 1-4835509370/273/1389_ 18.46640337900.02.1311.11 87.121.84.23http/1.1 1-4835509370/278/1352_ 18.2215723228990.02.249.70 162.158.138.221http/1.1api.msz-pl.com:80GET /file9.php HTTP/1.1 1-4835509370/275/1346_ 18.5015768255120.02.0515.03 172.68.245.55h2drumreed.co.uk:443GET /crop7aca.jpg?f=upload/project/Les%20Mills%204.jpg&h=400&w= 1-4835509370/276/1343_ 18.441980215010.02.369.54 143.110.213.72http/1.1ivarse.com:80GET /about HTTP/1.1 1-4835509370/268/1341_ 18.412844213170.02.2313.57 104.23.211.176http/1.1dashboard.crypto-ft.investmentsGET /login HTTP/1.1 1-4835509370/276/1347_ 18.48020239320.03.1416.91 172.70.34.8h2drumreed.co.uk:443GET /apprenticeships.html HTTP/2.0 1-4835509370/285/1383_ 18.4224721016030.03.3310.36 162.158.62.162http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-4835509370/283/1354_ 18.413340275230.02.4311.01 172.71.98.119http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-4835509370/262/1346_ 18.53647228990.02.0410.20 87.121.84.23http/1.1api.msz-pl.com:80CONNECT cloudflare.com:443 HTTP/1.1 1-4835509370/277/1359_ 18.451600218270.02.229.17 143.110.213.72http/1.1ivarse.com:80GET /s/33e24343e2035323e23363/_/;/META-INF/maven/com.atlassian. 1-4835509370/275/1353_ 18.451600668620.02.5511.40 143.110.213.72http/1.1ivarse.com:80GET /config.json HTTP/1.1 1-4835509370/274/1337_ 18.2623213894880.01.688.53 162.158.138.221http/1.1api.msz-pl.com:80GET /bless6.php HTTP/1.1 1-4835509370/264/1335_ 18.54130210240.02.1111.46 172.70.114.203h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-4835509370/263/1353_ 18.2215230226790.01.8810.36 162.158.138.221http/1.1api.msz-pl.com:80GET /file5.php HTTP/1.1 1-4835509370/285/1366_ 18.54052246410.03.6111.87 172.71.103.51http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-4835509370/282/1334_ 18.491650227570.01.9110.21 172.71.191.127h2drumreed.co.uk:443GET /crop73d3.jpg?f=upload/project/Les%20Mill
Found on 2025-08-12 10:14 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f8dd8844eApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Sunday, 10-Aug-2025 07:37:25 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 18 Parent Server MPM Generation: 17 Server uptime: 3 days 3 hours 4 minutes 37 seconds Server load: 1.01 0.88 0.84 Total accesses: 199595 - Total Traffic: 1.7 GB - Total Duration: 115197912 CPU Usage: u31.43 s20.29 cu354.37 cs189.5 - .22% CPU load .738 requests/sec - 6.6 kB/second - 9.0 kB/request - 577.158 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01620727no0yes1024000 1761203no0yes0025000 2761204no0yes1024000 Sum300 2073000 ________________________R_______________________________________ ___R_______..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1716207270/17/2830_ 1.00101287590.00.0129.24 172.68.155.216h2cryptofnpro.com:443GET /apple-touch-icon.png HTTP/2.0 0-1716207270/23/2838_ 1.192036804340.00.0325.19 162.158.154.74h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1716207270/18/2813_ 1.12110656190.00.0125.40 172.71.146.213http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1716207270/24/2869_ 0.8911012067880.00.0227.64 162.158.38.72http/1.1cryptofnpro.com:80GET /wp-includes/widgets/autoload_classmap.php HTTP/1.1 0-1716207270/16/2834_ 1.1920367740.00.0344.58 104.23.187.24h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1716207270/23/2847_ 1.0820397680.00.0330.45 91.238.181.94http/1.1cryptofnpro.com:80\x03 0-1716207270/26/2873_ 1.1910662040.00.0234.72 104.23.187.182h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-1716207270/17/2828_ 1.2010926560.00.0437.52 104.23.187.182h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1716207270/23/2871_ 1.0610364580.00.0328.26 104.23.221.15http/1.1cryptofnpro.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 0-1716207270/17/2854_ 1.1410369360.00.0122.36 172.71.147.31h2futurefocusfarm.com:443GET /connect.facebook.net/en_US/all.js HTTP/2.0 0-1716207270/28/2847_ 1.2101394510.00.0225.05 172.70.230.91h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1716207270/24/2864_ 1.2100739900.00.1431.55 162.158.154.74h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1716207270/23/2862_ 1.20107278330.00.0237.40 162.158.63.60h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1716207270/22/2848_ 1.2000370240.00.0126.48 172.70.110.68h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1716207270/25/2875_ 0.9700406410.00.0229.17 104.23.190.112http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1716207270/26/2836_ 1.2200428660.00.0231.83 172.70.111.41h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1716207270/26/2844_ 1.1820393250.00.0425.63 172.69.74.197h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1754811442.40963602066040039062 0-1716207270/19/2843_ 1.1616469385330.00.0126.42 104.23.237.109h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 0-1716207270/21/2791_ 1.220041639750.00.0225.23 162.158.62.144h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 0-1716207270/21/2822_ 1.1600573640.00.0225.58 172.69.74.237h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-1716207270/22/2849_ 1.1101427500.00.0633.28 198.41.227.29http/1.1cryptofnpro.com:80GET /robots.txt HTTP/1.1 0-1716207270/20/2837_ 1.0701383800.00.0229.28 172.71.154.61http/1.1cryptofnpro.com:80GET / HTTP/1.1 0-1716207270/21/2824_ 1.12160443280.00.0332.55 172.69.150.224h2comms.ivarse.com:443GET /wordpress/wp-admin/setup-config.php HTTP/2.0 0-1716207270/21/2441_ 1.2010193683190.00.1632.06 104.23.190.138h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1716207270/18/2837R 1.08340468880.00.0127.45 104.23.190.101h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-177612030/204/3294_ 10.6621518710.00.8023.82 162.158.63.22h2bayer-application.fi-careers.onGET / HTTP/2.0 1-177612030/204/3276_ 10.59870368310.02.7218.15 104.23.203.208h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-177612030/192/3281_ 10.648601972230.00.5716.71 172.71.147.141h2futurefocusfarm.com:443GET /img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl. 1-177612030/202/3273_ 10.528607251460.00.7328.59 162.158.152.137http/1.1cryptofnpro.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 1-177612030/209/3261_ 10.671021914950.01.0421.29 172.70.230.59h2bayer-application.fi-careers.onGET / HTTP/2.0 1-177612030/200/3161_ 10.6081446272740.02.9118.62 104.23.166.39http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-177612030/211/3255_ 10.56820270550.00.3624.38 172.68.225.47h2futurefocusfarm.com:443POST /wp-login.php HTTP/2.0 1-177612030/209/3270_ 10.581010509600.00.7419.49 172.71.148.83http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/196/3244_ 10.5010748880.00.9726.35 162.158.152.137http/1.1cryptofnpro.com:80GET /xmlrpc.php?rsd HTTP/1.1 1-177612030/207/3227_ 10.56860277750.01.0016.85 172.68.155.221h2campaignprox.msz-pl.com:443GET /assets/index-g3UvE9Q4.css HTTP/2.0 1-177612030/213/3259_ 10.64870817060.01.6117.54 172.68.23.112h2futurefocusfarm.com:443GET /wp-includes/js/masonry.min3a05.js?ver=4.2.2 HTTP/2.0 1-177612030/204/3270_ 10.68001722940.00.4922.24 162.158.154.31h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-177612030/205/3311_ 10.5310305930.01.1535.00 172.68.155.198h2campaignprox.msz-pl.com:443GET /apple-touch-icon-precomposed.png HTTP/2.0 1-177612030/209/3280_ 10.6710367760.07.6326.19 104.23.190.5h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-177612030/207/3318_ 10.64860318330.00.8825.98 108.162.241.74h2comms.ivarse.com:443GET /robots.txt HTTP/2.0 1-177612030/198/3225_ 10.60810498750.00.6618.01 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-177612030/201/3176_ 10.5281124158750.00.4120.40 162.158.202.96http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/191/3232_ 10.671032364360.00.5615.68 162.158.62.70h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-177612030/208/3235_ 10.621060444710.01.0025.59 172.71.164.34http/1.1comms.ivarse.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 1-177612030/201/3218_ 10.580040007510.00.8220.39 172.69.109.238http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/206/3301_ 10.45810373290.02.8322.00 104.23.175.3http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/208/3247_ 10.6900299250.00.5723.45 104.23.187
Found on 2025-08-10 07:37 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f99e81fadApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Sunday, 10-Aug-2025 07:37:25 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 18 Parent Server MPM Generation: 17 Server uptime: 3 days 3 hours 4 minutes 37 seconds Server load: 1.01 0.88 0.84 Total accesses: 199594 - Total Traffic: 1.7 GB - Total Duration: 115197912 CPU Usage: u31.43 s20.29 cu354.37 cs189.5 - .22% CPU load .738 requests/sec - 6.6 kB/second - 9.0 kB/request - 577.161 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01620727no0yes1024000 1761203no0yes0025000 2761204no0yes0025000 Sum300 1074000 __________________R_____________________________________________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1716207270/17/2830_ 1.00101287590.00.0129.24 172.68.155.216h2cryptofnpro.com:443GET /apple-touch-icon.png HTTP/2.0 0-1716207270/23/2838_ 1.191036804340.00.0325.19 162.158.154.74h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1716207270/18/2813_ 1.12110656190.00.0125.40 172.71.146.213http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1716207270/24/2869_ 0.8911012067880.00.0227.64 162.158.38.72http/1.1cryptofnpro.com:80GET /wp-includes/widgets/autoload_classmap.php HTTP/1.1 0-1716207270/16/2834_ 1.1920367740.00.0344.58 104.23.187.24h2bayer-application.fi-careers.onGET / HTTP/2.0 0-1716207270/23/2847_ 1.0820397680.00.0330.45 91.238.181.94http/1.1cryptofnpro.com:80\x03 0-1716207270/26/2873_ 1.1910662040.00.0234.72 104.23.187.182h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-1716207270/17/2828_ 1.2010926560.00.0437.52 104.23.187.182h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1716207270/23/2871_ 1.0610364580.00.0328.26 104.23.221.15http/1.1cryptofnpro.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 0-1716207270/17/2854_ 1.1400369360.00.0122.36 172.71.147.31h2futurefocusfarm.com:443GET /connect.facebook.net/en_US/all.js HTTP/2.0 0-1716207270/28/2847_ 1.2101394510.00.0225.05 172.70.230.91h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1716207270/24/2864_ 1.2100739900.00.1431.55 162.158.154.74h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1716207270/23/2862_ 1.20107278330.00.0237.40 162.158.63.60h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1716207270/22/2848_ 1.2000370240.00.0126.48 172.70.110.68h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1716207270/25/2875_ 0.9700406410.00.0229.17 104.23.190.112http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1716207270/26/2836_ 1.2200428660.00.0231.83 172.70.111.41h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1716207270/26/2844_ 1.1820393250.00.0425.63 172.69.74.197h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1754811442.40963602066040039062 0-1716207270/19/2843_ 1.1616469385330.00.0126.42 104.23.237.109h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 0-1716207270/20/2790R 1.0778041639750.00.0125.23 162.158.62.144h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-1716207270/21/2822_ 1.16390573640.00.0225.58 172.69.74.237h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-1716207270/22/2849_ 1.11341427500.00.0633.28 198.41.227.29http/1.1cryptofnpro.com:80GET /robots.txt HTTP/1.1 0-1716207270/20/2837_ 1.0701383800.00.0229.28 172.71.154.61http/1.1cryptofnpro.com:80GET / HTTP/1.1 0-1716207270/21/2824_ 1.12160443280.00.0332.55 172.69.150.224h2comms.ivarse.com:443GET /wordpress/wp-admin/setup-config.php HTTP/2.0 0-1716207270/21/2441_ 1.2010193683190.00.1632.06 104.23.190.138h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1716207270/18/2837_ 1.08340468880.00.0127.45 104.23.195.16http/1.1cryptofnpro.com:80POST /wp-cron.php?doing_wp_cron=1754810991.99747610092163085937 1-177612030/204/3294_ 10.6621518710.00.8023.82 162.158.63.22h2bayer-application.fi-careers.onGET / HTTP/2.0 1-177612030/204/3276_ 10.59870368310.02.7218.15 104.23.203.208h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-177612030/192/3281_ 10.648601972230.00.5716.71 172.71.147.141h2futurefocusfarm.com:443GET /img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl. 1-177612030/202/3273_ 10.528507251460.00.7328.59 162.158.152.137http/1.1cryptofnpro.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 1-177612030/209/3261_ 10.671021914950.01.0421.29 172.70.230.59h2bayer-application.fi-careers.onGET / HTTP/2.0 1-177612030/200/3161_ 10.6080446272740.02.9118.62 104.23.166.39http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-177612030/211/3255_ 10.56820270550.00.3624.38 172.68.225.47h2futurefocusfarm.com:443POST /wp-login.php HTTP/2.0 1-177612030/209/3270_ 10.581010509600.00.7419.49 172.71.148.83http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/196/3244_ 10.5010748880.00.9726.35 162.158.152.137http/1.1cryptofnpro.com:80GET /xmlrpc.php?rsd HTTP/1.1 1-177612030/207/3227_ 10.56860277750.01.0016.85 172.68.155.221h2campaignprox.msz-pl.com:443GET /assets/index-g3UvE9Q4.css HTTP/2.0 1-177612030/213/3259_ 10.64870817060.01.6117.54 172.68.23.112h2futurefocusfarm.com:443GET /wp-includes/js/masonry.min3a05.js?ver=4.2.2 HTTP/2.0 1-177612030/204/3270_ 10.68001722940.00.4922.24 162.158.154.31h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-177612030/205/3311_ 10.5310305930.01.1535.00 172.68.155.198h2campaignprox.msz-pl.com:443GET /apple-touch-icon-precomposed.png HTTP/2.0 1-177612030/209/3280_ 10.6710367760.07.6326.19 104.23.190.5h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-177612030/207/3318_ 10.64860318330.00.8825.98 108.162.241.74h2comms.ivarse.com:443GET /robots.txt HTTP/2.0 1-177612030/198/3225_ 10.60810498750.00.6618.01 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-177612030/201/3176_ 10.5280124158750.00.4120.40 162.158.202.96http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/191/3232_ 10.671032364360.00.5615.68 162.158.62.70h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-177612030/208/3235_ 10.621060444710.01.0025.59 172.71.164.34http/1.1comms.ivarse.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 1-177612030/201/3218_ 10.580040007510.00.8220.39 172.69.109.238http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/206/3301_ 10.45810373290.02.8322.00 104.23.175.3http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-177612030/208/3247_ 10.6900299250.00.57
Found on 2025-08-10 07:37 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f5febd3d4Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Friday, 08-Aug-2025 09:49:16 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 4 Parent Server MPM Generation: 3 Server uptime: 1 day 5 hours 16 minutes 28 seconds Server load: 0.53 0.80 0.86 Total accesses: 86803 - Total Traffic: 638.6 MB - Total Duration: 3215017 CPU Usage: u41.2 s27.82 cu138.66 cs68.93 - .262% CPU load .824 requests/sec - 6.2 kB/second - 7.5 kB/request - 37.0381 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02081098no2yes0025011 12081097no8yes0025071 23091683no14yes10240121 Sum3024 10740203 ________________________________________________________________ ________R__..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-320810980/469/1176_ 22.222620126450.07.0912.01 172.70.38.111http/1.1comms.ivarse.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/476/1189_ 22.2200172710.01.476.75 172.70.38.111http/1.1comms.ivarse.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/473/1143_ 22.2662399560.01.095.06 172.70.248.123h2bayer-application.fi-careers.on[1/0] done: stream 1, GET / 0-320810980/493/1197_ 22.2640152020.01.306.15 162.158.159.59h2comms.ivarse.com:443GET /_all_dbs HTTP/2.0 0-320810980/485/1175_ 22.252390169120.03.018.41 162.158.230.97http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/476/1175_ 22.282421153170.05.4711.61 124.156.179.141http/1.1cryptofnpro.com:80GET / HTTP/1.1 0-320810980/468/1169_ 22.291160176240.02.666.27 172.70.123.70http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/485/1170_ 22.251160140410.01.0311.11 162.158.230.97http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/488/1192_ 22.222630133350.05.1210.02 172.70.38.111http/1.1comms.ivarse.com:80GET /website/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/501/1193_ 22.2210130950.00.795.86 172.70.38.111http/1.1comms.ivarse.com:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/471/1187_ 22.222620147890.00.735.83 172.70.38.111http/1.1comms.ivarse.com:80GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/489/1196_ 22.2420202930.01.246.71 172.71.103.120http/1.1comms.ivarse.com:80HEAD /restore/sql.sql HTTP/1.1 0-320810980/461/1163_ 22.27206453740.01.035.29 172.70.111.117h2comms.ivarse.com:443GET /s/33e27393e2431313e2838313/_/;/META-INF/maven/com.atlassia 0-320810980/478/1177_ 22.25443134970.06.8411.32 162.158.230.98http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/494/1179_ 22.232390145980.01.245.91 172.70.38.111http/1.1comms.ivarse.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/453/1159_ 22.222630153780.01.8112.05 172.70.38.111http/1.1comms.ivarse.com:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/481/1154_ 22.242420117840.01.235.76 162.158.230.98http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/478/1147_ 22.3141150410.00.985.99 162.158.87.222h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-320810980/479/1164_ 22.242630136890.03.146.60 162.158.230.98http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/497/1174_ 22.292091324420.03.197.75 198.144.177.237http/1.1jointdivisoncxvii.me:80GET / HTTP/1.1 0-320810980/473/1161_ 22.252040142630.02.196.65 162.158.230.98http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-320810980/493/1166_ 22.282440151090.00.845.72 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-320810980/482/1159_ 22.2971177300.01.706.89 172.69.134.30http/1.1cryptofnpro.com:80GET / HTTP/1.1 0-320810980/490/1179_ 22.222630184720.05.0310.28 172.70.38.111http/1.1comms.ivarse.com:80GET /news/wp-includes/wlwmanifest.xml HTTP/1.1 0-320810980/494/1192_ 22.29453157340.01.698.94 162.158.88.28http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-320810970/775/1538_ 34.745086720.02.665.77 141.101.76.196http/1.1cryptofnpro.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/764/1501_ 34.74410127960.02.155.29 141.101.76.196http/1.1cryptofnpro.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/755/1515_ 34.7663079320.02.235.18 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-320810970/770/1505_ 34.795082570.02.406.72 172.68.193.181h2bayer-application.fi-careers.onGET / HTTP/2.0 1-320810970/768/1511_ 34.794098510.03.568.98 172.69.176.163h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-320810970/734/1462_ 34.7458093740.03.807.01 141.101.76.196http/1.1cryptofnpro.com:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/761/1503_ 34.820072100.03.0311.97 172.70.247.83h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-320810970/755/1511_ 34.730094690.04.407.58 141.101.76.196http/1.1cryptofnpro.com:80GET / HTTP/1.1 1-320810970/774/1490_ 34.74410101150.04.687.50 141.101.76.196http/1.1cryptofnpro.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/760/1497_ 34.754081110.02.305.82 141.101.76.196http/1.1cryptofnpro.com:80GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/766/1496_ 34.731095930.05.968.98 141.101.76.196http/1.1cryptofnpro.com:80GET / HTTP/1.1 1-320810970/774/1505_ 34.812099770.01.884.66 172.71.144.116h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-320810970/768/1533_ 34.7300124280.011.0019.79 141.101.76.196http/1.1cryptofnpro.com:80GET /xmlrpc.php?rsd HTTP/1.1 1-320810970/767/1506_ 34.74580136610.05.979.57 141.101.76.196http/1.1cryptofnpro.com:80GET /news/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/786/1543_ 34.692179790.02.1711.87 45.8.22.190http/1.1comms.ivarse.com:80GET /index.php?s=/index/\\think\\app/invokefunction&function=call 1-320810970/791/1512_ 34.821185550.05.798.46 162.158.162.186h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-320810970/691/1438_ 34.794015626960.02.537.65 172.69.176.139h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-320810970/758/1485_ 34.6730115320.04.617.64 45.8.22.190http/1.1comms.ivarse.com:80GET /test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT 1-320810970/755/1508_ 34.830093750.05.919.75 172.71.246.22h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 1-320810970/766/1485_ 34.7400122770.01.649.44 141.101.76.196http/1.1cryptofnpro.com:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 1-320810970/763/1532_ 34.7930134050.05.028.57 104.23.239.144h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-320810970/772/1515_ 34.8130109920.04.427.
Found on 2025-08-08 09:49 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb15db4f1Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 20-Jun-2025 17:08:33 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 10 Parent Server MPM Generation: 9 Server uptime: 4 days 18 hours 21 minutes 34 seconds Server load: 0.96 1.11 1.17 Total accesses: 433858 - Total Traffic: 3.3 GB - Total Duration: 15810357 CPU Usage: u111.56 s61.81 cu697.13 cs424.32 - .315% CPU load 1.05 requests/sec - 8.5 kB/second - 8.0 kB/request - 36.4413 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 13469387no9yes1024081 33469388no0yes0025000 Sum209 1049081 .........................__R______________________.............. ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.0018266901195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.0018266901186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.0018266901297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.0018266901497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.0018266901174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.0018266901156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.0018266911291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.0018266901330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.0018266901381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.0018266901241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.00182669341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.0018266901277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.0018266901240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.0018266901268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.0018266931229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.0018266901345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.0018266961262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.0018266901250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.0018266901323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.0018266901168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.0018266911233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.0018266911200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.0018266911193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.0018266911291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.0018266901395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-934693870/1051/6984_ 90.33102421210.020.1052.21 104.23.187.197h2drumreed.co.uk:443GET /upload/banner/Join-the-team-Banner.jpg HTTP/2.0 1-934693870/1061/6864_ 90.66002315870.041.3869.47 104.23.190.214h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-934693870/1091/6947R 90.62202304790.040.8578.25 104.23.187.40h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-934693870/1069/6962_ 90.47102385510.017.9751.91 104.23.223.78http/1.1quikhost.ng:80GET /wp-admin/setup-config.php HTTP/1.1 1-934693870/1057/7253_ 90.651722299420.037.3972.04 172.70.230.68h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-934693870/1053/6932_ 90.65102339860.021.8654.06 172.70.240.181http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-934693870/1068/6914_ 90.67002226740.020.6853.27 172.70.247.88http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-934693870/1059/6961_ 90.67002428600.042.87110.88 172.71.164.165http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-934693870/1122/7003_ 90.64102274240.020.0050.61 104.23.190.69h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-934693870/1084/7044_ 90.67002323200.035.8468.71 162.158.62.81h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-934693870/1060/6904_ 90.6703172262130.047.7081.85 172.70.114.146h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-934693870/1083/7045_ 90.58102353630.016.8544.80 172.70.230.51h2drumreed.co.uk:443GET /upload/team/Board_Anthony_Drumreed_mobile.jpg HTTP/2.0 1-934693870/1032/7032_ 90.51122513090.021.3554.99 162.158.166.208http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-934693870/1058/6976_ 90.66012548490.025.1457.70 162.158.154.114h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-934693870/1060/6922_ 90.52002425030.028.4357.98 162.158.170.19h2royaleliteservice.com:443GET /oldsite/wp-admin/install.php HTTP/2.0 1-934693870/1066/7034_ 90.66002414310.032.0466.82 172.68.193.144http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-934693870/1048/7048_ 90.62002240960.041.4482.48 172.69.74.232h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1750439310.50761890411376953125 1-934693870/1037/6935_ 90.63202303740.043.9282.33 162.158.155.209h2bayer-application.fi-careers.onGET / HTTP/2.0 1-934693870/1064/6983_ 90.60002511170.023.3255.17 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-934693870/1072/6995_ 90.65102373840.019.7449.55 172.70.246.15http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-934693870/1079/6883_ 90.411522407570.036.9774.18 172.68.242.27h2royaleliteservice.com:443GET /test/wp-admin/install.php HTTP/2.0 1-934693870/1018/6926_ </
Found on 2025-06-20 17:08 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f7938d251Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 20-Jun-2025 17:08:36 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 10 Parent Server MPM Generation: 9 Server uptime: 4 days 18 hours 21 minutes 36 seconds Server load: 0.88 1.09 1.16 Total accesses: 433882 - Total Traffic: 3.3 GB - Total Duration: 15810361 CPU Usage: u111.64 s61.83 cu697.13 cs424.32 - .315% CPU load 1.05 requests/sec - 8.5 kB/second - 8.0 kB/request - 36.4393 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 13469387no26yes10240232 33469388no18yes00250171 Sum2044 10490403 ........................._________________R_______.............. ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.0018267201195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.0018267201186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.0018267201297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.0018267201497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.0018267201174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.0018267201156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.0018267211291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.0018267201330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.0018267201381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.0018267201241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.00182672341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.0018267201277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.0018267201240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.0018267201268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.0018267231229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.0018267201345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.0018267261262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.0018267201250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.0018267201323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.0018267201168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.0018267211233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.0018267211200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.0018267211193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.0018267211291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.0018267201395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-934693870/1052/6985_ 90.69202421210.020.1052.21 162.158.110.25http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-934693870/1061/6864_ 90.66102315870.041.3869.47 104.23.190.214h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-934693870/1093/6949_ 90.71002304790.040.8678.25 172.71.246.32http/1.1bayer-application.fi-careers.onGET /.git/config HTTP/1.1 1-934693870/1069/6962_ 90.47102385510.017.9751.91 104.23.223.78http/1.1quikhost.ng:80GET /wp-admin/setup-config.php HTTP/1.1 1-934693870/1058/7254_ 90.70102299420.037.3972.04 172.71.144.65http/1.1bayer-application.fi-careers.onGET /login.action HTTP/1.1 1-934693870/1054/6933_ 90.69202339860.021.8654.06 162.158.62.81h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-934693870/1068/6914_ 90.67002226740.020.6853.27 172.70.247.88http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-934693870/1059/6961_ 90.67002428600.042.87110.88 172.71.164.165http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-934693870/1123/7004_ 90.68202274240.020.0050.61 162.158.86.207http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-934693870/1084/7044_ 90.67002323200.035.8468.71 162.158.62.81h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-934693870/1060/6904_ 90.6703172262130.047.7081.85 172.70.114.146h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-934693870/1083/7045_ 90.58202353630.016.8544.80 172.70.230.51h2drumreed.co.uk:443GET /upload/team/Board_Anthony_Drumreed_mobile.jpg HTTP/2.0 1-934693870/1032/7032_ 90.51122513090.021.3554.99 162.158.166.208http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-934693870/1059/6977_ 90.70012548490.025.1457.70 162.158.155.70h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 1-934693870/1060/6922_ 90.52002425030.028.4357.98 162.158.170.19h2royaleliteservice.com:443GET /oldsite/wp-admin/install.php HTTP/2.0 1-934693870/1067/7035_ 90.70102414310.032.0466.82 162.158.155.178h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 1-934693870/1048/7048_ 90.62002240960.041.4482.48 172.69.74.232h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1750439310.50761890411376953125 1-934693870/1037/6935R 90.63202303740.043.9282.33 172.70.240.181h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-934693870/1065/6984_ 90.71002511170.023.3255.17 172.70.246.19http/1.1bayer-application.fi-careers.onGET /.env HTTP/1.1 1-934693870/1072/6995_ 90.65102373840.019.7449.55 162.158.155.178h2bayer-application.fi-careers.on[0/0] read: stream 0, 1-934693870/1080/6884_ 90.692522407570.036.9774.18 172.70.230.249h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-93469387
Found on 2025-06-20 17:08 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f12dd7945Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 19-Jun-2025 14:27:15 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 9 Parent Server MPM Generation: 8 Server uptime: 3 days 15 hours 40 minutes 16 seconds Server load: 1.31 0.97 0.96 Total accesses: 361639 - Total Traffic: 2.0 GB - Total Duration: 10811239 CPU Usage: u12.81 s13.25 cu642.14 cs388.89 - .335% CPU load 1.15 requests/sec - 6.7 kB/second - 5.8 kB/request - 29.8951 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12170522no0yes1024000 32170523no0yes1024000 Sum200 2048000 .........................______________________R__.............. ...........___________R_____________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.008659201195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.008659201186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.008659201297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.008659201497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.008659201174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.008659201156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.008659211291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.008659201330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.008659201381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.008659201241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.0086592341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.008659201277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.008659201240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.008659201268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.008659231229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.008659201345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.008659261262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.008659201250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.008659201323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.008659201168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.008659211233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.008659211200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.008659211193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.008659211291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.008659201395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-821705220/2/5516_ 0.07121623350.00.0130.60 206.168.34.211h2cserver1.jointdivisoncxvii.me:80[0/0] done 1-821705220/1/5396_ 0.14101519770.00.0026.56 162.158.155.103http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-821705220/1/5436_ 0.0213041506730.00.0032.25 104.23.190.65h2bayer-application.fi-careers.on[0/0] init 1-821705220/1/5454_ 0.02111574570.00.0032.41 172.69.17.41http/1.1bayer-application.fi-careers.onGET /wp-content/themes/hello-elementor/style.min.css?ver=3.1.1 1-821705220/2/5763_ 0.14131546560.00.0133.09 104.23.190.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/1/5459_ 0.02111546990.00.0030.68 172.69.17.193http/1.1bayer-application.fi-careers.onGET /wp-content/themes/hello-elementor/theme.min.css?ver=3.1.1 1-821705220/2/5439_ 0.15111502260.00.0029.28 162.158.159.207h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/2/5504_ 0.15101715710.00.0166.69 172.70.114.147http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-821705220/1/5459_ 0.04121485180.00.0027.96 172.71.255.80http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/pro-elements/assets/css/conditionals/po 1-821705220/2/5547_ 0.15111568020.00.0031.76 162.158.159.115h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-821705220/2/5394_ 0.17001475950.00.0232.38 172.70.90.41h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/3/5514_ 0.17001586750.00.0126.53 172.68.229.141http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-821705220/1/5576_ 0.09001705880.00.0032.52 172.68.27.106http/1.1bayer-application.fi-careers.onGET /wp-content/themes/hello-elementor/assets/js/hello-frontend 1-821705220/2/5503_ 0.09001728920.00.0131.41 198.41.227.158http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/elementor/assets/js/webpack.runtime.min 1-821705220/3/5443_ 0.18001663900.00.0128.38 104.23.190.170http/1.1bayer-application.fi-careers.onGET /_all_dbs HTTP/1.1 1-821705220/3/5546_ 0.18051564040.00.0333.69 104.23.195.51h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-821705220/3/5585_ 0.18031487690.00.0239.52 172.69.224.34h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/3/5481_ 0.1902611526050.00.0236.67 104.23.190.68h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-821705220/3/5497_ 0.18001674910.00.0130.47 104.23.190.210http/1.1bayer-application.fi-careers.onGET /.DS_Store HTTP/1.1 1-821705220/2/5526_ 0.12001605290.00.0128.43 172.71.148.80h2bayer-application.fi-careers.onGET / HTTP/2.0 1-821705220/1/5393_ 0.06001582440.00.0035.96 172.70.126.2h2bayer-application.fi-careers.onGET /wp-content/uploads/2024/11/logo.png HTTP/2.0 1-821705220/2/5493_ 0.19001494560.00
Found on 2025-06-19 14:27 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb795f1cfApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 19-Jun-2025 14:27:18 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 9 Parent Server MPM Generation: 8 Server uptime: 3 days 15 hours 40 minutes 18 seconds Server load: 1.31 0.97 0.96 Total accesses: 361669 - Total Traffic: 2.0 GB - Total Duration: 10811330 CPU Usage: u12.87 s13.27 cu642.14 cs388.89 - .335% CPU load 1.15 requests/sec - 6.7 kB/second - 5.8 kB/request - 29.8929 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12170522no24yes00250231 32170523no41yes10240382 Sum2065 10490613 ........................._________________________.............. ...........________R________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.008659401195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.008659401186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.008659401297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.008659401497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.008659401174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.008659401156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.008659411291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.008659401330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.008659401381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.008659401241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.0086594341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.008659401277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.008659401240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.008659401268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.008659431229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.008659401345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.008659461262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.008659401250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.008659401323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.008659401168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.008659411233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.008659411200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.008659411193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.008659411291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.008659401395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-821705220/2/5516_ 0.07121623350.00.0130.60 206.168.34.211h2cserver1.jointdivisoncxvii.me:80[0/0] done 1-821705220/2/5397_ 0.20101519770.00.0026.56 141.101.98.113h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-821705220/2/5437_ 0.20111506750.00.0032.25 172.70.115.104http/1.1bayer-application.fi-careers.onGET /info.php HTTP/1.1 1-821705220/2/5455_ 0.201851575430.00.0032.42 162.158.155.103http/1.1bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/1.1 1-821705220/2/5763_ 0.14131546560.00.0133.09 104.23.190.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/2/5460_ 0.20111546990.00.0030.68 104.23.187.41h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-821705220/2/5439_ 0.15111502260.00.0029.28 162.158.159.207h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/3/5505_ 0.21101715710.00.0166.69 162.158.159.115h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-821705220/1/5459_ 0.04121485180.00.0027.96 172.71.255.80http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/pro-elements/assets/css/conditionals/po 1-821705220/2/5547_ 0.15111568020.00.0031.76 162.158.159.115h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-821705220/2/5394_ 0.17101475950.00.0232.38 172.70.90.41h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/4/5515_ 0.21001586750.00.0126.53 172.70.231.79h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-821705220/2/5577_ 0.21101705880.00.0032.52 104.23.190.144h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 1-821705220/2/5503_ 0.09001728920.00.0131.41 198.41.227.158http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/elementor/assets/js/webpack.runtime.min 1-821705220/4/5444_ 0.22001663900.00.0128.38 162.158.154.12h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 1-821705220/3/5546_ 0.18051564040.00.0333.69 104.23.195.51h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-821705220/3/5585_ 0.18031487690.00.0239.52 172.69.224.34h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/4/5482_ 0.23001526050.00.0336.67 172.69.195.183http/1.1bayer-application.fi-careers.onGET /_all_dbs HTTP/1.1 1-821705220/4/5498_ 0.23001674910.00.0130.47 162.158.159.105h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 1-821705220/3/5527_ 0.23001605290.00.0228.43 172.70.230.230h2bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/2.0 1-821705220/1/5393_ 0.06201582440.00.0035.96 172.70.126.2h2bayer-application.fi-careers.onGET /wp-content/uploads/2024/11/logo.png HTTP/2.0 1-821705220/2/5493_ 0.19201494560.00.0127.00 162.158.154.41http/1.1bayer-appl
Found on 2025-06-19 14:27 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fd5cd3762Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 16-Jun-2025 08:42:29 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 5 Parent Server MPM Generation: 4 Server uptime: 9 hours 55 minutes 30 seconds Server load: 1.69 1.87 1.98 Total accesses: 51968 - Total Traffic: 98.3 MB - Total Duration: 736464 CPU Usage: u78.06 s52.13 cu4.49 cs2.67 - .384% CPU load 1.45 requests/sec - 2884 B/second - 1983 B/request - 14.1715 ms/request 5 requests currently being processed, 0 workers gracefully restarting, 70 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02121305no0yes0025000 12121306no8yes2023052 22205887no15yes30220112 Sum3023 50700164 __________________________R_________________R_________L_R______R ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-421213050/556/591_ 35.4397060110.01.361.43 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/512/545_ 35.41113054770.00.991.02 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/576/605_ 35.29102042880.00.700.72 172.71.184.248h2royaleliteservice.com:443POST /wp-admin/admin-ajax.php HTTP/2.0 0-421213050/501/536_ 35.38113061720.00.650.68 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/FunctionList-a47cedaa.js HTTP/2. 0-421213050/702/730_ 35.09118346830.00.780.90 172.70.142.105h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 0-421213050/525/561_ 35.35170050790.01.351.37 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/518/548_ 35.33112339210.00.820.89 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/DocumentNotificationList-283b2a0 0-421213050/543/573_ 35.41165089820.01.271.29 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/OpenAISettings-c487c9b9.js HTTP/ 0-421213050/507/538_ 35.45170054770.00.630.75 172.70.43.209h2comms.ivarse.com:443GET /index.html HTTP/2.0 0-421213050/567/601_ 35.403037550.01.171.42 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/InstructionTemplateForm-761692a3 0-421213050/528/562_ 35.442160900.01.061.08 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/559/596_ 35.36165050050.00.820.84 104.23.195.87h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-421213050/539/567_ 35.23238242200.00.550.57 223.237.167.54h2i-erp.ivarse.com:443POST /api/method/erpnext.accounts.utils.get_fiscal_year HTTP/2. 0-421213050/522/557_ 35.502056820.00.650.70 172.71.144.43h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-421213050/676/709_ 35.41238076800.00.540.57 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/InstructionTemplateList-bb47900f 0-421213050/520/549_ 35.461181061550.01.291.31 172.71.184.176h2comms.ivarse.com:443GET / HTTP/2.0 0-421213050/547/579_ 35.483074440.01.071.09 172.69.224.144h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-421213050/507/537_ 35.273048560.00.991.02 223.237.167.54h2i-erp.ivarse.com:443GET /assets/frappe/dist/js/video_player.bundle.DUYYLSFO.js HTTP 0-421213050/552/586_ 35.483068830.00.740.83 172.70.162.49h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-421213050/554/588_ 35.13165156770.01.321.42 223.237.167.54h2i-erp.ivarse.com:443GET /assets/insights/frontend/assets/index-f9fc925f.css HTTP/2. 0-421213050/522/553_ 35.47102169420.00.670.69 172.69.214.236h2futurefocusfarm.com:443GET /its-about-thyme/microgreens.html HTTP/2.0 0-421213050/567/598_ 35.24103070830.00.800.83 223.237.167.54h2i-erp.ivarse.com:443POST /socket.io/?EIO=4&transport=polling&t=PTttSmp&sid=xbs-aKCz 0-421213050/674/708_ 35.47108040430.01.121.16 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/486/519_ 35.0910335456220.00.680.71 172.70.142.105h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 0-421213050/473/506_ 35.3097052720.00.520.62 63.250.44.3h2i-erp.ivarse.com:443GET /api/method/frappe.realtime.can_subscribe_doc?sid=419ecf794 1-421213060/601/692_ 39.3840119560.01.141.22 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/571/652R 39.2719060570.01.011.11 172.69.194.30h2i-erp.ivarse.com:443[73/72] schedule: stream 145, GET /socket.io/?EIO=4&transport=p 1-421213060/534/619_ 39.4200116790.01.251.30 162.158.216.209h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-421213060/600/683_ 39.4010106360.01.451.50 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/826/899_ 39.3750100430.01.271.37 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/572/648_ 39.350192210.00.910.95 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/596/677_ 39.350073260.01.131.24 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/571/654_ 39.310088210.01.311.36 172.71.164.161h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-421213060/608/683_ 39.315079370.01.091.14 172.70.243.86h2bayer-application.fi-careers.on[0/0] init 1-421213060/605/690_ 39.315098550.01.611.66 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/534/619_ 39.392276020.00.780.84 172.70.243.86h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-421213060/601/684_ 39.420088280.01.651.70 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/616/700_ 39.4010117930.01.171.23 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/539/619_ 39.392061110.01.401.45 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/576/658_ 39.410791180.01.621.68 172.71.148.59h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-421213060/683/768_ 39.3840100060.02.943.04 172.70.243.86h2bayer-application.fi-careers.onGET / HTTP/2.0 1-421213060/615/691_ 39.392072260.01.571.62 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/609/686_ 39.340099090.01.271.32 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/583/670_ 39.394090910.01.231.29 172.70.250.22h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-421213060/592/673R 39.365190630.01.521.58 172.71.152.35h2ivarse.com:443[532/531] read: stream 1063, POST //xmlrpc.php 1-421213060/601/669_ 39.3240133310.01.641.68 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/602/693_ 39.393082330.01.641.75 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/545/630_
Found on 2025-06-16 08:42 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f63baaba8Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 16-Jun-2025 08:42:28 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 5 Parent Server MPM Generation: 4 Server uptime: 9 hours 55 minutes 29 seconds Server load: 1.83 1.90 1.99 Total accesses: 51964 - Total Traffic: 98.3 MB - Total Duration: 736464 CPU Usage: u78.05 s52.12 cu4.49 cs2.67 - .384% CPU load 1.45 requests/sec - 2884 B/second - 1983 B/request - 14.1726 ms/request 3 requests currently being processed, 0 workers gracefully restarting, 72 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02121305no0yes0025000 12121306no6yes2023050 22205887no4yes1024030 Sum3010 3072080 __________________________R____________R______________L_________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-421213050/556/591_ 35.4396060110.01.361.43 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/512/545_ 35.41112054770.00.991.02 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/576/605_ 35.29101042880.00.700.72 172.71.184.248h2royaleliteservice.com:443POST /wp-admin/admin-ajax.php HTTP/2.0 0-421213050/501/536_ 35.38112061720.00.650.68 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/FunctionList-a47cedaa.js HTTP/2. 0-421213050/702/730_ 35.09117346830.00.780.90 172.70.142.105h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 0-421213050/525/561_ 35.35169050790.01.351.37 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/518/548_ 35.33111339210.00.820.89 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/DocumentNotificationList-283b2a0 0-421213050/543/573_ 35.41164089820.01.271.29 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/OpenAISettings-c487c9b9.js HTTP/ 0-421213050/507/538_ 35.45169054770.00.630.75 172.70.43.209h2comms.ivarse.com:443GET /index.html HTTP/2.0 0-421213050/567/601_ 35.402037550.01.171.42 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/InstructionTemplateForm-761692a3 0-421213050/528/562_ 35.441160900.01.061.08 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/559/596_ 35.36164050050.00.820.84 104.23.195.87h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-421213050/539/567_ 35.23237242200.00.550.57 223.237.167.54h2i-erp.ivarse.com:443POST /api/method/erpnext.accounts.utils.get_fiscal_year HTTP/2. 0-421213050/522/557_ 35.501056820.00.650.70 172.71.144.43h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-421213050/676/709_ 35.41237076800.00.540.57 223.237.167.54h2i-erp.ivarse.com:443GET /assets/raven/raven/assets/InstructionTemplateList-bb47900f 0-421213050/520/549_ 35.461171061550.01.291.31 172.71.184.176h2comms.ivarse.com:443GET / HTTP/2.0 0-421213050/547/579_ 35.482074440.01.071.09 172.69.224.144h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-421213050/507/537_ 35.272048560.00.991.02 223.237.167.54h2i-erp.ivarse.com:443GET /assets/frappe/dist/js/video_player.bundle.DUYYLSFO.js HTTP 0-421213050/552/586_ 35.482068830.00.740.83 172.70.162.49h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-421213050/554/588_ 35.13164156770.01.321.42 223.237.167.54h2i-erp.ivarse.com:443GET /assets/insights/frontend/assets/index-f9fc925f.css HTTP/2. 0-421213050/522/553_ 35.47101169420.00.670.69 172.69.214.236h2futurefocusfarm.com:443GET /its-about-thyme/microgreens.html HTTP/2.0 0-421213050/567/598_ 35.24102070830.00.800.83 223.237.167.54h2i-erp.ivarse.com:443POST /socket.io/?EIO=4&transport=polling&t=PTttSmp&sid=xbs-aKCz 0-421213050/674/708_ 35.47107040430.01.121.16 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-421213050/486/519_ 35.0910235456220.00.680.71 172.70.142.105h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 0-421213050/473/506_ 35.3096052720.00.520.62 63.250.44.3h2i-erp.ivarse.com:443GET /api/method/frappe.realtime.can_subscribe_doc?sid=419ecf794 1-421213060/601/692_ 39.3830119560.01.141.22 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/571/652R 39.2718060570.01.011.11 172.69.194.30h2i-erp.ivarse.com:443[73/72] schedule: stream 145, GET /socket.io/?EIO=4&transport=p 1-421213060/533/618_ 39.3460116790.01.251.30 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/600/683_ 39.4000106360.01.451.50 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/826/899_ 39.3740100430.01.271.37 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/572/648_ 39.355192210.00.910.95 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/596/677_ 39.354073260.01.131.24 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/571/654_ 39.314088210.01.311.36 172.71.164.161h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-421213060/608/683_ 39.314079370.01.091.14 172.70.243.86h2bayer-application.fi-careers.on[0/0] init 1-421213060/605/690_ 39.314098550.01.611.66 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/534/619_ 39.391276020.00.780.84 172.70.243.86h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-421213060/600/683_ 39.347088280.01.651.70 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/616/700_ 39.4000117930.01.171.23 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/539/619_ 39.391061110.01.401.45 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/575/657R 39.347791180.01.611.68 172.71.148.59h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-421213060/683/768_ 39.3830100060.02.943.04 172.70.243.86h2bayer-application.fi-careers.onGET / HTTP/2.0 1-421213060/615/691_ 39.392072260.01.571.62 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/609/686_ 39.345099090.01.271.32 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/583/670_ 39.393090910.01.231.29 172.70.250.22h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-421213060/592/673_ 39.364190630.01.521.58 172.69.74.232h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1750063343.67166709899902343750 1-421213060/601/669_ 39.3230133310.01.641.68 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/602/693_ 39.393082330.01.641.75 172.71.152.35h2ivarse.com:443POST //xmlrpc.php HTTP/2.0 1-421213060/545/630_
Found on 2025-06-16 08:42 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fcf420f32Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 12-Jun-2025 11:00:56 UTC Restart Time: Tuesday, 10-Jun-2025 15:13:07 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 1 day 19 hours 47 minutes 48 seconds Server load: 2.15 1.17 0.94 Total accesses: 132411 - Total Traffic: 786.9 MB - Total Duration: 6590982 CPU Usage: u50.91 s32.8 cu169.85 cs100.84 - .225% CPU load .84 requests/sec - 5.1 kB/second - 6.1 kB/request - 49.7767 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0848618no0yes0025000 1848619no5yes0025041 21156485no13yes10240121 Sum3018 10740162 _______________________________________________________________R ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-68486180/287/1753_ 15.72340712120.00.6912.02 162.158.88.128http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 0-68486180/282/1760_ 15.69400649740.00.3736.08 162.158.49.51h2comms.ivarse.com:443GET /aaa.php HTTP/2.0 0-68486180/254/1741_ 15.70280696310.00.709.04 162.158.49.51h2comms.ivarse.com:443GET /cljntmcz.php HTTP/2.0 0-68486180/288/1762_ 15.6900665090.00.8836.13 162.158.49.51h2comms.ivarse.com:443GET /wp-files.php HTTP/2.0 0-68486180/264/1747_ 15.7720568670.00.429.17 172.69.224.83h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 0-68486180/268/1755_ 15.73306657340.00.3310.29 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-68486180/284/1757_ 15.7810580920.00.388.85 104.23.175.241h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-68486180/265/1742_ 15.69290663320.00.4334.16 162.158.49.51h2comms.ivarse.com:443GET /wp-content/install.php HTTP/2.0 0-68486180/287/1748_ 15.70250609440.00.317.50 162.158.49.51h2comms.ivarse.com:443GET /wp-admin/css/colors/index.php HTTP/2.0 0-68486180/293/1805_ 15.70280859720.00.4310.69 162.158.49.51h2comms.ivarse.com:443GET /wp-includes/blocks/about.php HTTP/2.0 0-68486180/288/1784_ 15.6763750490.00.5810.20 54.193.34.38http/1.1 0-68486180/276/1736_ 15.69400631400.00.697.51 162.158.49.51h2comms.ivarse.com:443GET /wp-content/plugins/seoo/ulc2.php HTTP/2.0 0-68486180/283/1765_ 15.7221681100.00.418.05 172.71.182.128h2theperfectbow.ivarse-marketing.GET / HTTP/2.0 0-68486180/281/1796_ 15.6760678820.00.6210.04 54.193.34.38http/1.1 0-68486180/283/1765_ 15.7029271694960.01.3535.05 162.158.49.51h2comms.ivarse.com:443GET /wp-includes/install.php HTTP/2.0 0-68486180/297/1762_ 15.72340617450.00.8810.83 172.71.152.56http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 0-68486180/284/1782_ 15.7820633430.00.8511.77 172.70.208.54h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-68486180/306/1834_ 15.692300679030.00.6311.74 162.158.49.51h2comms.ivarse.com:443GET /x/index.php HTTP/2.0 0-68486180/306/1761_ 15.67100731270.00.529.11 54.193.34.38http/1.1 0-68486180/285/1771_ 15.69201390140.00.518.88 162.158.49.51h2comms.ivarse.com:443GET /access.php HTTP/2.0 0-68486180/303/1814_ 15.75110786120.00.5110.36 172.69.74.134h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-68486180/274/1753_ 15.671001335900.00.549.99 162.158.49.51h2comms.ivarse.com:443GET /wp-cache.php HTTP/2.0 0-68486180/292/1768_ 15.75150731290.00.5610.40 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-68486180/303/1769_ 15.72451705710.00.688.59 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-68486180/289/1763_ 15.67250670520.00.339.97 162.158.49.51h2comms.ivarse.com:443GET /wp-includes/js/codemirror/index.php HTTP/2.0 1-68486190/496/1810_ 25.2900728640.02.5610.73 161.35.95.34http/1.1 1-68486190/488/1801_ 25.2640646390.02.438.77 104.23.168.31h2comms.ivarse.com:443GET / HTTP/2.0 1-68486190/462/1772_ 25.3440787690.02.259.20 172.69.130.204h2futurefocusfarm.com:443GET /index.html HTTP/2.0 1-68486190/482/1783_ 25.33230795370.04.0313.55 172.69.134.75h2royaleliteservice.com:443GET / HTTP/2.0 1-68486190/473/1785_ 25.342110683580.03.0214.12 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-68486190/454/1755_ 25.1470708280.01.698.99 172.70.127.183http/1.1comms.ivarse.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 1-68486190/447/1763_ 25.414243705490.03.1610.40 172.69.195.142h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-68486190/485/1803_ 25.2820735160.02.039.52 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-68486190/504/1844_ 25.3200805440.03.2417.20 161.35.95.34http/1.1server1.jointdivisoncxvii.me:80GET /password.php HTTP/1.1 1-68486190/484/1789_ 25.3871680370.02.308.50 172.69.74.215h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1749726048.62906408309936523437 1-68486190/476/1784_ 25.4210672040.02.108.74 172.71.241.142h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-68486190/487/1782_ 25.4200696460.02.079.70 172.71.178.38h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 1-68486190/459/1773_ 25.1812712750.02.459.04 54.176.229.12http/1.1 1-68486190/469/1792_ 25.3200684520.01.008.91 161.35.95.34http/1.1server1.jointdivisoncxvii.me:80GET /upl.php HTTP/1.1 1-68486190/468/1779_ 25.37284692880.01.768.90 162.158.193.95http/1.1comms.ivarse.com:80POST / HTTP/1.1 1-68486190/458/1757_ 25.3970687260.03.2710.31 172.69.224.51h2bayer-application.fi-careers.onGET / HTTP/2.0 1-68486190/491/1841_ 25.3150718230.01.679.04 54.176.229.12http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01 1-68486190/453/1779_ 25.2240671130.02.6811.67 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-68486190/465/1797_ 25.28201386820.02.5715.53 172.70.90.252http/1.1comms.ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 1-68486190/508/1820_ 25.4150800720.02.009.21 141.101.98.129h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-68486190/474/1784_ 25.414317666960.02.3312.50 172.68.242.25h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-68486190/484/1796_ 25.32500744650.02.0014.46 104.23.221.149http/1.1comms.ivarse.com:80GET /wp-admin/setup-config.php HTTP/1.1 1-68486190/487/1824_ 25.29230683300.01.879.03 54.193.34.38http/1.1 1-68486190/481/1792_ 25.4050752680.02.359.87 172.68.186.90
Found on 2025-06-12 11:00 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fcb363475Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 12-Jun-2025 11:00:53 UTC Restart Time: Tuesday, 10-Jun-2025 15:13:07 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 1 day 19 hours 47 minutes 46 seconds Server load: 1.90 1.11 0.92 Total accesses: 132400 - Total Traffic: 786.9 MB - Total Duration: 6590981 CPU Usage: u50.86 s32.78 cu169.85 cs100.84 - .225% CPU load .84 requests/sec - 5.1 kB/second - 6.1 kB/request - 49.7808 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0848618no0yes1024000 1848619no6yes0025051 21156485no0yes0025000 Sum306 1074051 ____R___________________________________________________________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-68486180/287/1753_ 15.72310712120.00.6912.02 162.158.88.128http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 0-68486180/282/1760_ 15.69370649740.00.3736.08 162.158.49.51h2comms.ivarse.com:443GET /aaa.php HTTP/2.0 0-68486180/254/1741_ 15.70260696310.00.709.04 162.158.49.51h2comms.ivarse.com:443GET /cljntmcz.php HTTP/2.0 0-68486180/288/1762_ 15.692280665090.00.8836.13 162.158.49.51h2comms.ivarse.com:443GET /wp-files.php HTTP/2.0 0-68486180/263/1746R 15.712380568670.00.419.17 172.69.224.83h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-68486180/268/1755_ 15.73276657340.00.3310.29 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-68486180/283/1756_ 15.692330580920.00.388.85 162.158.49.51h2comms.ivarse.com:443GET /wp-api.php HTTP/2.0 0-68486180/265/1742_ 15.69260663320.00.4334.16 162.158.49.51h2comms.ivarse.com:443GET /wp-content/install.php HTTP/2.0 0-68486180/287/1748_ 15.70220609440.00.317.50 162.158.49.51h2comms.ivarse.com:443GET /wp-admin/css/colors/index.php HTTP/2.0 0-68486180/293/1805_ 15.70260859720.00.4310.69 162.158.49.51h2comms.ivarse.com:443GET /wp-includes/blocks/about.php HTTP/2.0 0-68486180/288/1784_ 15.6733750490.00.5810.20 54.193.34.38http/1.1 0-68486180/276/1736_ 15.69370631400.00.697.51 162.158.49.51h2comms.ivarse.com:443GET /wp-content/plugins/seoo/ulc2.php HTTP/2.0 0-68486180/283/1765_ 15.722331681100.00.418.05 172.71.182.128h2theperfectbow.ivarse-marketing.GET / HTTP/2.0 0-68486180/281/1796_ 15.6730678820.00.6210.04 54.193.34.38http/1.1 0-68486180/283/1765_ 15.7026271694960.01.3535.05 162.158.49.51h2comms.ivarse.com:443GET /wp-includes/install.php HTTP/2.0 0-68486180/297/1762_ 15.72310617450.00.8810.83 172.71.152.56http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 0-68486180/283/1781_ 15.692330633430.00.8511.77 162.158.49.51h2comms.ivarse.com:443GET /themes/zMousse/otuz1.php HTTP/2.0 0-68486180/306/1834_ 15.692280679030.00.6311.74 162.158.49.51h2comms.ivarse.com:443GET /x/index.php HTTP/2.0 0-68486180/306/1761_ 15.6780731270.00.529.11 54.193.34.38http/1.1 0-68486180/285/1771_ 15.6923301390140.00.518.88 162.158.49.51h2comms.ivarse.com:443GET /access.php HTTP/2.0 0-68486180/303/1814_ 15.7580786120.00.5110.36 172.69.74.134h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-68486180/274/1753_ 15.67801335900.00.549.99 162.158.49.51h2comms.ivarse.com:443GET /wp-cache.php HTTP/2.0 0-68486180/292/1768_ 15.75130731290.00.5610.40 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-68486180/303/1769_ 15.72431705710.00.688.59 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-68486180/289/1763_ 15.67220670520.00.339.97 162.158.49.51h2comms.ivarse.com:443GET /wp-includes/js/codemirror/index.php HTTP/2.0 1-68486190/496/1810_ 25.29470728640.02.5610.73 161.35.95.34http/1.1 1-68486190/488/1801_ 25.2620646390.02.438.77 104.23.168.31h2comms.ivarse.com:443GET / HTTP/2.0 1-68486190/462/1772_ 25.3410787690.02.259.20 172.69.130.204h2futurefocusfarm.com:443GET /index.html HTTP/2.0 1-68486190/482/1783_ 25.33200795370.04.0313.55 172.69.134.75h2royaleliteservice.com:443GET / HTTP/2.0 1-68486190/473/1785_ 25.340110683580.03.0214.12 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-68486190/454/1755_ 25.1450708280.01.698.99 172.70.127.183http/1.1comms.ivarse.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 1-68486190/447/1763_ 25.411243705490.03.1610.40 172.69.195.142h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-68486190/485/1803_ 25.2800735160.02.039.52 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-68486190/504/1844_ 25.32630805440.03.2417.20 161.35.95.34http/1.1server1.jointdivisoncxvii.me:80GET /password.php HTTP/1.1 1-68486190/484/1789_ 25.3851680370.02.308.50 172.69.74.215h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1749726048.62906408309936523437 1-68486190/475/1783_ 25.35680672040.02.108.74 104.23.195.29h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-68486190/486/1781_ 25.37520696460.02.079.70 172.71.172.210h2comms.ivarse.com:443GET /wp-admin/setup-config.php HTTP/2.0 1-68486190/459/1773_ 25.18822712750.02.459.04 54.176.229.12http/1.1 1-68486190/469/1792_ 25.32520684520.01.008.91 161.35.95.34http/1.1server1.jointdivisoncxvii.me:80GET /upl.php HTTP/1.1 1-68486190/468/1779_ 25.37254692880.01.768.90 162.158.193.95http/1.1comms.ivarse.com:80POST / HTTP/1.1 1-68486190/458/1757_ 25.3940687260.03.2710.31 172.69.224.51h2bayer-application.fi-careers.onGET / HTTP/2.0 1-68486190/491/1841_ 25.3120718230.01.679.04 54.176.229.12http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01 1-68486190/453/1779_ 25.2210671130.02.6811.67 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-68486190/465/1797_ 25.288201386820.02.5715.53 172.70.90.252http/1.1comms.ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 1-68486190/508/1820_ 25.4120800720.02.009.21 141.101.98.129h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-68486190/474/1784_ 25.412317666960.02.3312.50 172.68.242.25h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-68486190/484/1796_ 25.32470744650.02.0014.46 104.23.221.149http/1.1comms.ivarse.com:80GET /wp-admin/setup-config.php HTTP/1.1 1-68486190/487/1824_ 25.29200683300.01.879.03 54.193.34.38http/1.1 1-68486190/481/1792_ 25.402075268
Found on 2025-06-12 11:00 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fe63cedc6Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Tuesday, 10-Jun-2025 14:36:31 UTC Restart Time: Tuesday, 10-Jun-2025 08:23:29 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 6 hours 13 minutes 1 second Server load: 1.42 1.34 1.39 Total accesses: 19078 - Total Traffic: 119.8 MB - Total Duration: 9784780 CPU Usage: u34.74 s19.02 cu0 cs0 - .24% CPU load .852 requests/sec - 5.5 kB/second - 6.4 kB/request - 512.883 ms/request 3 requests currently being processed, 0 workers gracefully restarting, 47 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03104224no2yes2023000 13104225no3yes1024021 Sum205 3047021 ______________W______R___________________________R.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-031042240/249/249_ 18.761007320.01.151.15 172.71.150.151h2comms.ivarse.com:443HEAD /backup/ HTTP/2.0 0-031042240/248/248_ 18.7610011820.01.841.84 172.71.150.151h2comms.ivarse.com:443HEAD /home HTTP/2.0 0-031042240/262/262_ 18.82036814760.02.892.89 172.69.130.151h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 0-031042240/248/248_ 18.820322740.04.014.01 108.162.241.222h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-031042240/237/237_ 18.73109750.02.552.55 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-031042240/261/261_ 18.7610016080.01.461.46 172.71.150.151h2comms.ivarse.com:443HEAD /new HTTP/2.0 0-031042240/239/239_ 18.80146617790.01.191.19 108.162.242.91h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-031042240/251/251_ 18.651010450.02.192.19 172.71.99.202http/1.1 0-031042240/245/245_ 18.81009180.01.681.68 172.69.130.179h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-031042240/247/247_ 18.79262217730.02.022.02 108.162.241.222h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/255/255_ 18.820019700.02.102.10 172.69.214.143h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-031042240/250/250_ 18.7610012120.01.731.73 172.71.150.151h2comms.ivarse.com:443HEAD /main HTTP/2.0 0-031042240/254/254_ 18.761047717130.02.182.18 172.71.150.151h2comms.ivarse.com:443HEAD /backup HTTP/2.0 0-031042240/260/260_ 18.820011220.02.792.79 172.69.214.143h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-031042241/183/183W 12.45817904560.01.701.70 172.69.86.200http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 0-031042240/250/250_ 18.82035412290.01.391.39 172.69.130.151h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-031042240/276/276_ 18.820013510.02.132.13 172.69.130.179h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-031042240/266/266_ 18.81106350.02.882.88 172.69.130.179h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-031042240/237/237_ 18.78209520.02.052.05 172.69.214.29h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/253/253_ 18.7610012570.08.208.20 172.71.150.151h2comms.ivarse.com:443HEAD /old HTTP/2.0 0-031042240/254/254_ 18.80109230.01.911.91 172.69.214.143h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/245/245R 18.751034517380.02.042.04 172.69.214.29h2bayer-application.fi-careers.on[2/1] schedule: stream 3, GET /server-status 0-031042240/255/255_ 18.811029920.08.818.81 172.69.130.151h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/250/250_ 18.60506280.02.472.47 172.71.194.134h2comms.ivarse.com:443GET //website/wp-includes/wlwmanifest.xml HTTP/2.0 0-031042240/242/242_ 18.72590250290.02.272.27 104.23.170.106http/1.1crypto-ft.investments:80GET /backups/directory.rar HTTP/1.1 1-031042250/519/519_ 33.00281377650.01.991.99 104.23.170.51http/1.1crypto-ft.investments:80GET /restore/backup.rar HTTP/1.1 1-031042250/506/506_ 33.07040462180.00.970.97 172.70.80.199h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-031042250/524/524_ 33.0705880930.02.312.31 172.69.214.160h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-031042250/527/527_ 33.07046083440.01.351.35 172.70.80.87h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-031042250/515/515_ 33.042310940210.07.937.93 104.23.195.6h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1749566188.46217703819274902343 1-031042250/525/525_ 32.901173620.01.171.17 172.69.74.231h2crypto-ft.com:443POST /wp-cron.php?doing_wp_cron=1749565860.44321990013122558593 1-031042250/521/521_ 32.961048480.01.131.13 104.23.166.94http/1.1 1-031042250/523/523_ 32.7646083090.01.741.74 172.71.99.113http/1.1 1-031042250/522/522_ 33.0321085270.00.930.93 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/522/522_ 32.780065410.01.271.27 172.70.47.81http/1.1 1-031042250/533/533_ 33.06034994680.01.381.38 172.70.80.87h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-031042250/352/352_ 33.036084892280.00.820.82 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/526/526_ 33.051074610.01.701.70 172.69.214.46h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-031042250/522/522_ 32.971621467030.01.151.15 104.23.170.60http/1.1crypto-ft.investments:80HEAD /back/config.json HTTP/1.1 1-031042250/521/521_ 33.00160260230.01.051.05 141.101.76.26http/1.1crypto-ft.investments:80GET /restore/public_html.gz HTTP/1.1 1-031042250/520/520_ 32.8916053120.01.271.27 104.23.166.35http/1.1 1-031042250/524/524_ 32.960078230.01.011.01 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/512/512_ 33.05149787880.01.401.40 172.70.80.214h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-031042250/512/512_ 33.041042210.03.623.62 172.70.80.199h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-031042250/513/513_ 33.070066050.01.301.30 172.70.80.214h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-031042250/528/528_ 32.960097590.07.357.35 104.23.217.75http/1.1comms.ivarse.com:80GET /wp-admin/setup-config.php HTTP/1.1 1-031042250/526/526_ 33.060056870.01.411.41 108.162.242.70h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-031042250/501/501_ 32.401065780.01.181.18 154.28.229.189http/1.1 1-031042250/539/539_ 33.010262120.07.727.72 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80
Found on 2025-06-10 14:36 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fd78b479bApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Tuesday, 10-Jun-2025 14:36:31 UTC Restart Time: Tuesday, 10-Jun-2025 08:23:29 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 6 hours 13 minutes 1 second Server load: 1.42 1.34 1.39 Total accesses: 19074 - Total Traffic: 119.8 MB - Total Duration: 9784780 CPU Usage: u34.74 s19.02 cu0 cs0 - .24% CPU load .852 requests/sec - 5.5 kB/second - 6.4 kB/request - 512.99 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03104224no2yes1024000 13104225no3yes1024021 Sum205 2048021 ______________W_____________________________R_____.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-031042240/249/249_ 18.761007320.01.151.15 172.71.150.151h2comms.ivarse.com:443HEAD /backup/ HTTP/2.0 0-031042240/248/248_ 18.769011820.01.841.84 172.71.150.151h2comms.ivarse.com:443HEAD /home HTTP/2.0 0-031042240/261/261_ 18.751036814760.02.892.89 172.71.150.151h2comms.ivarse.com:443HEAD /wp HTTP/2.0 0-031042240/247/247_ 18.7510322740.04.014.01 172.71.150.151h2comms.ivarse.com:443HEAD / HTTP/2.0 0-031042240/237/237_ 18.73109750.02.552.55 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-031042240/261/261_ 18.7610016080.01.461.46 172.71.150.151h2comms.ivarse.com:443HEAD /new HTTP/2.0 0-031042240/239/239_ 18.80146617790.01.191.19 108.162.242.91h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-031042240/251/251_ 18.651010450.02.192.19 172.71.99.202http/1.1 0-031042240/245/245_ 18.81009180.01.681.68 172.69.130.179h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-031042240/247/247_ 18.79162217730.02.022.02 108.162.241.222h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/255/255_ 18.820019700.02.102.10 172.69.214.143h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-031042240/250/250_ 18.7610012120.01.731.73 172.71.150.151h2comms.ivarse.com:443HEAD /main HTTP/2.0 0-031042240/254/254_ 18.761047717130.02.182.18 172.71.150.151h2comms.ivarse.com:443HEAD /backup HTTP/2.0 0-031042240/260/260_ 18.820011220.02.792.79 172.69.214.143h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-031042241/183/183W 12.45817904560.01.701.70 172.69.86.200http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 0-031042240/250/250_ 18.82035412290.01.391.39 172.69.130.151h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-031042240/275/275_ 18.7510013510.02.132.13 172.71.150.151h2comms.ivarse.com:443HEAD /bc HTTP/2.0 0-031042240/266/266_ 18.81106350.02.882.88 172.69.130.179h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-031042240/237/237_ 18.78209520.02.052.05 172.69.214.29h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/253/253_ 18.7610012570.08.208.20 172.71.150.151h2comms.ivarse.com:443HEAD /old HTTP/2.0 0-031042240/254/254_ 18.80109230.01.911.91 172.69.214.143h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/245/245_ 18.751034517380.02.042.04 172.71.150.151h2comms.ivarse.com:443HEAD /bk HTTP/2.0 0-031042240/255/255_ 18.810029920.08.818.81 172.69.130.151h2bayer-application.fi-careers.onGET / HTTP/2.0 0-031042240/250/250_ 18.60406280.02.472.47 172.71.194.134h2comms.ivarse.com:443GET //website/wp-includes/wlwmanifest.xml HTTP/2.0 0-031042240/242/242_ 18.72490250290.02.272.27 104.23.170.106http/1.1crypto-ft.investments:80GET /backups/directory.rar HTTP/1.1 1-031042250/519/519_ 33.00281377650.01.991.99 104.23.170.51http/1.1crypto-ft.investments:80GET /restore/backup.rar HTTP/1.1 1-031042250/506/506_ 33.07040462180.00.970.97 172.70.80.199h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-031042250/524/524_ 33.0705880930.02.312.31 172.69.214.160h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-031042250/527/527_ 33.07046083440.01.351.35 172.70.80.87h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-031042250/515/515_ 33.042310940210.07.937.93 104.23.195.6h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1749566188.46217703819274902343 1-031042250/525/525_ 32.901173620.01.171.17 172.69.74.231h2crypto-ft.com:443POST /wp-cron.php?doing_wp_cron=1749565860.44321990013122558593 1-031042250/521/521_ 32.960048480.01.131.13 104.23.166.94http/1.1 1-031042250/523/523_ 32.7646083090.01.741.74 172.71.99.113http/1.1 1-031042250/522/522_ 33.0321085270.00.930.93 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/522/522_ 32.780065410.01.271.27 172.70.47.81http/1.1 1-031042250/533/533_ 33.06034994680.01.381.38 172.70.80.87h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-031042250/352/352_ 33.036084892280.00.820.82 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/526/526_ 33.050074610.01.701.70 172.69.214.46h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-031042250/522/522_ 32.971621467030.01.151.15 104.23.170.60http/1.1crypto-ft.investments:80HEAD /back/config.json HTTP/1.1 1-031042250/521/521_ 33.00160260230.01.051.05 141.101.76.26http/1.1crypto-ft.investments:80GET /restore/public_html.gz HTTP/1.1 1-031042250/520/520_ 32.8916053120.01.271.27 104.23.166.35http/1.1 1-031042250/524/524_ 32.960078230.01.011.01 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/512/512_ 33.05049787880.01.401.40 172.70.80.214h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-031042250/512/512_ 33.041042210.03.623.62 172.70.80.199h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-031042250/512/512R 33.0251066050.01.301.30 172.70.80.214h2bayer-application.fi-careers.on[2/1] schedule: stream 3, GET /server-status 1-031042250/528/528_ 32.960097590.07.357.35 104.23.217.75http/1.1comms.ivarse.com:80GET /wp-admin/setup-config.php HTTP/1.1 1-031042250/526/526_ 33.060056870.01.411.41 108.162.242.70h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-031042250/501/501_ 32.401065780.01.181.18 154.28.229.189http/1.1 1-031042250/539/539_ 33.010262120.07.727.72 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-031042250/528/528_
Found on 2025-06-10 14:36 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f0208f931Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 05-Jun-2025 06:18:43 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 13 Parent Server MPM Generation: 12 Server uptime: 6 days 23 hours 39 minutes 15 seconds Server load: 0.65 0.83 0.94 Total accesses: 759835 - Total Traffic: 5.5 GB - Total Duration: 329362322 CPU Usage: u59.06 s50.19 cu1122.82 cs681.69 - .317% CPU load 1.26 requests/sec - 9.6 kB/second - 7.6 kB/request - 433.466 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03576126no6yes1024051 23576127no13yes00250121 Sum2019 10490172 __R______________________.........................______________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1235761260/516/14328_ 25.261012022670.01.38101.19 141.101.98.224h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-1235761260/497/14031_ 25.2610111769860.01.45111.09 172.71.241.44h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1235761260/513/14378R 25.236012782670.01.16107.85 172.68.229.144h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-1235761260/512/14294_ 25.23003686410.01.08102.20 104.23.170.191h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1235761260/497/14210_ 25.175296448920.01.22102.92 172.70.142.162http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-1235761260/512/14131_ 25.1720155688740.01.2698.89 172.70.142.162http/1.1comms.ivarse.com:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/502/13950_ 25.2430108626290.01.6093.83 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/501/13900_ 25.1810164575520.031.96124.40 172.70.142.162http/1.1comms.ivarse.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/509/14366_ 25.173087182880.01.16102.77 172.70.142.162http/1.1comms.ivarse.com:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/495/13696_ 25.1710169535710.00.9592.71 172.70.142.162http/1.1comms.ivarse.com:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/486/14065_ 25.2010151891150.01.3599.65 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/507/14283_ 25.262045674940.01.56103.91 104.23.168.99h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 0-1235761260/509/14403_ 25.173044192200.01.7399.83 172.70.142.162http/1.1comms.ivarse.com:80GET /wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/501/14140_ 25.181023475590.01.0596.97 172.70.142.162http/1.1comms.ivarse.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/520/14408_ 25.246026124510.01.31118.23 172.71.95.138h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1235761260/508/14186_ 25.181056492550.01.10107.04 172.70.142.162http/1.1comms.ivarse.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/517/14347_ 25.211014847820.00.98102.10 104.23.195.12h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1749104314.99835109710693359375 0-1235761260/499/14044_ 25.2031134613690.01.0695.24 172.71.172.65h2crypto-ft.com:443GET /robots.txt HTTP/2.0 0-1235761260/495/14208_ 25.244051487500.00.88164.07 104.23.172.127h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1235761260/508/13946_ 25.1720121123090.01.47111.96 172.70.142.162http/1.1comms.ivarse.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/491/14386_ 25.18106247820.01.29108.84 172.70.142.162http/1.1comms.ivarse.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/519/14302_ 25.26006620120.01.26104.64 104.23.172.127h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 0-1235761260/507/14258_ 25.076027118250.01.20103.15 209.38.248.17h2comms.ivarse.com:443[0/0] Software caused connection abort 0-1235761260/495/14156_ 25.270046910540.01.21102.07 104.23.166.124h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 0-1235761260/518/14093_ 25.180096911870.05.28109.04 172.70.85.132h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-11-0/0/9127. 0.0035170045232580.00.0063.10 172.71.144.15http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 1-11-0/0/9318. 0.0035170042259170.00.0055.86 172.71.164.205http/1.1comms.ivarse.com:80GET /s/13e2231313e21323e2430313/_/;/META-INF/maven/com.atlassia 1-11-0/0/9439. 0.0035170015323190.00.0057.80 172.71.164.136http/1.1comms.ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 1-11-0/0/8845. 0.00351700142401650.00.0059.99 172.71.172.48h2comms.ivarse.com:443GET /about HTTP/2.0 1-11-0/0/9389. 0.003517004523960.00.0055.22 172.71.144.4http/1.1comms.ivarse.com:80GET /s/13e28343e21323e2430313/_/;/META-INF/maven/com.atlassian. 1-11-0/0/9105. 0.0035170033790420.00.0058.16 162.158.95.60h2comms.ivarse.com:443GET /login.action HTTP/2.0 1-11-0/0/9377. 0.00351700105015850.00.0050.42 172.71.164.76h2comms.ivarse.com:443GET /login.action HTTP/2.0 1-11-0/0/9365. 0.003517002416160.00.0057.69 162.158.95.143http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 1-11-0/0/9398. 0.003517002128900.00.0059.12 172.71.164.205http/1.1comms.ivarse.com:80GET /.git/config HTTP/1.1 1-11-0/0/9318. 0.0035170120969630.00.0061.22 172.71.250.79http/1.1comms.ivarse.com:80GET /server-status HTTP/1.1 1-11-0/0/9340. 0.0035170128275760.00.0052.65 172.71.172.16h2comms.ivarse.com:443GET /debug/default/view?panel=config HTTP/2.0 1-11-0/0/9374. 0.003517018393880.00.0061.18 162.158.95.143h2comms.ivarse.com:443[1/1] done 1-11-0/0/9302. 0.003517007581030.00.0059.96 172.71.148.155http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 1-11-0/0/9209. 0.0035170035670340.00.0058.02 172.70.250.53h2comms.ivarse.com:443GET /about HTTP/2.0 1-11-0/0/9267. 0.0035170167501310.00.0059.14 172.71.172.16h2comms.ivarse.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-11-0/0/9309. 0.003517018222970.00.0054.61 172.70.246.161http/1.1comms.ivarse.com:80GET /?rest_route=/wp/v2/users/ HTTP/1.1 1-11-0/0/9365. 0.0035170074623400.00.0058.12 172.71.144.61http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 1-11-0/0/9322. 0.0035170014629970.00.0053.68 172.70.242.185h2comms.ivarse.com:443GET /server-status HTTP/2.0 1-11-0/0/9126. 0.0035170022707970.00.0066.25 172.70.248.134h2comms.ivarse.com:443GET /_all_dbs HTTP/2.0 1-11-0/0/9258. 0.003517002543400.00.0057.87 172.71.172.87h2comms.ivarse.com:443GET /about HTTP/2.0 1-11-0/0/9368. 0.003517003867640.00.0056.42 172.70.248.134h2comms.ivarse.com:443[4/4] done: stream 7, GET /.env 1-11-0/0/9400. 0.003517006102000.00.0062.84 172.71.164.76h2
Found on 2025-06-05 06:18 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb7a8098eApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 05-Jun-2025 06:18:40 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 13 Parent Server MPM Generation: 12 Server uptime: 6 days 23 hours 39 minutes 11 seconds Server load: 0.71 0.84 0.94 Total accesses: 759821 - Total Traffic: 5.5 GB - Total Duration: 329362322 CPU Usage: u59 s50.16 cu1122.82 cs681.69 - .317% CPU load 1.26 requests/sec - 9.6 kB/second - 7.6 kB/request - 433.474 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03576126no7yes0025070 23576127no10yes1024091 Sum2017 10490161 _________________________.........................______________ _______R___..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1235761260/515/14327_ 25.1840012022670.01.38101.19 172.70.142.162http/1.1comms.ivarse.com:80GET /news/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/496/14030_ 25.20150111769860.01.45111.09 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/513/14378_ 25.232012782670.01.16107.85 104.23.166.169h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1235761260/512/14294_ 25.23303686410.01.08102.20 104.23.170.191h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-1235761260/497/14210_ 25.172296448920.01.22102.92 172.70.142.162http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-1235761260/512/14131_ 25.17470155688740.01.2698.89 172.70.142.162http/1.1comms.ivarse.com:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/502/13950_ 25.2400108626290.01.6093.83 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/501/13900_ 25.18100164575520.031.96124.40 172.70.142.162http/1.1comms.ivarse.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/509/14366_ 25.1753087182880.01.16102.77 172.70.142.162http/1.1comms.ivarse.com:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/495/13696_ 25.17400169535710.00.9592.71 172.70.142.162http/1.1comms.ivarse.com:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/486/14065_ 25.20300151891150.01.3599.65 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/506/14282_ 25.2045045674940.01.56103.91 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/509/14403_ 25.170044192200.01.7399.83 172.70.142.162http/1.1comms.ivarse.com:80GET /wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/501/14140_ 25.1810023475590.01.0596.97 172.70.142.162http/1.1comms.ivarse.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/520/14408_ 25.242026124510.01.31118.23 172.71.95.138h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1235761260/508/14186_ 25.1825056492550.01.10107.04 172.70.142.162http/1.1comms.ivarse.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/517/14347_ 25.215014847820.00.98102.10 104.23.195.12h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1749104314.99835109710693359375 0-1235761260/499/14044_ 25.20531134613690.01.0695.24 172.71.172.65h2crypto-ft.com:443GET /robots.txt HTTP/2.0 0-1235761260/495/14208_ 25.240051487500.00.88164.07 104.23.172.127h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1235761260/508/13946_ 25.17480121123090.01.47111.96 172.70.142.162http/1.1comms.ivarse.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/491/14386_ 25.182506247820.01.29108.84 172.70.142.162http/1.1comms.ivarse.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/518/14301_ 25.18406620120.01.26104.64 172.70.142.162http/1.1comms.ivarse.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 0-1235761260/507/14258_ 25.072027118250.01.20103.15 209.38.248.17h2comms.ivarse.com:443[0/0] Software caused connection abort 0-1235761260/494/14155_ 25.183046910540.01.21102.07 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1235761260/518/14093_ 25.183096911870.05.28109.04 172.70.85.132h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-11-0/0/9127. 0.0035166045232580.00.0063.10 172.71.144.15http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 1-11-0/0/9318. 0.0035166042259170.00.0055.86 172.71.164.205http/1.1comms.ivarse.com:80GET /s/13e2231313e21323e2430313/_/;/META-INF/maven/com.atlassia 1-11-0/0/9439. 0.0035166015323190.00.0057.80 172.71.164.136http/1.1comms.ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 1-11-0/0/8845. 0.00351660142401650.00.0059.99 172.71.172.48h2comms.ivarse.com:443GET /about HTTP/2.0 1-11-0/0/9389. 0.003516604523960.00.0055.22 172.71.144.4http/1.1comms.ivarse.com:80GET /s/13e28343e21323e2430313/_/;/META-INF/maven/com.atlassian. 1-11-0/0/9105. 0.0035166033790420.00.0058.16 162.158.95.60h2comms.ivarse.com:443GET /login.action HTTP/2.0 1-11-0/0/9377. 0.00351660105015850.00.0050.42 172.71.164.76h2comms.ivarse.com:443GET /login.action HTTP/2.0 1-11-0/0/9365. 0.003516602416160.00.0057.69 162.158.95.143http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 1-11-0/0/9398. 0.003516602128900.00.0059.12 172.71.164.205http/1.1comms.ivarse.com:80GET /.git/config HTTP/1.1 1-11-0/0/9318. 0.0035166120969630.00.0061.22 172.71.250.79http/1.1comms.ivarse.com:80GET /server-status HTTP/1.1 1-11-0/0/9340. 0.0035166128275760.00.0052.65 172.71.172.16h2comms.ivarse.com:443GET /debug/default/view?panel=config HTTP/2.0 1-11-0/0/9374. 0.003516618393880.00.0061.18 162.158.95.143h2comms.ivarse.com:443[1/1] done 1-11-0/0/9302. 0.003516607581030.00.0059.96 172.71.148.155http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 1-11-0/0/9209. 0.0035166035670340.00.0058.02 172.70.250.53h2comms.ivarse.com:443GET /about HTTP/2.0 1-11-0/0/9267. 0.0035166167501310.00.0059.14 172.71.172.16h2comms.ivarse.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-11-0/0/9309. 0.003516618222970.00.0054.61 172.70.246.161http/1.1comms.ivarse.com:80GET /?rest_route=/wp/v2/users/ HTTP/1.1 1-11-0/0/9365. 0.0035166074623400.00.0058.12 172.71.144.61http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 1-11-0/0/9322. 0.0035166014629970.00.0053.68 172.70.242.185h2comms.ivarse.com:443GET /server-status HTTP/2.0 1-11-0/0/9126. 0.0035166022707970.00.0066.25 172.70.248.134h2comms.ivarse.com:443GET /_all_dbs HTTP/2.0 1-11-0/0/9258. 0.003516602543400.00.0057.87 172.71.172.87h2comms.ivarse.com:443GET /about HTTP/2.0 1-11-0/0/9368. 0.003516603867640.00.0056.42 172.70.248.134h2comms.ivarse.com:443[4/4] done: stream 7, GET /.env 1-11-0/0/9400. 0.003516606102000.00.0062.84 172.71.164.76h2comms.ivarse.c
Found on 2025-06-05 06:18 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f4e2e356dApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 02-Jun-2025 23:20:16 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 10 Parent Server MPM Generation: 9 Server uptime: 4 days 16 hours 40 minutes 48 seconds Server load: 0.98 0.78 0.81 Total accesses: 498851 - Total Traffic: 4.1 GB - Total Duration: 199491739 CPU Usage: u44.12 s35.67 cu751.05 cs449.53 - .316% CPU load 1.23 requests/sec - 10.5 kB/second - 8.5 kB/request - 399.902 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0429807no0yes0025000 1429902no10yes1024081 33927044yes (old gen)1no000000 Sum3111 1049081 ___________________________R______________________.............. ........................G....................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-94298070/144/8719_ 7.4339010442360.01.5671.66 172.71.127.126h2comms.ivarse.com:443GET //wp/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/147/8480_ 7.43391100089270.00.9076.86 172.71.127.126h2comms.ivarse.com:443GET //2019/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/143/8725_ 7.431011154020.00.9873.60 172.71.127.126h2comms.ivarse.com:443GET //website/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/144/8673_ 7.4511582039710.01.4969.41 104.23.187.100h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-94298070/151/8676_ 7.4338020836840.00.8270.11 172.71.127.126h2comms.ivarse.com:443GET //test/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/145/8724_ 7.421609845190.01.0565.02 172.71.127.126h2comms.ivarse.com:443GET //web/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/141/8632_ 7.4136028212990.00.9463.14 104.23.195.86h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-94298070/139/8624_ 7.4339029089490.00.9565.91 172.71.127.126h2comms.ivarse.com:443GET //shop/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/147/8671_ 7.4339064814800.01.1167.53 172.71.127.126h2comms.ivarse.com:443GET //wp1/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/143/8456_ 7.4438061208270.00.9964.52 172.71.127.126h2comms.ivarse.com:443GET //site/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/136/8424_ 7.44380150272910.00.8866.13 172.71.127.126h2comms.ivarse.com:443GET //cms/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/138/8634_ 7.4338044058560.00.9472.78 172.71.127.126h2comms.ivarse.com:443GET //media/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/133/8728_ 7.4338142714190.00.8865.72 172.71.127.126h2comms.ivarse.com:443GET //wp2/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/148/8553_ 7.3538021961160.01.0765.97 162.158.235.72h2ivarse.com:443GET /application.properties HTTP/2.0 0-94298070/142/8676_ 7.4438024489070.02.2885.65 172.71.127.126h2comms.ivarse.com:443GET //sito/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/150/8639_ 7.4233014254080.01.7778.09 172.71.127.126h2comms.ivarse.com:443GET / HTTP/2.0 0-94298070/151/8692_ 7.3132013233730.01.1167.89 162.158.230.104http/1.1marshallmprojects.com:80GET /wpx.php HTTP/1.1 0-94298070/153/8760_ 7.443702275080.00.9063.45 172.69.179.139h2ivarse.com:443GET /config/secrets.yml HTTP/2.0 0-94298070/145/8666_ 7.4216044074360.01.09134.63 172.71.127.126h2comms.ivarse.com:443GET //blog/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/150/8372_ 7.45210119438020.01.1879.05 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-94298070/159/8807_ 7.423104702710.00.8575.03 172.71.127.126h2comms.ivarse.com:443GET //xmlrpc.php?rsd HTTP/2.0 0-94298070/148/8667_ 7.423104887700.00.8371.74 172.71.127.126h2comms.ivarse.com:443GET //wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/135/8617_ 7.303808923370.00.9672.00 162.158.230.104http/1.1marshallmprojects.com:80GET /wp-content/plugins/zedd/1.php HTTP/1.1 0-94298070/147/8568_ 7.43393545350610.01.2370.30 172.71.127.126h2comms.ivarse.com:443GET //news/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/146/8479_ 7.4339095161120.00.9054.69 172.71.127.126h2comms.ivarse.com:443GET //2018/wp-includes/wlwmanifest.xml HTTP/2.0 1-94299020/283/5331_ 12.890038546290.00.3639.15 104.23.190.238h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-94299020/298/5367_ 13.031011184880.00.7230.72 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-94299020/293/5460R 12.981014305530.00.5635.13 104.23.190.170h2bayer-application.fi-careers.on[2/1] schedule: stream 3, GET /server-status 1-94299020/300/5317_ 13.070013228220.00.3739.03 172.69.74.248h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748906413.42385101318359375000 1-94299020/300/5415_ 13.03003454450.00.8732.12 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-94299020/292/5172_ 13.031232823470.00.3334.50 162.158.216.79http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-94299020/279/5317_ 13.0702103903140.00.2630.53 104.23.195.6h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748906413.42311906814575195312 1-94299020/285/5344_ 12.98101324030.00.8135.53 172.70.174.170h2comms.ivarse.com:443GET / HTTP/2.0 1-94299020/288/5352_ 13.13001129500.00.5136.59 172.70.111.41h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-94299020/287/5353_ 12.881019959070.00.4834.87 162.158.230.104http/1.1marshallmprojects.com:80GET /wp-content/plugins/html404/wso25.php HTTP/1.1 1-94299020/288/5423_ 13.12001552270.00.3731.21 172.70.243.85h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-94299020/282/5403_ 13.08037315160.00.7635.70 104.23.190.170h2bayer-application.fi-careers.onGET / HTTP/2.0 1-94299020/287/5398_ 12.96016509580.00.2036.03 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-94299020/305/5248_ 13.101034671950.00.3233.72 172.70.230.163h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-94299020/283/5375_ 13.021139788070.00.3137.56 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-94299020/287/5354_ 13.13007262650.00.5231.30 172.71.144.146h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-94299020/293/5383_ 13.111063945750.00.2934.04 172.71.164.92h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-94299020/290/5379_ 13.11001182310.00.4432.23 162.158.63.150h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-94299020/292/5210_ 13.091021559400.00.4042.42 104.23.187.179h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-94299020/288/5332_ 13.12001462060.00.2936.22 162.158.158.49h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-94299020/299/5379_ 13.120191568270.00.3432.31 162.158.158.88h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-9
Found on 2025-06-02 23:20 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f05d624aeApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 02-Jun-2025 23:20:18 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 10 Parent Server MPM Generation: 9 Server uptime: 4 days 16 hours 40 minutes 50 seconds Server load: 0.98 0.78 0.81 Total accesses: 498860 - Total Traffic: 4.1 GB - Total Duration: 199491739 CPU Usage: u44.14 s35.68 cu751.05 cs449.53 - .316% CPU load 1.23 requests/sec - 10.5 kB/second - 8.5 kB/request - 399.895 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0429807no0yes2023000 1429902no24yes00250231 33927044yes (old gen)1no000000 Sum3125 20480231 R______________________R__________________________.............. ........................G....................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-94298070/144/8719R 7.4341010442360.01.5671.66 172.71.144.176h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-94298070/147/8480_ 7.43401100089270.00.9076.86 172.71.127.126h2comms.ivarse.com:443GET //2019/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/143/8725_ 7.433011154020.00.9873.60 172.71.127.126h2comms.ivarse.com:443GET //website/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/144/8673_ 7.4531582039710.01.4969.41 104.23.187.100h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-94298070/151/8676_ 7.4340020836840.00.8270.11 172.71.127.126h2comms.ivarse.com:443GET //test/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/145/8724_ 7.421809845190.01.0565.02 172.71.127.126h2comms.ivarse.com:443GET //web/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/141/8632_ 7.4138028212990.00.9463.14 104.23.195.86h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-94298070/139/8624_ 7.4340029089490.00.9565.91 172.71.127.126h2comms.ivarse.com:443GET //shop/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/147/8671_ 7.4340064814800.01.1167.53 172.71.127.126h2comms.ivarse.com:443GET //wp1/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/143/8456_ 7.4439061208270.00.9964.52 172.71.127.126h2comms.ivarse.com:443GET //site/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/136/8424_ 7.44390150272910.00.8866.13 172.71.127.126h2comms.ivarse.com:443GET //cms/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/138/8634_ 7.4340044058560.00.9472.78 172.71.127.126h2comms.ivarse.com:443GET //media/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/133/8728_ 7.4340142714190.00.8865.72 172.71.127.126h2comms.ivarse.com:443GET //wp2/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/148/8553_ 7.3539021961160.01.0765.97 162.158.235.72h2ivarse.com:443GET /application.properties HTTP/2.0 0-94298070/142/8676_ 7.4439024489070.02.2885.65 172.71.127.126h2comms.ivarse.com:443GET //sito/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/150/8639_ 7.4234014254080.01.7778.09 172.71.127.126h2comms.ivarse.com:443GET / HTTP/2.0 0-94298070/151/8692_ 7.3134013233730.01.1167.89 162.158.230.104http/1.1marshallmprojects.com:80GET /wpx.php HTTP/1.1 0-94298070/153/8760_ 7.443802275080.00.9063.45 172.69.179.139h2ivarse.com:443GET /config/secrets.yml HTTP/2.0 0-94298070/145/8666_ 7.4218044074360.01.09134.63 172.71.127.126h2comms.ivarse.com:443GET //blog/wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/150/8372_ 7.45230119438020.01.1879.05 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-94298070/159/8807_ 7.423304702710.00.8575.03 172.71.127.126h2comms.ivarse.com:443GET //xmlrpc.php?rsd HTTP/2.0 0-94298070/148/8667_ 7.423304887700.00.8371.74 172.71.127.126h2comms.ivarse.com:443GET //wp-includes/wlwmanifest.xml HTTP/2.0 0-94298070/135/8617_ 7.303908923370.00.9672.00 162.158.230.104http/1.1marshallmprojects.com:80GET /wp-content/plugins/zedd/1.php HTTP/1.1 0-94298070/147/8568R 7.43413545350610.01.2370.30 162.158.155.104http/1.1bayer-application.fi-careers.on 0-94298070/146/8479_ 7.4341095161120.00.9054.69 172.71.127.126h2comms.ivarse.com:443GET //2018/wp-includes/wlwmanifest.xml HTTP/2.0 1-94299020/283/5331_ 12.890038546290.00.3639.15 104.23.190.238h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-94299020/298/5367_ 13.030011184880.00.7230.72 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-94299020/294/5461_ 13.141014305530.00.5635.14 104.23.190.170h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-94299020/300/5317_ 13.071013228220.00.3739.03 172.69.74.248h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748906413.42385101318359375000 1-94299020/301/5416_ 13.16003454450.00.8832.12 162.158.158.227h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-94299020/292/5172_ 13.031232823470.00.3334.50 162.158.216.79http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-94299020/279/5317_ 13.0722103903140.00.2630.53 104.23.195.6h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748906413.42311906814575195312 1-94299020/286/5345_ 13.14101324030.00.8135.53 172.70.231.14h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 1-94299020/288/5352_ 13.13101129500.00.5136.59 172.70.111.41h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-94299020/288/5354_ 13.150019959070.00.4834.87 104.23.187.41h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-94299020/288/5423_ 13.12001552270.00.3731.21 172.70.243.85h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-94299020/282/5403_ 13.08137315160.00.7635.70 104.23.190.170h2bayer-application.fi-careers.onGET / HTTP/2.0 1-94299020/287/5398_ 12.96016509580.00.2036.03 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-94299020/306/5249_ 13.160034671950.00.3233.72 172.71.148.114h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-94299020/284/5376_ 13.151139788070.00.3137.56 172.71.148.90h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-94299020/287/5354_ 13.13107262650.00.5231.30 172.71.144.146h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-94299020/293/5383_ 13.110063945750.00.2934.04 172.71.164.92h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-94299020/290/5379_ 13.11001182310.00.4432.23 162.158.63.150h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-94299020/292/5210_ 13.091021559400.00.4042.42 104.23.187.179h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-94299020/288/5332_ 13.12101462060.00.2936.22 162.158.158.49h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-94299020/300/5380_ 13.160191568270.00.3432.31 172.70.115.149h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 1-94299020/293/5418_
Found on 2025-06-02 23:20 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb1920cedApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Sunday, 01-Jun-2025 21:59:47 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 3 days 15 hours 20 minutes 18 seconds Server load: 0.57 0.68 0.79 Total accesses: 368378 - Total Traffic: 3.0 GB - Total Duration: 163903150 CPU Usage: u154.57 s95.15 cu461.54 cs282.61 - .316% CPU load 1.17 requests/sec - 9.9 kB/second - 8.4 kB/request - 444.932 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02343576no14yes00250131 32343577no12yes10240111 Sum2026 10490242 _________________________....................................... ..........._____________________R___............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-623435760/2254/6687_ 131.1322110062780.017.7356.16 162.158.107.68h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-623435760/2001/6463_ 131.122899703290.018.0660.47 104.23.190.134h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 0-623435760/2219/6697_ 130.8922210444390.019.8357.63 172.70.210.88h2comms.ivarse.com:443GET //sito/wp-includes/wlwmanifest.xml HTTP/2.0 0-623435760/2202/6684_ 130.860231606820.016.8853.24 162.158.91.139http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2224/6639_ 131.062020478220.017.8954.52 172.71.124.16h2bayer-application.fi-careers.onGET / HTTP/2.0 0-623435760/2242/6732_ 130.99209497090.015.7850.96 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2227/6628_ 131.1601927836650.018.2447.70 162.158.107.19h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-623435760/2271/6623_ 131.1101928721390.016.7050.42 162.158.162.118h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-623435760/2221/6639_ 131.141164426270.017.2952.43 172.70.110.169h2bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/2.0 0-623435760/2249/6453_ 131.122058155260.018.7249.60 162.158.159.234h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 0-623435760/2202/6426_ 131.0301715513149936300.020.2051.91 172.69.86.214http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 0-623435760/2277/6758_ 131.14141599970.019.8158.44 172.70.208.54h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-623435760/2222/6707_ 130.991042329990.016.9652.09 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2230/6633_ 131.08101372980.017.8351.21 162.158.155.209h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-623435760/2232/6672_ 131.030024142660.015.8151.14 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2222/6653_ 131.110113905500.027.9162.93 104.23.190.211h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 0-623435760/2240/6666_ 131.0911912862960.016.2849.61 172.70.188.8h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-623435760/2265/6751_ 131.07101910680.015.8749.28 162.158.154.186h2bayer-application.fi-careers.onGET / HTTP/2.0 0-623435760/2267/6645_ 131.110043722320.019.74118.31 104.23.190.225h2bayer-application.fi-careers.onGET /.env HTTP/2.0 0-623435760/2151/6357_ 131.10117102499790.016.9361.76 172.70.110.141h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-623435760/2274/6749_ 130.99204257220.018.2854.66 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2282/6666_ 130.971191476760.016.4856.55 162.158.91.139http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2167/6608_ 130.970218528330.018.9556.72 162.158.91.140http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2211/6582_ 131.030034470770.017.8155.98 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2196/6459_ 131.1412594781930.016.5241.02 172.70.230.81h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 1-3-0/0/4834. 0.0088263138492450.00.0031.75 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/2.0 1-3-0/0/4856. 0.00882635411147610.00.0024.32 172.70.58.152h2drumreed.co.uk:443GET /about.php7 HTTP/2.0 1-3-0/0/4958. 0.0088263014216820.00.0029.23 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/dropdown.php HTTP/2.0 1-3-0/0/4803. 0.0088263013169850.00.0031.67 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoplugins/db.php HTTP/2.0 1-3-0/0/4907. 0.008826303380490.00.0026.55 172.70.58.152h2drumreed.co.uk:443GET /ws.php7 HTTP/2.0 1-3-0/0/4665. 0.0088263032740940.00.0027.28 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-3-0/0/4834. 0.00882630103826250.00.0025.22 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-3-0/0/4854. 0.008826321268550.00.0029.71 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/network/xmrlpc.php HTTP/2.0 1-3-0/0/4847. 0.008826301064810.00.0029.56 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoo/wsoyanz.php HTTP/2.0 1-3-0/0/4852. 0.0088263019899530.00.0028.97 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/ajax-actions.php HTTP/2.0 1-3-0/0/4906. 0.008826301481880.00.0024.49 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/linkpreview/db.php HTTP/2.0 1-3-0/0/4905. 0.008826307253020.00.0028.99 172.70.58.152h2drumreed.co.uk:443GET /.well-known/pki-validation/xmrlpc.php HTTP/2.0 1-3-0/0/4899. 0.008826306409970.00.0029.64 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/maint/maint/ajax-actions.php HTTP/2.0 1-3-0/0/4729. 0.0088263234586560.00.0027.54 172.70.58.152h2drumreed.co.uk:443GET /alfanew.php7 HTTP/2.0 1-3-0/0/4877. 0.0088263039705420.00.0032.20 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoplugins/mar.php HTTP/2.0 1-3-0/0/4849. 0.008826327171110.00.0026.39 172.70.58.152h2drumreed.co.uk:443GET /alfa-rex2.php7 HTTP/2.0 1-3-0/0/4873. 0.0088263523477863845890.00.0028.37 172.69.95.164http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-3-0/0/4869. 0.008826331109190.00.0027.30 172.68.35.92http/1.1perfectbowng-demo.ivarse.world:GET /.well-known/acme-challenge/SgukIe-MwA0H5nHR-3bKiC86OD2URbk 1-3-0/0/4705. 0.008826341121486600.00.0035.14 172.70.58.152h2drumreed.co.uk:443GET /wp-content/themes/pridmag/db.php HTTP/2.0 1-3-0/0/4831. 0.008826301387930.00.0030.09 172.70.58.152h2drumreed.co.uk:443GET /ebs.php7 HTTP/2.0 1-3-0/0/4864. 0.008826301501830.00.0025.53 172.70.58.152h2drumreed.co.uk:443GET /adminfuns.php7 HTTP/2.0 1-3-0/0/4915. 0.008826305002400.00.0030.93 172.70.58.152h2drumreed.co.uk:443GET /wp-content/themes/seotheme/db.php HTTP/2.0 1-3<
Found on 2025-06-01 21:59 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f1b55e54fApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Sunday, 01-Jun-2025 21:59:43 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 3 days 15 hours 20 minutes 14 seconds Server load: 0.57 0.68 0.79 Total accesses: 368361 - Total Traffic: 3.0 GB - Total Duration: 163903150 CPU Usage: u154.51 s95.13 cu461.54 cs282.61 - .316% CPU load 1.17 requests/sec - 9.9 kB/second - 8.4 kB/request - 444.953 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02343576no0yes1024000 32343577no0yes1024000 Sum200 2048000 ______R__________________....................................... ...........________________________R............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process <SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-623435760/2253/6686_ 130.9582110062780.017.7356.16 162.158.91.139http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2000/6462_ 131.0414899703290.018.0660.47 162.158.186.198http/1.1crypto-ft.com:80GET /wp-includes/js/tinymce/skins/lightgray/img/index.php HTTP/ 0-623435760/2219/6697_ 130.8932210444390.019.8357.63 172.70.210.88h2comms.ivarse.com:443GET //sito/wp-includes/wlwmanifest.xml HTTP/2.0 0-623435760/2202/6684_ 130.8643231606820.016.8853.24 162.158.91.139http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2224/6639_ 131.062020478220.017.8954.52 172.71.124.16h2bayer-application.fi-careers.onGET / HTTP/2.0 0-623435760/2242/6732_ 130.99209497090.015.7850.96 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2225/6626R 131.00791927836650.018.2347.70 104.23.187.179h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-623435760/2270/6622_ 130.98731928721390.016.7050.42 162.158.91.140http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2220/6638_ 131.031164426270.017.2952.43 172.68.245.5http/1.1marshallmprojects.com:80POST / HTTP/1.1 0-623435760/2248/6452_ 131.053058155260.018.7249.60 172.69.74.233h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748815179.92911005020141601562 0-623435760/2202/6426_ 131.03461715513149936300.020.2051.91 172.69.86.214http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 0-623435760/2276/6757_ 131.09141599970.019.8158.44 172.70.231.66h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-623435760/2222/6707_ 130.991042329990.016.9652.09 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2230/6633_ 131.08101372980.017.8351.21 162.158.155.209h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-623435760/2232/6672_ 131.0348024142660.015.8151.14 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2221/6652_ 131.0173113905500.027.9162.93 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2240/6666_ 131.0911912862960.016.2849.61 172.70.188.8h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-623435760/2265/6751_ 131.07201910680.015.8749.28 162.158.154.186h2bayer-application.fi-careers.onGET / HTTP/2.0 0-623435760/2266/6644_ 130.9943043722320.019.74118.31 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2151/6357_ 131.10017102499790.016.9361.76 172.70.110.141h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-623435760/2274/6749_ 130.99904257220.018.2854.66 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2282/6666_ 130.971191476760.016.4856.55 162.158.91.139http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2167/6608_ 130.970218528330.018.9556.72 162.158.91.140http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-623435760/2211/6582_ 131.0378034470770.017.8155.98 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-623435760/2195/6458_ 131.0712594781930.016.5241.02 108.162.227.59h2bayer-application.fi-careers.onGET / HTTP/2.0 1-3-0/0/4834. 0.0088259138492450.00.0031.75 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/2.0 1-3-0/0/4856. 0.00882595411147610.00.0024.32 172.70.58.152h2drumreed.co.uk:443GET /about.php7 HTTP/2.0 1-3-0/0/4958. 0.0088259014216820.00.0029.23 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/dropdown.php HTTP/2.0 1-3-0/0/4803. 0.0088259013169850.00.0031.67 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoplugins/db.php HTTP/2.0 1-3-0/0/4907. 0.008825903380490.00.0026.55 172.70.58.152h2drumreed.co.uk:443GET /ws.php7 HTTP/2.0 1-3-0/0/4665. 0.0088259032740940.00.0027.28 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-3-0/0/4834. 0.00882590103826250.00.0025.22 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-3-0/0/4854. 0.008825921268550.00.0029.71 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/network/xmrlpc.php HTTP/2.0 1-3-0/0/4847. 0.008825901064810.00.0029.56 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoo/wsoyanz.php HTTP/2.0 1-3-0/0/4852. 0.0088259019899530.00.0028.97 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/ajax-actions.php HTTP/2.0 1-3-0/0/4906. 0.008825901481880.00.0024.49 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/linkpreview/db.php HTTP/2.0 1-3-0/0/4905. 0.008825907253020.00.0028.99 172.70.58.152h2drumreed.co.uk:443GET /.well-known/pki-validation/xmrlpc.php HTTP/2.0 1-3-0/0/4899. 0.008825906409970.00.0029.64 172.70.58.152h2drumreed.co.uk:443GET /wp-admin/maint/maint/ajax-actions.php HTTP/2.0 1-3-0/0/4729. 0.0088259234586560.00.0027.54 172.70.58.152h2drumreed.co.uk:443GET /alfanew.php7 HTTP/2.0 1-3-0/0/4877. 0.0088259039705420.00.0032.20 172.70.58.152h2drumreed.co.uk:443GET /wp-content/plugins/seoplugins/mar.php HTTP/2.0 1-3-0/0/4849. 0.008825927171110.00.0026.39 172.70.58.152h2drumreed.co.uk:443GET /alfa-rex2.php7 HTTP/2.0 1-3-0/0/4873. 0.0088259523477863845890.00.0028.37 172.69.95.164http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-3-0/0/4869. 0.008825931109190.00.0027.30 172.68.35.92http/1.1perfectbowng-demo.ivarse.world:GET /.well-known/acme-challenge/SgukIe-MwA0H5nHR-3bKiC86OD2URbk 1-3-0/0/4705. 0.008825941121486600.00.0035.14 172.70.58.152h2drumreed.co.uk:443GET /wp-content/themes/pridmag/db.php HTTP/2.0 1-3-0/0/4831. 0.008825901387930.00.0030.09 172.70.58.152h2drumreed.co.uk:443GET /ebs.php7 HTTP/2.0 1-3-0/0/4864. 0.008825901501830.00.0025.53 172.70.58.152h2drumreed.co.uk:443GET /adminfuns.php7 HTTP/2.0 1-3-0/0/4915. 0.008825905002400.00.0030.93 172.70.58.152h2drumreed.co.uk:443GET /wp-content/themes/seotheme/db.php HTTP/2.0 1-3
Found on 2025-06-01 21:59 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f891921e2Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 30-May-2025 17:43:40 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 1 day 11 hours 4 minutes 12 seconds Server load: 1.87 2.42 2.29 Total accesses: 123850 - Total Traffic: 1008.2 MB - Total Duration: 44407397 CPU Usage: u120.84 s75.97 cu116.73 cs74.64 - .307% CPU load .981 requests/sec - 8.2 kB/second - 8.3 kB/request - 358.558 ms/request 3 requests currently being processed, 0 workers gracefully restarting, 47 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03707406no9yes2023080 13707407no6yes1024050 Sum2015 30470130 __R_____________________W____R____________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-137074060/1005/1666_ 76.951555350760.015.7121.73 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-sec/ab.php HTTP/1.1 0-137074060/991/1670_ 77.0600462780.013.2118.04 162.158.155.162h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-137074060/972/1676R 77.001668417270.014.6521.37 104.23.187.179h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-137074060/1005/1686_ 76.941490444470.015.4720.43 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-conflg.php HTTP/1.1 0-137074060/999/1673_ 76.9315566187290.015.0518.61 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wordpresss3cll/includes.php HTTP/1.1 0-137074060/988/1670_ 77.0217378213240.014.5519.36 104.23.187.101h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-137074060/1002/1603_ 76.920026598780.011.9012.83 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-137074060/1016/1705_ 77.070581464380.014.1418.29 104.23.187.41h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-137074060/945/1616_ 77.02154762628430.014.4818.71 104.23.190.174h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-137074060/1010/1679_ 77.01157525793700.012.5018.29 104.23.195.6h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074060/1006/1690_ 77.011563386950.011.0315.01 104.23.187.237h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-137074060/1004/1702_ 77.011667439430.015.1422.32 104.23.187.237h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-137074060/995/1686_ 76.95156721746070.014.2919.34 104.23.187.101h2bayer-application.fi-careers.on[0/0] init 0-137074060/998/1652_ 77.080610333980.012.9617.30 104.23.187.101h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 0-137074060/994/1674_ 76.92065221790670.014.9519.58 162.158.158.42h2bayer-application.fi-careers.on[0/0] init 0-137074060/992/1665_ 76.970525350910.015.2521.27 162.158.159.94h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074060/972/1681_ 76.930718381420.012.3618.27 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1 0-137074060/1015/1712_ 77.070517455880.012.9617.88 162.158.158.42h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 0-137074060/938/1619_ 76.95150325342860.040.7345.19 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1 0-137074060/1013/1655_ 77.07059624112880.014.4125.03 104.23.190.214h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-137074060/1001/1651_ 77.011585387850.015.5120.57 104.23.187.237h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-137074060/972/1646_ 76.951658364060.015.5420.72 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-help/mini.php HTTP/1.1 0-137074060/1009/1674_ 76.9605131870620.016.0421.57 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1 0-137074060/986/1640_ 77.08052422597270.014.2420.79 172.69.74.233h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074061/920/1606W 67.8527820256960.07.7712.71 172.69.95.212http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-137074070/1500/2452_ 109.68059637937590.08.1914.29 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/seoo/wsoyanz.php HTTP/2.0 1-137074070/1591/2512_ 109.70206094870.07.0812.92 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/seoplugins/ HTTP/2.0 1-137074070/1590/2557_ 109.97007216320.07.4314.56 104.23.190.185h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-137074070/1535/2485_ 109.71250912600460.07.0211.47 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/seox/ HTTP/2.0 1-137074070/1586/2541R 109.664557811970.06.2913.09 172.71.241.121h2staplefordwingstravels.co.uk:44[327/326] schedule: stream 653, GET /wp-content/plugins/yyobang 1-137074070/1591/2531_ 109.9010542540.07.1912.41 162.158.159.214h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-137074070/1531/2514_ 109.95056941579270.06.9212.38 162.158.154.191h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-137074070/1573/2494_ 109.9211733820.08.7414.09 104.23.190.197h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-137074070/1591/2531_ 109.8504537180.07.3013.88 104.23.195.86h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748627017.00938391685485839843 1-137074070/1559/2504_ 109.97053411433850.07.0914.03 162.158.155.55h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 1-137074070/1603/2553_ 109.8620588060.05.9710.59 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/x/index.php HTTP/2.0 1-137074070/1589/2544_ 109.76316663770.07.3812.94 162.158.158.49h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-137074070/1573/2528_ 109.88212561660.08.4714.20 172.69.74.215h2bayer-application.fi-careers.onPOST /wp-cron.php HTTP/2.0 1-137074070/1564/2489_ 109.95005094350.07.6214.36 104.23.190.108h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-137074070/1606/2541_ 109.741643616700.07.8714.54 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wordpresss3cll/includes.php HTTP/2.0 1-137074070/1610/2537_ 109.80101346430.06.3610.79 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-137074070/1597/2542_ 109.8721591900.07.6613.88 172.70.230.113h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-137074070/1573/2491_ 109.8620624090.06.0110.16 172.70.230.85h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-137074070/1598/2559_ 109.802536564180.08.7216.26 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wp-help/index.php HTTP/2.0 1-137074070/1601/2530_ 109.8300648700.06.3010.80 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wp-sec/ab.php HTTP/2.0 1-137074070/1589/2546
Found on 2025-05-30 17:43 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f22628b57Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 30-May-2025 17:43:40 UTC Restart Time: Thursday, 29-May-2025 06:39:28 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 1 day 11 hours 4 minutes 11 seconds Server load: 1.86 2.43 2.29 Total accesses: 123840 - Total Traffic: 1008.2 MB - Total Duration: 44406674 CPU Usage: u120.8 s75.97 cu116.73 cs74.64 - .307% CPU load .981 requests/sec - 8.2 kB/second - 8.3 kB/request - 358.581 ms/request 4 requests currently being processed, 0 workers gracefully restarting, 46 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03707406no9yes1024080 13707407no6yes3022050 Sum2015 40460130 ________________________W______R________________RW.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-137074060/1005/1666_ 76.950555350760.015.7121.73 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-sec/ab.php HTTP/1.1 0-137074060/991/1670_ 77.0600462780.013.2118.04 162.158.155.162h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-137074060/972/1676_ 77.001668417270.014.6521.37 104.23.187.237h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-137074060/1005/1686_ 76.940490444470.015.4720.43 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-conflg.php HTTP/1.1 0-137074060/999/1673_ 76.9305566187290.015.0518.61 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wordpresss3cll/includes.php HTTP/1.1 0-137074060/988/1670_ 77.0207378213240.014.5519.36 104.23.187.101h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-137074060/1002/1603_ 76.922026598780.011.9012.83 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-137074060/1015/1704_ 76.922581464380.014.1418.29 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1 0-137074060/945/1616_ 77.02054762628430.014.4818.71 104.23.190.174h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-137074060/1010/1679_ 77.01057525793700.012.5018.29 104.23.195.6h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074060/1006/1690_ 77.010563386950.011.0315.01 104.23.187.237h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-137074060/1004/1702_ 77.010667439430.015.1422.32 104.23.187.237h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-137074060/995/1686_ 76.95056721746070.014.2919.34 104.23.187.101h2bayer-application.fi-careers.on[0/0] init 0-137074060/997/1651_ 76.991610333980.012.9617.30 104.23.187.41h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074060/994/1674_ 76.92565221790670.014.9519.58 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/seoo/wsoyanz1.php HTTP/1.1 0-137074060/992/1665_ 76.972525350910.015.2521.27 162.158.159.94h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074060/972/1681_ 76.931718381420.012.3618.27 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1 0-137074060/1014/1711_ 76.982517455880.012.9617.88 104.23.190.221h2bayer-application.fi-careers.onGET / HTTP/2.0 0-137074060/938/1619_ 76.95050325342860.040.7345.19 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1 0-137074060/1012/1654_ 76.96559624112880.014.4125.03 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp.php HTTP/1.1 0-137074060/1001/1651_ 77.010585387850.015.5120.57 104.23.187.237h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-137074060/972/1646_ 76.950658364060.015.5420.72 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-help/mini.php HTTP/1.1 0-137074060/1009/1674_ 76.9605131870620.016.0421.57 172.69.194.115http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.1 0-137074060/985/1639_ 76.99152422597270.014.2320.78 104.23.190.64h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-137074061/920/1606W 67.8527810256960.07.7712.71 172.69.95.212http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-137074070/1500/2452_ 109.68259637937590.08.1914.29 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/seoo/wsoyanz.php HTTP/2.0 1-137074070/1591/2512_ 109.70106094870.07.0812.92 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/seoplugins/ HTTP/2.0 1-137074070/1589/2556_ 109.77307216320.07.4314.56 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wp-conflg.php HTTP/2.0 1-137074070/1535/2485_ 109.71150912600460.07.0211.47 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/seox/ HTTP/2.0 1-137074070/1586/2541_ 109.663557811970.06.2913.09 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/revslider/includes/external/page/ HTTP/ 1-137074070/1591/2531_ 109.9010542540.07.1912.41 162.158.159.214h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-137074070/1530/2513R 109.83656941579270.06.9112.38 162.158.154.191h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-137074070/1573/2494_ 109.9201733820.08.7414.09 104.23.190.197h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-137074070/1591/2531_ 109.8524537180.07.3013.88 104.23.195.86h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748627017.00938391685485839843 1-137074070/1558/2503_ 109.85253411433850.07.0814.03 172.69.194.114http/1.1staplefordwingstravels.co.uk:80GET /wp-content/plugins/x/index.php HTTP/1.1 1-137074070/1603/2553_ 109.8620588060.05.9710.59 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/x/index.php HTTP/2.0 1-137074070/1589/2544_ 109.76216663770.07.3812.94 162.158.158.49h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-137074070/1573/2528_ 109.88112561660.08.4714.20 172.69.74.215h2bayer-application.fi-careers.onPOST /wp-cron.php HTTP/2.0 1-137074070/1564/2489_ 109.95005094350.07.6214.36 104.23.190.108h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-137074070/1606/2541_ 109.740643616700.07.8714.54 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wordpresss3cll/includes.php HTTP/2.0 1-137074070/1610/2537_ 109.80101346430.06.3610.79 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-137074070/1597/2542_ 109.8711591900.07.6613.88 172.70.230.113h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-137074070/1573/2491_ 109.8610624090.06.0110.16 172.70.230.85h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-137074070/1598/2559_ 109.801536564180.08.7216.26 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wp-help/index.php HTTP/2.0 1-137074070/1601/2530_ 109.8300648700.06.3010.80 172.71.241.121h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/wp-sec/ab.php HTTP/2.0
Found on 2025-05-30 17:43 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f752e11a5Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Wednesday, 28-May-2025 15:23:59 UTC Restart Time: Saturday, 24-May-2025 06:33:53 UTC Parent Server Config. Generation: 15 Parent Server MPM Generation: 14 Server uptime: 4 days 8 hours 50 minutes 5 seconds Server load: 2.14 2.89 3.24 Total accesses: 281395 - Total Traffic: 1.9 GB - Total Duration: 214558821 CPU Usage: u121.12 s98.53 cu485.3 cs309.74 - .269% CPU load .746 requests/sec - 5.3 kB/second - 7.2 kB/request - 762.483 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0744322no1yes2023000 2685169no6yes0025051 3685170no3yes0025021 Sum3010 2073072 ____________W___________R.........................______________ ____________________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-147443220/1074/3797_ 88.171355394910.07.2919.80 172.71.148.74h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-147443220/1088/3858_ 88.054036156790.011.3723.01 104.23.195.50h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-147443220/1068/3882_ 87.85356898190.09.0321.57 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1047/3830_ 87.882615435930.07.5921.86 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1058/3881_ 87.705701711310.07.7255.44 162.158.179.221h2ivarse-marketing.digital:443GET /pages/console/js/common.js HTTP/2.0 0-147443220/1118/3942_ 87.632043590590.010.3624.37 172.71.214.15h2ivarse-marketing.digital:443GET /static/picture/gz.png HTTP/2.0 0-147443220/1149/3946_ 88.042239285160.011.6026.13 151.115.63.67http/1.1 0-147443220/1055/3854_ 88.035812623970.09.9225.92 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1088/3939_ 88.12402036510.011.4624.55 172.69.74.248h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748445834.36894702911376953125 0-147443220/1054/3870_ 88.0947029603820.09.0723.22 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1075/3917_ 88.13405626290.08.8221.17 172.68.192.172h2bayer-application.fi-careers.onGET / HTTP/2.0 0-147443220/1106/3863_ 88.15201849170.012.3525.98 172.68.195.220h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-147443221/1067/3862W 87.6966603832870.09.7321.68 172.70.108.134http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 0-147443220/1083/3821_ 87.844211856970.013.5525.46 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1074/3804_ 88.144040188680.09.2024.22 172.70.240.128h2bayer-application.fi-careers.onGET / HTTP/2.0 0-147443220/1100/3889_ 88.08007884690.09.4142.19 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1128/3912_ 88.081034022590.08.6526.85 172.70.131.107h2futurefocusfarm.com:443GET /sitemap/feed HTTP/2.0 0-147443220/1113/3926_ 88.15301864360.09.6732.53 172.69.150.183h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-147443220/1061/3912_ 87.96302395190.08.5828.44 172.70.207.178h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-147443220/1067/3888_ 88.17101793550.07.9921.21 172.70.240.143h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-147443220/1095/3859_ 88.143146408050.09.9020.75 172.70.240.34h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-147443220/1100/3846_ 87.844210469760250.010.9722.99 172.71.182.227http/1.1ivarse.com:80GET / HTTP/1.1 0-147443220/1083/3846_ 87.595709527130.011.0025.80 162.158.178.215h2ivarse-marketing.digital:443[0/0] init 0-147443220/1072/4083_ 88.16204206080.07.8918.16 162.158.95.58h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-147443220/1077/3936R 87.655801708500.010.8525.70 162.158.111.205h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-12-0/0/1191. 0.00111764802302620.00.002.90 172.71.164.149http/1.1crypto-ft.investments:80GET /old/directory.tar HTTP/1.1 1-12-0/0/1176. 0.00111764758820010.00.005.92 172.71.250.114http/1.1crypto-ft.investments:80GET /www.gz HTTP/1.1 1-12-0/0/1095. 0.0011176452155462850.00.002.77 172.71.164.149http/1.1 1-12-0/0/1193. 0.00111764898235670.00.004.93 172.70.247.191http/1.1crypto-ft.investments:80GET /backup/public_html.gz HTTP/1.1 1-12-0/0/1126. 0.001117649324263150.00.0026.85 172.70.247.191http/1.1 1-12-0/0/1208. 0.00111764166232200.00.003.26 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-includes/html-api/ HTTP/1.1 1-12-0/0/1181. 0.001117642223870.00.003.50 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1097. 0.00111764188116070.00.004.21 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1175. 0.0011176453215240.00.004.11 162.158.38.237http/1.1royaleliteservice.com:80GET /admin/function.php HTTP/1.1 1-12-0/0/1167. 0.00111764553835260479800.00.003.01 172.69.179.96http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-12-0/0/1151. 0.00111764394922470.00.003.86 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-activate.php HTTP/1.1 1-12-0/0/1170. 0.001117641270080.00.003.87 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1182. 0.0011176454556150.00.003.92 162.158.38.237http/1.1royaleliteservice.com:80GET //wp-content/themes/twentyseventeen/page/index.php HTTP/1.1 1-12-0/0/1177. 0.001117641171565090.00.003.85 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1 1-12-0/0/1174. 0.001117641300330.00.006.02 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-content/uploads/plugins.php HTTP/1.1 1-12-0/0/1146. 0.0011176483886450.00.003.72 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-config-sample.php HTTP/1.1 1-12-0/0/1159. 0.001117643320770.00.004.79 104.23.195.93http/1.1royaleliteservice.com:80POST /wp-cron.php?doing_wp_cron=1748330076.61201691627502441406 1-12-0/0/1166. 0.0011176454266520.00.003.52 162.158.38.237http/1.1royaleliteservice.com:80GET /dropdown.php HTTP/1.1 1-12-0/0/1201. 0.001117640276060.00.003.33 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1132. 0.00111764121380250.00.005.12 162.158.38.237http/1.1royaleliteservice.com:80GET /conf_upload.php HTTP/1.1 1-12-0/0/1168. 0.00111764141191200.00.003.20 162.158.38.237http/1.1royaleliteservice.com:80GET /abouts.php?p= HTTP/1.1 1-12-0/0/1210. 0.00111764191240460.00.003.34 162.158.3
Found on 2025-05-28 15:23 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fe9e6ddc6Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Wednesday, 28-May-2025 15:24:00 UTC Restart Time: Saturday, 24-May-2025 06:33:53 UTC Parent Server Config. Generation: 15 Parent Server MPM Generation: 14 Server uptime: 4 days 8 hours 50 minutes 6 seconds Server load: 2.14 2.89 3.24 Total accesses: 281396 - Total Traffic: 1.9 GB - Total Duration: 214558821 CPU Usage: u121.13 s98.54 cu485.3 cs309.74 - .269% CPU load .746 requests/sec - 5.3 kB/second - 7.2 kB/request - 762.48 ms/request 3 requests currently being processed, 0 workers gracefully restarting, 72 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0744322no11yes1024091 2685169no6yes0025051 3685170no6yes2023060 Sum3023 30720202 ____________W____________.........................______________ _____________________RR_____________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-147443220/1074/3797_ 88.171355394910.07.2919.80 172.71.148.74h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-147443220/1088/3858_ 88.055036156790.011.3723.01 104.23.195.50h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-147443220/1068/3882_ 87.85456898190.09.0321.57 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1047/3830_ 87.882615435930.07.5921.86 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1058/3881_ 87.70001711310.07.7255.44 162.158.179.221h2ivarse-marketing.digital:443GET /pages/console/js/common.js HTTP/2.0 0-147443220/1118/3942_ 87.632043590590.010.3624.37 172.71.214.15h2ivarse-marketing.digital:443GET /static/picture/gz.png HTTP/2.0 0-147443220/1149/3946_ 88.042339285160.011.6026.13 151.115.63.67http/1.1 0-147443220/1055/3854_ 88.03012623970.09.9225.92 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1088/3939_ 88.12502036510.011.4624.55 172.69.74.248h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1748445834.36894702911376953125 0-147443220/1054/3870_ 88.0948029603820.09.0723.22 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1075/3917_ 88.13405626290.08.8221.17 172.68.192.172h2bayer-application.fi-careers.onGET / HTTP/2.0 0-147443220/1106/3863_ 88.15301849170.012.3525.98 172.68.195.220h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-147443221/1067/3862W 87.6966603832870.09.7321.68 172.70.108.134http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 0-147443220/1083/3821_ 87.844311856970.013.5525.46 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1074/3804_ 88.144040188680.09.2024.22 172.70.240.128h2bayer-application.fi-careers.onGET / HTTP/2.0 0-147443220/1100/3889_ 88.08107884690.09.4142.19 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-147443220/1128/3912_ 88.081034022590.08.6526.85 172.70.131.107h2futurefocusfarm.com:443GET /sitemap/feed HTTP/2.0 0-147443220/1113/3926_ 88.15301864360.09.6732.53 172.69.150.183h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-147443220/1061/3912_ 87.96302395190.08.5828.44 172.70.207.178h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-147443220/1067/3888_ 88.17101793550.07.9921.21 172.70.240.143h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-147443220/1095/3859_ 88.144146408050.09.9020.75 172.70.240.34h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-147443220/1100/3846_ 87.844310469760250.010.9722.99 172.71.182.227http/1.1ivarse.com:80GET / HTTP/1.1 0-147443220/1083/3846_ 87.59009527130.011.0025.80 162.158.178.215h2ivarse-marketing.digital:443[0/0] init 0-147443220/1072/4083_ 88.16204206080.07.8918.16 162.158.95.58h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-147443220/1078/3937_ 88.19001708500.010.8525.71 162.158.111.205h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-12-0/0/1191. 0.00111765802302620.00.002.90 172.71.164.149http/1.1crypto-ft.investments:80GET /old/directory.tar HTTP/1.1 1-12-0/0/1176. 0.00111765758820010.00.005.92 172.71.250.114http/1.1crypto-ft.investments:80GET /www.gz HTTP/1.1 1-12-0/0/1095. 0.0011176552155462850.00.002.77 172.71.164.149http/1.1 1-12-0/0/1193. 0.00111765898235670.00.004.93 172.70.247.191http/1.1crypto-ft.investments:80GET /backup/public_html.gz HTTP/1.1 1-12-0/0/1126. 0.001117659324263150.00.0026.85 172.70.247.191http/1.1 1-12-0/0/1208. 0.00111765166232200.00.003.26 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-includes/html-api/ HTTP/1.1 1-12-0/0/1181. 0.001117652223870.00.003.50 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1097. 0.00111765188116070.00.004.21 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1175. 0.0011176553215240.00.004.11 162.158.38.237http/1.1royaleliteservice.com:80GET /admin/function.php HTTP/1.1 1-12-0/0/1167. 0.00111765553835260479800.00.003.01 172.69.179.96http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-12-0/0/1151. 0.00111765394922470.00.003.86 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-activate.php HTTP/1.1 1-12-0/0/1170. 0.001117651270080.00.003.87 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1182. 0.0011176554556150.00.003.92 162.158.38.237http/1.1royaleliteservice.com:80GET //wp-content/themes/twentyseventeen/page/index.php HTTP/1.1 1-12-0/0/1177. 0.001117651171565090.00.003.85 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-admin/includes/xmrlpc.php?p= HTTP/1.1 1-12-0/0/1174. 0.001117651300330.00.006.02 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-content/uploads/plugins.php HTTP/1.1 1-12-0/0/1146. 0.0011176583886450.00.003.72 162.158.38.237http/1.1royaleliteservice.com:80GET /wp-config-sample.php HTTP/1.1 1-12-0/0/1159. 0.001117653320770.00.004.79 104.23.195.93http/1.1royaleliteservice.com:80POST /wp-cron.php?doing_wp_cron=1748330076.61201691627502441406 1-12-0/0/1166. 0.0011176554266520.00.003.52 162.158.38.237http/1.1royaleliteservice.com:80GET /dropdown.php HTTP/1.1 1-12-0/0/1201. 0.001117650276060.00.003.33 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-12-0/0/1132. 0.00111765121380250.00.005.12 162.158.38.237http/1.1royaleliteservice.com:80GET /conf_upload.php HTTP/1.1 1-12-0/0/1168. 0.00111765141191200.00.003.20 162.158.38.237http/1.1royaleliteservice.com:80GET /abouts.php?p= HTTP/1.1 1-12-0/0/1210. 0.00111765191240460.00.003.34 162.158.38.237http/1.1
Found on 2025-05-28 15:23 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fcbc8793dApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 26-May-2025 17:32:17 UTC Restart Time: Saturday, 24-May-2025 06:33:53 UTC Parent Server Config. Generation: 12 Parent Server MPM Generation: 11 Server uptime: 2 days 10 hours 58 minutes 24 seconds Server load: 3.58 3.59 3.35 Total accesses: 145149 - Total Traffic: 966.4 MB - Total Duration: 168702564 CPU Usage: u43.93 s30.17 cu279.66 cs177.18 - .25% CPU load .684 requests/sec - 4772 B/second - 6.8 kB/request - 1162.27 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03767685no14yes20230111 23767686no9yes0025081 Sum2023 20480192 ____R__________R_________.........................______________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1137676850/239/1757_ 23.170054168560.04.639.19 172.71.144.92h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1137676850/237/1801_ 22.870303462880.04.087.97 162.158.41.132http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-1137676850/241/1819_ 23.180253485190.03.488.04 172.71.172.157h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-1137676850/229/1827_ 23.132114157380.04.8910.22 172.70.247.137h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1137676850/244/1869R 23.1125523280.04.5513.12 172.71.164.55http/1.1bayer-application.fi-careers.on 0-1137676850/227/1840_ 23.170037471200.04.9310.28 104.23.195.50h2crypto-ft.com:443POST /wp-cron.php?doing_wp_cron=1748280736.53965902328491210937 0-1137676850/230/1824_ 23.1410496680.04.2710.84 172.70.247.98h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1137676850/236/1816_ 23.16101374530.04.6810.72 172.70.240.4h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1137676850/234/1843_ 22.9710768340.03.699.02 172.70.240.4h2bayer-application.fi-careers.on[0/0] init 0-1137676850/239/1809_ 23.17014771740.03.639.98 162.158.91.100h2crypto-ft.com:443POST /wp-login.php HTTP/2.0 0-1137676850/228/1830_ 22.9421513080.03.918.89 78.153.140.151http/1.1 0-1137676850/217/1794_ 23.0710497020.05.5110.50 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/223/1794_ 23.11202615410.03.458.56 172.70.247.87h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1137676850/210/1789_ 23.0211544720.03.868.77 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/242/1760_ 22.992138940290.05.8310.37 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/219/1804R 23.104276509280.06.1116.44 172.71.164.59h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 0-1137676850/202/1827_ 23.070032052740.04.2814.97 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/245/1827_ 22.872247549340.04.1918.34 162.158.41.133http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-1137676850/234/1847_ 23.18001161920.04.8715.61 172.70.247.98h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1137676850/239/1854_ 22.9801532680.03.188.54 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/241/1771_ 23.122126054530.03.407.31 172.71.250.146h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1137676850/229/1790_ 23.07208476310.04.458.95 78.153.140.151http/1.1comms.ivarse.com:80GET /api/.env HTTP/1.1 0-1137676850/227/1812_ 23.06208295450.04.8010.23 78.153.140.151http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 0-1137676850/228/1801_ 23.05032936290.02.326.78 162.158.111.86h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 0-1137676850/226/1838_ 23.0518482770.03.9410.85 104.23.166.91h2comms.ivarse.com:443GET / HTTP/2.0 1-9-0/0/999. 0.0032013153281840.00.002.08 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80POST /roundcube/?_task=mail&_action=refresh HTTP/1.1 1-9-0/0/996. 0.00320139808960.00.001.87 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/927. 0.00320130155452050.00.002.34 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/1011. 0.00320130208860.00.004.09 143.110.145.134http/1.1server1.jointdivisoncxvii.me:80\x16\x03\x01 1-9-0/0/952. 0.0032013124260740.00.0026.01 162.158.244.137h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-9-0/0/1014. 0.0032013629237066226500.00.002.36 172.69.95.195http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-9-0/0/1000. 0.00320130213540.00.002.41 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/923. 0.0032013088099710.00.003.25 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/999. 0.00320130209170.00.003.23 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/1001. 0.00320132165087380.00.002.10 172.69.179.16h2n-cloud.ivarse.com:443GET /ocs/v2.php/core/navigation/apps?absolute=true&format=json 1-9-0/0/967. 0.003201304892430.00.003.37 172.71.182.89h2ivarse.com:443GET / HTTP/2.0 1-9-0/0/995. 0.00320130265520.00.003.09 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/1003. 0.003201335550170.00.002.90 146.190.134.221http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-9-0/0/990. 0.00320132991544560.00.003.12 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80GET /roundcube/?_task=mail&_action=list&_refresh=1&_layout=wide 1-9-0/0/997. 0.0032013865296910.00.005.14 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80POST /roundcube/?_task=mail&_unlock=loading1748242709501&_frame 1-9-0/0/980. 0.003201323879650.00.003.06 162.158.26.133h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 1-9-0/0/976. 0.0032013954289230.00.003.84 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80GET /roundcube/?_task=mail&_refresh=1&_mbox=INBOX HTTP/1.1 1-9-0/0/978. 0.00320130254770.00.002.62 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-9-0/0/1015. 0.00320131265430.00.002.71 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/947. 0.0032013174369230.00.003.01 143.110.145.134http/1.1 1-9-0/0/966. 0.00320131186960.00.002.11 172.71.195.3h2comms.ivarse.com:443GET / HTTP/2.0 1-9-0/0/1006. 0.0032013679226000.00.002.41 162.158.186.166http/1.1royaleliteservice.com:80GET / HTTP/1.1 1-9-0/0/1001. 0.003201311166260
Found on 2025-05-26 17:32 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f0f62dde6Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 26-May-2025 17:32:18 UTC Restart Time: Saturday, 24-May-2025 06:33:53 UTC Parent Server Config. Generation: 12 Parent Server MPM Generation: 11 Server uptime: 2 days 10 hours 58 minutes 24 seconds Server load: 3.58 3.59 3.35 Total accesses: 145152 - Total Traffic: 966.4 MB - Total Duration: 168702564 CPU Usage: u43.95 s30.17 cu279.66 cs177.18 - .25% CPU load .684 requests/sec - 4772 B/second - 6.8 kB/request - 1162.25 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03767685no14yes00250111 23767686no9yes1024081 Sum2023 10490192 _________________________........................._____R________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1137676850/239/1757_ 23.171054168560.04.639.19 172.71.144.92h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1137676850/237/1801_ 22.870303462880.04.087.97 162.158.41.132http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-1137676850/241/1819_ 23.180253485190.03.488.04 172.71.172.157h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-1137676850/229/1827_ 23.132114157380.04.8910.22 172.70.247.137h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1137676850/244/1869_ 23.1105523280.04.5513.12 172.71.164.55h2bayer-application.fi-careers.on[0/0] init 0-1137676850/227/1840_ 23.171037471200.04.9310.28 104.23.195.50h2crypto-ft.com:443POST /wp-cron.php?doing_wp_cron=1748280736.53965902328491210937 0-1137676850/230/1824_ 23.1420496680.04.2710.84 172.70.247.98h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-1137676850/236/1816_ 23.16101374530.04.6810.72 172.70.240.4h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-1137676850/234/1843_ 22.9710768340.03.699.02 172.70.240.4h2bayer-application.fi-careers.on[0/0] init 0-1137676850/239/1809_ 23.17114771740.03.639.98 162.158.91.100h2crypto-ft.com:443POST /wp-login.php HTTP/2.0 0-1137676850/229/1831_ 23.2001513080.03.918.89 172.71.172.43h2bayer-application.fi-careers.onGET /login.action HTTP/2.0 0-1137676850/217/1794_ 23.0710497020.05.5110.50 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/223/1794_ 23.11002615410.03.458.56 172.70.247.87h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1137676850/210/1789_ 23.0221544720.03.868.77 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/243/1761_ 23.190138940290.05.8310.37 172.71.164.55h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1137676850/220/1805_ 23.190276509280.06.1216.45 172.71.164.59h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 0-1137676850/202/1827_ 23.071032052740.04.2814.97 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/245/1827_ 22.870247549340.04.1918.34 162.158.41.133http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-1137676850/234/1847_ 23.18101161920.04.8715.61 172.70.247.98h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1137676850/239/1854_ 22.9811532680.03.188.54 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1137676850/241/1771_ 23.120126054530.03.407.31 172.71.250.146h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-1137676850/229/1790_ 23.07208476310.04.458.95 78.153.140.151http/1.1comms.ivarse.com:80GET /api/.env HTTP/1.1 0-1137676850/227/1812_ 23.06008295450.04.8010.23 78.153.140.151http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 0-1137676850/228/1801_ 23.05032936290.02.326.78 162.158.111.86h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 0-1137676850/226/1838_ 23.0518482770.03.9410.85 104.23.166.91h2comms.ivarse.com:443GET / HTTP/2.0 1-9-0/0/999. 0.0032014153281840.00.002.08 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80POST /roundcube/?_task=mail&_action=refresh HTTP/1.1 1-9-0/0/996. 0.00320149808960.00.001.87 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/927. 0.00320140155452050.00.002.34 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/1011. 0.00320140208860.00.004.09 143.110.145.134http/1.1server1.jointdivisoncxvii.me:80\x16\x03\x01 1-9-0/0/952. 0.0032014124260740.00.0026.01 162.158.244.137h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-9-0/0/1014. 0.0032014629237066226500.00.002.36 172.69.95.195http/1.1n-cloud.ivarse.com:443GET /push/ws HTTP/1.1 1-9-0/0/1000. 0.00320140213540.00.002.41 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/923. 0.0032014088099710.00.003.25 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/999. 0.00320140209170.00.003.23 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/1001. 0.00320142165087380.00.002.10 172.69.179.16h2n-cloud.ivarse.com:443GET /ocs/v2.php/core/navigation/apps?absolute=true&format=json 1-9-0/0/967. 0.003201404892430.00.003.37 172.71.182.89h2ivarse.com:443GET / HTTP/2.0 1-9-0/0/995. 0.00320140265520.00.003.09 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/1003. 0.003201435550170.00.002.90 146.190.134.221http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-9-0/0/990. 0.00320142991544560.00.003.12 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80GET /roundcube/?_task=mail&_action=list&_refresh=1&_layout=wide 1-9-0/0/997. 0.0032014865296910.00.005.14 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80POST /roundcube/?_task=mail&_unlock=loading1748242709501&_frame 1-9-0/0/980. 0.003201423879650.00.003.06 162.158.26.133h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 1-9-0/0/976. 0.0032014954289230.00.003.84 172.233.232.23http/1.1rmail.jointdivisoncxvii.me:80GET /roundcube/?_task=mail&_refresh=1&_mbox=INBOX HTTP/1.1 1-9-0/0/978. 0.00320140254770.00.002.62 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-9-0/0/1015. 0.00320141265430.00.002.71 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-9-0/0/947. 0.0032014174369230.00.003.01 143.110.145.134http/1.1 1-9-0/0/966. 0.00320141186960.00.002.11 172.71.195.3h2comms.ivarse.com:443GET / HTTP/2.0 1-9-0/0/1006. 0.0032014679226000.00.002.41 162.158.186.166http/1.1royaleliteservice.com:80GET / HTTP/1.1 1-9-0/0/1001. 0.
Found on 2025-05-26 17:32 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f754477bcApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Saturday, 24-May-2025 10:16:07 UTC Restart Time: Saturday, 24-May-2025 06:33:53 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 3 hours 42 minutes 13 seconds Server load: 2.96 1.90 1.65 Total accesses: 5166 - Total Traffic: 18.6 MB - Total Duration: 4518870 CPU Usage: u16.87 s9.51 cu0 cs0 - .198% CPU load .387 requests/sec - 1465 B/second - 3783 B/request - 874.733 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01809no0yes0025000 11810no2yes1024000 Sum202 1049000 __________________________________________R_______.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-018090/63/63_ 9.08109410.00.090.09 162.158.154.28h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-018090/51/51_ 9.07108330.00.150.15 172.70.242.223h2bayer-application.fi-careers.onGET / HTTP/2.0 0-018090/52/52_ 8.870212390.00.070.07 162.158.244.148h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/57/57_ 8.922708739930.00.120.12 104.23.195.87h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-018090/54/54_ 8.8922010180.00.420.42 172.71.232.70http/1.1comms.ivarse.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 0-018090/67/67_ 9.061201000.00.290.29 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/55/55_ 9.0905818580.00.340.34 162.158.87.50h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-018090/68/68_ 9.043203050.01.141.14 104.23.195.93h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/70/70_ 8.994009690.00.290.29 104.23.195.93h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/64/64_ 9.043213130.01.091.09 104.23.195.68h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/57/57_ 8.8927011160.00.130.13 157.245.77.56http/1.1 0-018090/55/55_ 8.892701140.00.070.07 172.71.232.70http/1.1comms.ivarse.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 0-018090/52/52_ 9.042701792970.00.190.19 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/56/56_ 8.9904119680.00.360.36 104.23.195.92h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/52/52_ 9.043202030.00.240.24 104.23.195.68h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/65/65_ 9.043205070.00.160.16 104.23.195.93h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/62/62_ 8.8970510.00.470.47 172.71.232.70http/1.1comms.ivarse.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 0-018090/47/47_ 9.071019490.00.130.13 162.158.62.82h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-018090/72/72_ 9.01708120.00.140.14 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/73/73_ 9.043207160.00.690.69 104.23.195.93h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/54/54_ 9.080017475430.00.110.11 172.70.111.77h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-018090/66/66_ 8.83134960.00.480.48 162.158.244.139h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/59/59_ 9.02107730.00.150.15 172.69.74.231h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-018090/70/70_ 9.012204290.00.400.40 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/58/58_ 8.8927019150.00.300.30 172.71.232.70http/1.1comms.ivarse.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 1-018100/153/153_ 15.870012940.00.560.56 104.23.190.196h2bayer-application.fi-careers.on[0/0] init 1-018100/154/154_ 15.880310540.00.180.18 104.23.160.69http/1.1crypto-ft.com:80GET /termps.php HTTP/1.1 1-018100/152/152_ 15.880013450.00.340.34 104.23.195.24h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/150/150_ 15.9135424290.01.401.40 172.71.144.147h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-018100/147/147_ 15.9304011290.00.500.50 172.71.182.69http/1.1crypto-ft.investments:80POST /xmlrpc.php HTTP/1.1 1-018100/149/149_ 15.90501836200.00.210.21 104.23.195.24h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/146/146_ 15.841016400.00.540.54 172.68.174.142h2crypto-ft.com:443GET /classfuns.php HTTP/2.0 1-018100/148/148_ 16.030028820.00.860.86 104.23.190.69h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-018100/154/154_ 15.901803830.00.310.31 104.23.195.46h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/144/144_ 15.99104834880.00.220.22 162.158.158.49h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-018100/148/148_ 15.9038102580.00.270.27 104.23.187.237h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-018100/138/138_ 15.90602700.00.150.15 104.23.195.46h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/154/154_ 15.9011035620.00.240.24 104.23.195.24h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/146/146_ 16.0404827150.00.170.17 104.23.190.69h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-018100/144/144_ 15.7821055910.00.340.34 162.158.244.139h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/160/160_ 16.020012150.01.021.02 104.23.190.196h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-018100/142/142_ 15.682106430.00.420.42 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-018100/148/148R 15.8823010370.00.660.66 162.158.154.108h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-018100/140/140_ 15.98105110.00.490.49 162.158.158.5h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-018100/147/147_ 15.880111860.00.270.27 104.23.195.92h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/142/142_ 15.97222640.00.290.29 172.70.111.136h2bayer-application.fi-careers.onGET / HTTP/2.0 1-018100/156/156_ 15.851040160.00.240.24 104.23.160.121h2crypto-ft.com:443
Found on 2025-05-24 10:16 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb221160eApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Saturday, 24-May-2025 10:16:10 UTC Restart Time: Saturday, 24-May-2025 06:33:53 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 3 hours 42 minutes 16 seconds Server load: 2.89 1.90 1.65 Total accesses: 5184 - Total Traffic: 18.7 MB - Total Duration: 4518871 CPU Usage: u16.96 s9.54 cu0 cs0 - .199% CPU load .389 requests/sec - 1466 B/second - 3772 B/request - 871.696 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01809no0yes0025000 11810no19yes10240181 Sum2019 10490181 _____________________________________R____________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-018090/63/63_ 9.08409410.00.090.09 162.158.154.28h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-018090/51/51_ 9.07408330.00.150.15 172.70.242.223h2bayer-application.fi-careers.onGET / HTTP/2.0 0-018090/52/52_ 8.873212390.00.070.07 162.158.244.148h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/57/57_ 8.923008739930.00.120.12 104.23.195.87h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-018090/54/54_ 8.8925010180.00.420.42 172.71.232.70http/1.1comms.ivarse.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 0-018090/67/67_ 9.061501000.00.290.29 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/55/55_ 9.0935818580.00.340.34 162.158.87.50h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-018090/68/68_ 9.04103050.01.141.14 104.23.195.93h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/71/71_ 9.10209690.00.290.29 162.158.63.141h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 0-018090/65/65_ 9.13013130.01.101.10 162.158.158.226h2bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/2.0 0-018090/57/57_ 8.890011160.00.130.13 157.245.77.56http/1.1 0-018090/55/55_ 8.893001140.00.070.07 172.71.232.70http/1.1comms.ivarse.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 0-018090/53/53_ 9.13001792970.00.190.19 162.158.94.113h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-018090/56/56_ 8.9934119680.00.360.36 104.23.195.92h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/53/53_ 9.10102030.00.240.24 104.23.187.237h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 0-018090/65/65_ 9.04105070.00.160.16 104.23.195.93h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/62/62_ 8.89100510.00.470.47 172.71.232.70http/1.1comms.ivarse.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 0-018090/47/47_ 9.074019490.00.130.13 162.158.62.82h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-018090/72/72_ 9.011008120.00.140.14 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/74/74_ 9.11107160.00.690.69 104.23.187.237h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 0-018090/54/54_ 9.083017475430.00.110.11 172.70.111.77h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 0-018090/66/66_ 8.83434960.00.480.48 162.158.244.139h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 0-018090/59/59_ 9.02407730.00.150.15 172.69.74.231h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-018090/70/70_ 9.012504290.00.400.40 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-018090/58/58_ 8.8930019150.00.300.30 172.71.232.70http/1.1comms.ivarse.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 1-018100/153/153_ 15.871012940.00.560.56 104.23.190.196h2bayer-application.fi-careers.on[0/0] init 1-018100/155/155_ 16.111310540.00.180.18 172.70.247.109h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-018100/152/152_ 15.881013450.00.340.34 104.23.195.24h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/150/150_ 15.9125424290.01.401.40 172.71.144.147h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 1-018100/148/148_ 16.1014011290.00.500.50 104.23.187.179h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-018100/149/149_ 15.90201836200.00.210.21 104.23.195.24h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/146/146_ 15.842016400.00.540.54 172.68.174.142h2crypto-ft.com:443GET /classfuns.php HTTP/2.0 1-018100/148/148_ 16.031028820.00.860.86 104.23.190.69h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-018100/154/154_ 15.90003830.00.310.31 104.23.195.46h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/145/145_ 16.09204834880.00.220.22 162.158.111.206h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-018100/149/149_ 16.0828102580.00.270.27 104.23.190.25h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-018100/139/139_ 16.07202700.00.150.15 172.68.194.156h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-018100/155/155R 16.072035620.00.240.24 172.70.243.5h2bayer-application.fi-careers.on[1/0] schedule: stream 1, GET /server-status 1-018100/147/147_ 16.1214827150.00.170.17 162.158.159.232h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 1-018100/145/145_ 16.050055910.00.340.34 162.158.95.122h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-018100/160/160_ 16.021012150.01.021.02 104.23.190.196h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-018100/143/143_ 16.12106430.00.420.42 172.71.148.88h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-018100/149/149_ 16.041010370.00.660.66 162.158.154.108h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-018100/141/141_ 16.09205110.00.490.49 162.158.159.233h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-018100/147/147_ 15.881111860.00.270.27 104.23.195.92h2payments.cryptofnpro.com:443GET /api/v1/stores/3XKSLFtmdtHVmwW4ZyBWrvw7tXmcPeWaaNkXPDJwEByD 1-018100/142/142_ 15.97222640.00.290.29 172.70.111.136h2bayer-application.fi-careers.onGET / HTTP/2.0 1-018100/156/156_ 15.852040160.00.240.24 104.23.160.121h2crypto-ft.com:443GET /userfuns.php HTTP/2.0 1-018100/127/127_ 15.950020910.00.320
Found on 2025-05-24 10:16 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f5557ee5eApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 22-May-2025 22:52:31 UTC Restart Time: Tuesday, 20-May-2025 21:13:52 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 2 days 1 hour 38 minutes 39 seconds Server load: 1.68 2.05 1.99 Total accesses: 139788 - Total Traffic: 1.3 GB - Total Duration: 118821362 CPU Usage: u164.15 s326.8 cu197.05 cs208.55 - .502% CPU load .782 requests/sec - 7.8 kB/second - 9.9 kB/request - 850.011 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03644340no6yes0025051 1584022no1yes0025001 23644222no0yes1024000 Sum307 1074052 ________________________________________________________________ _______R___..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-236443400/1183/1750_ 221.1663359620.010.5914.09 172.70.142.44h2ivarse.com:443GET /wp-login.php?redirect_to=https%3A%2F%2Fivarse.com%2Fwp-adm 0-236443400/1081/1634_ 221.20088403230.07.4013.19 104.23.190.50h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-236443400/1144/1710_ 220.4711147630210.010.7414.84 162.158.159.125h2bayer-application.fi-careers.on[0/0] read: stream 0, 0-236443400/1375/1969_ 221.14124347380.09.1428.72 162.158.94.113http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-236443400/1178/1767_ 221.1900311240.09.0613.15 162.158.155.136h2bayer-application.fi-careers.onGET /about HTTP/2.0 0-236443400/1169/1732_ 220.8617658880.012.5118.10 147.185.132.19http/1.1server1.jointdivisoncxvii.me:80\x16\x03\x01 0-236443400/1148/1727_ 221.1661300500.016.7324.93 172.70.142.44h2ivarse.com:443GET /wp-admin/ HTTP/2.0 0-236443400/1155/1742_ 221.1812225030.010.1616.18 162.158.159.125h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-236443400/1109/1723_ 221.191029910720.09.7212.55 104.23.190.171h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-236443400/1198/1791_ 221.0521308090.020.4022.27 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-236443400/1143/1727_ 221.071416639280.07.0611.10 104.23.170.78h2royaleliteservice.com:443GET / HTTP/2.0 0-236443400/1626/2211_ 221.1721596540.010.3326.98 172.69.74.214h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1747954348.70228910446166992187 0-236443400/1272/1861_ 221.1321284390.011.9558.02 172.69.74.230h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-236443400/1169/1773_ 220.9660298160.08.0610.38 172.68.138.190h2staplefordwingstravels.co.uk:44GET /category/travel/ HTTP/2.0 0-236443400/1161/1748_ 220.9721651408840.08.9012.32 172.69.74.214h2bayer-application.fi-careers.on[0/0] init 0-236443400/1241/1811_ 221.1130536650.09.8311.96 104.23.190.90h2bayer-application.fi-careers.on[1/1] done: stream 1, GET / 0-236443400/1136/1720_ 220.9811446560.07.3111.17 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-236443400/1173/1761_ 221.0711283370.010.2912.38 172.69.74.211h2royaleliteservice.com:443POST /wp-cron.php?doing_wp_cron=1747954281.92879009246826171875 0-236443400/1038/1656_ 221.151046716090.010.0812.78 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-236443400/1170/1780_ 221.181148401340.013.7915.73 162.158.154.237h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-236443400/1133/1731_ 221.05222399060.08.7615.20 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-236443400/1155/1740_ 221.0408310390.06.1610.00 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-236443400/1125/1699_ 221.15741136697350.07.0112.40 172.71.81.44http/1.1ivarse.com:80POST /wp-login.php HTTP/1.1 0-236443400/1090/1675_ 221.012462828850.08.5510.87 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-236443400/1168/1741_ 220.99001656050.010.1813.00 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/521/1821_ 89.662295124199190.01.5826.34 162.158.186.4h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-25840220/788/2183_ 89.69156028802150.01.5553.91 172.69.34.18h2dashboard.crypto-ft.com:443GET /.git HTTP/2.0 1-25840220/571/1964_ 89.4322456653840.02.1810.51 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/481/1905_ 89.61224313791700.01.6627.06 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/579/1996_ 89.681861365290.02.278.87 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/537/1941_ 89.7262419390.02.4414.54 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/484/2093_ 89.3519826362120.02.399.62 172.70.38.34http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-25840220/573/1607_ 89.621811383977780.02.9810.31 162.158.187.77http/1.1crypto-ft.com:80POST /wp-cron.php?doing_wp_cron=1747953994.02126097679138183593 1-25840220/532/1896_ 89.6011822425920.01.7721.44 162.158.41.158http/1.1comms.ivarse.com:80GET /.git/config HTTP/1.1 1-25840220/806/2209_ 89.61244532441330.01.9319.96 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/517/1948_ 89.63451379190.01.539.13 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/492/1899_ 89.6219349056470.01.386.68 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/519/2061_ 89.5419211739680.03.2027.85 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/504/1854_ 89.520664735610.01.9213.87 196.251.83.76http/1.1comms.ivarse.com:443GET /.env HTTP/1.1 1-25840220/547/1915_ 89.551810421760.01.4826.68 172.69.74.236h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-25840220/489/1894_ 89.7250036209120.01.4625.71 162.158.22.159h2royaleliteservice.com:443POST /supply-chain-logistics/ HTTP/2.0 1-25840220/545/1924_ 89.6819834459810.01.7028.16 172.68.245.6h2drumreed.co.uk:443GET /job-life_in_new_zealand-11.html HTTP/2.0 1-25840220/544/1982_ 89.3015017360720.05.5423.75 172.71.122.251http/1.1cryptofnpro.com:80GET /assets/index-3MU8zdC5.js HTTP/1.1 1-25840220/533/1914_ 89.631011430040.02.0110.14 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/516/1937_ 89.62151111640870.01.9717.60 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-25840220/520/2074_ 89.641314923450.00.9514.62 87.236.176.103http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-25840220/4
Found on 2025-05-22 22:52
-
-
Apache server-status page is publicly available
The server-status page (usually
/server-status) allows server administrators to find out how well their server is performing.This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
IP: 172.67.168.119
Domain: bayer-application.fi-careers.online
Port: 80
URL: http://bayer-application.fi-careers.onlineFirst seen 2025-06-19 14:27
Last seen 2025-08-29 08:44
Open for 70 days-
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f2675e49fApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Friday, 29-Aug-2025 08:44:36 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 16 Parent Server MPM Generation: 15 Server uptime: 8 days 2 hours 7 minutes 42 seconds Server load: 0.67 1.50 1.58 Total accesses: 423600 - Total Traffic: 3.4 GB - Total Duration: 64314546 CPU Usage: u53.66 s43.24 cu4777.65 cs939.61 - .832% CPU load .606 requests/sec - 5.2 kB/second - 8.5 kB/request - 151.828 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12364087no0yes0025000 22364169no0yes1024000 32825572no0yes0025000 Sum300 1074000 ........................._____________________________W_________ ____________________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-15-0/0/4431. 0.001871720931168890.00.0025.39 172.71.95.35http/1.1api.msz-pl.com:80GET /phpinfo.php5 HTTP/1.1 0-15-0/0/4303. 0.00187172119987370.00.0028.73 104.23.172.98http/1.1api.msz-pl.com:80GET /phpinfo HTTP/1.1 0-15-0/0/4356. 0.00187171306951900.00.0030.38 172.71.102.242http/1.1api.msz-pl.com:80GET /helpers/utility.js HTTP/1.1 0-15-0/0/4343. 0.001871727996650.00.0036.57 172.70.246.154h2lwb-polska-jobs.smart-careers.cGET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.3 HTTP/2.0 0-15-0/0/4290. 0.001871718983890.00.0029.26 104.23.239.73h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/ruda-k3kfo 0-15-0/0/4354. 0.001871723091073450.00.0031.98 172.70.46.193http/1.1api.msz-pl.com:80GET /pinfo.php HTTP/1.1 0-15-0/0/4292. 0.0018717241057060.00.0030.64 162.158.86.206h2lwb-polska-jobs.smart-careers.cGET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runt 0-15-0/0/4332. 0.00187172295972590.00.0029.04 104.23.170.18http/1.1api.msz-pl.com:80GET /test1.php HTTP/1.1 0-15-0/0/4408. 0.00187171759999330.00.0030.93 104.23.170.173http/1.1api.msz-pl.com:80GET /config/aws.yml HTTP/1.1 0-15-0/0/4278. 0.001871721501077650.00.0027.90 104.23.168.16http/1.1api.msz-pl.com:80GET /.aws/config HTTP/1.1 0-15-0/0/4361. 0.001871721841063990.00.0026.83 172.71.183.46http/1.1api.msz-pl.com:80GET /linusadmin-phpinfo.php HTTP/1.1 0-15-0/0/4342. 0.001871721311047130.00.0029.12 172.71.95.103http/1.1api.msz-pl.com:80GET /config/view.php HTTP/1.1 0-15-0/0/4371. 0.001871723301004120.00.0032.52 104.23.168.36http/1.1api.msz-pl.com:80GET /config/acl.config.php HTTP/1.1 0-15-0/0/4238. 0.00187172204988790.00.0027.34 172.71.102.206http/1.1api.msz-pl.com:80GET /_profiler/phpinfo HTTP/1.1 0-15-0/0/4298. 0.00187171071996890.00.0028.19 172.71.164.52h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/robotocond 0-15-0/0/4247. 0.001871719091036890.00.0027.38 104.23.166.46http/1.1api.msz-pl.com:80GET /.vscode/settings.json HTTP/1.1 0-15-0/0/4239. 0.00187172142937830.00.0033.81 104.23.172.76http/1.1api.msz-pl.com:80GET /php_info.php HTTP/1.1 0-15-0/0/4286. 0.001871722031046780.00.0034.83 104.23.166.95http/1.1api.msz-pl.com:80GET /.ssh/sftp-config.json HTTP/1.1 0-15-0/0/4304. 0.001871722981102000.00.0051.47 172.70.46.151http/1.1api.msz-pl.com:80GET /frontend_dev.php/$ HTTP/1.1 0-15-0/0/4261. 0.00187171028993770.00.0038.21 172.70.248.114h2lwb-polska-jobs.smart-careers.cGET /wp-content/uploads/elementor/google-fonts/fonts/roboto-kfo 0-15-0/0/4261. 0.00187172144993800.00.0032.33 104.23.166.155http/1.1api.msz-pl.com:80GET /prevlaravel/sftp-config.json HTTP/1.1 0-15-0/0/4302. 0.00187172093989910.00.0026.35 104.23.166.155http/1.1api.msz-pl.com:80GET /php-info.php HTTP/1.1 0-15-0/0/4354. 0.001871722671003720.00.0025.46 172.71.102.203http/1.1api.msz-pl.com:80GET /old_phpinfo.php HTTP/1.1 0-15-0/0/4411. 0.001871721281042210.00.0027.09 141.101.76.92http/1.1api.msz-pl.com:80GET /phpinfo.php3 HTTP/1.1 0-15-0/0/4330. 0.001871722871005130.00.0027.70 104.23.170.135http/1.1api.msz-pl.com:80GET /appsettings.QA.json HTTP/1.1 1-1523640870/184/5496_ 15.3212341433560.00.9178.33 104.23.209.6http/1.1api.msz-pl.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/193/5547_ 15.3213261289820.05.4279.61 104.23.209.6http/1.1api.msz-pl.com:80GET /website/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/208/5504_ 15.3311171389100.01.5268.56 104.23.209.6http/1.1api.msz-pl.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/193/5431_ 15.3114171289070.01.1245.00 104.23.209.6http/1.1api.msz-pl.com:80GET /xmlrpc.php?rsd HTTP/1.1 1-1523640870/190/5441_ 15.3212181246660.00.9839.56 104.23.209.6http/1.1api.msz-pl.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/191/5451_ 15.3214271368180.00.8749.96 104.23.209.6http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-1523640870/197/5405_ 15.3211231442790.00.7842.32 104.23.209.6http/1.1api.msz-pl.com:80GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/189/5363_ 15.306251383880.00.8444.31 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1523640870/205/5476_ 15.3411201646940.01.6451.39 104.23.209.6http/1.1api.msz-pl.com:80GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/193/5486_ 15.3211171389970.01.3549.33 104.23.209.6http/1.1api.msz-pl.com:80GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/183/5456_ 15.3211171431330.01.0942.49 104.23.209.6http/1.1api.msz-pl.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/198/5442_ 15.3213261361800.01.1442.03 104.23.209.6http/1.1api.msz-pl.com:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/196/5443_ 15.3212161445870.01.5744.46 104.23.209.6http/1.1api.msz-pl.com:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/185/5436_ 15.296191266460.01.2346.43 104.23.217.14http/1.1api.msz-pl.com:80GET /wp-content/plugins/WordPressCore/blkfqnikz.php HTTP/1.1 1-1523640870/194/5411_ 15.3211191448310.00.9739.28 104.23.209.6http/1.1api.msz-pl.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/182/5464_ 15.3421821389240.00.9746.84 162.158.86.193http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-1523640870/189/5421_ 15.3213251358810.00.8947.39 104.23.209.6http/1.1api.msz-pl.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/198/5487_ 15.3212271392860.00.5542.49 104.23.209.6http/1.1api.msz-pl.com:80GET /news/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/189/5449_ 15.3212171456660.01.2445.21 104.23.209.6http/1.1api.msz-pl.com:80GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1 1-1523640870/213/5410_ 15.3410181410280.05.2591.92 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1523640870/189/5450_ 15.315441305280.01.4843.35 104.23.209.6http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-1523640870/213/5366_ 15.341
Found on 2025-08-29 08:44 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f1291b947Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Wednesday, 27-Aug-2025 08:44:25 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 14 Parent Server MPM Generation: 13 Server uptime: 6 days 2 hours 7 minutes 31 seconds Server load: 1.55 1.87 1.91 Total accesses: 340197 - Total Traffic: 2.7 GB - Total Duration: 7757746 CPU Usage: u52.84 s38.32 cu3595.21 cs703.59 - .835% CPU load .647 requests/sec - 5.3 kB/second - 8.2 kB/request - 22.8037 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02637669no0yes0025000 12637670no0yes0025000 22898537no0yes1024000 Sum300 1074000 ________________________________________________________________ ____W______..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1326376690/139/4090_ 11.2316322979820.00.6123.33 162.158.175.185http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1326376690/150/3951_ 11.1545929839010.00.6426.36 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-mail.php HTTP/1.1 0-1326376690/142/4018_ 11.2325128787940.00.7028.53 104.23.209.79h2usconsular-dept.com:443GET / HTTP/2.0 0-1326376690/139/3995_ 11.1724630862740.00.6335.03 172.70.179.198http/1.1api.msz-pl.com:80GET /xp.php HTTP/1.1 0-1326376690/139/3964_ 11.1711026813600.00.6127.40 172.70.179.198http/1.1api.msz-pl.com:80GET /xl2023.php HTTP/1.1 0-1326376690/153/4012_ 11.2323929861330.00.7829.24 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/146/3923_ 11.1725128921480.00.6027.89 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-content/plugins/seoxx/randkeyword.php HTTP/1.1 0-1326376690/132/3957_ 11.1445927804970.00.6026.89 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-includes/css.php HTTP/1.1 0-1326376690/151/4006_ 11.1857825798570.02.3927.96 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-signin.php HTTP/1.1 0-1326376690/140/3948_ 11.1724639846010.00.6026.17 172.70.179.198http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/makeasmtp.php HTTP/1.1 0-1326376690/139/4039_ 11.1457721859210.00.6724.86 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-includes/IXR/admin.php HTTP/1.1 0-1326376690/144/4015_ 11.1757828842770.00.5627.19 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-includes/fonts/old.php HTTP/1.1 0-1326376690/144/4035_ 11.1723422834360.01.1130.48 172.70.179.198http/1.1api.msz-pl.com:80GET /js/style.php HTTP/1.1 0-1326376690/143/3907_ 11.1723419808360.00.6625.36 172.70.179.198http/1.1api.msz-pl.com:80GET /.well-known/cache-compat.php HTTP/1.1 0-1326376690/140/3956_ 11.1544420848150.00.7426.03 172.70.179.198http/1.1api.msz-pl.com:80GET /css/chosen.php HTTP/1.1 0-1326376690/130/3922_ 11.1541431857920.00.5925.53 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-blog-header.php HTTP/1.1 0-1326376690/132/3871_ 11.1641424780700.00.9631.60 172.70.179.198http/1.1api.msz-pl.com:80GET /input.php HTTP/1.1 0-1326376690/140/3967_ 11.1846434865730.00.8033.09 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/142/3981_ 11.1716326921600.00.6949.70 172.70.179.198http/1.1api.msz-pl.com:80GET /ioxi001.PhP7 HTTP/1.1 0-1326376690/131/3929_ 11.1711019807090.00.6135.99 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-blog.php HTTP/1.1 0-1326376690/145/3916_ 11.1544432826830.00.8030.15 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-content/themes/pridmag/404.php HTTP/1.1 0-1326376690/140/3966_ 11.1941946794730.00.8424.42 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/142/4020_ 11.1757824805070.00.8223.48 172.70.179.198http/1.1api.msz-pl.com:80GET /wp-includes/style-engine/about.php HTTP/1.1 0-1326376690/143/4044_ 11.1944928847980.00.5524.88 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/133/3994_ 11.2511535823950.00.6925.78 104.23.195.68h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1326376700/216/4809_ 17.6072321130290.02.6573.02 87.2.57.237http/1.1 1-1326376700/195/4814_ 17.6220992520.02.6867.68 172.70.246.158http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-1326376700/198/4785_ 17.57199251007720.02.2762.95 172.69.74.249h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1326376700/210/4718_ 17.627201000000.02.9740.07 87.2.57.237http/1.1comms.ivarse.com:80GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co 1-1326376700/188/4739_ 17.4717125934890.02.5534.68 172.70.126.165http/1.1api.msz-pl.com:80GET /wp-includes/js/jquery/jquery.js HTTP/1.1 1-1326376700/197/4733_ 17.61164211060230.04.0741.19 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/198/4707_ 17.46149281108710.01.5637.44 172.70.179.197http/1.1api.msz-pl.com:80GET /wp-conflg.php HTTP/1.1 1-1326376700/207/4694_ 17.56199251019640.02.6238.89 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/195/4752_ 17.50161181290750.02.6345.04 172.71.255.38http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1326376700/223/4819_ 17.57159251082210.03.6141.31 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/198/4769_ 17.57163561046800.01.8936.07 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/179/4751_ 17.469925999700.01.6735.86 172.70.179.197http/1.1api.msz-pl.com:80GET /wp-includes/pomo/wp_class_datalib.php HTTP/1.1 1-1326376700/197/4732_ 17.62104361095400.03.9935.72 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/199/4732_ 17.5015931972830.01.9540.58 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/199/4724_ 17.4899281119070.02.5634.63 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/176/4759_ 17.38171341077990.01.7542.37 172.69.74.233h2n-cloud.ivarse.com:443[0/0] init 1-1326376700/183/4731_ 17.50160371047990.02.6643.39 172.69.17.8http/1.1api.msz-pl.com:80GET /ads.txt HTTP/1.1 1-1326376700/205/4777_ 17.6115421055940.02.4037.16 172.69.74.233h2n-cloud.ivarse.com:443GET /hosting/discovery HTTP/2.0 1-1326376700/199/4745_ 17.61163231100580.03.8739.50 162.158.187.126http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1326376700/191/4699_ 17.61166331095430.01.9781.49 104.23.217.56http/1.1api.msz-pl.com:80GET /robots.txt HTTP/1.1 1-1326376700/207/4758_ 17.63001009340.02.4837.46 172.71.250.6http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-1326376700/215/4669_ 17.6310963400.03.5239.01 172.71.144.116http/1.1bayer-application.fi-careers.on
Found on 2025-08-27 08:44 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f2714e890Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Wednesday, 27-Aug-2025 07:37:18 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 14 Parent Server MPM Generation: 13 Server uptime: 6 days 1 hour 23 seconds Server load: 1.35 1.54 1.62 Total accesses: 337265 - Total Traffic: 2.6 GB - Total Duration: 7416702 CPU Usage: u47.15 s34.58 cu3595.21 cs703.59 - .839% CPU load .646 requests/sec - 5.3 kB/second - 8.2 kB/request - 21.9907 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02637669no2yes1024011 12637670no0yes0025000 22898537no0yes0025000 Sum302 1074011 ___________________W____________________________________________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1326376690/102/4053_ 8.6810969170.00.3723.08 172.69.94.233http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-1326376690/114/3915_ 8.5625630830500.00.4326.14 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/105/3981_ 8.631827774860.00.4328.26 172.70.111.186http/1.1api.msz-pl.com:80GET /wp-admin/css/ HTTP/1.1 0-1326376690/104/3960_ 8.50130851070.00.4034.80 162.158.49.78http/1.1comms.ivarse.com:80GET /wp-includes/fonts/autoload_classmap.php HTTP/1.1 0-1326376690/106/3931_ 8.5534626805560.00.4027.19 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/116/3975_ 8.744277851220.00.5529.02 172.71.81.8http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-1326376690/112/3889_ 8.731829911790.00.3827.66 172.70.207.146h2drumreed.co.uk:443GET /wp-content/ HTTP/2.0 0-1326376690/102/3927_ 8.7026133797460.00.4026.70 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/112/3967_ 8.6625636786430.00.4626.02 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/104/3912_ 8.50130836840.00.3925.96 162.158.49.78http/1.1comms.ivarse.com:80GET /wp-includes/fonts/index.php HTTP/1.1 0-1326376690/107/4007_ 8.512711850980.00.4724.66 162.158.49.78http/1.1comms.ivarse.com:80GET /wp-logs.php HTTP/1.1 0-1326376690/111/3982_ 8.552710833440.00.3526.98 172.69.74.233h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-1326376690/111/4002_ 8.5810825440.00.8930.27 172.69.94.38h2pmsepharm.ca:443GET /wp-content/themes/pendo/assets/dist/fonts/1Ptug8zYS_SKggPN 0-1326376690/111/3875_ 8.74633799870.00.4525.16 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/103/3919_ 8.6722265838990.00.5225.82 162.158.210.69h2careers-lwb.smart-careers.com:4GET /wp-content/plugins/pro-elements/assets/js/frontend.min.js? 0-1326376690/97/3889_ 8.572071848590.00.3525.30 138.68.82.23http/1.1 0-1326376690/98/3837_ 8.532080771730.00.7531.39 138.68.82.23h2comms.ivarse.com:443[0/0] Software caused connection abort 0-1326376690/109/3936_ 8.7122250855540.00.5632.85 104.23.190.186h2usconsular-dept.com:443GET / HTTP/2.0 0-1326376690/108/3947_ 8.7410912490.00.4649.47 172.71.81.193http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-1326376691/96/3894W 8.5100798810.00.3935.77 162.158.106.155http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-1326376690/110/3881_ 8.672171818070.00.5929.94 162.158.210.247h2careers-lwb.smart-careers.com:4GET /wp-content/uploads/elementor/google-fonts/fonts/rubik-0aea 0-1326376690/104/3930_ 8.532091784050.00.6224.20 138.68.82.23h2comms.ivarse.com:443[0/0] Software caused connection abort 0-1326376690/109/3987_ 8.7027654794910.00.6023.26 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 0-1326376690/109/4010_ 8.6721729839740.00.3424.67 162.158.210.252h2careers-lwb.smart-careers.com:4GET /wp-content/uploads/elementor/google-fonts/fonts/roboto-fb5 0-1326376690/100/3961_ 8.7400815220.00.4825.56 104.23.175.120http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-1326376700/182/4775_ 14.641361101073260.02.2672.62 138.68.82.23http/1.1dk.application.status.um-dnk.diGET /debug/default/view?panel=config HTTP/1.1 1-1326376700/167/4786_ 14.3812130948830.02.3267.32 104.23.170.54http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-1326376700/166/4753_ 14.67110155965600.01.8962.57 138.68.82.23http/1.1dk.application.status.um-dnk.diGET /.DS_Store HTTP/1.1 1-1326376700/179/4687_ 14.6912632939880.02.4639.56 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/160/4711_ 14.722145909520.02.2834.42 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/166/4702_ 14.67161371008760.03.6940.81 138.68.82.23http/1.1dk.application.status.um-dnk.diGET /s/33e24343e2035323e23363/_/;/META-INF/maven/com.atlassian. 1-1326376700/165/4674_ 14.56195311050330.01.0936.96 138.68.82.23h2comms.ivarse.com:443[0/0] Software caused connection abort 1-1326376700/176/4663_ 14.7230974230.02.2138.49 108.162.226.157http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-1326376700/160/4717_ 14.56115321248430.02.2344.63 172.69.94.233http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1326376700/185/4781_ 14.691961681027090.03.1140.82 138.68.82.23http/1.1dk.application.status.um-dnk.diGET /info.php HTTP/1.1 1-1326376700/165/4736_ 14.6111033958390.01.3635.55 104.23.170.102h2traefik.ivarse.com:443GET //cdn.js HTTP/2.0 1-1326376700/153/4725_ 14.601930912020.01.1835.37 172.69.74.233h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1326376700/164/4699_ 14.69141251070920.03.6835.41 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/164/4697_ 14.6711424933940.01.6140.24 172.69.74.232h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1326376700/170/4695_ 14.59195291025170.01.9434.00 172.69.94.232http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1326376700/151/4734_ 14.5710920981000.01.2241.84 172.69.94.232http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1326376700/152/4700_ 14.701141151017380.02.3843.11 162.158.116.174h2futurefocusfarm.com:443POST /wp-login.php HTTP/2.0 1-1326376700/172/4744_ 14.5419523998210.02.0236.78 162.158.210.220h2careers-lwb.smart-careers.com:4GET /wp-content/uploads/elementor/google-fonts/fonts/roboto-41d 1-1326376700/166/4712_ 14.701151341044120.03.1938.82 162.158.116.77h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 1-1326376700/161/4669_ 14.45109401050490.01.6081.11 172.17.0.4http/1.1api.msz-pl.com:80GET /server-status?auto HTTP/1.1 1-1326376700/172/4723_ 14.6816146975200.02.1837.16 138.68.82.23http/1.1dk.application.status.um-dnk.diGET /config.json HTTP/1.1 1-1326376700/181/4635_
Found on 2025-08-27 07:37 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fd3f395aeApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 25-Aug-2025 09:44:08 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 9 Parent Server MPM Generation: 8 Server uptime: 4 days 3 hours 7 minutes 14 seconds Server load: 0.97 0.99 0.93 Total accesses: 231204 - Total Traffic: 1.4 GB - Total Duration: 4805124 CPU Usage: u49.33 s32.53 cu2152.61 cs448.04 - .752% CPU load .648 requests/sec - 4289 B/second - 6.5 kB/request - 20.783 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03016597no3yes1024020 13016598no8yes0025071 Sum2011 1049091 _________________W________________________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-830165970/297/2634_ 20.3726263566380.01.8015.53 104.23.229.103http/1.1crypto-ft.investments:80GET /sitemaps/.env HTTP/1.1 0-830165970/308/2544_ 20.385336462550.02.2015.67 104.23.229.103http/1.1crypto-ft.investments:80GET /site/.env HTTP/1.1 0-830165970/295/2594_ 20.3537226448140.01.7815.94 104.23.229.103http/1.1crypto-ft.investments:80GET /.production HTTP/1.1 0-830165970/292/2607_ 20.313720449790.01.4315.19 172.71.98.65h2futurefocusfarm.com:443HEAD /bak HTTP/2.0 0-830165970/306/2533_ 20.3632256464730.01.8015.21 104.23.229.103http/1.1crypto-ft.investments:80GET /lab/.env HTTP/1.1 0-830165970/279/2554_ 20.3628266502560.01.6819.06 104.23.229.103http/1.1crypto-ft.investments:80GET /app/.env HTTP/1.1 0-830165970/296/2520_ 20.3727256527060.01.5516.11 104.23.229.103http/1.1crypto-ft.investments:80GET /uploads/.env HTTP/1.1 0-830165970/296/2563_ 20.3627206491550.01.7417.86 104.23.229.103http/1.1crypto-ft.investments:80GET /apps/.env HTTP/1.1 0-830165970/298/2575_ 20.3910455490.01.2814.70 172.71.172.156http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-830165970/294/2539_ 20.3631231472260.02.3618.09 104.23.229.103http/1.1crypto-ft.investments:80GET /core/.env HTTP/1.1 0-830165970/308/2606_ 20.3900503230.01.6517.16 172.69.151.90http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-830165970/287/2572_ 20.29370463870.01.6215.66 172.71.172.105http/1.1ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-830165970/313/2637_ 20.3629241478130.02.2921.88 104.23.229.103http/1.1crypto-ft.investments:80GET /core/Datavase/.env HTTP/1.1 0-830165970/302/2534_ 20.34213505640.01.5615.11 141.101.69.70http/1.1cryptofnpro.com:80GET /.git/HEAD HTTP/1.1 0-830165970/290/2551_ 20.376346545990.04.0518.07 104.23.229.103http/1.1crypto-ft.investments:80GET /api/.env HTTP/1.1 0-830165970/304/2558_ 20.3537281481200.01.7215.80 104.23.229.103http/1.1crypto-ft.investments:80GET /.local HTTP/1.1 0-830165970/297/2521_ 20.3630238461310.01.3921.66 104.23.229.103http/1.1crypto-ft.investments:80GET /core/app/.env HTTP/1.1 0-830165971/323/2560W 20.3200493500.01.6715.06 104.23.239.76http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-830165970/302/2543_ 20.342126509620.01.6141.28 172.71.141.150http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-830165970/293/2532_ 20.334134486400.01.6114.34 172.68.35.159http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/4p9sdsX11fXtyuQoxhtR6T11f8NsqpL 0-830165970/289/2528_ 20.3820437080.01.5316.08 172.68.195.230http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-830165970/311/2572_ 20.3538289485160.01.7315.48 104.23.229.103http/1.1crypto-ft.investments:80GET /.remote HTTP/1.1 0-830165970/307/2584_ 20.391308466440.01.7213.47 104.23.229.103http/1.1crypto-ft.investments:80GET /admin/.env HTTP/1.1 0-830165970/298/2591_ 20.383263508530.01.4516.42 172.71.164.92http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-830165970/294/2590_ 20.3636319503230.01.4215.43 104.23.229.103http/1.1crypto-ft.investments:80GET /vendor/.env HTTP/1.1 1-830165980/503/2353_ 33.12125473170.04.9013.21 162.158.38.194h2futurefocusfarm.com:443GET /wp-includes/IXR/about.php HTTP/2.0 1-830165980/519/2382_ 33.12127434420.04.8415.55 172.70.34.82h2drumreed.co.uk:443GET /project-scott_base_works-1.html HTTP/2.0 1-830165980/469/2382_ 33.1400433710.05.6840.53 162.158.38.194h2futurefocusfarm.com:443GET /wp67/manager.php HTTP/2.0 1-830165980/480/2321_ 33.12145449010.05.4013.56 162.158.38.194h2futurefocusfarm.com:443GET //wp-includes/block-supports/index.php HTTP/2.0 1-830165980/510/2386_ 33.1410438480.05.2913.73 162.158.87.154http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-830165980/509/2350_ 33.140294517330.06.1418.26 162.158.38.194h2futurefocusfarm.com:443GET //flower.php HTTP/2.0 1-830165980/462/2263_ 33.12116489440.03.8313.04 162.158.38.194h2futurefocusfarm.com:443GET /fox.php HTTP/2.0 1-830165980/489/2282_ 33.1310415820.04.1213.21 172.70.246.232http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-830165980/476/2338_ 33.112310503780.04.5816.22 162.158.38.194h2futurefocusfarm.com:443GET /plugin.php HTTP/2.0 1-830165980/502/2393_ 33.1500486680.05.0915.55 162.158.38.194h2futurefocusfarm.com:443GET /ar.php HTTP/2.0 1-830165980/481/2336_ 33.11251403230.06.0215.64 162.158.38.194h2futurefocusfarm.com:443GET /moderation.php HTTP/2.0 1-830165980/501/2353_ 33.1400427080.05.9914.63 162.158.38.194h2futurefocusfarm.com:443GET /config.php HTTP/2.0 1-830165980/503/2337_ 33.12148475110.05.7715.70 162.158.38.194h2futurefocusfarm.com:443GET /.well-known/pki-validation/install.php HTTP/2.0 1-830165980/499/2332_ 33.090428431590.06.2915.07 162.158.38.194h2futurefocusfarm.com:443GET /raf.php HTTP/2.0 1-830165980/481/2295_ 33.07126428780.04.9113.59 162.158.38.194h2futurefocusfarm.com:443GET /wp-content/languages/about.php HTTP/2.0 1-830165980/491/2352_ 33.09120487960.05.6717.16 162.158.38.194h2futurefocusfarm.com:443GET /4.php HTTP/2.0 1-830165980/485/2344_ 33.1400454720.04.1019.09 172.70.247.156http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-830165980/477/2381_ 33.13129451800.04.2212.96 162.158.38.194h2futurefocusfarm.com:443GET /wp-admin/maint/admin.php HTTP/2.0 1-830165980/485/2335_ 33.1120497870.05.2416.69 172.68.194.144http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-830165980/481/2271_ 33.112285429050.05.3344.30 162.158.38.194h2futurefocusfarm.com:443GET /wp-admin/css/colors/ocean/index.php HTTP/2.0 1-830165980/488/2318_ 33.15055464560.04.1815.55 162.158.38.194h2futurefocusfarm.com:443GET /bi.php HTTP/2.0 1-830165980/446/2243_ 33.14126377750.04.1312.04 162.158.38.194h2futurefocusfarm.com:443GET /wp-admin/css/wp-login.php HTTP/2.0 1-830165980/485/2345_ 33.15
Found on 2025-08-25 09:44 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f0fc93dc8Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Saturday, 23-Aug-2025 08:32:58 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 2 days 1 hour 56 minutes 4 seconds Server load: 1.02 1.22 1.15 Total accesses: 125869 - Total Traffic: 772.1 MB - Total Duration: 2698710 CPU Usage: u58.17 s32.22 cu1086.29 cs224.75 - .78% CPU load .7 requests/sec - 4503 B/second - 6.3 kB/request - 21.4406 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 3216968no0yes0025000 4216970no0yes1024000 Sum200 1049000 ................................................................ ..........._______________________________________W__________... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1-0/0/1973. 0.00318730377390.00.0010.29 172.70.188.19http/1.1comms.ivarse.com:80GET /example.zip HTTP/1.1 0-1-0/0/1895. 0.00318730321170.00.0011.03 172.70.143.15http/1.1comms.ivarse.com:80GET /administrators.zip HTTP/1.1 0-1-0/0/1941. 0.00318730331140.00.0011.16 172.70.93.18http/1.1comms.ivarse.com:80GET /ux.zip HTTP/1.1 0-1-0/0/1966. 0.00318730323870.00.0010.51 172.70.208.150http/1.1comms.ivarse.com:80GET /tutorial.zip HTTP/1.1 0-1-0/0/1870. 0.00318730323330.00.009.94 172.71.81.181http/1.1comms.ivarse.com:80GET /docs.zip HTTP/1.1 0-1-0/0/1898. 0.00318730328130.00.0014.39 162.158.170.246http/1.1comms.ivarse.com:80GET /terms.zip HTTP/1.1 0-1-0/0/1878. 0.00318730348930.00.0011.68 172.70.142.116http/1.1comms.ivarse.com:80GET /plesk.zip HTTP/1.1 0-1-0/0/1927. 0.00318730343630.00.0013.05 162.158.108.46http/1.1comms.ivarse.com:80GET /random.zip HTTP/1.1 0-1-0/0/1910. 0.00318730347720.00.0010.04 162.158.170.140http/1.1comms.ivarse.com:80GET /documentation.zip HTTP/1.1 0-1-0/0/1896. 0.00318730325270.00.0012.41 162.158.88.34http/1.1comms.ivarse.com:80GET /organization.zip HTTP/1.1 0-1-0/0/1927. 0.00318730321660.00.0011.72 172.70.208.54http/1.1comms.ivarse.com:80GET /project.zip HTTP/1.1 0-1-0/0/1926. 0.00318730332210.00.0010.69 172.71.124.167http/1.1comms.ivarse.com:80GET /typo3.zip HTTP/1.1 0-1-0/0/1969. 0.00318730337680.00.0016.47 172.69.176.65http/1.1comms.ivarse.com:80GET /legal.zip HTTP/1.1 0-1-0/0/1864. 0.00318730341980.00.009.83 104.23.175.164http/1.1comms.ivarse.com:80GET /unique.zip HTTP/1.1 0-1-0/0/1900. 0.00318730387080.00.009.85 162.158.108.125http/1.1comms.ivarse.com:80GET /themes.zip HTTP/1.1 0-1-0/0/1911. 0.00318730322590.00.0010.40 172.71.124.77http/1.1comms.ivarse.com:80GET /standard.zip HTTP/1.1 0-1-0/0/1870. 0.00318730312810.00.0016.89 172.70.93.64http/1.1comms.ivarse.com:80GET /readme.zip HTTP/1.1 0-1-0/0/1882. 0.00318730329540.00.0010.79 162.158.190.19http/1.1comms.ivarse.com:80GET /configs.zip HTTP/1.1 0-1-0/0/1875. 0.00318730331860.00.0036.19 162.158.170.199http/1.1comms.ivarse.com:80GET /changelog.zip HTTP/1.1 0-1-0/0/1879. 0.00318730320130.00.009.61 172.71.124.193http/1.1comms.ivarse.com:80GET /fullstory.zip HTTP/1.1 0-1-0/0/1881. 0.00318730316280.00.0011.57 172.70.93.26http/1.1comms.ivarse.com:80GET /company.zip HTTP/1.1 0-1-0/0/1908. 0.00318730319780.00.0010.72 172.69.176.90http/1.1comms.ivarse.com:80GET /admin.zip HTTP/1.1 0-1-0/0/1916. 0.00318730320810.00.008.75 172.68.164.78http/1.1comms.ivarse.com:80GET /sample.zip HTTP/1.1 0-1-0/0/1939. 0.00318730382510.00.0012.35 162.158.162.70http/1.1comms.ivarse.com:80GET /mirror.zip HTTP/1.1 0-1-0/0/1930. 0.00318730333140.00.0010.44 162.158.162.38http/1.1comms.ivarse.com:80GET /default.zip HTTP/1.1 1-1-0/0/1822. 0.00318720285220.00.008.25 172.70.93.93http/1.1comms.ivarse.com:80GET /global.zip HTTP/1.1 1-1-0/0/1836. 0.00318720282670.00.0010.64 172.69.176.114http/1.1comms.ivarse.com:80GET /pinterest.zip HTTP/1.1 1-1-0/0/1888. 0.00318720320500.00.0034.78 172.71.82.54http/1.1comms.ivarse.com:80GET /business.zip HTTP/1.1 1-1-0/0/1813. 0.00318720310040.00.008.06 172.71.124.96http/1.1comms.ivarse.com:80GET /department.zip HTTP/1.1 1-1-0/0/1850. 0.00318720314950.00.008.38 172.71.152.96http/1.1comms.ivarse.com:80GET /authentication.zip HTTP/1.1 1-1-0/0/1816. 0.00318720326950.00.0012.05 162.158.88.121http/1.1comms.ivarse.com:80GET /work.zip HTTP/1.1 1-1-0/0/1778. 0.00318720324170.00.009.15 172.70.142.51http/1.1comms.ivarse.com:80GET /division.zip HTTP/1.1 1-1-0/0/1756. 0.00318720301980.00.008.94 108.162.227.138http/1.1comms.ivarse.com:80GET /privacy.zip HTTP/1.1 1-1-0/0/1825. 0.00318720354130.00.0011.50 172.69.176.41http/1.1comms.ivarse.com:80GET /backup_monthly.zip HTTP/1.1 1-1-0/0/1862. 0.00318720341400.00.0010.39 172.71.124.205http/1.1comms.ivarse.com:80GET /ini.zip HTTP/1.1 1-1-0/0/1828. 0.00318720282260.00.009.54 172.70.93.118http/1.1comms.ivarse.com:80GET /universal.zip HTTP/1.1 1-1-0/0/1822. 0.00318720333740.00.008.56 172.71.82.144http/1.1comms.ivarse.com:80GET /sqlite.zip HTTP/1.1 1-1-0/0/1807. 0.00318720354020.00.009.86 172.71.152.33http/1.1comms.ivarse.com:80GET /cdn.zip HTTP/1.1 1-1-0/0/1808. 0.00318720285470.00.008.71 172.70.142.107http/1.1comms.ivarse.com:80GET /other.zip HTTP/1.1 1-1-0/0/1778. 0.00318720314450.00.008.54 172.69.176.48http/1.1comms.ivarse.com:80GET /customer.zip HTTP/1.1 1-1-0/0/1833. 0.00318720340970.00.0011.43 172.71.124.76http/1.1comms.ivarse.com:80GET /misc.zip HTTP/1.1 1-1-0/0/1832. 0.00318720342290.00.0014.91 162.158.88.26http/1.1comms.ivarse.com:80GET /control.zip HTTP/1.1 1-1-0/0/1878. 0.00318720342330.00.008.67 172.70.208.101http/1.1comms.ivarse.com:80GET /group.zip HTTP/1.1 1-1-0/0/1825. 0.00318720386990.00.0011.39 172.71.81.76http/1.1comms.ivarse.com:80GET /team.zip HTTP/1.1 1-1-0/0/1758. 0.00318720329340.00.0038.85 162.158.88.94http/1.1comms.ivarse.com:80GET /guide.zip HTTP/1.1 1-1-0/0/1799. 0.00318720324660.00.0011.29 162.158.108.62http/1.1comms.ivarse.com:80GET /shared.zip HTTP/1.1 1-1-0/0/1767. 0.00318720290750.00.007.83 162.158.88.132http/1.1comms.ivarse.com:80GET /common.zip HTTP/1.1 1-1-0/0/1827. 0.00318720322150.00.008.74 172.71.82.61http/1.1comms.ivarse.com:80GET /miscellaneous.zip HTTP/1.1 1-1-0/0/1828. 0.00318720322210.00.008.02 162.158.163.105http/1.1comms.ivarse.com:80GET /process.zip HTTP/1.1 1-1-0/0/1840. 0.00318720291420.00.0020.02 172.71.124.240http/1.1comms.ivarse.com:80GE
Found on 2025-08-23 08:32 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fef15aeffApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Friday, 22-Aug-2025 07:14:22 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 1 day 37 minutes 28 seconds Server load: 0.76 0.94 0.97 Total accesses: 62424 - Total Traffic: 457.2 MB - Total Duration: 1872762 CPU Usage: u47.28 s24.36 cu469.14 cs96.7 - .719% CPU load .704 requests/sec - 5.3 kB/second - 7.5 kB/request - 30.0007 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0915215no0yes1024000 1915216no0yes0025000 Sum200 1049000 ________________W_________________________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-19152150/312/889_ 34.0811226940.02.024.31 172.71.164.229h2bayer-application.fi-careers.onGET / HTTP/2.0 0-19152150/296/808_ 33.9801164230.01.924.35 172.71.22.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/326/835_ 33.86351171510.02.335.03 172.71.150.113h2futurefocusfarm.com:443GET /contact.html HTTP/2.0 0-19152150/301/832_ 33.88350162060.01.854.84 172.71.150.113h2futurefocusfarm.com:443GET /recipes.html HTTP/2.0 0-19152150/290/808_ 34.00400172710.01.684.06 104.23.229.19h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/306/825_ 34.1000189800.01.634.04 172.70.231.101http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 0-19152150/289/801_ 34.05401197960.01.824.24 162.158.217.131h2rmail.jointdivisoncxvii.me:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0 0-19152150/305/820_ 34.0710206210.01.877.12 104.23.239.76h2bayer-application.fi-careers.onGET / HTTP/2.0 0-19152150/312/820_ 34.1001194020.01.924.08 162.158.94.74h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-19152150/295/800_ 34.1000175740.01.206.01 172.71.148.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 0-19152150/311/839_ 34.0900143950.02.705.14 162.158.154.98http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-19152150/289/826_ 34.0710139490.01.754.47 162.158.158.38http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-19152150/309/846_ 34.1001180530.01.8710.74 172.71.148.73h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 0-19152150/282/788_ 33.92400196970.01.014.59 172.71.184.99h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/314/834_ 33.82451169690.01.804.27 172.64.236.146h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/277/819_ 34.01400158270.01.444.01 172.71.147.25h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152151/285/784W 33.8600170830.01.6710.59 162.158.158.62http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-19152150/295/809_ 34.0800154290.02.024.54 162.158.159.115http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-19152150/305/796_ 34.071174193600.021.2430.13 172.70.115.98http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-19152150/296/800_ 33.8501183110.01.203.56 172.71.144.128h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-19152150/308/813_ 34.1000157840.02.525.25 104.23.187.26http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-19152150/286/840_ 34.0710147200.02.414.76 104.23.190.39http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-19152150/293/833_ 34.061469184900.01.574.11 162.158.63.88http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-19152150/297/819_ 34.0902166900.01.463.95 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-19152150/307/856_ 34.1000157000.01.285.33 104.23.190.214http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-19152160/240/1187_ 30.733817216870.00.995.31 172.68.211.43http/1.1api.msz-pl.com:80GET /faq.php HTTP/1.1 1-19152160/233/1174_ 30.733929206760.00.737.65 172.68.211.43http/1.1api.msz-pl.com:80GET /file6.php HTTP/1.1 1-19152160/249/1210_ 30.714027230510.01.0230.35 172.68.211.43http/1.1api.msz-pl.com:80GET /content.php HTTP/1.1 1-19152160/255/1140_ 30.75021223140.01.074.80 172.70.240.21h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-19152160/239/1175_ 30.704229211020.00.975.50 172.68.211.43http/1.1api.msz-pl.com:80GET /simple.php HTTP/1.1 1-19152160/248/1152_ 30.714120233360.00.745.44 172.68.211.43http/1.1api.msz-pl.com:80GET /file17.php HTTP/1.1 1-19152160/235/1126_ 30.75120242290.00.845.83 172.70.240.90h2bayer-application.fi-careers.onGET / HTTP/2.0 1-19152160/256/1137_ 30.714119224300.01.086.22 172.68.211.43http/1.1api.msz-pl.com:80GET /about/function.php/ HTTP/1.1 1-19152160/234/1149_ 30.733819274520.00.798.80 172.68.211.43http/1.1api.msz-pl.com:80GET /file19.php HTTP/1.1 1-19152160/265/1221_ 30.733820259640.01.327.56 172.68.211.43http/1.1api.msz-pl.com:80GET /file4.php HTTP/1.1 1-19152160/241/1184_ 30.723919214960.01.056.68 172.68.211.43http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-19152160/261/1169_ 30.73119244700.01.175.91 172.70.250.42h2bayer-application.fi-careers.onGET / HTTP/2.0 1-19152160/243/1151_ 30.714136261550.00.756.58 172.68.211.43http/1.1api.msz-pl.com:80GET /test/php-info.php HTTP/1.1 1-19152160/259/1172_ 30.714020177470.01.216.06 172.68.211.43http/1.1api.msz-pl.com:80GET /file9 HTTP/1.1 1-19152160/246/1159_ 30.733929227240.01.045.86 172.68.211.43http/1.1api.msz-pl.com:80GET /as.php HTTP/1.1 1-19152160/263/1150_ 30.703223246620.01.258.43 172.68.211.43http/1.1api.msz-pl.com:80GET /packed.php HTTP/1.1 1-19152160/244/1142_ 30.733724228890.00.7911.48 172.68.211.43http/1.1api.msz-pl.com:80GET /log.php HTTP/1.1 1-19152160/257/1189_ 30.714033246050.00.895.33 172.68.211.43http/1.1api.msz-pl.com:80GET /mah.php HTTP/1.1 1-19152160/251/1189_ 30.733817262790.00.978.49 172.68.211.43http/1.1api.msz-pl.com:80GET /file.php HTTP/1.1 1-19152160/229/1121_ 30.733725238950.00.9035.99 172.68.211.43http/1.1api.msz-pl.com:80GET /file18.php HTTP/1.1 1-19152160/263/1165_ 30.714125238820.01.098.65 172.68.211.43http/1.1api.msz-pl.com:80GET /assets/images/doc.php HTTP/1.1 1-19152160/237/1137_ 30.723917187290.00.985.19 172.68.211.43http/1.1api.msz-pl.com:80GET /themes.php HTTP/1.1 1-19152160/255/1176_ 30.7500243100.01.366.09 104.23.190.104http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-19152160/238/1156_ 30.71402822558
Found on 2025-08-22 07:14 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f1aef94a1Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 21-Aug-2025 10:25:57 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 3 hours 49 minutes 3 seconds Server load: 0.95 0.89 0.89 Total accesses: 8962 - Total Traffic: 119.2 MB - Total Duration: 144998 CPU Usage: u27.99 s13.89 cu0 cs0 - .305% CPU load .652 requests/sec - 8.9 kB/second - 13.6 kB/request - 16.1792 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02574580no0yes1024000 12574581no24yes10240230 Sum2024 20480230 ______________W_________________________________R_.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-025745800/132/132_ 15.8917340260.01.121.12 162.158.110.30h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 0-025745800/117/117_ 15.654212360.01.351.35 172.69.214.154http/1.1ivarse.com:80GET /server-status HTTP/1.1 0-025745800/111/111_ 15.781425229080.01.711.71 108.162.226.106h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/124/124_ 15.821013430.01.981.98 162.158.86.195h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/126/126_ 15.8932816310.01.461.46 172.69.134.75h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 0-025745800/128/128_ 15.8313109080.01.181.18 172.70.94.58http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-025745800/125/125_ 15.66147020340.01.041.04 172.69.17.71h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/119/119_ 15.8242029230.04.114.11 172.70.230.60h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/131/131_ 15.723018680.01.271.27 172.70.218.237h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/113/113_ 15.65131027830.03.673.67 172.70.80.44http/1.1ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-025745800/129/129_ 15.891010010.01.451.45 162.158.189.152http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-025745800/125/125_ 15.891013910.01.651.65 172.69.176.61http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-025745800/134/134_ 15.80132011120.07.437.43 172.68.35.129h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/111/111_ 15.883015730.01.111.11 172.70.247.12h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745801/132/132W 15.830025090.01.541.54 172.70.92.171http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-025745800/132/132_ 15.864014470.01.611.61 162.158.167.107h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/118/118_ 15.89206830.07.837.83 104.23.175.184http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-025745800/115/115_ 15.83137314240.01.151.15 172.69.74.221h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/127/127_ 15.88322110560.07.807.80 104.23.175.226http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-025745800/120/120_ 15.7402510380.01.311.31 108.162.237.49h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/117/117_ 15.87408690.01.411.41 162.158.167.172h2bayer-application.fi-careers.onGET /server HTTP/2.0 0-025745800/134/134_ 15.75142247510.01.181.18 104.23.203.131http/1.1api.msz-pl.com:80GET /.well-known/acme-challenge/gzcE9EW6hg4xMImw9AnL6hHjQmMbMEm 0-025745800/136/136_ 15.864018930.01.321.32 162.158.94.191h2bayer-application.fi-careers.onGET / HTTP/2.0 0-025745800/124/124_ 15.9002811790.01.291.29 172.70.246.131h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 0-025745800/119/119_ 15.57132016300.02.602.60 162.158.158.111h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/241/241_ 24.772036020.01.081.08 172.69.166.108http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-025745810/244/244_ 24.732034900.01.621.62 172.69.134.69h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-025745810/245/245_ 24.742137140.01.791.79 162.158.167.207h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-025745810/219/219_ 24.782143230.01.051.05 162.158.95.114h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-025745810/243/243_ 24.791044280.01.481.48 172.69.134.6h2bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/2.0 1-025745810/226/226_ 24.732132760.02.442.44 172.69.135.126h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-025745810/220/220_ 24.633136160.01.371.37 162.158.49.73http/1.1comms.ivarse.com:80GET /1aa.php HTTP/1.1 1-025745810/230/230_ 24.773150500.01.461.46 172.71.155.36h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-025745810/244/244_ 24.773487350.04.214.21 172.69.134.66h2bayer-application.fi-careers.onGET /.git/config HTTP/2.0 1-025745810/255/255_ 24.810027080.03.073.07 172.70.208.55http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-025745810/256/256_ 24.760229410.01.981.98 172.69.23.187h2bayer-application.fi-careers.onGET /_all_dbs HTTP/2.0 1-025745810/226/226_ 24.773137180.01.491.49 162.158.167.207h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-025745810/223/223_ 24.792147270.03.073.07 172.71.155.12h2bayer-application.fi-careers.onGET /info.php HTTP/2.0 1-025745810/231/231_ 24.77326241440.01.461.46 172.69.134.187h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-025745810/228/228_ 24.801030440.01.531.53 172.71.246.23h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-025745810/230/230_ 24.732153110.04.114.11 162.158.167.124h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-025745810/236/236_ 24.773047110.07.917.91 172.69.166.108http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-025745810/220/220_ 24.653157110.01.241.24 162.158.49.73http/1.1comms.ivarse.com:80GET /ext.php HTTP/1.1 1-025745810/249/249_ 24.761126320.04.224.22 172.70.240.30h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-025745810/238/238_ 24.782028330.01.321.32 162.158.167.105h2bayer-application.fi-careers.onGET /telescope/requests HTTP/2.0 1-025745810/238/238_ 24.772150020.04.024.02 104.23.239.39h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-025745810/221/221_ 24.800036380.01.261.26 162.158.108.48http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-025745810/241/241_ 24.800150750.01.491.49 172.70.240.156h2bayer-applic
Found on 2025-08-21 10:25 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb3eab520Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 21-Aug-2025 09:18:40 UTC Restart Time: Thursday, 21-Aug-2025 06:36:54 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 2 hours 41 minutes 46 seconds Server load: 1.24 1.27 1.16 Total accesses: 6759 - Total Traffic: 111.1 MB - Total Duration: 118824 CPU Usage: u21.28 s10.45 cu0 cs0 - .327% CPU load .696 requests/sec - 11.7 kB/second - 16.8 kB/request - 17.5801 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02574580no3yes0025030 12574581no7yes1024061 Sum2010 1049091 _______________________________________W__________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-025745800/100/100_ 12.292038410.01.051.05 172.70.163.127http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-025745800/89/89_ 12.05153510310.01.281.28 162.158.6.202h2staplefordwingstravels.co.uk:44GET /php.php HTTP/2.0 0-025745800/83/83_ 12.27165726460.01.651.65 104.23.239.19h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/94/94_ 12.29219911160.01.911.91 172.71.178.131http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-025745800/97/97_ 12.2232013980.01.391.39 172.69.222.135h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/96/96_ 12.1815258040.01.121.12 162.158.6.202h2staplefordwingstravels.co.uk:44GET /sx21_1.php HTTP/2.0 0-025745800/98/98_ 12.02202519340.00.990.99 162.158.6.202h2staplefordwingstravels.co.uk:44GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/2.0 0-025745800/81/81_ 12.1992513000.04.054.05 162.158.6.202h2staplefordwingstravels.co.uk:44GET /amphicyon.php HTTP/2.0 0-025745800/99/99_ 12.1031916850.01.201.20 162.158.6.202h2staplefordwingstravels.co.uk:44GET /cwsd.php HTTP/2.0 0-025745800/88/88_ 12.06101922860.03.623.62 162.158.6.202h2staplefordwingstravels.co.uk:44GET /file17.php HTTP/2.0 0-025745800/97/97_ 12.29009160.01.391.39 172.69.43.175http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-025745800/92/92_ 12.13223010400.01.581.58 162.158.6.202h2staplefordwingstravels.co.uk:44GET /just2.php HTTP/2.0 0-025745800/99/99_ 12.2714258850.07.367.36 172.70.94.169h2rmail.jointdivisoncxvii.me:443POST /roundcube/?_task=mail&_action=refresh HTTP/2.0 0-025745800/90/90_ 12.2882010630.01.061.06 104.23.195.102h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/97/97_ 12.13221812040.01.481.48 162.158.6.202h2staplefordwingstravels.co.uk:44GET /asasx.php HTTP/2.0 0-025745800/100/100_ 12.18152713270.01.531.53 162.158.6.202h2staplefordwingstravels.co.uk:44GET /let.php HTTP/2.0 0-025745800/92/92_ 12.28335910.07.787.78 172.69.74.232http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1755767916.58172392845153808593 0-025745800/87/87_ 12.1422259780.01.101.10 162.158.6.202h2staplefordwingstravels.co.uk:44GET /classwithtostring.php HTTP/2.0 0-025745800/95/95_ 12.1519287550.07.737.73 162.158.6.202h2staplefordwingstravels.co.uk:44GET /ex.php HTTP/2.0 0-025745800/91/91_ 12.2520279210.01.251.25 104.23.221.82h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 0-025745800/88/88_ 12.1910297810.01.351.35 162.158.6.202h2staplefordwingstravels.co.uk:44GET /akcc.php HTTP/2.0 0-025745800/100/100_ 12.1715216080.01.111.11 162.158.6.202h2staplefordwingstravels.co.uk:44GET /s.php HTTP/2.0 0-025745800/101/101_ 12.2092916910.01.241.24 162.158.6.202h2staplefordwingstravels.co.uk:44GET /k.php HTTP/2.0 0-025745800/98/98_ 12.1422189920.01.241.24 162.158.6.202h2staplefordwingstravels.co.uk:44GET /j.php HTTP/2.0 0-025745800/94/94_ 12.15202115650.02.542.54 162.158.6.202h2staplefordwingstravels.co.uk:44GET /g.php HTTP/2.0 1-025745810/180/180_ 18.48110927580.00.930.93 162.158.116.150h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/186/186_ 18.51412526920.01.511.51 172.68.151.50h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/178/178_ 18.522027810.01.571.57 172.68.229.136http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-025745810/165/165_ 18.52349432520.00.790.79 172.71.178.148http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-025745810/174/174_ 18.521036080.01.151.15 172.71.241.54http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-025745810/178/178_ 18.47210728000.02.312.31 172.70.248.92h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/186/186_ 18.42416731090.01.251.25 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /let.php HTTP/1.1 1-025745810/169/169_ 18.521044820.01.271.27 172.71.178.21http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-025745810/190/190_ 18.38417777300.04.024.02 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /sx21_1.php HTTP/1.1 1-025745810/190/190_ 18.41412223970.02.952.95 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /sx21_1.php HTTP/1.1 1-025745810/189/189_ 18.520022260.01.781.78 172.70.85.76http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-025745810/175/175_ 18.46410725120.01.331.33 172.70.94.169http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-025745810/167/167_ 18.40110741320.01.311.31 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /litanies.php HTTP/1.1 1-025745810/163/163_ 18.41613932460.01.281.28 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /g.php HTTP/1.1 1-025745811/173/173W 18.450024060.01.351.35 141.101.99.156http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-025745810/177/177_ 18.38420150790.04.034.03 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /bluejackets.php HTTP/1.1 1-025745810/181/181_ 18.41612239170.07.817.81 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /ex.php HTTP/1.1 1-025745810/168/168_ 18.41613548300.01.071.07 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /1.php HTTP/1.1 1-025745810/189/189_ 18.521020350.03.223.22 172.71.26.88http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-025745810/172/172_ 18.42213924570.01.181.18 172.70.248.92h2staplefordwingstravels.co.uk:44[0/0] init 1-025745810/177/177_ 18.50618140890.03.843.84 104.23.221.101h2staplefordwingstravels.co.uk:44POST /xmlrpc.php HTTP/2.0 1-025745810/163/163_ 18.40813932970.01.131.13 162.158.49.16http/1.1staplefordwingstravels.co.uk:80GET /classwithtostring.php HTTP/1.1 1-025745810/175/175_ 18.520037620.01.381.38 172.68.186.76http/1.1
Found on 2025-08-21 09:18 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f7e73d7bbApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 18-Aug-2025 12:56:39 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 4 days 6 hours 47 minutes 40 seconds Server load: 1.52 1.00 0.92 Total accesses: 200794 - Total Traffic: 1.9 GB - Total Duration: 44027013 CPU Usage: u19.61 s17.12 cu1809.55 cs344.57 - .592% CPU load .543 requests/sec - 5.3 kB/second - 9.8 kB/request - 219.265 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 1905043no15yes00250141 21015311no0yes0025000 31015381no15yes10240131 Sum3030 10740272 ........................._______________________________________ _________________________________W__............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/1366. 0.0091472090379460.00.0029.16 141.101.76.36http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1358. 0.0091472143309020.00.007.75 172.71.98.94http/1.1api.msz-pl.com:80GET /test/.git/config HTTP/1.1 0-6-0/0/1385. 0.0091472121278920.00.0010.24 172.71.98.108http/1.1api.msz-pl.com:80GET /dev/.git/config HTTP/1.1 0-6-0/0/1342. 0.0091472066401630.00.0013.52 172.70.47.180http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1206. 0.009147178027899100.00.006.69 172.70.47.180http/1.1api.msz-pl.com:80GET /git/config HTTP/1.1 0-6-0/0/1417. 0.0091471086319490.00.0010.75 172.71.183.32http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1381. 0.0091471793336980.00.007.71 104.23.170.164http/1.1api.msz-pl.com:80GET /build/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091473110316100.00.0014.91 104.23.168.66http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1380. 0.0091471793301290.00.0010.12 104.23.170.190http/1.1api.msz-pl.com:80GET /web/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091471022338130.00.0011.61 104.23.170.190http/1.1api.msz-pl.com:80GET /assets/.git/config HTTP/1.1 0-6-0/0/1382. 0.0091472127274720.00.007.27 172.71.182.25http/1.1api.msz-pl.com:80GET /html/.git/config HTTP/1.1 0-6-0/0/1359. 0.0091472126324890.00.007.91 172.71.182.161http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1340. 0.00914735029267460.00.009.07 172.70.46.188http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091472088321060.00.007.63 104.23.166.165http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091473134377280.00.009.75 172.71.183.32http/1.1api.msz-pl.com:80GET /main/.git/config HTTP/1.1 0-6-0/0/1365. 0.0091473126278000.00.007.30 172.71.183.34http/1.1api.msz-pl.com:80GET /cms/.git/config HTTP/1.1 0-6-0/0/1378. 0.0091473092358910.00.0011.11 104.23.166.117http/1.1api.msz-pl.com:80GET /wp-admin/.git/config HTTP/1.1 0-6-0/0/1321. 0.0091472138322530.00.009.89 104.23.170.165http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1377. 0.0091472093437490.00.0024.21 104.23.170.194http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1356. 0.0091472092298660.00.007.51 172.70.47.82http/1.1api.msz-pl.com:80GET /administrator/.git/config HTTP/1.1 0-6-0/0/1329. 0.0091472065306600.00.0013.56 104.23.172.47http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1376. 0.0091472098672260.00.007.83 172.71.102.162http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1387. 0.0091472108282680.00.007.25 172.71.98.109http/1.1api.msz-pl.com:80GET /static/.git/config HTTP/1.1 0-6-0/0/1333. 0.0091472060385080.00.006.81 104.23.166.166http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1373. 0.0091472151273060.00.008.81 172.70.46.23http/1.1api.msz-pl.com:80GET /backup/.git/config HTTP/1.1 1-69050430/50/797_ 3.47417198510.00.814.41 104.23.187.52h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/55/792_ 3.483177245860.01.866.23 172.70.251.179http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-69050430/64/800_ 3.5310224040.00.8111.01 172.71.164.164http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-69050430/58/815_ 3.4610266100.01.037.27 172.70.92.199http/1.1bayer-application.fi-careers.onGET /.well-known/acme-challenge/RqSRzkMR-MrIiXqLRcxNhqAB3fGYrNq 1-69050430/55/816_ 3.50317195430.01.825.97 172.71.182.222h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/55/820_ 3.5030237930.00.384.91 104.23.203.207http/1.1bayer-application.fi-careers.onGET /.well-known/acme-challenge/-1Cy4yCYxfWdSx_RBsB78ZPPXW5OTPU 1-69050430/61/798_ 3.54018219830.00.905.39 104.23.170.137h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-69050430/59/799_ 3.52220214300.00.834.86 172.70.243.41h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/58/804_ 3.42017258090.00.6113.85 172.71.154.47h2futurefocusfarm.com:443GET /who-we-are/mission-and-values.html HTTP/2.0 1-69050430/63/768_ 3.5400244390.01.047.50 162.158.111.51http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-69050430/57/776_ 3.503198237810.00.825.89 172.71.250.56http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-69050430/67/794_ 3.5400198820.01.055.79 104.23.239.39http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-69050430/66/825_ 3.5120193110.01.998.96 172.71.148.83http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/59/825_ 3.52250244390.01.655.96 172.68.193.180h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/57/776_ 3.50318218890.00.655.73 172.70.243.143h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/58/824_ 3.3620217870.00.314.87 172.71.148.90http/1.1comms.ivarse.com:80GET /website.tar.gz HTTP/1.1 1-69050430/55/804_ 3.4020198480.01.456.99 172.71.223.131h2staplefordwingstravels.co.uk:44GET /apply/ HTTP/2.0 1-69050430/58/783_ 3.5402202120.01.235.46 162.158.95.102http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-69050430/57/798_ 3.5120232160.00.624.71 172.68.193.213http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/56/787_ 3.52220189100.00.605.40 104.23.170.100h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-69050430/56/790_ 3.34018185540.01.145.25 172.70.240.148http/1.1api.msz-pl.com:80GET /wp-admin/css/colors/ocean/ HTTP/1.1 1-69050430/53/784_ 3.32119214180.01.628.80 172.70.240.148http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-69050430/50/809_ 3.32118194650.00.7914.45 172.70.240.148http/1.1api.msz-pl.com:80GET /w
Found on 2025-08-18 12:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f5ade0b6cApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Monday, 18-Aug-2025 12:56:39 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 7 Parent Server MPM Generation: 6 Server uptime: 4 days 6 hours 47 minutes 40 seconds Server load: 1.52 1.00 0.92 Total accesses: 200792 - Total Traffic: 1.9 GB - Total Duration: 44027010 CPU Usage: u19.6 s17.12 cu1809.55 cs344.57 - .592% CPU load .543 requests/sec - 5.3 kB/second - 9.8 kB/request - 219.267 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 73 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 1905043no15yes10240141 21015311no0yes0025000 31015381no15yes10240131 Sum3030 20730272 ........................._________________W_____________________ ________________________________R___............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/1366. 0.0091472090379460.00.0029.16 141.101.76.36http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1358. 0.0091472143309020.00.007.75 172.71.98.94http/1.1api.msz-pl.com:80GET /test/.git/config HTTP/1.1 0-6-0/0/1385. 0.0091472121278920.00.0010.24 172.71.98.108http/1.1api.msz-pl.com:80GET /dev/.git/config HTTP/1.1 0-6-0/0/1342. 0.0091472066401630.00.0013.52 172.70.47.180http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1206. 0.009147178027899100.00.006.69 172.70.47.180http/1.1api.msz-pl.com:80GET /git/config HTTP/1.1 0-6-0/0/1417. 0.0091471086319490.00.0010.75 172.71.183.32http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1381. 0.0091471793336980.00.007.71 104.23.170.164http/1.1api.msz-pl.com:80GET /build/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091473110316100.00.0014.91 104.23.168.66http/1.1api.msz-pl.com:80GET /src/.git/config HTTP/1.1 0-6-0/0/1380. 0.0091471793301290.00.0010.12 104.23.170.190http/1.1api.msz-pl.com:80GET /web/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091471022338130.00.0011.61 104.23.170.190http/1.1api.msz-pl.com:80GET /assets/.git/config HTTP/1.1 0-6-0/0/1382. 0.0091472127274720.00.007.27 172.71.182.25http/1.1api.msz-pl.com:80GET /html/.git/config HTTP/1.1 0-6-0/0/1359. 0.0091472126324890.00.007.91 172.71.182.161http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1340. 0.00914735029267460.00.009.07 172.70.46.188http/1.1api.msz-pl.com:80GET /app/.git/config HTTP/1.1 0-6-0/0/1423. 0.0091472088321060.00.007.63 104.23.166.165http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1371. 0.0091473134377280.00.009.75 172.71.183.32http/1.1api.msz-pl.com:80GET /main/.git/config HTTP/1.1 0-6-0/0/1365. 0.0091473126278000.00.007.30 172.71.183.34http/1.1api.msz-pl.com:80GET /cms/.git/config HTTP/1.1 0-6-0/0/1378. 0.0091473092358910.00.0011.11 104.23.166.117http/1.1api.msz-pl.com:80GET /wp-admin/.git/config HTTP/1.1 0-6-0/0/1321. 0.0091472138322530.00.009.89 104.23.170.165http/1.1api.msz-pl.com:80GET /tmp/.git/config HTTP/1.1 0-6-0/0/1377. 0.0091472093437490.00.0024.21 104.23.170.194http/1.1api.msz-pl.com:80GET /public/.git/config HTTP/1.1 0-6-0/0/1356. 0.0091472092298660.00.007.51 172.70.47.82http/1.1api.msz-pl.com:80GET /administrator/.git/config HTTP/1.1 0-6-0/0/1329. 0.0091472065306600.00.0013.56 104.23.172.47http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1376. 0.0091472098672260.00.007.83 172.71.102.162http/1.1api.msz-pl.com:80GET /.git/config HTTP/1.1 0-6-0/0/1387. 0.0091472108282680.00.007.25 172.71.98.109http/1.1api.msz-pl.com:80GET /static/.git/config HTTP/1.1 0-6-0/0/1333. 0.0091472060385080.00.006.81 104.23.166.166http/1.1api.msz-pl.com:80GET /backend/.git/config HTTP/1.1 0-6-0/0/1373. 0.0091472151273060.00.008.81 172.70.46.23http/1.1api.msz-pl.com:80GET /backup/.git/config HTTP/1.1 1-69050430/50/797_ 3.47417198510.00.814.41 104.23.187.52h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/55/792_ 3.483177245860.01.866.23 172.70.251.179http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-69050430/64/800_ 3.5300224040.00.8111.01 172.71.164.164http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-69050430/58/815_ 3.4600266100.01.037.27 172.70.92.199http/1.1bayer-application.fi-careers.onGET /.well-known/acme-challenge/RqSRzkMR-MrIiXqLRcxNhqAB3fGYrNq 1-69050430/55/816_ 3.50317195430.01.825.97 172.71.182.222h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/55/820_ 3.5030237930.00.384.91 104.23.203.207http/1.1bayer-application.fi-careers.onGET /.well-known/acme-challenge/-1Cy4yCYxfWdSx_RBsB78ZPPXW5OTPU 1-69050430/61/798_ 3.54018219830.00.905.39 104.23.170.137h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-69050430/59/799_ 3.52220214300.00.834.86 172.70.243.41h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/58/804_ 3.42017258090.00.6113.85 172.71.154.47h2futurefocusfarm.com:443GET /who-we-are/mission-and-values.html HTTP/2.0 1-69050430/63/768_ 3.5400244390.01.047.50 162.158.111.51http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-69050430/57/776_ 3.503198237810.00.825.89 172.71.250.56http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-69050430/67/794_ 3.5400198820.01.055.79 104.23.239.39http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-69050430/66/825_ 3.5120193110.01.998.96 172.71.148.83http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/59/825_ 3.52250244390.01.655.96 172.68.193.180h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/57/776_ 3.50318218890.00.655.73 172.70.243.143h2bayer-application.fi-careers.onGET / HTTP/2.0 1-69050430/58/824_ 3.3620217870.00.314.87 172.71.148.90http/1.1comms.ivarse.com:80GET /website.tar.gz HTTP/1.1 1-69050430/55/804_ 3.4020198480.01.456.99 172.71.223.131h2staplefordwingstravels.co.uk:44GET /apply/ HTTP/2.0 1-69050431/57/782W 3.4700202100.01.235.46 162.158.95.102http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-69050430/57/798_ 3.5120232160.00.624.71 172.68.193.213http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-69050430/56/787_ 3.52120189100.00.605.40 104.23.170.100h2bayer-application.fi-careers.onGET /@vite/env HTTP/2.0 1-69050430/56/790_ 3.34018185540.01.145.25 172.70.240.148http/1.1api.msz-pl.com:80GET /wp-admin/css/colors/ocean/ HTTP/1.1 1-69050430/53/784_ 3.32119214180.01.628.80 172.70.240.148http/1.1api.msz-pl.com:80GET /radio.php HTTP/1.1 1-69050430/50/809_ 3.32118194650.00.7914.45 172.70.240.148http/1.1api.msz-pl.com:80
Found on 2025-08-18 12:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f2b55187fApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Sunday, 17-Aug-2025 08:10:36 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 5 Parent Server MPM Generation: 4 Server uptime: 3 days 2 hours 1 minute 37 seconds Server load: 1.49 1.31 1.13 Total accesses: 132345 - Total Traffic: 1.1 GB - Total Duration: 26047880 CPU Usage: u25.9 s18.79 cu1160.31 cs220.21 - .535% CPU load .497 requests/sec - 4565 B/second - 9.0 kB/request - 196.818 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 3340637no0yes0025000 4340728no0yes1024000 5340827no0yes0025000 Sum300 1074000 ................................................................ ..........._____________________________________________W_______ ______________________ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-4-0/0/687. 0.00249532041179220.00.007.21 172.69.74.236http/1.1api.msz-pl.com:80GET /app_src.zip HTTP/1.1 0-4-0/0/706. 0.00249531025156190.00.003.31 104.23.195.99http/1.1api.msz-pl.com:80GET /htdocs.zip HTTP/1.1 0-4-0/0/704. 0.00249532136107230.00.002.63 104.23.195.101http/1.1api.msz-pl.com:80GET /code_backup.zip HTTP/1.1 0-4-0/0/685. 0.00249533115128440.00.008.74 172.69.74.198http/1.1api.msz-pl.com:80GET /venv.zip HTTP/1.1 0-4-0/0/700. 0.00249533132121100.00.003.22 172.69.74.210http/1.1api.msz-pl.com:80GET /backup3.zip HTTP/1.1 0-4-0/0/726. 0.00249531027145660.00.005.66 104.23.195.91http/1.1api.msz-pl.com:80GET /backup.zip HTTP/1.1 0-4-0/0/698. 0.00249534126164830.00.004.08 172.69.74.232http/1.1api.msz-pl.com:80GET /apikeys_backup.zip HTTP/1.1 0-4-0/0/734. 0.00249531019142960.00.007.58 172.69.74.224http/1.1api.msz-pl.com:80GET /dashboard.zip HTTP/1.1 0-4-0/0/694. 0.00249533084125400.00.002.59 104.23.195.84http/1.1api.msz-pl.com:80GET /archive.zip HTTP/1.1 0-4-0/0/696. 0.00249534109166840.00.005.93 104.23.195.86http/1.1api.msz-pl.com:80GET /daily_backup.zip HTTP/1.1 0-4-0/0/721. 0.002495317116550.00.002.79 104.23.195.86http/1.1api.msz-pl.com:80GET /virtualenv.zip HTTP/1.1 0-4-0/0/678. 0.00249531041129190.00.003.94 172.69.74.225http/1.1api.msz-pl.com:80GET /deps.zip HTTP/1.1 0-4-0/0/697. 0.00249533105180610.00.004.95 104.23.195.99http/1.1api.msz-pl.com:80GET /sessions_backup.zip HTTP/1.1 0-4-0/0/728. 0.00249533449143400.00.003.34 172.69.74.242http/1.1api.msz-pl.com:80GET /weekly_backup.zip HTTP/1.1 0-4-0/0/692. 0.00249535124127850.00.004.92 172.69.74.225http/1.1api.msz-pl.com:80GET /api.zip HTTP/1.1 0-4-0/0/683. 0.00249532131114630.00.003.10 172.69.74.241http/1.1api.msz-pl.com:80GET /temporary.zip HTTP/1.1 0-4-0/0/699. 0.00249534146166740.00.002.64 104.23.195.104http/1.1api.msz-pl.com:80GET /iam.zip HTTP/1.1 0-4-0/0/663. 0.00249533095162380.00.003.61 104.23.195.82http/1.1api.msz-pl.com:80GET /env_backup.zip HTTP/1.1 0-4-0/0/708. 0.00249534135140410.00.009.10 104.23.195.73http/1.1api.msz-pl.com:80GET /project_src.zip HTTP/1.1 0-4-0/0/702. 0.00249533142128920.00.003.13 104.23.195.104http/1.1api.msz-pl.com:80GET /code.zip HTTP/1.1 0-4-0/0/692. 0.00249533090100910.00.002.66 172.69.74.231http/1.1api.msz-pl.com:80GET /deploy.zip HTTP/1.1 0-4-0/0/670. 0.00249534134125650.00.002.74 172.69.74.232http/1.1api.msz-pl.com:80GET /plugin_backup.zip HTTP/1.1 0-4-0/0/702. 0.002495317125930.00.003.17 172.69.74.233http/1.1api.msz-pl.com:80GET /src.zip HTTP/1.1 0-4-0/0/666. 0.00249533137201110.00.002.32 172.69.74.204http/1.1api.msz-pl.com:80GET /mongodb.zip HTTP/1.1 0-4-0/0/679. 0.002495333107940.00.002.71 104.23.195.59http/1.1api.msz-pl.com:80GET /vendor.zip HTTP/1.1 1-4-0/0/663. 0.002495335127940.00.002.39 104.23.195.83http/1.1api.msz-pl.com:80GET /handlers.zip HTTP/1.1 1-4-0/0/659. 0.00249533083156650.00.002.84 104.23.195.83http/1.1api.msz-pl.com:80GET /joomla.zip HTTP/1.1 1-4-0/0/654. 0.00249533137157960.00.002.98 172.69.74.231http/1.1api.msz-pl.com:80GET /full_backup.zip HTTP/1.1 1-4-0/0/670. 0.00249533085183320.00.003.16 104.23.195.89http/1.1api.msz-pl.com:80GET /conf.zipconf.zip HTTP/1.1 1-4-0/0/664. 0.00249533070128940.00.003.03 172.69.74.243http/1.1api.msz-pl.com:80GET /email.zip HTTP/1.1 1-4-0/0/678. 0.00249534133160860.00.003.06 104.23.195.68http/1.1api.msz-pl.com:80GET /result_backup.zip HTTP/1.1 1-4-0/0/658. 0.00249531044153550.00.003.08 172.69.74.207http/1.1api.msz-pl.com:80GET /mail.zip HTTP/1.1 1-4-0/0/653. 0.00249533111134150.00.002.99 172.69.74.225http/1.1api.msz-pl.com:80GET /Archive.zip HTTP/1.1 1-4-0/0/661. 0.00249533099165890.00.0010.81 104.23.195.68http/1.1api.msz-pl.com:80GET /prod_backup.zip HTTP/1.1 1-4-0/0/626. 0.00249531055152460.00.005.28 104.23.195.88http/1.1api.msz-pl.com:80GET /root.zip HTTP/1.1 1-4-0/0/635. 0.00249532032155350.00.002.82 104.23.195.62http/1.1api.msz-pl.com:80GET /web.zip HTTP/1.1 1-4-0/0/644. 0.00249531020137820.00.002.49 172.69.74.206http/1.1api.msz-pl.com:80GET /credentials_backup.zip HTTP/1.1 1-4-0/0/684. 0.00249534114117790.00.005.12 104.23.195.89http/1.1api.msz-pl.com:80GET /codeigniter.zip HTTP/1.1 1-4-0/0/664. 0.00249534123177360.00.002.35 104.23.195.26http/1.1api.msz-pl.com:80GET /sqllite.zip HTTP/1.1 1-4-0/0/639. 0.00249533091151120.00.003.06 172.69.74.249http/1.1api.msz-pl.com:80GET /etc.zip HTTP/1.1 1-4-0/0/663. 0.00249533127144070.00.002.67 104.23.195.63http/1.1api.msz-pl.com:80GET /uploads.zip HTTP/1.1 1-4-0/0/664. 0.00249533105121840.00.003.22 172.69.74.212http/1.1api.msz-pl.com:80GET /configuration_backup.zip HTTP/1.1 1-4-0/0/643. 0.00249534124119430.00.002.81 172.69.74.237http/1.1api.msz-pl.com:80GET /session.zip HTTP/1.1 1-4-0/0/657. 0.00249534128143900.00.003.04 104.23.195.57http/1.1api.msz-pl.com:80GET /dbase.zip HTTP/1.1 1-4-0/0/646. 0.00249534148131070.00.002.97 172.69.74.222http/1.1api.msz-pl.com:80GET /public_html.zip HTTP/1.1 1-4-0/0/646. 0.00249532050125610.00.002.85 172.69.74.230http/1.1api.msz-pl.com:80GET /secret.zip HTTP/1.1 1-4-0/0/651. 0.00249533104145880.00.005.58 172.69.74.231http/1.1api.msz-pl.com:80GET /setup.zip HTTP/1.1 1-4-0/0/679. 0.002495317132510.00.0011.24 104.23.195.39http/1.1api.msz-pl.com:80GET /project.zip HTTP/1.1 1-4-0/0/654. 0.00249533063191680.00.002.73 104.23.195.95http/1.1api.msz-pl.com:80GET /config.zip HTTP/1.1 1-4-0/0/645. 0.0024953101813944
Found on 2025-08-17 08:10 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f6fd7f967Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 14-Aug-2025 20:52:50 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 14 hours 43 minutes 50 seconds Server load: 0.70 0.74 0.79 Total accesses: 21046 - Total Traffic: 136.8 MB - Total Duration: 307957 CPU Usage: u39.57 s20.23 cu0 cs0 - .113% CPU load .397 requests/sec - 2704 B/second - 6.7 kB/request - 14.6326 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03071791no0yes0025000 13071792no10yes1024091 Sum2010 1049091 ______________________________________________W___.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-030717910/320/320_ 22.60232778910.06.076.07 172.68.71.144http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/336/336_ 22.620055040.01.641.64 104.23.190.220http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-030717910/312/312_ 22.59212240300.01.371.37 104.23.190.9http/1.1api.msz-pl.com:80GET /config.json HTTP/1.1 0-030717910/309/309_ 22.620048420.01.251.25 172.70.115.206http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-030717910/318/318_ 22.60241732910.02.292.29 162.158.86.95http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/342/342_ 22.5523246320.01.921.92 172.71.254.223http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-030717910/328/328_ 22.60241751830.02.272.27 172.71.172.190http/1.1api.msz-pl.com:80GET /s/335323e2836313e27363e2237313/_/;/META-INF/maven/com.atla 0-030717910/325/325_ 22.42231663660.03.803.80 172.68.164.42h2cryptofnpro.com:443GET /crypto_logos/BNB.png HTTP/2.0 0-030717910/320/320_ 22.37221830880.01.231.23 104.23.203.188h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/328/328_ 22.57241762960.01.731.73 162.158.155.32http/1.1api.msz-pl.com:80GET /about HTTP/1.1 0-030717910/320/320_ 22.59212539650.01.511.51 162.158.95.34http/1.1api.msz-pl.com:80GET /v2/_catalog HTTP/1.1 0-030717910/315/315_ 22.60221845750.02.902.90 172.70.240.128http/1.1api.msz-pl.com:80GET /.DS_Store HTTP/1.1 0-030717910/311/311_ 22.60241759960.03.793.79 172.70.248.183http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/338/338_ 22.62153952410.02.422.42 104.23.190.171http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-030717910/338/338_ 22.59131940090.03.923.92 104.23.239.43http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/317/317_ 22.60232748040.01.941.94 104.23.239.119http/1.1api.msz-pl.com:80GET /_all_dbs HTTP/1.1 0-030717910/320/320_ 22.62233066740.01.311.31 172.68.10.122http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/312/312_ 22.62182371950.02.592.59 141.101.69.90http/1.1api.msz-pl.com:80GET /wpp-config.php~ HTTP/1.1 0-030717910/311/311_ 22.60222252570.08.078.07 172.68.70.197http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/316/316_ 22.61231842430.01.631.63 172.68.195.141http/1.1api.msz-pl.com:80GET /info.php HTTP/1.1 0-030717910/326/326_ 22.572110729750.01.471.47 172.70.240.182http/1.1api.msz-pl.com:80GET / HTTP/1.1 0-030717910/320/320_ 22.61231941250.01.651.65 172.70.240.81http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/321/321_ 22.60133855550.01.911.91 162.158.155.76http/1.1api.msz-pl.com:80GET /?rest_route=/wp/v2/users/ HTTP/1.1 0-030717910/307/307_ 22.59212354780.01.301.30 162.158.87.49http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/290/290_ 22.60231942670.01.421.42 172.68.70.79http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/544/544_ 33.580049380.02.062.06 172.70.111.27http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-030717920/527/527_ 33.580068440.01.741.74 104.23.187.179http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-030717920/522/522_ 33.5401787840.02.182.18 141.101.69.89http/1.1api.msz-pl.com:80GET /.env.development.sample HTTP/1.1 1-030717920/544/544_ 33.5722115370.02.542.54 104.23.195.7http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1755204768.34962105751037597656 1-030717920/530/530_ 33.55251762610.02.262.26 172.71.164.4http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/543/543_ 33.5526061820.02.052.05 104.23.239.119http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/518/518_ 33.45211786600.02.362.36 172.68.164.124h2cryptofnpro.com:443GET /assets/CryptoFNDark-DXpj4qAS.png HTTP/2.0 1-030717920/519/519_ 33.5801854680.02.152.15 141.101.98.24h2comms.ivarse.com:443GET / HTTP/2.0 1-030717920/522/522_ 33.552524108760.010.0910.09 162.158.155.48http/1.1api.msz-pl.com:80GET /info.php HTTP/1.1 1-030717920/493/493_ 33.55251873370.02.422.42 172.71.148.38http/1.1api.msz-pl.com:80GET /config.json HTTP/1.1 1-030717920/508/508_ 33.580073230.02.152.15 104.23.190.174http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-030717920/506/506_ 33.53251850090.01.971.97 141.101.69.89http/1.1api.msz-pl.com:80GET /pinfo.php HTTP/1.1 1-030717920/538/538_ 33.581049030.04.764.76 162.158.63.10http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-030717920/543/543_ 33.53222199150.02.052.05 141.101.69.89http/1.1api.msz-pl.com:80GET /core/dataaccess/tablemetadata.php HTTP/1.1 1-030717920/500/500_ 33.590082200.01.681.68 172.70.115.97http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-030717920/517/517_ 33.5402173960.02.062.06 104.23.190.33http/1.1api.msz-pl.com:80GET /.DS_Store HTTP/1.1 1-030717920/523/523_ 33.550062400.02.122.12 162.158.159.55http/1.1api.msz-pl.com:80GET /.env HTTP/1.1 1-030717920/517/517_ 33.53211949990.02.462.46 172.70.111.145http/1.1api.msz-pl.com:80GET /debug/default/view?panel=config HTTP/1.1 1-030717920/528/528_ 33.53223286240.02.232.23 172.71.148.174http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/513/513_ 33.55252758480.02.172.17 162.158.159.31http/1.1api.msz-pl.com:80GET /telescope/requests HTTP/1.1 1-030717920/521/521_ 33.58116866350.02.442.44 172.70.111.112http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-030717921/509/509W 33.550067290.04.454.45 162.158.154.99http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-030717920/543/543_ 33.5751973740.010.2510.25 172.68.7.90h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1
Found on 2025-08-14 20:52 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f97e1f91bApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-08-11T11:10:09 Current Time: Thursday, 14-Aug-2025 16:30:50 UTC Restart Time: Thursday, 14-Aug-2025 06:08:59 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 10 hours 21 minutes 50 seconds Server load: 0.32 0.60 0.76 Total accesses: 12736 - Total Traffic: 69.1 MB - Total Duration: 205857 CPU Usage: u24.26 s12.68 cu0 cs0 - .099% CPU load .341 requests/sec - 1941 B/second - 5.6 kB/request - 16.1634 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03071791no0yes1024000 13071792no0yes0025000 Sum200 1049000 ________________W_________________________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-030717910/214/214_ 14.12221667940.03.383.38 162.158.158.83http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-030717910/213/213_ 14.0798021090.01.121.12 108.162.246.164h2pmsepharm.ca:443GET /news/pmsepharm-and-kalvista-partner-to-bring-first-oral-on 0-030717910/214/214_ 14.0959033680.00.950.95 162.158.216.91http/1.1comms.ivarse.com:80GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1 0-030717910/211/211_ 14.130042720.00.920.92 162.158.159.94http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-030717910/222/222_ 14.07962118060.01.471.47 108.162.246.164h2pmsepharm.ca:443GET / HTTP/2.0 0-030717910/223/223_ 14.0798736360.01.021.02 104.23.187.70http/1.1ivarse-marketing.digital:80GET / HTTP/1.1 0-030717910/222/222_ 14.112338700.01.491.49 104.23.195.6http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1755189047.40091204643249511718 0-030717910/214/214_ 14.121047050.01.091.09 172.68.186.21http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-030717910/222/222_ 14.0960026520.00.780.78 162.158.216.91http/1.1comms.ivarse.com:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 0-030717910/213/213_ 14.130045670.01.221.22 172.70.115.184http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-030717910/210/210_ 14.121034770.01.191.19 172.68.186.117http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-030717910/209/209_ 14.1032541230.00.790.79 162.158.108.25http/1.1api.msz-pl.com:80GET /file88.php HTTP/1.1 0-030717910/211/211_ 14.112037150.03.223.22 162.158.244.156h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/224/224_ 14.08532037240.01.481.48 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-030717910/233/233_ 13.92964336500.01.231.23 172.70.208.143h2pmsepharm.ca:443GET /wp-content/cache/minify/806632c1b.css?x79520 HTTP/2.0 0-030717910/207/207_ 14.120024280.01.481.48 162.158.158.32http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-030717911/212/212W 14.030049020.00.760.76 172.69.130.151http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-030717910/200/200_ 14.120056180.01.061.06 104.23.187.27http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-030717910/203/203_ 14.0482843770.01.321.32 104.23.229.90http/1.1api.msz-pl.com:80GET / HTTP/1.1 0-030717910/211/211_ 14.098034840.00.920.92 172.70.115.154http/1.1comms.ivarse.com:80GET /wp-admin/css/ HTTP/1.1 0-030717910/221/221_ 14.0959023750.01.031.03 162.158.216.91http/1.1comms.ivarse.com:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 0-030717910/212/212_ 14.10133736410.01.161.16 172.70.126.104http/1.1api.msz-pl.com:80GET / HTTP/1.1 0-030717910/214/214_ 13.88542631790.01.471.47 141.101.86.216http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-030717910/207/207_ 14.11277140780.01.051.05 172.70.115.184http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-030717910/194/194_ 14.121031340.01.011.01 104.23.190.91http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-030717920/316/316_ 20.178028790.00.980.98 104.23.187.203http/1.1comms.ivarse.com:80GET /files/ HTTP/1.1 1-030717920/304/304_ 20.11561846120.01.031.03 162.158.138.154http/1.1api.msz-pl.com:80GET /f5.php HTTP/1.1 1-030717920/302/302_ 20.1763563790.00.980.98 162.158.216.130http/1.1comms.ivarse.com:80GET /xmlrpc.php?rsd HTTP/1.1 1-030717920/299/299_ 20.1861068690.01.301.30 172.71.124.90http/1.1comms.ivarse.com:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 1-030717920/296/296_ 20.1081741620.01.301.30 162.158.138.154http/1.1api.msz-pl.com:80GET /geju.php HTTP/1.1 1-030717920/309/309_ 20.1618034210.00.920.92 216.81.248.84http/1.1usconsular-dept.com:443GET /.git/config HTTP/1.1 1-030717920/299/299_ 20.1763060070.01.011.01 162.158.216.130http/1.1comms.ivarse.com:80GET /wp-includes/wlwmanifest.xml HTTP/1.1 1-030717920/299/299_ 20.10951834300.00.950.95 162.158.138.154http/1.1api.msz-pl.com:80GET /gecko.php HTTP/1.1 1-030717920/303/303_ 20.19134275760.01.141.14 162.158.108.151http/1.1api.msz-pl.com:80GET /file5.php HTTP/1.1 1-030717920/284/284_ 20.11561831070.01.041.04 162.158.138.154http/1.1api.msz-pl.com:80GET /13k.php HTTP/1.1 1-030717920/283/283_ 20.19235049730.01.131.13 172.68.242.33http/1.1api.msz-pl.com:80GET /file.php HTTP/1.1 1-030717920/281/281_ 20.1861024310.00.940.94 162.158.216.130http/1.1comms.ivarse.com:80GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1 1-030717920/303/303_ 20.14572227990.01.791.79 172.71.141.59h2api.msz-pl.com:443GET /js/twint_ch.js HTTP/2.0 1-030717920/307/307_ 20.19192475180.00.950.95 172.70.189.84http/1.1api.msz-pl.com:80GET /file17.php HTTP/1.1 1-030717920/288/288_ 20.1861053810.00.880.88 172.71.124.90http/1.1comms.ivarse.com:80GET /website/wp-includes/wlwmanifest.xml HTTP/1.1 1-030717920/284/284_ 19.9218249820.01.051.05 141.101.86.217http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/301/301_ 20.1214031100.01.311.31 172.70.160.155http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-030717920/300/300_ 20.190031440.01.141.14 104.23.190.214http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-030717920/303/303_ 20.1862043380.01.291.29 162.158.216.130http/1.1comms.ivarse.com:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1 1-030717920/279/279_ 20.1863336820.01.061.06 162.158.216.130http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-030717920/297/297_ 20.11581935080.01.331.33 162.158.138.154http/1.1api.msz-pl.com:80GET /fm.php HTTP/1.1 1-030717920/278/278_ 20.1714444180.03.083.08 104.23.187.24http/1.1usconsular-dept.com:80GET / HTTP/1.1 1-030717920/310/310_ 20.11562244000.07.237.23 162.158.138.154http/1.1api.msz-pl.com:80
Found on 2025-08-14 16:30 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543ff0afe3a5Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Sunday, 10-Aug-2025 16:23:12 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 22 Parent Server MPM Generation: 21 Server uptime: 3 days 11 hours 50 minutes 25 seconds Server load: 0.59 0.89 0.96 Total accesses: 219458 - Total Traffic: 1.7 GB - Total Duration: 115258200 CPU Usage: u22.97 s15.17 cu406.45 cs215.78 - .219% CPU load .727 requests/sec - 6.0 kB/second - 8.3 kB/request - 525.195 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12678637no0yes0025000 22678638no0yes1024000 Sum200 1049000 .........................___________________________W___________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-17-0/0/2917. 0.002546901298610.00.0029.32 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-signin.php HTTP/1.1 0-17-0/0/2920. 0.0025469036804770.00.0025.25 172.71.8.47http/1.1comms.ivarse.com:80GET /file5.php HTTP/1.1 0-17-0/0/2898. 0.00254692664190.00.0025.48 172.71.8.47http/1.1comms.ivarse.com:80GET /file2.php HTTP/1.1 0-17-0/0/2956. 0.0025469112068270.00.0027.75 172.71.8.47http/1.1comms.ivarse.com:80GET /file3.php HTTP/1.1 0-17-0/0/2915. 0.00254690368190.00.0044.65 172.71.8.47http/1.1comms.ivarse.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 0-17-0/0/2932. 0.00254693398210.00.0030.52 172.71.8.47http/1.1comms.ivarse.com:80GET /file4.php HTTP/1.1 0-17-0/0/2956. 0.00254691665670.00.0034.85 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-logs.php HTTP/1.1 0-17-0/0/2917. 0.00254691933630.00.0037.60 172.71.183.24http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-17-0/0/2951. 0.00254690367760.00.0028.42 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-login.php HTTP/1.1 0-17-0/0/2934. 0.00254694369860.00.0022.47 162.158.6.95http/1.1cryptofnpro.com:80GET /wp.php HTTP/1.1 0-17-0/0/2930. 0.00254690396580.00.0025.15 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/js/tinymce/langs/about.php HTTP/1.1 0-17-0/0/2948. 0.00254691740410.00.0031.68 172.71.8.47http/1.1comms.ivarse.com:80GET /file8.php HTTP/1.1 0-17-0/0/2949. 0.002546907285240.00.0037.47 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/widgets/autoload_classmap.php HTTP/1.1 0-17-0/0/2928. 0.00254691372030.00.0026.54 172.71.8.47http/1.1comms.ivarse.com:80GET /file6.php HTTP/1.1 0-17-0/0/2958. 0.00254690409300.00.0029.33 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/fonts/index.php HTTP/1.1 0-17-0/0/2922. 0.00254691432430.00.0032.14 172.71.8.47http/1.1comms.ivarse.com:80GET /file9.php HTTP/1.1 0-17-0/0/2925. 0.00254693396030.00.0025.90 172.69.123.169h2api.msz-pl.com:443GET /api HTTP/2.0 0-17-0/0/2927. 0.00254690388050.00.0026.61 104.23.170.138http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-17-0/0/2874. 0.0025469041640220.00.0025.32 172.71.8.47http/1.1comms.ivarse.com:80GET /file7.php HTTP/1.1 0-17-0/0/2906. 0.00254690575910.00.0025.68 172.69.123.168h2api.msz-pl.com:443GET /api/users HTTP/2.0 0-17-0/0/2924. 0.00254690430920.00.0033.39 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/style-engine/autoload_classmap.php HTTP/1.1 0-17-0/0/2922. 0.00254690384170.00.0029.35 172.69.123.169h2api.msz-pl.com:443GET / HTTP/2.0 0-17-0/0/2912. 0.00254690445240.00.0032.62 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-setup.php HTTP/1.1 0-17-0/0/2517. 0.00254690193685140.00.0032.12 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/wp_class_datlib.php HTTP/1.1 0-17-0/0/2921. 0.002546923469550.00.0027.55 172.69.123.168h2api.msz-pl.com:443GET / HTTP/2.0 1-2126786370/112/3627_ 6.80490519600.00.2024.34 104.23.166.139h2theperfectbow.ivarse-marketing.GET /assets/index-GWBAQkNd.js HTTP/2.0 1-2126786370/122/3608_ 6.72641380290.00.1518.68 104.23.229.81h2dashboard.crypto-ft.investmentsGET /register HTTP/2.0 1-2126786370/121/3618_ 6.719301987950.00.1317.12 172.71.95.38http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/117/3594_ 6.6611107255600.00.1029.04 172.69.169.232http/1.1comms.ivarse.com:80GET /wp-content/upgrade/wp-sigunq.php HTTP/1.1 1-2126786370/106/3577_ 6.6649021923710.00.0921.60 172.69.169.232http/1.1comms.ivarse.com:80GET /0x.php HTTP/1.1 1-2126786370/107/3474_ 6.7444046279720.00.1019.06 172.70.242.42h2futurefocusfarm.com:443GET /xmlrpc.php HTTP/2.0 1-2126786370/111/3589_ 6.65430286200.00.4925.20 172.69.169.232http/1.1comms.ivarse.com:80GET /wp-admin/network/admin.php HTTP/1.1 1-2126786370/117/3578_ 6.77980519460.00.1919.90 104.23.203.188h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-2126786370/113/3565_ 6.65430759490.00.1626.87 172.69.169.232http/1.1comms.ivarse.com:80GET /wp-content/themes/cay-van-phong/3luaO.php HTTP/1.1 1-2126786370/116/3544_ 6.69440281020.00.3717.43 185.177.72.144h2i-erp.ivarse.com:443GET /assets/frappe/dist/js/frappe-web.bundle.UASKDUCM.js HTTP/2 1-2126786370/110/3572_ 6.711110838960.00.1118.00 172.71.126.183h2dashboard.crypto-ft.investmentsGET / HTTP/2.0 1-2126786370/121/3600_ 6.81101745330.00.1722.58 172.71.164.190http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-2126786370/127/3641_ 6.8110314260.00.2635.54 172.71.144.8http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-2126786370/120/3610_ 6.661160376480.00.2526.76 172.69.169.232http/1.1comms.ivarse.com:80GET /css/index.php HTTP/1.1 1-2126786370/110/3635_ 6.66930321410.00.0726.30 172.69.169.232http/1.1comms.ivarse.com:80GET /item.php HTTP/1.1 1-2126786370/111/3536_ 6.8120508470.00.0820.38 172.71.250.96http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-2126786370/114/3492_ 6.6548024168350.00.2721.05 172.69.169.232http/1.1comms.ivarse.com:80GET /wp-includes/block-patterns/index.php HTTP/1.1 1-2126786370/118/3566_ 6.75116032372440.00.1416.05 104.23.172.59h2theperfectbow.ivarse-marketing.GET / HTTP/2.0 1-2126786370/117/3552_ 6.77691461890.00.2226.12 104.23.168.82http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-2126786370/113/3535_ 6.77108040039820.00.1220.91 117.213.243.147http/1.1 1-2126786370/119/3607_ 6.8133374850.00.0722.44 172.69.74.233http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1754842988.66510701179504394531 1-2126786370/119/3573_ 6.80480303600.00.0923.97 172.70.47.40h2theperfectbow.ivarse-marketing.GET //geo.cookie-script.com/s/72a121b4ebacf9e68437d7fafa5594bc. 1-2126786370/119/3585_ 6.81201048900.00.1731.78 162.158.87.222http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-21
Found on 2025-08-10 16:23 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543ff02558e1Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Sunday, 10-Aug-2025 14:58:09 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 22 Parent Server MPM Generation: 21 Server uptime: 3 days 10 hours 25 minutes 21 seconds Server load: 0.59 0.62 0.72 Total accesses: 216972 - Total Traffic: 1.7 GB - Total Duration: 115233789 CPU Usage: u18.37 s12.61 cu406.45 cs215.78 - .22% CPU load .731 requests/sec - 6.1 kB/second - 8.4 kB/request - 531.1 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12678637no2yes0025020 22678638no1yes1024010 Sum203 1049030 ........................._______________________________________ _________W_..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-17-0/0/2917. 0.002036601298610.00.0029.32 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-signin.php HTTP/1.1 0-17-0/0/2920. 0.0020366036804770.00.0025.25 172.71.8.47http/1.1comms.ivarse.com:80GET /file5.php HTTP/1.1 0-17-0/0/2898. 0.00203662664190.00.0025.48 172.71.8.47http/1.1comms.ivarse.com:80GET /file2.php HTTP/1.1 0-17-0/0/2956. 0.0020366112068270.00.0027.75 172.71.8.47http/1.1comms.ivarse.com:80GET /file3.php HTTP/1.1 0-17-0/0/2915. 0.00203660368190.00.0044.65 172.71.8.47http/1.1comms.ivarse.com:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1 0-17-0/0/2932. 0.00203663398210.00.0030.52 172.71.8.47http/1.1comms.ivarse.com:80GET /file4.php HTTP/1.1 0-17-0/0/2956. 0.00203661665670.00.0034.85 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-logs.php HTTP/1.1 0-17-0/0/2917. 0.00203661933630.00.0037.60 172.71.183.24http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-17-0/0/2951. 0.00203660367760.00.0028.42 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-login.php HTTP/1.1 0-17-0/0/2934. 0.00203664369860.00.0022.47 162.158.6.95http/1.1cryptofnpro.com:80GET /wp.php HTTP/1.1 0-17-0/0/2930. 0.00203660396580.00.0025.15 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/js/tinymce/langs/about.php HTTP/1.1 0-17-0/0/2948. 0.00203661740410.00.0031.68 172.71.8.47http/1.1comms.ivarse.com:80GET /file8.php HTTP/1.1 0-17-0/0/2949. 0.002036607285240.00.0037.47 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/widgets/autoload_classmap.php HTTP/1.1 0-17-0/0/2928. 0.00203661372030.00.0026.54 172.71.8.47http/1.1comms.ivarse.com:80GET /file6.php HTTP/1.1 0-17-0/0/2958. 0.00203660409300.00.0029.33 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/fonts/index.php HTTP/1.1 0-17-0/0/2922. 0.00203661432430.00.0032.14 172.71.8.47http/1.1comms.ivarse.com:80GET /file9.php HTTP/1.1 0-17-0/0/2925. 0.00203663396030.00.0025.90 172.69.123.169h2api.msz-pl.com:443GET /api HTTP/2.0 0-17-0/0/2927. 0.00203660388050.00.0026.61 104.23.170.138http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-17-0/0/2874. 0.0020366041640220.00.0025.32 172.71.8.47http/1.1comms.ivarse.com:80GET /file7.php HTTP/1.1 0-17-0/0/2906. 0.00203660575910.00.0025.68 172.69.123.168h2api.msz-pl.com:443GET /api/users HTTP/2.0 0-17-0/0/2924. 0.00203660430920.00.0033.39 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/style-engine/autoload_classmap.php HTTP/1.1 0-17-0/0/2922. 0.00203660384170.00.0029.35 172.69.123.169h2api.msz-pl.com:443GET / HTTP/2.0 0-17-0/0/2912. 0.00203660445240.00.0032.62 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-setup.php HTTP/1.1 0-17-0/0/2517. 0.00203660193685140.00.0032.12 162.158.6.95http/1.1cryptofnpro.com:80GET /wp-includes/wp_class_datlib.php HTTP/1.1 0-17-0/0/2921. 0.002036623469550.00.0027.55 172.69.123.168h2api.msz-pl.com:443GET / HTTP/2.0 1-2126786370/58/3573_ 2.99250519520.00.0324.17 162.158.102.25http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/63/3549_ 2.99250380150.00.0418.57 162.158.103.162http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/61/3558_ 2.902531982530.00.0317.03 172.69.109.206http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-2126786370/65/3542_ 2.93517252730.00.0428.98 172.68.175.52http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/61/3532_ 2.9325021917650.00.0421.55 172.69.130.141http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/58/3425_ 2.9325046274450.00.0319.00 3.132.23.201http/1.1api.msz-pl.com:80\n 1-2126786370/59/3537_ 2.96250273390.00.0324.74 172.69.74.236h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-2126786370/61/3522_ 2.95250511410.00.0419.75 43.157.170.126http/1.1api.msz-pl.com:80GET / HTTP/1.1 1-2126786370/66/3518_ 3.012199753290.00.0626.76 172.70.46.151http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-2126786370/64/3492_ 3.0110278610.00.0417.09 172.71.95.130http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-2126786370/63/3525_ 3.0032819200.00.0417.93 172.69.74.214http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1754837885.79890894889831542968 1-2126786370/66/3545_ 3.01001737920.00.0522.46 172.71.95.130http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-2126786370/64/3578_ 2.99250309580.00.0435.32 162.158.102.162http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/63/3553_ 2.9354368560.00.0426.54 172.69.134.187http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-2126786370/70/3595_ 3.0120321290.00.0426.28 172.70.47.100http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-2126786370/62/3487_ 3.0100507050.00.0420.34 172.70.47.100http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-2126786370/62/3440_ 2.8325024161860.00.0420.81 162.158.49.93http/1.1comms.ivarse.com:80GET /wp-includes/images/autoload_classmap.php HTTP/1.1 1-2126786370/69/3517_ 2.9825032366670.00.0515.96 162.158.172.149http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/68/3503_ 3.013540453980.00.0525.95 104.23.170.101http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-2126786370/66/3488_ 2.9925040015550.00.0520.84 172.68.159.151http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/61/3549_ 3.0100374770.00.0322.40 104.23.172.42http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-2126786370/63/3517_ 3.0110303510.00.0423.91 104.23.166.127http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-2126786370/61/3527_ 2.992501040750.00.0331.65 162.158.172.171http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-2126786370/65/3542_ 2.9910
Found on 2025-08-10 14:58 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f79140c79Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Friday, 08-Aug-2025 20:47:43 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 11 Parent Server MPM Generation: 10 Server uptime: 1 day 16 hours 14 minutes 55 seconds Server load: 0.79 0.73 0.72 Total accesses: 109983 - Total Traffic: 844.8 MB - Total Duration: 42955187 CPU Usage: u40.19 s23.56 cu191.25 cs99.39 - .245% CPU load .759 requests/sec - 6.0 kB/second - 7.9 kB/request - 390.562 ms/request 4 requests currently being processed, 0 workers gracefully restarting, 46 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 13556676no0yes0025000 23556677no3yes4021000 Sum203 4046000 .........................______________________________W__W____W W__________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-8-0/0/1238. 0.00344580126660.00.0012.16 172.68.151.21http/1.1cryptofnpro.com:80GET /site/.env.old HTTP/1.1 0-8-0/0/1257. 0.00344580183360.00.006.83 162.158.6.71http/1.1cryptofnpro.com:80GET /yanz.php HTTP/1.1 0-8-0/0/1207. 0.00344580405210.00.005.12 162.158.6.71http/1.1cryptofnpro.com:80GET /.well-known/zaza.php HTTP/1.1 0-8-0/0/1246. 0.0034458116486611800940.00.006.24 172.69.123.137http/1.1payments.cryptofnpro.com:443GET /stores/_blazor?id=Ax-1czcw3WrD62Jw9_VRBA HTTP/1.1 0-8-0/0/1241. 0.00344580169360.00.008.48 162.158.108.3http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-8-0/0/1238. 0.00344580153380.00.0011.67 172.68.151.21http/1.1iscotenants.com:80GET /sftp.json HTTP/1.1 0-8-0/0/1234. 0.00344581176460.00.006.35 162.158.6.71http/1.1cryptofnpro.com:80GET /shellv3.php HTTP/1.1 0-8-0/0/1232. 0.00344580143070.00.0011.18 162.158.6.71http/1.1cryptofnpro.com:80GET /k.php HTTP/1.1 0-8-0/0/1251. 0.00344580133580.00.0010.11 172.71.81.218http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-8-0/0/1254. 0.00344580131230.00.005.92 172.68.151.21http/1.1iscotenants.com:80GET /shared/.env HTTP/1.1 0-8-0/0/1245. 0.00344580148090.00.005.92 162.158.6.71http/1.1cryptofnpro.com:80GET /en/wp-includes/ID3/index.php HTTP/1.1 0-8-0/0/1250. 0.00344580251790.00.006.81 172.68.151.20http/1.1iscotenants.com:80GET /site/.env.bak HTTP/1.1 0-8-0/0/1221. 0.003445806456330.00.007.39 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-8-0/0/1230. 0.00344580135160.00.0011.37 162.158.6.71http/1.1cryptofnpro.com:80GET /simple/function.php HTTP/1.1 0-8-0/0/1238. 0.00344580153630.00.005.99 162.158.41.48h2drumreed.co.uk:443GET /robots.txt HTTP/2.0 0-8-0/0/1221. 0.00344580154020.00.0012.11 172.68.151.21http/1.1iscotenants.com:80GET /shell HTTP/1.1 0-8-0/0/1210. 0.00344580118340.00.007.55 162.158.6.71http/1.1cryptofnpro.com:80GET /zwso.php HTTP/1.1 0-8-0/0/1203. 0.00344580150620.00.006.06 172.68.151.21http/1.1cryptofnpro.com:80GET /signin HTTP/1.1 0-8-0/0/1221. 0.00344580137130.00.006.68 162.158.6.71http/1.1cryptofnpro.com:80GET /wp-admin/maint/edit.php HTTP/1.1 0-8-0/0/1229. 0.00344580324650.00.007.83 172.68.151.21http/1.1cryptofnpro.com:80GET /site.sql HTTP/1.1 0-8-0/0/1219. 0.00344580145440.00.006.75 172.68.151.21http/1.1cryptofnpro.com:80GET /site/.env.save HTTP/1.1 0-8-0/0/1222. 0.00344580151290.00.005.83 172.68.151.21http/1.1cryptofnpro.com:80GET /shell.php HTTP/1.1 0-8-0/0/1219. 0.00344580180310.00.009.15 172.68.151.21http/1.1cryptofnpro.com:80GET /site/.env HTTP/1.1 0-8-0/0/1234. 0.00344580213210.00.0010.34 162.158.6.71http/1.1cryptofnpro.com:80GET /adminfuns.php7 HTTP/1.1 0-8-0/0/1247. 0.00344580181300.00.009.01 172.68.151.20http/1.1iscotenants.com:80GET /site/.env.local HTTP/1.1 1-1035566760/274/1858_ 17.811670131600.01.957.99 162.158.244.157h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1035566760/264/1805_ 17.8400225720.02.117.45 108.162.241.25http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-1035566760/279/1836_ 17.84001812210.02.277.58 172.70.80.59http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-1035566760/270/1819_ 17.7919637072970.02.349.21 172.68.210.181http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/285/1843_ 17.801980280890.03.8512.91 172.68.210.180http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/253/1760_ 17.8119602626900.01.939.00 172.68.210.180http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/256/1798_ 17.7841095180.02.0314.03 172.71.103.35http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/269/1821_ 17.691620352190.01.288.93 167.71.48.103http/1.1 1-1035566760/262/1800_ 17.82840616960.010.5618.14 172.70.135.5h2drumreed.co.uk:443GET /project-cial_mars_airbridge-80.html HTTP/2.0 1-1035566760/257/1790_ 17.671980123210.04.069.92 162.158.49.3http/1.1cryptofnpro.com:80GET /classsmtps.php HTTP/1.1 1-1035566760/271/1815_ 17.8030219270.01.7710.93 172.68.210.180http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/269/1817_ 17.8119601569920.02.068.92 172.68.210.181http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/268/1844_ 17.83466155950.04.2424.11 172.69.74.236h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1035566760/263/1821_ 17.811910170150.03.6113.27 172.69.180.169http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/275/1863_ 17.791980173910.04.4316.52 172.71.246.108http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/270/1827_ 17.8331370620.03.6112.17 172.69.74.242http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/262/1742_ 17.81195016168390.05.5113.50 172.68.210.180http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/272/1803_ 17.80191032237940.02.6910.38 172.68.210.180http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/256/1810_ 17.791950278290.01.6312.68 172.68.210.181http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/263/1797_ 17.791960316020.02.1112.79 172.68.210.180http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/274/1854_ 17.69840204850.02.6011.28 104.23.203.208h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-1035566760/273/1841_ 17.801620138970.08.0815.94 172.68.210.181http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/251/1814_ 17.78790713400.02.0821.35 172.71.103.36http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/260/1804_ 17.80411208910.03.9210.80 172.
Found on 2025-08-08 20:47 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fddc87fd9Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Friday, 08-Aug-2025 15:16:54 UTC Restart Time: Thursday, 07-Aug-2025 04:32:47 UTC Parent Server Config. Generation: 11 Parent Server MPM Generation: 10 Server uptime: 1 day 10 hours 44 minutes 6 seconds Server load: 1.26 0.98 0.96 Total accesses: 97797 - Total Traffic: 779.2 MB - Total Duration: 29205455 CPU Usage: u21.86 s11.72 cu191.25 cs99.39 - .259% CPU load .782 requests/sec - 6.4 kB/second - 8.2 kB/request - 298.633 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 13556676no0yes0025000 23556677no0yes1024000 Sum200 1049000 ........................._______________________________________ ___W_______..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-8-0/0/1238. 0.00146090126660.00.0012.16 172.68.151.21http/1.1cryptofnpro.com:80GET /site/.env.old HTTP/1.1 0-8-0/0/1257. 0.00146090183360.00.006.83 162.158.6.71http/1.1cryptofnpro.com:80GET /yanz.php HTTP/1.1 0-8-0/0/1207. 0.00146090405210.00.005.12 162.158.6.71http/1.1cryptofnpro.com:80GET /.well-known/zaza.php HTTP/1.1 0-8-0/0/1246. 0.0014609116486611800940.00.006.24 172.69.123.137http/1.1payments.cryptofnpro.com:443GET /stores/_blazor?id=Ax-1czcw3WrD62Jw9_VRBA HTTP/1.1 0-8-0/0/1241. 0.00146090169360.00.008.48 162.158.108.3http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-8-0/0/1238. 0.00146090153380.00.0011.67 172.68.151.21http/1.1iscotenants.com:80GET /sftp.json HTTP/1.1 0-8-0/0/1234. 0.00146091176460.00.006.35 162.158.6.71http/1.1cryptofnpro.com:80GET /shellv3.php HTTP/1.1 0-8-0/0/1232. 0.00146090143070.00.0011.18 162.158.6.71http/1.1cryptofnpro.com:80GET /k.php HTTP/1.1 0-8-0/0/1251. 0.00146090133580.00.0010.11 172.71.81.218http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-8-0/0/1254. 0.00146090131230.00.005.92 172.68.151.21http/1.1iscotenants.com:80GET /shared/.env HTTP/1.1 0-8-0/0/1245. 0.00146090148090.00.005.92 162.158.6.71http/1.1cryptofnpro.com:80GET /en/wp-includes/ID3/index.php HTTP/1.1 0-8-0/0/1250. 0.00146090251790.00.006.81 172.68.151.20http/1.1iscotenants.com:80GET /site/.env.bak HTTP/1.1 0-8-0/0/1221. 0.001460906456330.00.007.39 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-8-0/0/1230. 0.00146090135160.00.0011.37 162.158.6.71http/1.1cryptofnpro.com:80GET /simple/function.php HTTP/1.1 0-8-0/0/1238. 0.00146090153630.00.005.99 162.158.41.48h2drumreed.co.uk:443GET /robots.txt HTTP/2.0 0-8-0/0/1221. 0.00146090154020.00.0012.11 172.68.151.21http/1.1iscotenants.com:80GET /shell HTTP/1.1 0-8-0/0/1210. 0.00146090118340.00.007.55 162.158.6.71http/1.1cryptofnpro.com:80GET /zwso.php HTTP/1.1 0-8-0/0/1203. 0.00146090150620.00.006.06 172.68.151.21http/1.1cryptofnpro.com:80GET /signin HTTP/1.1 0-8-0/0/1221. 0.00146090137130.00.006.68 162.158.6.71http/1.1cryptofnpro.com:80GET /wp-admin/maint/edit.php HTTP/1.1 0-8-0/0/1229. 0.00146090324650.00.007.83 172.68.151.21http/1.1cryptofnpro.com:80GET /site.sql HTTP/1.1 0-8-0/0/1219. 0.00146090145440.00.006.75 172.68.151.21http/1.1cryptofnpro.com:80GET /site/.env.save HTTP/1.1 0-8-0/0/1222. 0.00146090151290.00.005.83 172.68.151.21http/1.1cryptofnpro.com:80GET /shell.php HTTP/1.1 0-8-0/0/1219. 0.00146090180310.00.009.15 172.68.151.21http/1.1cryptofnpro.com:80GET /site/.env HTTP/1.1 0-8-0/0/1234. 0.00146090213210.00.0010.34 162.158.6.71http/1.1cryptofnpro.com:80GET /adminfuns.php7 HTTP/1.1 0-8-0/0/1247. 0.00146090181300.00.009.01 172.68.151.20http/1.1iscotenants.com:80GET /site/.env.local HTTP/1.1 1-1035566760/124/1708_ 8.21218302108430.01.107.14 172.71.150.195h2comms.ivarse.com:443GET /wp-content/plugins/yanierin/akc.php HTTP/2.0 1-1035566760/119/1660_ 8.192151188450.00.826.16 162.158.189.234http/1.1cryptofnpro.com:80GET /wp-includes/ID3/license.txt HTTP/1.1 1-1035566760/127/1684_ 8.25001543520.01.506.82 172.70.248.195http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-1035566760/116/1665_ 8.2320807044920.01.077.94 172.69.17.176h2comms.ivarse.com:443GET /edit-tags.php HTTP/2.0 1-1035566760/123/1681_ 8.242050254810.02.6011.66 172.69.17.161h2comms.ivarse.com:443GET /ava.php HTTP/2.0 1-1035566760/115/1622_ 8.1921512602110.00.847.91 172.69.7.137h2comms.ivarse.com:443[1/0] done: stream 1, GET /law.php 1-1035566760/119/1661_ 8.07200073050.00.8412.84 172.69.87.128http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-1035566760/129/1681_ 8.253572294210.00.648.29 172.70.240.166http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-1035566760/114/1652_ 8.192182776588320.07.2214.80 172.71.215.171http/1.1crypto-ft.investments:80GET / HTTP/1.1 1-1035566760/122/1655_ 8.192070100420.02.858.71 162.158.189.234http/1.1cryptofnpro.com:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/123/1667_ 8.192100187400.00.679.83 162.158.189.234http/1.1cryptofnpro.com:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/127/1675_ 8.142002581546470.01.037.90 139.59.143.102http/1.1bayer.fi-careers.online:80GET /v2/_catalog HTTP/1.1 1-1035566760/115/1691_ 8.192080129890.03.4023.27 162.158.189.234http/1.1cryptofnpro.com:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/120/1678_ 8.2500141140.03.0012.66 172.71.164.191http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-1035566760/121/1709_ 8.20203088670.01.1613.25 162.158.189.234http/1.1cryptofnpro.com:80GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/116/1673_ 8.202030340010.02.7311.29 162.158.189.234http/1.1cryptofnpro.com:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/122/1602_ 8.251016111630.04.6912.68 172.70.251.132http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-1035566760/113/1644_ 8.20202032208150.01.188.88 162.158.189.234http/1.1cryptofnpro.com:80GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/116/1670_ 8.2520260120.00.6311.68 104.23.239.145http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-1035566760/109/1643_ 8.192100287510.00.9111.59 162.158.189.234http/1.1cryptofnpro.com:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 1-1035566760/128/1708_ 8.192130182340.01.289.95 162.158.189.234http/1.1cryptofnpro.com:80GET /xmlrpc.php?rsd HTTP/1.1 1-1035566760/119/1687_ 8.192131110690.07.1615.02 162.158.189.234http/1.1cryptofnpro.com:80GET /feed/ HTTP/1.1 1-1035566760/110/1673_ 8.202050687340.01.3120.58 162.158.189.234http/1.1cryptofnpro.com:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1<
Found on 2025-08-08 15:16 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543ff46ee5caApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Wednesday, 30-Jul-2025 14:45:52 UTC Restart Time: Wednesday, 30-Jul-2025 00:30:38 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 14 hours 15 minutes 14 seconds Server load: 1.12 0.98 1.01 Total accesses: 41889 - Total Traffic: 319.8 MB - Total Duration: 444593 CPU Usage: u85.68 s41.78 cu21.88 cs10.23 - .311% CPU load .816 requests/sec - 6.4 kB/second - 7.8 kB/request - 10.6136 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03172337no0yes1024000 13217719no0yes0025000 33100576no0yes0025000 Sum300 1074000 W_________________________________________________.............. ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-031723371/412/525W 39.130042890.04.024.68 172.69.150.58http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-031723370/409/506_ 39.14417154680.01.952.77 172.69.74.230h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-031723370/387/495_ 39.02422053120.05.535.85 104.23.160.55h2staplefordwingstravels.co.uk:44GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/2.0 0-031723370/409/508_ 39.29188463930.06.787.18 172.70.143.5h2royaleliteservice.com:443GET /wp-login.php HTTP/2.0 0-031723370/401/505_ 39.3042246180130.02.292.55 172.69.123.164h2kws-nl.careerconnectionpro.com:GET /index.php/wp-json/elementor/v1/checklist/user-progress HTT 0-031723370/395/495_ 39.26319450890.01.812.08 108.162.226.150h2bayer-application.fi-careers.onGET /wp-login.php HTTP/2.0 0-031723370/393/494_ 39.3042214164440.02.923.59 172.69.123.164h2kws-nl.careerconnectionpro.com:POST /wp-admin/admin-ajax.php HTTP/2.0 0-031723370/380/484_ 39.00194477280.04.605.25 172.68.174.154h2staplefordwingstravels.co.uk:44GET /wp-content/themes/bosa/assets/bootstrap/js/bootstrap.min.j 0-031723370/391/496_ 39.28281088000.08.688.99 172.71.155.55h2comms.ivarse.com:443GET /files.php HTTP/2.0 0-031723370/412/507_ 39.33286081820.04.855.29 172.69.123.165h2kws-nl.careerconnectionpro.com:POST /wp-admin/admin-ajax.php HTTP/2.0 0-031723370/409/512_ 39.17286071750.02.312.90 172.69.129.134h2kws-jobsnl.careerconnectionpro.POST /wp-admin/admin-ajax.php HTTP/2.0 0-031723370/414/520_ 39.31315052560.02.953.35 172.69.74.231h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-031723370/402/510_ 39.36194146960.03.423.64 172.71.241.88h2cryptofnpro.com:443GET /assets/index-DOV3c-p7.js HTTP/2.0 0-031723370/385/479_ 39.20189042700.02.653.24 172.69.129.178h2kws-nl.careerconnectionpro.com:GET /index.php/wp-json/elementor/v1/checklist/user-progress HTT 0-031723370/400/498_ 39.372059790.03.153.32 172.71.172.43http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-031723370/377/486_ 39.34284039040.02.042.55 196.251.80.2http/1.1comms.ivarse.com:443GET /.env HTTP/1.1 0-031723370/397/501_ 39.23314057050.02.223.76 172.69.129.177h2kws-nl.careerconnectionpro.com:GET /index.php/wp-json/elementor/v1/checklist/user-progress HTT 0-031723370/400/501_ 38.77310066740.05.385.66 104.194.149.41http/1.1 0-031723370/394/490_ 38.71310167500.06.857.37 172.69.129.177h2kws-nl.careerconnectionpro.com:POST /wp-admin/admin-ajax.php HTTP/2.0 0-031723370/401/495_ 39.12283170060.04.124.53 162.158.166.233h2bayer.fi-careers.online:443POST /wp-login.php HTTP/2.0 0-031723370/402/507_ 39.303198490600.03.884.10 108.162.216.76h2sql.jointdivisoncxvii.me:443GET /favicon.ico HTTP/2.0 0-031723370/398/498_ 39.22314162500.04.995.25 172.68.225.140h2ivarse.com:443GET /wp-login.php?redirect_to=https%3A%2F%2Fivarse.com%2Fwp-adm 0-031723370/404/505_ 39.04416070740.03.836.04 172.68.174.142h2staplefordwingstravels.co.uk:44GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js 0-031723370/389/494_ 39.37332674220.01.906.17 172.69.150.244http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-031723370/388/492_ 39.23281068100.02.252.83 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-032177190/350/460_ 31.86662241710.01.283.54 172.70.46.212http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-032177190/344/455_ 31.70125020740.01.411.91 172.69.6.218h2sql.jointdivisoncxvii.me:443GET /wiki HTTP/2.0 1-032177190/333/426_ 31.5769021270.01.251.40 104.23.221.131http/1.1comms.ivarse.com:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1 1-032177190/359/470_ 31.8713123390.02.162.70 104.23.195.28h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-032177190/354/469_ 31.8574032010.02.142.74 104.23.195.28h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-032177190/362/469_ 31.5369159570.03.113.42 172.71.82.45http/1.1comms.ivarse.com:80GET /db.php HTTP/1.1 1-032177190/354/465_ 31.84104123380.01.311.50 172.68.150.201http/1.1payments.cryptofnpro.com:80GET /.well-known/acme-challenge/aU5ueJdefVjqsY_-vfL7DSIk9aKKkT_ 1-032177190/354/452_ 31.8313023427410.01.443.93 162.158.138.91http/1.1crypto-ft.com:80GET / HTTP/1.1 1-032177190/365/459_ 31.870034160.04.745.05 162.158.110.25http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-032177190/348/461_ 31.8261066600.01.641.85 172.69.129.236h2kws-jobsnl.careerconnectionpro.POST /wp-admin/admin-ajax.php HTTP/2.0 1-032177190/356/462_ 31.57122142360.01.532.12 172.68.147.212h2kws-nl.careerconnectionpro.com:POST /wp-admin/admin-ajax.php HTTP/2.0 1-032177190/368/477_ 31.588524920.04.476.03 172.70.47.9http/1.1marshallmprojects.com:80GET / HTTP/1.1 1-032177190/367/478_ 31.83130346120.02.212.90 172.69.74.230http/1.1crypto-ft.com:80POST /wp-cron.php?doing_wp_cron=1753886622.23741793632507324218 1-032177190/352/466_ 31.7099157770.03.764.44 172.70.86.5h2cryptofnpro.com:443GET /faq HTTP/2.0 1-032177190/344/451_ 31.84127129020.01.362.00 162.158.138.99h2crypto-ft.com:443GET / HTTP/2.0 1-032177190/353/477_ 31.870041150.02.542.80 172.68.192.154http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-032177190/354/466_ 31.871015260.04.194.68 172.71.164.59http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-032177190/345/468_ 31.52125039690.02.263.15 172.71.82.45http/1.1comms.ivarse.com:80GET /atomlib.php HTTP/1.1 1-032177190/364/474_ 31.61122236260.03.584.24 172.69.74.229http/1.1royaleliteservice.com:80POST /wp-cron.php?doing_wp_cron=1753886306.36547589302062988281 1-032177190/363/467_ 31.87320843920.01.512.34 172.71.164.54http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-032177190/338/449_ 31.5761042040.01.982.20 172.68.147.213h2kws-nl.careerconnectionpro.com:POST /wp-admin/admin-ajax.php HTTP/2.0 1-032177190/346/480_
Found on 2025-07-30 14:45 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fde0ad6e4Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Wednesday, 23-Jul-2025 07:09:41 UTC Restart Time: Saturday, 19-Jul-2025 19:59:03 UTC Parent Server Config. Generation: 8 Parent Server MPM Generation: 7 Server uptime: 3 days 11 hours 10 minutes 37 seconds Server load: 1.11 1.08 1.09 Total accesses: 223832 - Total Traffic: 1.6 GB - Total Duration: 14396950 CPU Usage: u41.82 s30.07 cu344.65 cs205.8 - .208% CPU load .748 requests/sec - 5.6 kB/second - 7.5 kB/request - 64.3203 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 22015347no0yes1024000 32015348no0yes0025000 Sum200 1049000 ..................................................______________ _W__________________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-4-0/0/1852. 0.00437602205250.00.0016.08 172.68.87.230h2ivarse.com:443GET /wp-login.php HTTP/2.0 0-4-0/0/1830. 0.00437600187740.00.0010.71 172.71.134.34http/1.1ivarse-marketing.digital:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1839. 0.00437605210390.00.008.94 172.71.134.34http/1.1ivarse-marketing.digital:80GET /xmlrpc.php?rsd HTTP/1.1 0-4-0/0/1812. 0.00437602209610.00.0011.32 162.158.172.236http/1.1comms.ivarse.com:80GET /wp-admin/setup-config.php HTTP/1.1 0-4-0/0/1845. 0.00437600272940.00.0015.03 172.71.134.34http/1.1ivarse-marketing.digital:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1852. 0.00437600214550.00.0010.71 172.71.134.34http/1.1ivarse-marketing.digital:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1810. 0.0043760616106260.00.0013.37 172.71.134.34http/1.1ivarse-marketing.digital:80GET / HTTP/1.1 0-4-0/0/1846. 0.00437600184940.00.0025.39 172.71.134.34http/1.1ivarse-marketing.digital:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1838. 0.00437600256940.00.008.30 172.71.134.34http/1.1ivarse-marketing.digital:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1832. 0.00437600237630.00.008.33 172.71.134.34http/1.1ivarse-marketing.digital:80GET /media/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1851. 0.00437600208450.00.009.82 172.71.134.34http/1.1ivarse-marketing.digital:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1889. 0.00437609206760.00.009.63 172.71.134.34http/1.1ivarse-marketing.digital:80GET / HTTP/1.1 0-4-0/0/1874. 0.00437600219890.00.0011.38 172.71.134.34http/1.1ivarse-marketing.digital:80GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1872. 0.00437600236640.00.0010.22 172.71.134.34http/1.1ivarse-marketing.digital:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1873. 0.00437609275920.00.009.93 172.69.74.212http/1.1marshallmprojects.com:80GET / HTTP/1.1 0-4-0/0/1824. 0.00437600286580.00.008.89 172.71.134.34http/1.1ivarse-marketing.digital:80GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1831. 0.00437600226820.00.009.06 172.71.134.34http/1.1ivarse-marketing.digital:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1855. 0.00437600219700.00.0014.51 172.71.134.34http/1.1ivarse-marketing.digital:80GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1865. 0.00437600230840.00.0011.28 172.71.134.34http/1.1ivarse-marketing.digital:80GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1879. 0.00437600252580.00.009.72 172.71.134.34http/1.1ivarse-marketing.digital:80GET /news/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1825. 0.00437600195260.00.0010.23 104.23.195.67h2ivarse.com:443POST /wp-cron.php?doing_wp_cron=1753210628.29192209243774414062 0-4-0/0/1775. 0.00437600336520.00.0012.48 172.71.134.34http/1.1ivarse-marketing.digital:80GET /wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1820. 0.00437600226090.00.008.63 172.71.134.34http/1.1ivarse-marketing.digital:80GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1 0-4-0/0/1846. 0.00437601225210180.00.0014.52 162.158.212.144h2comms.ivarse.com:443GET / HTTP/2.0 0-4-0/0/1850. 0.00437600258670.00.0012.31 172.71.134.34http/1.1ivarse-marketing.digital:80GET /website/wp-includes/wlwmanifest.xml HTTP/1.1 1-2-0/0/1241. 0.00217328025681020.00.006.42 172.68.174.155http/1.1comms.ivarse.com:80GET /general.zip HTTP/1.1 1-2-0/0/1268. 0.002173280173460.00.0037.44 104.23.160.32http/1.1comms.ivarse.com:80GET /v3.zip HTTP/1.1 1-2-0/0/1279. 0.002173280147040.00.005.34 104.23.160.15http/1.1comms.ivarse.com:80GET /division.zip HTTP/1.1 1-2-0/0/1292. 0.002173280158640.00.007.13 172.68.175.74http/1.1comms.ivarse.com:80GET /results.zip HTTP/1.1 1-2-0/0/1295. 0.002173280156080.00.005.62 104.23.160.20http/1.1comms.ivarse.com:80GET /current.zip HTTP/1.1 1-2-0/0/1307. 0.002173280159580.00.008.30 172.68.175.105http/1.1comms.ivarse.com:80GET /default.zip HTTP/1.1 1-2-0/0/1289. 0.002173280141170.00.005.30 104.23.160.125http/1.1comms.ivarse.com:80GET /logs.zip HTTP/1.1 1-2-0/0/1308. 0.002173280168080.00.006.84 172.68.175.70http/1.1comms.ivarse.com:80GET /readme.zip HTTP/1.1 1-2-0/0/1326. 0.002173280165430.00.007.83 104.23.160.106http/1.1comms.ivarse.com:80GET /certificates.zip HTTP/1.1 1-2-0/0/1290. 0.002173280154830.00.006.76 104.23.160.141http/1.1comms.ivarse.com:80GET /group.zip HTTP/1.1 1-2-0/0/1299. 0.002173280173780.00.005.93 104.23.160.12http/1.1comms.ivarse.com:80GET /version3.zip HTTP/1.1 1-2-0/0/1298. 0.002173282196010.00.006.60 172.68.174.149http/1.1comms.ivarse.com:80GET /flask.zip HTTP/1.1 1-2-0/0/1312. 0.002173280141720.00.006.70 172.68.175.17http/1.1comms.ivarse.com:80GET /login.zip HTTP/1.1 1-2-0/0/1327. 0.002173280191370.00.007.60 172.68.174.92http/1.1comms.ivarse.com:80GET /ci.zip HTTP/1.1 1-2-0/0/1290. 0.002173280171080.00.008.49 104.23.160.57http/1.1comms.ivarse.com:80GET /hugo.zip HTTP/1.1 1-2-0/0/1300. 0.002173280197550.00.006.29 104.23.160.71http/1.1comms.ivarse.com:80GET /icons.zip HTTP/1.1 1-2-0/0/1282. 0.002173280144690.00.005.82 104.23.160.89http/1.1comms.ivarse.com:80GET /custom.zip HTTP/1.1 1-2-0/0/1309. 0.002173280160270.00.008.67 172.68.174.140http/1.1comms.ivarse.com:80GET /music.zip HTTP/1.1 1-2-0/0/1281. 0.002173280188090.00.006.09 172.68.174.244http/1.1comms.ivarse.com:80GET /node_modules.zip HTTP/1.1 1-2-0/0/1313. 0.002173280176000.00.007.21 104.23.160.74http/1.1comms.ivarse.com:80GET /os.zip HTTP/1.1 1-2-0/0/1252. 0.002173280144700.00.006.50 104.23.160.109http/1.1comms.ivarse.com:80GET /email.zip HTTP/1.1 1-2-0/0/1289. 0.002173280172170.00.006.99 172.68.175.45http/1.1comms.ivarse.com:80GET /stable.zip HTTP/1.1 1-2-0/0/1293. 0.002173280129830.00.006.33 104.23.160.60http/1.1comms.ivarse.com:80GET /alerts.zip HTTP/1.1 1-2
Found on 2025-07-23 07:09 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fcfb09aa6Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Sunday, 20-Jul-2025 21:48:53 UTC Restart Time: Saturday, 19-Jul-2025 19:59:03 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 1 day 1 hour 49 minutes 49 seconds Server load: 0.56 0.64 0.72 Total accesses: 79868 - Total Traffic: 413.9 MB - Total Duration: 9635590 CPU Usage: u30.96 s20.23 cu82.03 cs52.92 - .2% CPU load .859 requests/sec - 4667 B/second - 5.3 kB/request - 120.644 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 21474552no8yes0025071 33017190no9yes0025071 43017268no9yes1024090 Sum3026 10740232 ..................................................______________ _____________________________________W_______________________... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-2-0/0/1216. 0.00108810144740.00.008.77 104.23.160.64http/1.1comms.ivarse.com:80GET /standard.zip HTTP/1.1 0-2-0/0/1188. 0.00108810129710.00.005.02 172.68.174.98http/1.1comms.ivarse.com:80GET /example.zip HTTP/1.1 0-2-0/0/1226. 0.00108810136650.00.004.20 104.23.160.76http/1.1comms.ivarse.com:80GET /changelog.zip HTTP/1.1 0-2-0/0/1196. 0.00108810153140.00.004.35 104.23.160.117http/1.1comms.ivarse.com:80GET /system.zip HTTP/1.1 0-2-0/0/1206. 0.00108812173860.00.005.27 172.68.175.67http/1.1comms.ivarse.com:80GET /discord.zip HTTP/1.1 0-2-0/0/1197. 0.00108810142490.00.004.97 172.68.175.30http/1.1comms.ivarse.com:80GET /other.zip HTTP/1.1 0-2-0/0/1203. 0.0010881016037120.00.004.79 172.68.174.166http/1.1comms.ivarse.com:80GET /portal.zip HTTP/1.1 0-2-0/0/1201. 0.00108810140310.00.004.26 104.23.160.120http/1.1comms.ivarse.com:80GET /manual.zip HTTP/1.1 0-2-0/0/1202. 0.00108810178360.00.003.81 172.68.175.110http/1.1comms.ivarse.com:80GET /animations.zip HTTP/1.1 0-2-0/0/1200. 0.00108810184380.00.004.06 172.68.174.104http/1.1comms.ivarse.com:80GET /game.zip HTTP/1.1 0-2-0/0/1212. 0.00108810151140.00.006.12 172.68.174.102http/1.1comms.ivarse.com:80GET /ux.zip HTTP/1.1 0-2-0/0/1227. 0.00108810158620.00.004.29 172.68.175.52http/1.1comms.ivarse.com:80GET /secure.zip HTTP/1.1 0-2-0/0/1221. 0.00108810146660.00.004.72 172.68.174.242http/1.1comms.ivarse.com:80GET /temp.zip HTTP/1.1 0-2-0/0/1211. 0.00108810166510.00.004.75 104.23.160.78http/1.1comms.ivarse.com:80GET /random.zip HTTP/1.1 0-2-0/0/1221. 0.00108810178670.00.004.98 172.68.175.75http/1.1comms.ivarse.com:80GET /tutorial.zip HTTP/1.1 0-2-0/0/1180. 0.00108810157850.00.003.76 172.68.175.67http/1.1comms.ivarse.com:80GET /global.zip HTTP/1.1 0-2-0/0/1199. 0.00108810142470.00.004.75 104.23.160.95http/1.1comms.ivarse.com:80GET /rails.zip HTTP/1.1 0-2-0/0/1210. 0.00108810135600.00.004.49 172.68.174.140http/1.1comms.ivarse.com:80GET /native.zip HTTP/1.1 0-2-0/0/1220. 0.00108810155300.00.005.93 172.68.174.106http/1.1comms.ivarse.com:80GET /parameters.zip HTTP/1.1 0-2-0/0/1216. 0.00108810176520.00.004.81 172.68.174.98http/1.1comms.ivarse.com:80GET /gatsby.zip HTTP/1.1 0-2-0/0/1200. 0.00108810136180.00.003.50 172.68.175.80http/1.1comms.ivarse.com:80GET /pinterest.zip HTTP/1.1 0-2-0/0/1173. 0.00108810241590.00.004.72 172.68.174.59http/1.1comms.ivarse.com:80GET /photos.zip HTTP/1.1 0-2-0/0/1195. 0.00108810151300.00.004.51 172.68.175.22http/1.1comms.ivarse.com:80GET /mailer.zip HTTP/1.1 0-2-0/0/1212. 0.00108810134680.00.004.17 172.68.174.101http/1.1comms.ivarse.com:80GET /namecheap.zip HTTP/1.1 0-2-0/0/1223. 0.00108810170090.00.005.80 172.68.175.51http/1.1comms.ivarse.com:80GET /cron.zip HTTP/1.1 1-2-0/0/1241. 0.0010880025681020.00.006.42 172.68.174.155http/1.1comms.ivarse.com:80GET /general.zip HTTP/1.1 1-2-0/0/1268. 0.00108800173460.00.0037.44 104.23.160.32http/1.1comms.ivarse.com:80GET /v3.zip HTTP/1.1 1-2-0/0/1279. 0.00108800147040.00.005.34 104.23.160.15http/1.1comms.ivarse.com:80GET /division.zip HTTP/1.1 1-2-0/0/1292. 0.00108800158640.00.007.13 172.68.175.74http/1.1comms.ivarse.com:80GET /results.zip HTTP/1.1 1-2-0/0/1295. 0.00108800156080.00.005.62 104.23.160.20http/1.1comms.ivarse.com:80GET /current.zip HTTP/1.1 1-2-0/0/1307. 0.00108800159580.00.008.30 172.68.175.105http/1.1comms.ivarse.com:80GET /default.zip HTTP/1.1 1-2-0/0/1289. 0.00108800141170.00.005.30 104.23.160.125http/1.1comms.ivarse.com:80GET /logs.zip HTTP/1.1 1-2-0/0/1308. 0.00108800168080.00.006.84 172.68.175.70http/1.1comms.ivarse.com:80GET /readme.zip HTTP/1.1 1-2-0/0/1326. 0.00108800165430.00.007.83 104.23.160.106http/1.1comms.ivarse.com:80GET /certificates.zip HTTP/1.1 1-2-0/0/1290. 0.00108800154830.00.006.76 104.23.160.141http/1.1comms.ivarse.com:80GET /group.zip HTTP/1.1 1-2-0/0/1299. 0.00108800173780.00.005.93 104.23.160.12http/1.1comms.ivarse.com:80GET /version3.zip HTTP/1.1 1-2-0/0/1298. 0.00108802196010.00.006.60 172.68.174.149http/1.1comms.ivarse.com:80GET /flask.zip HTTP/1.1 1-2-0/0/1312. 0.00108800141720.00.006.70 172.68.175.17http/1.1comms.ivarse.com:80GET /login.zip HTTP/1.1 1-2-0/0/1327. 0.00108800191370.00.007.60 172.68.174.92http/1.1comms.ivarse.com:80GET /ci.zip HTTP/1.1 1-2-0/0/1290. 0.00108800171080.00.008.49 104.23.160.57http/1.1comms.ivarse.com:80GET /hugo.zip HTTP/1.1 1-2-0/0/1300. 0.00108800197550.00.006.29 104.23.160.71http/1.1comms.ivarse.com:80GET /icons.zip HTTP/1.1 1-2-0/0/1282. 0.00108800144690.00.005.82 104.23.160.89http/1.1comms.ivarse.com:80GET /custom.zip HTTP/1.1 1-2-0/0/1309. 0.00108800160270.00.008.67 172.68.174.140http/1.1comms.ivarse.com:80GET /music.zip HTTP/1.1 1-2-0/0/1281. 0.00108800188090.00.006.09 172.68.174.244http/1.1comms.ivarse.com:80GET /node_modules.zip HTTP/1.1 1-2-0/0/1313. 0.00108800176000.00.007.21 104.23.160.74http/1.1comms.ivarse.com:80GET /os.zip HTTP/1.1 1-2-0/0/1252. 0.00108800144700.00.006.50 104.23.160.109http/1.1comms.ivarse.com:80GET /email.zip HTTP/1.1 1-2-0/0/1289. 0.00108800172170.00.006.99 172.68.175.45http/1.1comms.ivarse.com:80GET /stable.zip HTTP/1.1 1-2-0/0/1293. 0.00108800129830.00.006.33 104.23.160.60http/1.1comms.ivarse.com:80GET /alerts.zip HTTP/1.1 1-2-0/0/1274. 0.00108800188800.00.005.60 104.23.160.60http/1.1comms.ivarse.com:80GET /telegram.zip HTTP/1.1 1-2-0/0/1263. 0.00108800171630.00.005.69 104.23.160.26ht
Found on 2025-07-20 21:48 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f64d474a2Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Sunday, 20-Jul-2025 06:28:05 UTC Restart Time: Saturday, 19-Jul-2025 19:59:03 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 10 hours 29 minutes 1 second Server load: 0.31 0.51 0.62 Total accesses: 34702 - Total Traffic: 180.4 MB - Total Duration: 425066 CPU Usage: u24.8 s14.85 cu18.35 cs11.74 - .185% CPU load .919 requests/sec - 5012 B/second - 5.3 kB/request - 12.249 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0549938no0yes0025000 1549939no0yes1024000 Sum200 1049000 __________________________________W_______________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-25499380/269/461_ 12.9145044890.02.714.07 104.23.195.29h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-25499380/273/463_ 12.9026030090.00.722.14 172.69.130.10http/1.1comms.ivarse.com:80GET /demo/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1 0-25499380/279/476_ 12.8951036650.00.471.87 172.69.130.10http/1.1comms.ivarse.com:80GET /core/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/265/457_ 12.9451029240.00.541.62 108.162.242.87h2ivarse.com:443GET /Dockerfile.bak HTTP/2.0 0-25499380/282/461_ 12.90121074580.01.242.69 172.69.130.10http/1.1comms.ivarse.com:80GET /demo/phpunit/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/268/452_ 12.9045027360.00.681.67 172.69.130.10http/1.1comms.ivarse.com:80GET /backup/vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/285/479_ 12.90121035290.00.712.29 172.69.130.10http/1.1comms.ivarse.com:80GET /system/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 0-25499380/277/452_ 12.96314639760.00.661.87 162.158.94.114http/1.1staplefordwingstravels.co.uk:80POST /xmlrpc.php HTTP/1.1 0-25499380/271/462_ 12.90121034360.00.771.90 172.69.130.10http/1.1comms.ivarse.com:80GET /system/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP 0-25499380/268/462_ 12.9451057200.00.651.71 108.162.242.87h2ivarse.com:443GET /Dockerfile HTTP/2.0 0-25499380/271/470_ 12.92126035380.01.012.16 172.69.214.165h2ivarse.com:443GET /public/telescope HTTP/2.0 0-25499380/288/482_ 12.9550034020.00.592.02 108.162.242.87h2ivarse.com:443GET /.docker/Dockerfile HTTP/2.0 0-25499380/276/469_ 12.9241037450.00.841.98 120.235.190.15http/1.1 0-25499380/284/483_ 12.9031051080.00.752.21 172.69.130.10http/1.1comms.ivarse.com:80GET /backup/tools/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/282/492_ 12.90126033980.00.862.16 172.69.130.10http/1.1comms.ivarse.com:80GET /demo/tools/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/260/450_ 12.9026040300.00.571.91 172.69.130.10http/1.1comms.ivarse.com:80GET /demo/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/257/448_ 12.92126031240.00.611.70 172.69.130.248h2ivarse.com:443GET /.aws/credentials HTTP/2.0 0-25499380/269/455_ 12.9026041790.00.731.92 172.69.130.10http/1.1comms.ivarse.com:80GET /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HT 0-25499380/274/475_ 12.9551045730.00.872.25 108.162.242.87h2ivarse.com:443GET /Dockerfile.dev HTTP/2.0 0-25499380/277/468_ 12.9551066800.00.631.85 108.162.242.87h2ivarse.com:443GET /docker/Dockerfile HTTP/2.0 0-25499380/279/461_ 12.90120030110.00.561.68 172.69.130.10http/1.1comms.ivarse.com:80GET /system/vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1 0-25499380/276/462_ 12.9451035530.00.761.92 108.162.242.87h2ivarse.com:443GET /Dockerfile.live HTTP/2.0 0-25499380/264/454_ 12.9551036490.00.621.96 108.162.242.87h2ivarse.com:443GET /Dockerfile-dev HTTP/2.0 0-25499380/285/479_ 12.9226037350.00.481.88 172.69.214.165h2ivarse.com:443GET /telescope HTTP/2.0 0-25499380/282/477_ 12.9531051550.00.893.14 172.70.240.107h2comms.ivarse.com:443GET /wp-admin/setup-config.php HTTP/2.0 1-25499390/525/911_ 23.6100117050.01.953.84 172.70.248.26http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-25499390/542/920_ 23.6120149590.032.5434.47 172.70.248.98http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-25499390/529/917_ 23.6110116250.01.523.25 172.71.172.130http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-25499390/523/906_ 23.508034120490.02.273.96 108.162.226.155http/1.1crypto-ft.com:80POST /xmlrpc.php HTTP/1.1 1-25499390/538/917_ 23.52500117780.01.653.05 172.68.23.106h2drumreed.co.uk:443GET /indexc65f.html?pg=completed_projects&filter[]=11 HTTP/2.0 1-25499390/553/943_ 23.46550128270.03.215.22 172.69.214.203http/1.1bayer-application.fi-careers.onGET /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php 1-25499390/551/924_ 23.612094870.01.403.17 172.70.251.211http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-25499390/532/937_ 23.6110134090.01.753.52 172.71.164.195http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-25499390/548/926_ 23.6110125050.02.694.69 172.71.148.73http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-25499391/531/924W 23.5000119600.01.974.04 172.71.172.59http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-25499390/529/920_ 23.57850140320.01.813.50 104.23.195.50h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-25499390/511/908_ 23.59252150900.01.964.00 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-25499390/540/949_ 23.56550116850.01.703.88 172.70.80.27h2ivarse.com:443GET /sftp.json HTTP/2.0 1-25499390/559/938_ 23.56500160520.02.004.41 172.69.214.51h2ivarse.com:443GET / HTTP/2.0 1-25499390/539/921_ 23.56200129120.03.755.79 172.70.80.27h2ivarse.com:443GET /.config/sftp.json HTTP/2.0 1-25499390/546/931_ 23.603627139870.01.903.65 172.69.150.184http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-25499390/551/921_ 23.475543114330.01.533.64 172.70.175.179h2comms.ivarse.com:443[0/0] init 1-25499390/550/934_ 23.6120130900.03.265.38 172.70.250.250http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-25499390/545/919_ 23.58550167280.01.713.31 172.70.175.179h2comms.ivarse.com:443GET / HTTP/2.0 1-25499390/556/934_ 23.6100144850.02.014.02 172.70.246.19http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-25499390/509/890_ 23.56200122530.01.423.66 172.69.214.51h2ivarse.com:443GET /index.php HTTP/2.0 1-25499390/540/925_ 23.549045110840.01.793.47 172.68.175.8http/1.1royaleliteservice.com:80POST /xmlrpc.php HTTP/1.1 1-25499390/540/928_ 23.4680099620.0
Found on 2025-07-20 06:28 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fe128e2deApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-07-14T16:22:22 Current Time: Saturday, 19-Jul-2025 08:54:18 UTC Restart Time: Friday, 18-Jul-2025 09:12:43 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 23 hours 41 minutes 35 seconds Server load: 0.17 0.52 0.73 Total accesses: 92267 - Total Traffic: 411.2 MB - Total Duration: 17416789 CPU Usage: u26.94 s16.97 cu123.68 cs79.67 - .29% CPU load 1.08 requests/sec - 5055 B/second - 4673 B/request - 188.765 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 11959722no0yes1024000 22854347no0yes0025000 32919161no3yes0025030 Sum303 1074030 ........................._____W_________________________________ ____________________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1-0/0/1308. 0.007983110141380.00.005.67 104.23.160.110h2royaleliteservice.com:443GET /wp-content/plugins/pro-elements/assets/lib/smartmenus/jque 0-1-0/0/1291. 0.0079831141880.00.005.73 172.68.175.113h2royaleliteservice.com:443GET /wp-content/uploads/elementor/css/post-6.css?ver=1736018413 0-1-0/0/1297. 0.007983113138400.00.005.28 104.23.160.111h2royaleliteservice.com:443GET /wp-content/plugins/wpcargo/assets/js/dist/dom/manipulator. 0-1-0/0/1172. 0.007983067393260.00.005.10 104.23.160.27h2royaleliteservice.com:443GET /wp-content/uploads/2024/02/vaasan-satama-erikoiskuljetus-l 0-1-0/0/1303. 0.0079830134480.00.004.80 104.23.160.65h2royaleliteservice.com:443GET /wp-content/uploads/2024/02/1655453514404-300x180.jpg HTTP/ 0-1-0/0/1307. 0.0079831538152250.00.005.44 172.68.174.207h2royaleliteservice.com:443GET /wp-content/plugins/wpcargo/admin/assets/js/jquery.datetime 0-1-0/0/1306. 0.0079830133770.00.009.00 104.23.160.33h2royaleliteservice.com:443GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver 0-1-0/0/1288. 0.00798396142830.00.009.63 104.23.160.93h2royaleliteservice.com:443GET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runt 0-1-0/0/1272. 0.0079830114240.00.005.47 172.68.175.51h2royaleliteservice.com:443GET /wp-content/plugins/elementor/assets/css/conditionals/e-swi 0-1-0/0/1289. 0.0079830113860.00.004.30 172.68.174.140h2royaleliteservice.com:443GET /wp-content/plugins/wpcargo/admin/assets/css/jquery.datetim 0-1-0/0/1298. 0.0079830116890.00.008.44 172.68.175.104h2royaleliteservice.com:443GET /wp-content/plugins/wpcargo/assets/css/wpcargo-style.css?ve 0-1-0/0/1273. 0.0079830124360.00.008.26 104.23.160.120h2royaleliteservice.com:443GET /wp-content/themes/hello-elementor/header-footer.min.css?ve 0-1-0/0/1307. 0.0079832108190.00.005.42 172.68.175.64h2royaleliteservice.com:443GET /wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 0-1-0/0/1302. 0.0079830114160.00.005.78 172.68.174.157h2royaleliteservice.com:443GET /wp-content/themes/hello-elementor/assets/js/hello-frontend 0-1-0/0/1201. 0.007983045713070.00.0015.18 104.23.160.57h2royaleliteservice.com:443GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP 0-1-0/0/1307. 0.007983228135730.00.006.30 172.68.174.89h2royaleliteservice.com:443GET /wp-json/oembed/1.0/embed?url=https://royaleliteservice.com 0-1-0/0/1318. 0.0079831134370.00.005.58 172.68.174.17h2royaleliteservice.com:443GET /wp-content/themes/hello-elementor/theme.min.css?ver=3.2.1 0-1-0/0/1313. 0.0079830120870.00.008.16 104.23.160.69h2royaleliteservice.com:443GET /wp-content/plugins/pro-elements/assets/js/frontend.min.js? 0-1-0/0/1317. 0.0079830153290.00.005.00 104.23.160.17h2royaleliteservice.com:443GET /wp-content/plugins/wpcargo/assets/js/dist/util/index.js?ve 0-1-0/0/1295. 0.0079830147330.00.005.61 104.23.160.66h2royaleliteservice.com:443GET /wp-content/plugins/burst-statistics/assets/js/build/burst. 0-1-0/0/1308. 0.007983143127100.00.006.19 172.68.174.94h2royaleliteservice.com:443GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/2.0 0-1-0/0/1305. 0.007983762121430.00.006.60 104.23.160.107h2royaleliteservice.com:443GET /wp-content/uploads/2024/02/HiTech-14-300x213.jpg HTTP/2.0 0-1-0/0/1300. 0.0079830147490.00.005.21 172.68.174.6h2royaleliteservice.com:443GET /wp-content/plugins/elementor/assets/css/conditionals/shape 0-1-0/0/1308. 0.0079830116800.00.006.53 104.23.160.38h2royaleliteservice.com:443GET /wp-content/plugins/wpcargo/assets/js/bootstrap.min.js?ver= 0-1-0/0/1288. 0.0079830116080.00.004.42 172.68.174.16h2royaleliteservice.com:443GET /wp-content/uploads/2024/02/NZ-Our-company-300x111.jpg HTTP 1-119597220/393/2263_ 26.313310388520.01.7810.14 172.68.210.181h2staplefordwingstravels.co.uk:44GET /wp-admin/network/chosen.php HTTP/2.0 1-119597220/401/2259_ 26.4920323170.01.139.69 162.158.163.219http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-119597220/399/2242_ 26.494611390690.01.248.55 104.23.175.182http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-119597220/379/2151_ 26.492048364920.01.327.81 162.158.189.153http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-119597220/384/2278_ 26.473362349010.01.299.18 104.23.195.29h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-119597221/420/2268W 26.3600364340.00.938.09 162.158.88.9http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-119597220/401/2279_ 26.443310364420.01.608.40 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/387/2264_ 26.464430362440.01.128.87 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/390/2262_ 26.44180362050.01.859.61 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/388/2275_ 26.44630405490.01.207.88 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/383/2236_ 26.304370378180.01.179.13 172.68.210.181h2staplefordwingstravels.co.uk:44GET /wp-admin/css/colors/ HTTP/2.0 1-119597220/388/2242_ 26.37180398950.01.8913.14 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/383/2254_ 26.401080372820.01.1111.06 172.69.135.108http/1.1comms.ivarse.com:80GET /login.action HTTP/1.1 1-119597220/404/2276_ 26.493170291300.01.5513.64 162.158.106.163http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-119597220/383/2231_ 26.4910411320.00.888.80 172.68.164.53http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-119597220/404/2283_ 26.471130338490.02.938.90 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/406/2274_ 26.434381373940.02.048.94 162.158.91.158h2futurefocusfarm.com:443GET /wp-login.php HTTP/2.0 1-119597220/363/2245_ 26.34631264870.01.8410.77 104.23.195.51h2n-cloud.ivarse.com:443[0/0] init 1-119597220/385/2217_ 26.47231394110.01.888.21 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-119597220/411/2301_ 26.364370336380.01.388.44 172.17.0.2http/1.1ser
Found on 2025-07-19 08:54 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f7c14d409Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Wednesday, 16-Jul-2025 06:14:40 UTC Restart Time: Monday, 14-Jul-2025 19:25:18 UTC Parent Server Config. Generation: 6 Parent Server MPM Generation: 5 Server uptime: 1 day 10 hours 49 minutes 22 seconds Server load: 0.39 0.56 0.65 Total accesses: 120796 - Total Traffic: 620.4 MB - Total Duration: 1497218 CPU Usage: u29.45 s18.47 cu153.56 cs89.63 - .232% CPU load .964 requests/sec - 5.1 kB/second - 5.3 kB/request - 12.3946 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 04143763no1yes0025001 14143764no0yes1024000 Sum201 1049001 _________________________________W________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-541437630/262/1914_ 14.81300222690.02.338.55 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-541437630/266/1916_ 14.8110214500.02.5114.61 104.23.187.167http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-541437630/270/1926_ 14.797124196220.02.337.94 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/272/1959_ 14.80600229120.02.248.84 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-541437630/273/1906_ 14.776826272060.01.6610.11 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/270/1905_ 14.767436262510.01.447.11 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/264/1900_ 14.797418220080.01.726.96 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/277/1913_ 14.775524248570.02.287.50 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/269/1936_ 14.787615254110.01.988.41 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/262/1931_ 14.73550208660.01.259.03 66.133.109.36http/1.1jointdivisoncxvii.me:80GET /.well-known/acme-challenge/fV6lEYEgVndp69j-uvOO9gpq9iABD3G 0-541437630/266/1937_ 14.767121251850.02.338.19 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/272/1919_ 14.787518225900.02.178.82 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/261/1912_ 14.797320248150.01.666.19 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/268/1912_ 14.806819223310.02.087.37 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/276/1952_ 14.782521204790.08.2513.97 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/270/1915_ 14.783919222080.01.847.55 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/262/1919_ 14.8100296680.01.856.60 104.23.190.116http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-541437630/273/1930_ 14.80442239040.01.8712.96 172.64.238.81http/1.1comms.ivarse.com:80GET / HTTP/1.1 0-541437630/260/1917_ 14.753918223570.01.865.92 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/271/1912_ 14.8100258320.01.907.13 104.23.190.220http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-541437630/262/1917_ 14.8100208440.02.338.17 162.158.62.137http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-541437630/279/1902_ 14.74760240780.02.379.47 172.68.159.73h2comms.ivarse.com:443GET / HTTP/2.0 0-541437630/273/1920_ 14.767220213100.02.638.89 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/278/1926_ 14.767520267910.02.177.35 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 0-541437630/270/1947_ 14.8100224640.01.756.32 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-541437640/434/2929_ 22.484421332600.01.4320.69 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437640/446/2903_ 22.491026379430.01.6914.12 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437640/431/2948_ 22.433125345170.01.7514.59 172.71.232.47http/1.1ivarse.com:80GET /?author=1 HTTP/1.1 1-541437640/431/2836_ 22.5300340970.01.7313.62 172.70.111.52http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-541437640/444/2903_ 22.38440344920.01.5214.90 104.23.223.76h2comms.ivarse.com:443GET /.env HTTP/2.0 1-541437640/417/2923_ 22.5300348260.02.0716.70 104.23.190.123http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-541437640/441/2941_ 22.42350335100.01.5515.07 172.71.232.47http/1.1ivarse.com:80GET /wp-includes/wlwmanifest.xml HTTP/1.1 1-541437640/417/2926_ 22.473526375910.01.8315.66 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437641/423/2881W 22.5000353890.01.6715.60 172.70.115.224http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-541437640/420/2900_ 22.471016347450.01.1517.72 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437640/437/2908_ 22.531344362820.01.1012.72 104.23.187.52http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-541437640/420/2936_ 22.514027344550.00.9416.03 172.71.223.144h2ivarse.com:443GET /robots.txt HTTP/2.0 1-541437640/415/2909_ 22.492624396010.01.3711.67 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437640/431/2934_ 22.50430380670.02.2416.34 172.68.102.76http/1.1comms.ivarse.com:80GET /favicon.ico HTTP/1.1 1-541437640/441/2904_ 22.484018407040.01.5743.88 172.71.232.47http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437640/424/2917_ 22.523122299740.01.3012.66 162.158.127.127h2ivarse.com:443GET /wp-json/wp/v2/users HTTP/2.0 1-541437640/417/2914_ 22.43260355160.01.9915.13 172.71.232.47http/1.1ivarse.com:80GET /wp-json/wp/v2/users/ HTTP/1.1 1-541437640/401/2887_ 22.42400371130.03.0615.64 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-541437640/397/2896_ 22.423854357210.01.5215.05 172.71.232.47http/1.1ivarse.com:80GET / HTTP/1.1 1-541437640/431/2934_ 22.531159415950.01.0814.88 162.158.158.83http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-541437640/420/2884_ 22.5300397320.01.9514.82 104.23.190.252http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-541437640/427/2911_ 22.483832373340.01.2415.59 172.71.232.46http/1.1ivarse.com:80POST /xmlrpc.php HTTP/1.1 1-541437640/457/2929_ 22.36400353190.01.7314.88 162.158.203.102h2ivarse.com:443GET /xmlrpc.php HTTP/2.0 1-541437640/430/2917_ 22.53150365450.02.0313.29
Found on 2025-07-16 06:14 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f3a5e41e7Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 10-Jul-2025 22:33:36 UTC Restart Time: Wednesday, 09-Jul-2025 22:54:46 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 23 hours 38 minutes 50 seconds Server load: 0.62 0.76 0.86 Total accesses: 113208 - Total Traffic: 527.5 MB - Total Duration: 17019546 CPU Usage: u41.41 s30.7 cu97.31 cs61.31 - .271% CPU load 1.33 requests/sec - 6.3 kB/second - 4886 B/request - 150.339 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03740765no0yes1024000 13740766no0yes0025000 Sum200 1049000 ___W______________________________________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-237407650/349/1358_ 21.75960194300.00.953.62 172.71.118.204http/1.1comms.ivarse.com:80GET /.kube/config HTTP/1.1 0-237407650/349/1349_ 21.76950214350.01.233.94 172.71.118.204http/1.1comms.ivarse.com:80GET /.ssh/authorized_keys HTTP/1.1 0-237407650/321/1349_ 21.7820215470.02.726.62 172.71.95.95http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-237407651/354/1362W 21.7200201620.00.712.82 172.70.46.169http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-237407650/354/1393_ 21.75960208140.01.033.68 172.71.118.204http/1.1comms.ivarse.com:80GET /.idea/workspace.xml HTTP/1.1 0-237407650/353/1385_ 21.74240226550.01.104.03 172.71.118.204http/1.1comms.ivarse.com:80GET /.env.development HTTP/1.1 0-237407650/361/1375_ 21.76860283180.00.854.73 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/346/1359_ 21.75960228560.00.824.57 172.71.118.204http/1.1comms.ivarse.com:80GET /.netrc HTTP/1.1 0-237407650/346/1337_ 21.74190281070.00.883.46 172.71.118.204http/1.1comms.ivarse.com:80GET /.env.local HTTP/1.1 0-237407650/337/1325_ 21.75950244890.00.722.74 172.71.118.204http/1.1comms.ivarse.com:80GET /.npmrc HTTP/1.1 0-237407650/344/1346_ 21.74810260980.00.844.29 172.71.118.204http/1.1comms.ivarse.com:80GET /.aws/credentials HTTP/1.1 0-237407650/340/1325_ 21.74250213750.00.593.82 172.71.118.204http/1.1comms.ivarse.com:80GET /.docker/config.json HTTP/1.1 0-237407650/335/1349_ 21.6890137235930.01.485.83 46.101.1.225http/1.1dk.application.status.um-dnk.diGET /server HTTP/1.1 0-237407650/338/1352_ 21.782350260520.01.114.22 104.23.166.74http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-237407650/343/1355_ 21.6990105249550.00.993.68 46.101.1.225http/1.1dk.application.status.um-dnk.diGET /.vscode/sftp.json HTTP/1.1 0-237407650/341/1385_ 21.7560219390.01.034.46 172.71.118.204http/1.1comms.ivarse.com:80GET /.env.test HTTP/1.1 0-237407650/345/1353_ 21.77110208330.00.894.86 104.23.195.28h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-237407650/345/1365_ 21.77250375410.01.224.92 162.158.193.197h2crypto-ft.com:443POST /xmlrpc.php HTTP/2.0 0-237407650/332/1357_ 21.74810255650.00.704.98 172.71.118.204http/1.1comms.ivarse.com:80GET /.api/.env HTTP/1.1 0-237407650/343/1375_ 21.74190282960.01.003.94 172.71.118.204http/1.1comms.ivarse.com:80GET /.env.prod HTTP/1.1 0-237407650/349/1376_ 21.7810232750.00.846.22 104.23.166.122http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-237407650/347/1373_ 21.76950273580.01.053.81 172.71.118.204http/1.1comms.ivarse.com:80GET /.ssh/config HTTP/1.1 0-237407650/330/1345_ 21.7560254910.00.994.31 172.71.118.204http/1.1comms.ivarse.com:80GET /.envs/.production/.django HTTP/1.1 0-237407650/358/1400_ 21.76950270200.00.773.57 172.71.118.204http/1.1comms.ivarse.com:80GET /.s3cfg HTTP/1.1 0-237407650/341/1362_ 21.74250253470.00.814.74 162.158.193.197h2crypto-ft.com:443[0/0] init 1-237407660/722/2378_ 43.29210447250.02.868.92 162.158.38.125h2comms.ivarse.com:443GET /plugins.php HTTP/2.0 1-237407660/699/2361_ 43.3060425730.03.6411.54 162.158.38.125h2comms.ivarse.com:443GET /wp-2019.php HTTP/2.0 1-237407660/712/2380_ 43.3310535920.09.0617.88 172.71.99.35http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-237407660/702/2364_ 43.28330469740.03.1911.38 162.158.38.125h2comms.ivarse.com:443GET /wp-trackback.php HTTP/2.0 1-237407660/724/2412_ 43.33260501590.02.979.02 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-237407660/702/2361_ 43.30410495730.02.679.49 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-237407660/706/2394_ 43.3400459730.03.5510.65 172.71.182.180http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-237407660/715/2395_ 43.19360415380.02.5810.34 162.158.38.125h2comms.ivarse.com:443GET /wp-admin/css/colors/coffee/xmrlpc.php?p= HTTP/2.0 1-237407660/681/2359_ 43.3060505300.03.4010.74 162.158.38.125h2comms.ivarse.com:443GET /about.php HTTP/2.0 1-237407660/690/2362_ 43.32320471970.02.6810.01 172.68.22.143h2bayer.fi-careers.online:443GET /wp-content/uploads/2024/11/logo.png HTTP/2.0 1-237407660/719/2392_ 43.29210418880.05.6911.66 162.158.38.125h2comms.ivarse.com:443GET /post.php HTTP/2.0 1-237407660/725/2408_ 43.3400477180.02.7011.09 104.23.170.90http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-237407660/724/2402_ 43.28280509010.03.4011.07 162.158.38.125h2comms.ivarse.com:443GET /wp-load.php HTTP/2.0 1-237407660/707/2368_ 43.283607406190.03.0512.30 162.158.38.125h2comms.ivarse.com:443GET /classsmtps.php HTTP/2.0 1-237407660/711/2373_ 43.29270458900.02.8411.38 162.158.38.125h2comms.ivarse.com:443GET /edit.php HTTP/2.0 1-237407660/693/2355_ 43.333379487040.02.7710.42 104.23.170.101http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-237407660/692/2389_ 43.28320441450.03.008.38 162.158.38.125h2comms.ivarse.com:443GET /wp-comments-post.php HTTP/2.0 1-237407660/698/2366_ 43.3310532340.02.438.93 104.23.170.10http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-237407660/703/2387_ 43.31330443110.03.8011.09 172.68.23.167h2bayer.fi-careers.online:443GET /wp-content/uploads/2024/11/bayer_favicon_big_white.png HTT 1-237407660/696/2383_ 43.274201041610.03.2716.63 162.158.38.125h2comms.ivarse.com:443GET /inputs.php HTTP/2.0 1-237407660/702/2372_ 43.28270471280.03.3310.44 162.158.38.125h2comms.ivarse.com:443GET /wp-mail.php HTTP/2.0 1-237407660/713/2388_ 43.28280453600.03.0010.52 162.158.38.125h2comms.ivarse.com:443GET /wp-cron.php HTTP/2.0 1-237407660/686/2364_ 43.3320479950.03.419.37 172.71.182.127http/1.1bayer-application.fi-careers.onGET /@vite/env HT
Found on 2025-07-10 22:33 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fcce46186Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 10-Jul-2025 22:23:21 UTC Restart Time: Wednesday, 09-Jul-2025 22:54:46 UTC Parent Server Config. Generation: 3 Parent Server MPM Generation: 2 Server uptime: 23 hours 28 minutes 35 seconds Server load: 0.77 0.97 0.99 Total accesses: 112711 - Total Traffic: 527.0 MB - Total Duration: 17014791 CPU Usage: u40.64 s30.29 cu97.3 cs61.3 - .272% CPU load 1.33 requests/sec - 6.4 kB/second - 4902 B/request - 150.959 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03740765no0yes1024000 13740766no0yes0025000 Sum200 1049000 _________________W________________________________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-237407650/345/1354_ 21.28190194280.00.953.61 172.71.164.168http/1.1ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-237407650/344/1344_ 21.39140214330.01.233.94 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/316/1344_ 21.34231214460.02.716.61 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/350/1358_ 21.30210200500.00.702.81 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/349/1388_ 21.41190206060.01.023.67 172.71.122.183h2futurefocusfarm.com:443GET /.env HTTP/2.0 0-237407650/348/1380_ 21.34360226530.01.094.03 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/357/1371_ 21.4310282030.00.844.72 172.69.74.236h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-237407650/342/1355_ 21.36180228550.00.814.57 104.23.170.78h2comms.ivarse.com:443GET /wp-includes/js/jquery/jquery.js HTTP/2.0 0-237407650/340/1331_ 21.402860280080.00.873.44 172.70.214.186http/1.1ivarse.com:80GET / HTTP/1.1 0-237407650/334/1322_ 21.251742244890.00.712.74 162.158.49.42http/1.1ivarse.com:80GET /wp-admin/network/about.php HTTP/1.1 0-237407650/340/1342_ 21.4300259530.00.824.27 172.70.240.91http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-237407650/333/1318_ 21.40410213730.00.583.81 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/330/1344_ 21.4220234520.01.475.82 104.23.239.104http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-237407650/334/1348_ 21.412361256000.01.094.20 104.23.229.109h2futurefocusfarm.com:443GET /wp-includes/wlwmanifest.xml HTTP/2.0 0-237407650/337/1349_ 21.4210248000.00.983.66 172.70.246.24http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-237407650/336/1380_ 21.28230219360.01.034.46 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/339/1347_ 21.40260208330.00.894.85 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407651/338/1358W 21.2600374060.01.204.90 162.158.111.72http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-237407650/327/1352_ 21.4310255640.00.694.98 172.71.164.229http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-237407650/340/1372_ 21.29360282950.01.003.94 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/345/1372_ 21.372146231730.00.826.21 162.158.230.140h2royaleliteservice.com:443POST /xmlrpc.php HTTP/2.0 0-237407650/340/1366_ 21.423591261240.01.043.81 172.71.148.81http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-237407650/326/1341_ 21.30231254670.00.984.31 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-237407650/353/1395_ 21.32140270190.00.773.57 104.23.211.163h2futurefocusfarm.com:443GET /how-we-grow/%E2%80%9Chttp_/futurefocusfarm.com/contact%E2% 0-237407650/338/1359_ 21.4300253460.00.804.74 172.68.195.164http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-237407660/706/2362_ 42.41170445780.02.848.90 104.23.175.158http/1.1ivarse.com:80GET /server HTTP/1.1 1-237407660/682/2344_ 42.41150424500.03.6311.53 172.68.242.50http/1.1ivarse.com:80GET /login.action HTTP/1.1 1-237407660/700/2368_ 42.371558534740.09.0517.87 162.158.49.42http/1.1ivarse.com:80GET /wp-admin/network/index.php HTTP/1.1 1-237407660/688/2350_ 42.532287469720.03.1811.37 172.70.250.76http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-237407660/706/2394_ 42.41180501490.02.918.96 162.158.106.17http/1.1ivarse.com:80GET /@vite/env HTTP/1.1 1-237407660/687/2346_ 42.501338495380.02.669.48 172.69.223.62h2futurefocusfarm.com:443GET /info.php HTTP/2.0 1-237407660/690/2378_ 42.49140456890.03.5310.63 172.71.119.16h2futurefocusfarm.com:443GET /js/ie.js HTTP/2.0 1-237407660/703/2383_ 42.37639415370.02.5810.34 162.158.49.42http/1.1ivarse.com:80GET /wp-admin/network/index.php HTTP/1.1 1-237407660/669/2347_ 42.44160505250.03.3910.74 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-237407660/675/2347_ 42.5300471950.02.6710.00 172.71.164.54http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-237407660/706/2379_ 42.41160418530.05.6811.66 104.23.175.44http/1.1ivarse.com:80GET /about HTTP/1.1 1-237407660/708/2391_ 42.371342475470.02.6911.07 162.158.49.42http/1.1ivarse.com:80GET /wp-admin/network/index.php HTTP/1.1 1-237407660/706/2384_ 42.51180508980.03.3911.06 172.69.223.83h2futurefocusfarm.com:443GET /api/.env HTTP/2.0 1-237407660/692/2353_ 42.521107406170.03.0412.29 172.17.0.4http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-237407660/697/2359_ 42.41170458880.02.8411.38 108.162.226.68http/1.1ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 1-237407660/676/2338_ 42.46160483240.02.7510.39 172.69.223.136h2futurefocusfarm.com:443GET / HTTP/2.0 1-237407660/678/2375_ 42.5320441430.03.008.38 172.71.172.183http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-237407660/682/2350_ 42.47150532310.02.428.92 172.71.131.133h2futurefocusfarm.com:443GET /img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl. 1-237407660/687/2371_ 42.5064443070.03.7611.05 172.71.232.125h2futurefocusfarm.com:443GET /phpinfo HTTP/2.0 1-237407660/681/2368_ 42.4013411040820.03.2616.62 172.69.74.230h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-237407660/687/2357_ 42.46180469450.03.3110.43 172.71.118.144h2futurefocusfarm.com:443GET / HTTP/2.0 1-237407660/698/2373_ 42.411839453590.02.9810.51 162.158.163.252http/1.1ivarse.com:80GET / HTTP/1.1 1-237407660/673/2351_ 42.47160
Found on 2025-07-10 22:23 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543ff04a28d3Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Wednesday, 09-Jul-2025 04:19:28 UTC Restart Time: Tuesday, 08-Jul-2025 06:42:44 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 21 hours 36 minutes 44 seconds Server load: 0.43 0.81 0.99 Total accesses: 79817 - Total Traffic: 291.7 MB - Total Duration: 1542170 CPU Usage: u16.63 s12.25 cu102.18 cs75.52 - .266% CPU load 1.03 requests/sec - 3930 B/second - 3831 B/request - 19.3213 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 02224258no0yes0025000 12088030no0yes0025000 32088124no0yes1024000 Sum300 1074000 __________________________________________________.............. ...........________________W________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process </SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-122242580/38/899_ 3.31180168570.00.032.05 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/41/910_ 3.20940134420.00.142.71 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/37/877_ 3.2613296170100.00.032.75 172.71.172.40http/1.1bayer-application.fi-careers.onPOST /xmlrpc.php HTTP/1.1 0-122242580/37/889_ 3.11691187340.00.033.33 195.211.96.85h2rmail.jointdivisoncxvii.me:443[0/0] Software caused connection abort 0-122242580/39/893_ 3.18940147030.00.122.09 104.23.170.153http/1.1comms.ivarse.com:80GET /admin/.git/config HTTP/1.1 0-122242580/38/867_ 3.25690155300.00.042.19 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/40/898_ 3.30680149490.00.042.44 172.70.215.85h2crypto-ft.com:443POST /user/request/change/pwd HTTP/2.0 0-122242580/42/880_ 3.18990119460.00.092.42 104.23.170.72http/1.1comms.ivarse.com:80GET /public/.git/config HTTP/1.1 0-122242580/34/901_ 3.26630159500.00.122.29 172.69.74.213h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-122242580/43/905_ 3.16680135540.00.062.11 172.69.74.231h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-122242580/41/885_ 3.29741143810.00.062.79 104.23.195.29h2crypto-ft.com:443POST / HTTP/2.0 0-122242580/48/863_ 3.28931146410.00.762.96 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/37/866_ 3.3100126580.00.032.91 162.158.110.161http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-122242580/38/886_ 3.28990122590.00.032.38 104.23.160.45h2comms.ivarse.com:443GET / HTTP/2.0 0-122242580/43/885_ 3.26130125650.00.051.89 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/43/911_ 3.208826139400.00.031.94 172.71.124.225http/1.1dashboard.crypto-ft.investmentsGET /login HTTP/1.1 0-122242580/41/875_ 3.3110140420.00.122.81 162.158.111.123http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-122242580/42/901_ 3.20630141720.00.122.38 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/40/885_ 3.18880116130.00.032.02 104.23.166.67http/1.1comms.ivarse.com:80GET /new/.git/config HTTP/1.1 0-122242580/37/891_ 3.312284203750.00.093.00 172.71.148.84http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-122242580/37/884_ 3.3100148690.00.092.32 172.68.195.165http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-122242580/44/894_ 3.3130152900.00.062.50 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/36/884_ 3.271080138810.00.062.39 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-122242580/34/885_ 3.081031128820.00.032.07 162.158.6.217http/1.1comms.ivarse.com:80GET /simple.php HTTP/1.1 0-122242580/40/871_ 3.081030133580.00.062.23 162.158.6.217http/1.1comms.ivarse.com:80GET /wp-admin/images/about.php HTTP/1.1 1-120880300/139/718_ 9.611830116730.00.132.75 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-120880300/129/675_ 9.28160193210.00.152.04 31.172.87.74http/1.1 1-120880300/128/697_ 9.55730113890.00.153.15 172.71.182.8http/1.1comms.ivarse.com:80GET /test/.git/config HTTP/1.1 1-120880300/135/703_ 9.5580088190.00.183.28 172.71.183.118http/1.1comms.ivarse.com:80GET /dev/.git/config HTTP/1.1 1-120880300/143/717_ 9.591280183210.00.152.81 104.23.166.91http/1.1ivarse.com:80GET //ivarse.com/wp-includes/js/jquery/jquery.js HTTP/1.1 1-120880300/137/714_ 9.501781110390.00.232.51 172.68.175.39h2dashboard.crypto-ft.investmentsGET /admin/getMonthlyIvCart HTTP/2.0 1-120880300/133/737_ 9.6420115590.00.172.84 172.71.172.209http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-120880300/124/699_ 9.501931141090.00.202.78 172.68.175.39h2dashboard.crypto-ft.investmentsGET /admin/getMonthlyIvCart HTTP/2.0 1-120880300/137/717_ 9.551630214590.00.202.91 141.101.76.192http/1.1comms.ivarse.com:80GET /static/.git/config HTTP/1.1 1-120880300/130/712_ 9.261931169450.00.142.73 195.123.246.80h2rmail.jointdivisoncxvii.me:443[0/0] Software caused connection abort 1-120880300/136/698_ 9.611680153570.00.132.96 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-120880300/124/689_ 9.57201086700.00.222.47 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-120880300/134/717_ 9.633449126120.00.202.96 172.69.150.34http/1.1royaleliteservice.com:80GET /.env HTTP/1.1 1-120880300/139/719_ 9.6410154530.00.113.04 172.71.164.20http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-120880300/131/682_ 9.55800117460.00.133.58 172.70.46.180http/1.1comms.ivarse.com:80GET /www/.git/config HTTP/1.1 1-120880300/135/696_ 9.6278087440.00.173.01 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-120880300/137/720_ 9.6333141970.00.122.58 172.69.67.146http/1.1royaleliteservice.com:80POST /wp-cron.php?doing_wp_cron=1752034765.72430610656738281250 1-120880300/132/686_ 9.6410108560.00.152.77 172.71.148.116h2royaleliteservice.com:443GET /.env HTTP/2.0 1-120880300/125/708_ 9.371630126610.00.152.65 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-120880300/123/717_ 9.62850108500.00.152.89 104.23.195.6h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-120880300/134/680_ 9.611333105570.00.122.76 172.69.74.214http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1752034634.85301709175109863281 1-120880300/140/713_ 9.551280178930.00.553.23 104.23.166.91http/1.1
Found on 2025-07-09 04:19 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f4b089d4fApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Tuesday, 08-Jul-2025 23:49:52 UTC Restart Time: Tuesday, 08-Jul-2025 06:42:44 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 17 hours 7 minutes 8 seconds Server load: 0.53 0.76 0.89 Total accesses: 66588 - Total Traffic: 252.4 MB - Total Duration: 1448364 CPU Usage: u12.03 s11.47 cu83.58 cs60.68 - .272% CPU load 1.08 requests/sec - 4294 B/second - 3974 B/request - 21.7511 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01294114no0yes0025000 21615951no4yes1024031 31796513no0yes0025000 Sum304 1074031 _________________________.........................__W___________ ____________________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process <SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-012941140/212/781_ 11.49170722161090.00.551.97 162.158.38.231http/1.1crypto-ft.investments:80GET /wp-includes/Text/chosen.php HTTP/1.1 0-012941140/225/790_ 11.571120127150.00.712.52 172.71.172.77http/1.1ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-012941140/212/758_ 11.51169720156880.00.862.58 172.69.214.102h2drumreed.co.uk:443GET /project-gloucester_street_apartments-76.html HTTP/2.0 0-012941140/215/768_ 11.55170741140620.00.663.07 172.70.47.90h2dashboard.crypto-ft.com:443GET /password/reset HTTP/2.0 0-012941140/225/771_ 11.57165102136580.00.491.85 172.70.250.63http/1.1ivarse.com:80GET / HTTP/1.1 0-012941140/227/748_ 11.46170727145310.00.642.05 162.158.38.231http/1.1crypto-ft.investments:80GET /wp-content/plugins/WordPressCore/ HTTP/1.1 0-012941140/226/780_ 11.47166714138960.00.672.26 162.158.38.231http/1.1crypto-ft.investments:80GET /wp-content/plugins/revslider/includes/external/page/ HTTP/ 0-012941140/213/752_ 11.46166407112770.00.602.19 172.71.194.25h2comms.ivarse.com:443[0/0] read: stream 0, 0-012941140/229/786_ 11.6110151100.00.732.06 172.71.164.150http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-012941140/215/782_ 11.6100125840.00.611.84 172.71.148.14http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-012941140/209/760_ 11.491700135920.00.532.19 162.158.38.231http/1.1crypto-ft.investments:80GET /wp-includes/blocks/more/ HTTP/1.1 0-012941140/213/742_ 11.561680137070.00.642.15 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-012941140/212/748_ 11.59650123680.00.662.76 104.23.195.6h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-012941140/216/764_ 11.5716532107110.00.742.24 162.158.95.246http/1.1ivarse.com:80GET / HTTP/1.1 0-012941140/219/762_ 11.57600119230.00.571.75 172.70.243.189http/1.1ivarse.com:80GET /.DS_Store HTTP/1.1 0-012941140/232/787_ 11.51168805128740.00.561.78 172.71.223.205h2comms.ivarse.com:443GET /wp-admin/setup-config.php HTTP/2.0 0-012941140/203/758_ 11.6100126270.00.732.58 172.69.150.175http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-012941140/221/777_ 11.571120130510.00.592.17 162.158.111.145http/1.1ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 0-012941140/225/760_ 11.47600105060.00.431.86 162.158.38.231http/1.1crypto-ft.investments:80GET /wp-content/uploads/ HTTP/1.1 0-012941140/233/768_ 11.5817074190530.00.832.80 162.158.110.61http/1.1ivarse.com:80GET /?rest_route=/wp/v2/users/ HTTP/1.1 0-012941140/212/763_ 11.6110139170.00.552.12 172.70.243.125http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-012941140/211/767_ 11.613293139670.00.712.37 172.70.240.122http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-012941140/224/764_ 11.6120133880.00.712.27 172.71.164.221http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-012941140/237/766_ 11.46169781117530.00.501.93 162.158.38.231http/1.1crypto-ft.investments:80GET /wp-content/plugins/classic-editor/ HTTP/1.1 0-012941140/216/753_ 11.591171121420.00.582.07 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-0-0/0/579. 0.0031240112870.00.002.63 162.158.106.231http/1.1comms.ivarse.com:80GET /docker-compose.yml.zip HTTP/1.1 1-0-0/0/546. 0.003124088920.00.001.89 172.71.124.80http/1.1comms.ivarse.com:80GET /flask.zip HTTP/1.1 1-0-0/0/569. 0.0031240110150.00.003.01 172.70.93.37http/1.1comms.ivarse.com:80GET /env.zip HTTP/1.1 1-0-0/0/568. 0.003124084710.00.003.10 172.70.208.141http/1.1comms.ivarse.com:80GET /ftp.zip HTTP/1.1 1-0-0/0/574. 0.0031240181860.00.002.67 162.158.108.22http/1.1comms.ivarse.com:80GET /vendor.zip HTTP/1.1 1-0-0/0/577. 0.0031240106010.00.002.28 162.158.170.99http/1.1comms.ivarse.com:80GET /api_key.zip HTTP/1.1 1-0-0/0/604. 0.0031240111120.00.002.67 162.158.189.83http/1.1comms.ivarse.com:80GET /fastapi.zip HTTP/1.1 1-0-0/0/575. 0.0031240130300.00.002.58 172.71.124.203http/1.1comms.ivarse.com:80GET /gin.zip HTTP/1.1 1-0-0/0/580. 0.0031240214200.00.002.71 141.101.84.207h2comms.ivarse.com:443[1/1] done 1-0-0/0/582. 0.0031246166180.00.002.59 172.69.165.78http/1.1comms.ivarse.com:80GET /.env.local.zip HTTP/1.1 1-0-0/0/562. 0.0031240149530.00.002.84 172.68.164.98http/1.1comms.ivarse.com:80GET /aws/config.zip HTTP/1.1 1-0-0/0/565. 0.003124081970.00.002.25 172.69.166.48http/1.1comms.ivarse.com:80GET /templates.zip HTTP/1.1 1-0-0/0/583. 0.0031240116700.00.002.76 172.71.124.118http/1.1comms.ivarse.com:80GET /vite.zip HTTP/1.1 1-0-0/0/580. 0.0031240151760.00.002.92 104.23.175.250http/1.1comms.ivarse.com:80GET /lite.zip HTTP/1.1 1-0-0/0/551. 0.0031240110380.00.003.44 162.158.108.55http/1.1comms.ivarse.com:80GET /cmd.zip HTTP/1.1 1-0-0/0/561. 0.003124084370.00.002.83 162.158.88.106http/1.1comms.ivarse.com:80GET /babel.zip HTTP/1.1 1-0-0/0/583. 0.0031240117640.00.002.46 172.71.124.55http/1.1comms.ivarse.com:80GET /svelte.zip HTTP/1.1 1-0-0/0/554. 0.0031240106290.00.002.61 162.158.162.90http/1.1comms.ivarse.com:80GET /home.zip HTTP/1.1 1-0-0/0/583. 0.0031240125890.00.002.50 172.70.143.186http/1.1comms.ivarse.com:80GET /devops.zip HTTP/1.1 1-0-0/0/594. 0.0031240107050.00.002.74 172.71.124.217http/1.1comms.ivarse.com:80GET /vercel.zip HTTP/1.1 1-0-0/0/546. 0.0031240103590.00.002.64 104.23.175.209http/1.1comms.ivarse.com:80GET /main.py.zip HTTP/1.1 1-0-0/0/573. 0.0031240159510.00.002.68 172.70.142.57http/1.1comms.ivarse.com:80GET /source.zip HTTP/1.1 1-0-0/0/572. 0.0031241117020.00.002.87 108.162.226.88http/1.1comms.ivarse.com:80GET /k8s.zip HTTP/1.1
Found on 2025-07-08 23:49 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fd3cc3806Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 07-Jul-2025 15:51:31 UTC Restart Time: Monday, 07-Jul-2025 03:30:37 UTC Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 12 hours 20 minutes 54 seconds Server load: 1.04 0.89 0.96 Total accesses: 124031 - Total Traffic: 172.2 MB - Total Duration: 319966 CPU Usage: u120.58 s97.04 cu43.35 cs34.56 - .665% CPU load 2.79 requests/sec - 4062 B/second - 1456 B/request - 2.57973 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 11982no5yes0025041 2443107no4yes1024031 31261710no0yes0025000 Sum309 1074072 ........................._______________________________________ __________W_________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-0-0/0/1334. 0.0070079420.00.002.26 172.71.182.6http/1.1comms.ivarse.com:80GET /keys.zip HTTP/1.1 0-0-0/0/1335. 0.0070033470.00.002.03 172.71.95.74http/1.1comms.ivarse.com:80GET /key.zip HTTP/1.1 0-0-0/0/1342. 0.0070044630.00.001.33 104.23.172.79http/1.1comms.ivarse.com:80GET /vue.zip HTTP/1.1 0-0-0/0/1336. 0.0070051020.00.001.77 172.71.182.91http/1.1comms.ivarse.com:80GET /.env.dev.zip HTTP/1.1 0-0-0/0/1283. 0.0070055980.00.001.08 104.23.170.75http/1.1comms.ivarse.com:80GET /config.ru.zip HTTP/1.1 0-0-0/0/1328. 0.0070022390.00.001.15 172.70.46.97http/1.1comms.ivarse.com:80GET /cert.pem.zip HTTP/1.1 0-0-0/0/1256. 0.0070024490.00.001.33 104.23.172.100http/1.1comms.ivarse.com:80GET /react.zip HTTP/1.1 0-0-0/0/1346. 0.0070042810.00.002.05 172.71.103.190http/1.1comms.ivarse.com:80GET /asgi.py.zip HTTP/1.1 0-0-0/0/1320. 0.0070031710.00.001.91 172.71.182.234http/1.1comms.ivarse.com:80GET /templates.zip HTTP/1.1 0-0-0/0/1305. 0.0070031150.00.001.92 172.71.102.179http/1.1comms.ivarse.com:80GET /sql_dump.zip HTTP/1.1 0-0-0/0/1267. 0.0070039100.00.001.73 172.71.103.101http/1.1comms.ivarse.com:80GET /autoload.zip HTTP/1.1 0-0-0/0/1327. 0.0070017140.00.001.70 172.71.183.214http/1.1comms.ivarse.com:80GET /.env.local.zip HTTP/1.1 0-0-0/0/1326. 0.0070016070.00.001.67 104.23.172.31http/1.1comms.ivarse.com:80GET /projects.zip HTTP/1.1 0-0-0/0/1319. 0.0070019420.00.001.31 172.70.47.38http/1.1comms.ivarse.com:80GET /jenkins.zip HTTP/1.1 0-0-0/0/1331. 0.0070043950.00.002.15 172.71.95.97http/1.1comms.ivarse.com:80GET /dev.zip HTTP/1.1 0-0-0/0/1284. 0.0070030630.00.001.34 104.23.172.3http/1.1comms.ivarse.com:80GET /api_keys.zip HTTP/1.1 0-0-0/0/1327. 0.0070044880.00.001.52 172.71.99.128http/1.1comms.ivarse.com:80GET /mux.zip HTTP/1.1 0-0-0/0/1318. 0.0070038080.00.001.66 104.23.168.66http/1.1comms.ivarse.com:80GET /spring.zip HTTP/1.1 0-0-0/0/1325. 0.0070049520.00.001.41 172.70.47.57http/1.1comms.ivarse.com:80GET /python_backend.zip HTTP/1.1 0-0-0/0/1322. 0.0070022710.00.001.15 172.71.99.36http/1.1comms.ivarse.com:80GET /token.zip HTTP/1.1 0-0-0/0/1321. 0.0070045400.00.001.36 172.70.47.188http/1.1comms.ivarse.com:80GET /charts.zip HTTP/1.1 0-0-0/0/1326. 0.0070040740.00.001.57 104.23.172.88http/1.1comms.ivarse.com:80GET /config.json.zip HTTP/1.1 0-0-0/0/1314. 0.0070020300.00.001.21 172.71.99.205http/1.1comms.ivarse.com:80GET /jsp.zip HTTP/1.1 0-0-0/0/1320. 0.0070019820.00.001.61 172.70.46.234http/1.1comms.ivarse.com:80GET /package.json.zip HTTP/1.1 0-0-0/0/1319. 0.0070017350.00.001.36 104.23.170.181http/1.1comms.ivarse.com:80GET /go.mod.zip HTTP/1.1 1-019820/2195/2195_ 128.5269047260.03.353.35 104.23.195.86h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-019820/2192/2192_ 128.4864042910.03.243.24 172.70.46.19http/1.1comms.ivarse.com:80GET /static.zip HTTP/1.1 1-019820/2194/2194_ 128.5321056000.02.992.99 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-019820/2213/2213_ 128.4771048080.03.043.04 172.70.46.233http/1.1comms.ivarse.com:80GET /server.js.zip HTTP/1.1 1-019820/2168/2168_ 128.55316794300.03.043.04 172.70.247.88http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-019820/2178/2178_ 128.4871039990.02.712.71 172.71.95.136http/1.1comms.ivarse.com:80GET /Gemfile.zip HTTP/1.1 1-019820/2192/2192_ 128.4816054020.03.363.36 172.71.98.229http/1.1comms.ivarse.com:80GET /hugo.zip HTTP/1.1 1-019820/2231/2231_ 128.4871060630.02.932.93 172.71.182.59http/1.1comms.ivarse.com:80GET /symfony.zip HTTP/1.1 1-019820/2154/2154_ 128.484043140.03.053.05 172.71.98.118http/1.1comms.ivarse.com:80GET /cmd.zip HTTP/1.1 1-019820/2187/2187_ 128.4864052770.02.572.57 104.23.170.69http/1.1comms.ivarse.com:80GET /php.zip HTTP/1.1 1-019820/2172/2172_ 128.547032200.03.643.64 167.94.138.173http/1.1comms.ivarse.com:80\x16\x03\x01 1-019820/2209/2209_ 128.4816044400.03.533.53 104.23.166.24http/1.1comms.ivarse.com:80GET /secrets.zip HTTP/1.1 1-019820/2179/2179_ 128.551040200.03.353.35 172.71.164.58http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-019820/2209/2209_ 128.4871049950.02.362.36 104.23.166.144http/1.1comms.ivarse.com:80GET /svelte.zip HTTP/1.1 1-019820/2184/2184_ 128.549051580.04.294.29 104.23.195.87h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-019820/2178/2178_ 128.5333052640.03.703.70 167.94.138.173http/1.1comms.ivarse.com:80GET /favicon.ico HTTP/1.1 1-019820/2200/2200_ 128.552047140.03.253.25 162.158.110.3http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-019820/2190/2190_ 128.484062310.04.354.35 172.70.46.160http/1.1comms.ivarse.com:80GET /.env.zip HTTP/1.1 1-019820/2189/2189_ 128.54343656790.04.234.23 172.71.144.14http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-019820/2167/2167_ 128.4871048280.03.433.43 172.71.99.35http/1.1comms.ivarse.com:80GET /nextjs.zip HTTP/1.1 1-019820/2178/2178_ 128.553068980.03.043.04 104.23.239.142http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-019820/2194/2194_ 128.4871040700.03.603.60 172.71.103.233http/1.1comms.ivarse.com:80GET /pyproject.toml.zip HTTP/1.1 1-019820/2202/2202_ 128.4871049340.03.943.94 104.23.170.158http/1.1comms.ivarse.com:80GET /META-INF.zip HTTP/1.1 1-019820/2151/2151_ 128.4832051700.02.702.70 104.23.166.130http/1.1comms.ivarse.com:80GET /config.go.zip HTTP/1.1 1-019820/2175/2175_ 128.4771
Found on 2025-07-07 15:51 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb64f4962Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 04-Jul-2025 13:01:44 UTC Restart Time: Tuesday, 01-Jul-2025 23:22:09 UTC Parent Server Config. Generation: 4 Parent Server MPM Generation: 3 Server uptime: 2 days 13 hours 39 minutes 35 seconds Server load: 1.65 1.20 0.96 Total accesses: 229995 - Total Traffic: 1.1 GB - Total Duration: 56613126 CPU Usage: u50.58 s34.23 cu325.61 cs171.89 - .262% CPU load 1.04 requests/sec - 5.3 kB/second - 5.1 kB/request - 246.149 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03903357no0yes1024000 22911544no0yes0025000 32911545no0yes0025000 Sum300 1074000 _W_______________________.........................______________ ____________________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process <SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-339033570/275/896_ 19.01891164530.00.315.23 172.70.222.127http/1.1crypto-ft.com:80GET /autoload_classmap.php HTTP/1.1 0-339033571/287/934W 19.0000161150.00.597.56 172.70.247.134http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-339033570/268/902_ 19.0732168460.00.565.82 104.23.195.86http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1751634100.80493211746215820312 0-339033570/281/894_ 18.99801161670.00.746.30 172.70.222.127http/1.1crypto-ft.com:80GET /defaults.php HTTP/1.1 0-339033570/260/866_ 19.00140146040.00.555.56 172.70.222.127http/1.1crypto-ft.com:80GET /db.php HTTP/1.1 0-339033570/286/920_ 19.051461173620.01.097.05 104.23.195.51h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-339033570/272/858_ 19.0114109856240.00.446.31 172.70.222.127http/1.1crypto-ft.com:80GET /randkeyword.php HTTP/1.1 0-339033570/276/794_ 19.0080047997970.01.154.91 172.70.222.127http/1.1crypto-ft.com:80GET /about.php HTTP/1.1 0-339033570/281/911_ 19.0710199720.00.867.97 172.70.240.41http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-339033570/268/886_ 19.07004415970.00.4114.12 172.70.240.74http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 0-339033570/275/901_ 19.06190188320.00.475.96 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/288/927_ 19.051240154040.00.355.70 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/277/903_ 19.001640128750.00.726.08 172.70.222.127http/1.1crypto-ft.com:80GET /mah.php HTTP/1.1 0-339033570/276/888_ 19.001640161560.01.166.94 172.70.222.127http/1.1crypto-ft.com:80GET /.well-known/pki-validation/about.php HTTP/1.1 0-339033570/285/929_ 19.0016408383450.00.4112.28 172.70.222.127http/1.1crypto-ft.com:80GET /alfa.php HTTP/1.1 0-339033570/270/883_ 19.018952186470.00.455.95 172.70.222.127http/1.1crypto-ft.com:80GET /wp-admin/user/index.php HTTP/1.1 0-339033570/293/902_ 19.0685014800740.00.665.75 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-339033570/285/886_ 19.01119127858460.00.845.98 172.70.222.127http/1.1crypto-ft.com:80GET /wp-admin/autoload_classmap.php HTTP/1.1 0-339033570/285/924_ 19.0720147630.00.836.23 172.71.172.131http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-339033570/293/925_ 19.0640175470.00.497.28 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/290/906_ 19.00141163320.00.778.01 172.70.222.127http/1.1crypto-ft.com:80GET /wp-admin/css/colors/coffee/index.php HTTP/1.1 0-339033570/287/916_ 19.05940150800.00.486.46 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/286/916_ 19.0710178390.00.404.80 162.158.95.186http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-339033570/281/878_ 19.01119112477530.01.957.45 172.70.222.127http/1.1crypto-ft.com:80GET /buy.php HTTP/1.1 0-339033570/294/919_ 19.0114163215390.00.956.59 172.70.222.127http/1.1crypto-ft.com:80GET /wp-admin/index.php HTTP/1.1 1-1-0/0/436. 0.00175278034230.00.003.96 172.69.214.236h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/uploads/elemento 1-1-0/0/424. 0.00175278073890.00.001.02 108.162.241.103h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/crypto-investment/ HTTP/2.0 1-1-0/0/430. 0.00175278138130.00.001.04 172.69.130.202h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/pro-elem 1-1-0/0/397. 0.00175278011420810.00.001.23 104.23.187.142h2crypto-ft.investments:443[1/1] done 1-1-0/0/450. 0.00175278135960.00.001.05 172.70.80.16h2crypto-ft.investments:443[1/1] done 1-1-0/0/432. 0.00175278032980.00.001.18 172.69.130.172h2crypto-ft.investments:443GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/2.0 1-1-0/0/429. 0.00175278136280.00.001.53 104.23.190.123h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=4.0.5 1-1-0/0/427. 0.00175278043770.00.001.43 172.69.214.203h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/themes/oceanwp/a 1-1-0/0/421. 0.0017527801373940.00.001.21 162.158.158.27h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/pro-elem 1-1-0/0/436. 0.001752783220340.00.000.64 172.69.130.188h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/elemento 1-1-0/0/408. 0.00175278040850770.00.001.06 104.23.187.102h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min 1-1-0/0/430. 0.00175278134890.00.001.68 172.69.214.237h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/elemento 1-1-0/0/452. 0.001752783064480.00.001.62 172.69.130.203h2crypto-ft.investments:443[1/1] done 1-1-0/0/433. 0.00175278147070.00.001.25 162.158.155.228h2crypto-ft.investments:443[1/1] done 1-1-0/0/402. 0.00175278023204390.00.003.49 104.23.187.4h2crypto-ft.investments:443[1/1] done 1-1-0/0/437. 0.0017527807493470.00.001.19 172.70.80.118h2crypto-ft.investments:443[1/1] done 1-1-0/0/462. 0.00175278093910.00.001.68 172.69.214.170h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/pro-elem 1-1-0/0/410. 0.00175278034177150.00.001.51 104.23.187.178h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd. 1-1-0/0/443. 0.00175278333134633343020.00.002.48 172.68.229.80http/1.1payments.cryptofnpro.com:443GET /stores/_blazor?id=9sSfjhllg6J_NuQAIWxoaA HTTP/1.1 1-1-0/0/446. 0.00175278043840.00.004.46 104.23.187.142h2crypto-ft.investments:443[1/1] done 1-1-0/0/438. 0.0017527813338560.00.001.12 162.158.62.225h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/elemento 1-1-0/0/449. 0.001752780
Found on 2025-07-04 13:01 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f918f69bbApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 04-Jul-2025 09:56:52 UTC Restart Time: Tuesday, 01-Jul-2025 23:22:09 UTC Parent Server Config. Generation: 4 Parent Server MPM Generation: 3 Server uptime: 2 days 10 hours 34 minutes 42 seconds Server load: 0.71 0.75 0.80 Total accesses: 221625 - Total Traffic: 1.1 GB - Total Duration: 56502448 CPU Usage: u37.73 s25.43 cu325.61 cs171.89 - .266% CPU load 1.05 requests/sec - 5.5 kB/second - 5.2 kB/request - 254.946 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 03903357no0yes0025000 22911544no0yes0025000 32911545no0yes1024000 Sum300 1074000 _________________________.........................______________ _______________________________W____............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process <SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-339033570/155/776_ 10.623695146850.00.175.09 141.101.76.93http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-339033570/159/806_ 10.52370137250.00.387.35 172.69.74.224h2crypto-ft.investments:443POST /wp-cron.php?doing_wp_cron=1751622755.36746501922607421875 0-339033570/148/782_ 10.58560149920.00.385.65 204.76.203.206http/1.1server1.jointdivisoncxvii.me:80GET / HTTP/1.1 0-339033570/163/776_ 10.6200141270.00.335.90 104.23.166.75http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-339033570/152/758_ 10.49470129920.00.155.16 58.59.233.185http/1.1server1.jointdivisoncxvii.me:80GET / HTTP/1.1 0-339033570/155/789_ 10.6210151250.00.776.72 104.23.170.137http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-339033570/157/743_ 10.524219837000.00.216.08 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-339033570/149/667_ 10.4756047972590.00.894.64 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/161/791_ 10.57370188370.00.657.76 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/145/763_ 10.62204394990.00.1713.89 172.71.102.173http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-339033570/147/773_ 10.58520160540.00.215.71 172.68.3.126http/1.1comms.ivarse.com:80GET /.well-known/acme-challenge/PSrXvX8_OZSuyetNOz1O-36ZIqxflHd 0-339033570/156/795_ 10.6210132150.00.145.49 104.23.170.166http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-339033570/155/781_ 10.60220109170.00.325.68 162.158.244.134http/1.1comms.ivarse.com:80GET /.well-known/acme-challenge/1rpGfnw05pumBNLYKVuQJBmrPiHTWda 0-339033570/156/768_ 10.58420137700.00.816.59 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/156/800_ 10.6222238371110.00.1612.03 172.70.47.116http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-339033570/156/769_ 10.6200164780.00.295.79 172.71.182.172http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-339033570/162/771_ 10.49522614769450.00.465.55 172.69.74.135h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-339033570/159/760_ 10.3022027831580.00.635.77 60.16.208.241http/1.1 0-339033570/154/793_ 10.62270127120.00.485.88 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/157/789_ 10.614833142830.00.227.00 172.71.146.3h2futurefocusfarm.com:443GET /its-about-thyme.html HTTP/2.0 0-339033570/160/776_ 10.61420147180.00.517.75 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/160/789_ 10.61570132090.00.236.21 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-339033570/166/796_ 10.584642157910.00.224.61 172.70.178.47http/1.1crypto-ft.com:80POST /xmlrpc.php HTTP/1.1 0-339033570/157/754_ 10.61513712459290.00.295.80 162.158.102.136http/1.1crypto-ft.investments:80POST /xmlrpc.php HTTP/1.1 0-339033570/172/797_ 10.56460190490.00.285.91 104.23.187.53h2ivarse.com:443POST /wp-login.php HTTP/2.0 1-1-0/0/436. 0.00164186034230.00.003.96 172.69.214.236h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/uploads/elemento 1-1-0/0/424. 0.00164186073890.00.001.02 108.162.241.103h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/crypto-investment/ HTTP/2.0 1-1-0/0/430. 0.00164186138130.00.001.04 172.69.130.202h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/pro-elem 1-1-0/0/397. 0.00164186011420810.00.001.23 104.23.187.142h2crypto-ft.investments:443[1/1] done 1-1-0/0/450. 0.00164186135960.00.001.05 172.70.80.16h2crypto-ft.investments:443[1/1] done 1-1-0/0/432. 0.00164186032980.00.001.18 172.69.130.172h2crypto-ft.investments:443GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/2.0 1-1-0/0/429. 0.00164186136280.00.001.53 104.23.190.123h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=4.0.5 1-1-0/0/427. 0.00164186043770.00.001.43 172.69.214.203h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/themes/oceanwp/a 1-1-0/0/421. 0.0016418601373940.00.001.21 162.158.158.27h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/pro-elem 1-1-0/0/436. 0.001641863220340.00.000.64 172.69.130.188h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/elemento 1-1-0/0/408. 0.00164186040850770.00.001.06 104.23.187.102h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min 1-1-0/0/430. 0.00164186134890.00.001.68 172.69.214.237h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/elemento 1-1-0/0/452. 0.001641863064480.00.001.62 172.69.130.203h2crypto-ft.investments:443[1/1] done 1-1-0/0/433. 0.00164186147070.00.001.25 162.158.155.228h2crypto-ft.investments:443[1/1] done 1-1-0/0/402. 0.00164186023204390.00.003.49 104.23.187.4h2crypto-ft.investments:443[1/1] done 1-1-0/0/437. 0.0016418607493470.00.001.19 172.70.80.118h2crypto-ft.investments:443[1/1] done 1-1-0/0/462. 0.00164186093910.00.001.68 172.69.214.170h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/pro-elem 1-1-0/0/410. 0.00164186034177150.00.001.51 104.23.187.178h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd. 1-1-0/0/443. 0.00164186333134633343020.00.002.48 172.68.229.80http/1.1payments.cryptofnpro.com:443GET /stores/_blazor?id=9sSfjhllg6J_NuQAIWxoaA HTTP/1.1 1-1-0/0/446. 0.00164186043840.00.004.46 104.23.187.142h2crypto-ft.investments:443[1/1] done 1-1-0/0/438. 0.0016418613338560.00.001.12 162.158.62.225h2crypto-ft.investments:443GET /https%3A/crypto-ft.investments/wp-content/plugins/elemento 1-1-0/0/449
Found on 2025-07-04 09:56 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f2221e520Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Monday, 30-Jun-2025 05:08:11 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 25 Parent Server MPM Generation: 24 Server uptime: 14 days 6 hours 21 minutes 12 seconds Server load: 0.80 0.70 0.80 Total accesses: 1228512 - Total Traffic: 8.2 GB - Total Duration: 88150793 CPU Usage: u73.93 s67.86 cu2102.46 cs1188.12 - .278% CPU load .997 requests/sec - 7.0 kB/second - 7.0 kB/request - 71.7541 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 74 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0646102no0yes0025000 1953819no0yes1024000 2646103no0yes0025000 Sum300 1074000 _________________________________W______________________________ ___________..................................................... ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-246461020/255/16601_ 12.48404754470.00.37118.83 172.71.122.242h2comms.ivarse.com:443GET /admin/settings.env HTTP/2.0 0-246461020/244/15259_ 12.393107555840.00.5185.13 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-246461020/256/15310_ 12.412603987680.00.41101.51 104.23.195.7h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-246461020/285/16269_ 12.4310207348050.00.48108.59 172.71.182.161h2futurefocusfarm.com:443GET /wp-content/themes/seotheme/db.php?u HTTP/2.0 0-246461020/252/15488_ 12.4906193740240.00.28123.97 172.69.135.122http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-246461020/241/15178_ 12.442614182220.02.33116.79 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-246461020/258/15313_ 12.46416559630.00.2788.81 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-246461020/242/15453_ 12.3713104891520.00.5180.36 104.23.195.29h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 0-246461020/232/15878_ 12.4036321800040.00.1895.84 172.69.74.134http/1.1crypto-ft.com:80POST /wp-cron.php?doing_wp_cron=1751259817.57634305953979492187 0-246461020/259/15289_ 12.471604140470.00.39143.44 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-246461020/247/15149_ 12.39112773876460.00.2694.88 18.133.199.181http/1.1 0-246461020/254/15172_ 12.461104198300.00.99104.78 172.71.146.30h2dashboard.crypto-ft.investmentsGET /robots.txt HTTP/2.0 0-246461020/230/15098_ 12.2210303900610.00.3883.83 157.245.237.208http/1.1 0-246461020/252/15521_ 12.48403851500.00.2989.89 172.71.122.242h2comms.ivarse.com:443GET /admin/public/log.php HTTP/2.0 0-246461020/241/16099_ 12.49003729390.00.4679.68 172.69.23.98http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 0-246461020/244/15033_ 12.4610304011660.00.4193.03 172.69.222.62http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-246461020/243/15120_ 12.443703956300.00.1983.93 172.69.223.100h2drumreed.co.uk:443GET /robots.txt HTTP/2.0 0-246461020/248/14920_ 12.490015395370.00.2299.57 104.234.115.10http/1.1comms.ivarse.com:80\x16\x03\x01 0-246461020/230/15293_ 12.473622523771150.00.1890.16 141.101.69.133h2comms.ivarse.com:443GET /api/json/debug.js HTTP/2.0 0-246461020/222/15234_ 12.363103890240.00.2599.32 172.71.131.121http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-246461020/253/15162_ 12.4610213960740.00.8792.46 172.69.222.62http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-246461020/245/15087_ 12.463709978950.00.33122.39 141.101.69.134http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-246461020/248/17167_ 12.43102077430980.00.3395.69 172.71.182.161h2futurefocusfarm.com:443GET /wp-content/plugins/fix/up.php HTTP/2.0 0-246461020/242/14866_ 12.46102074841370.00.62115.07 172.69.222.62http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 0-246461020/232/15045_ 12.473105911270.00.28106.12 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-249538190/210/14952_ 10.89504840610.00.4592.75 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-249538190/201/14902_ 10.91004676240.00.67112.54 162.158.167.105http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-249538190/208/14779_ 10.91004427050.00.63114.82 172.71.158.34http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-249538190/195/14934_ 10.896704936130.00.4398.43 172.71.130.57http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/198/15063_ 10.906934409750.01.23126.71 172.69.222.191http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/188/14658_ 10.9116014217470.00.26102.30 169.150.196.14http/1.1comms.ivarse.com:80GET /.env HTTP/1.1 1-249538190/178/14927_ 10.90504610000.00.7799.05 172.69.222.190http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/200/14817_ 10.88504455850.00.44156.22 172.71.130.56http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538191/183/15050W 10.90004409870.00.2897.82 172.71.158.203http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-249538190/205/15873_ 10.91504328290.00.95117.80 172.71.122.243http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/178/16339_ 10.874134252240.00.34126.26 172.71.232.137h2comms.ivarse.com:443GET /config/php/secret.bak HTTP/2.0 1-249538190/192/15324_ 10.9161011652110.00.4485.46 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-249538190/197/15122_ 10.891104660590.00.27129.04 172.17.0.3http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-249538190/212/14886_ 10.784104633470.00.6998.16 172.71.122.69http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/183/14826_ 10.875604368790.00.36126.51 172.71.232.137h2comms.ivarse.com:443GET /admin.yaml HTTP/2.0 1-249538190/210/14920_ 10.91504997200.00.42106.48 172.71.122.242http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/203/15527_ 10.796904291760.00.57129.94 18.133.199.181http/1.1 1-249538190/186/14836_ 10.906704533360.00.48153.79 172.69.222.190http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/194/14807_ 10.8853574607770.00.50114.22 172.71.130.56h2comms.ivarse.com:443GET /config/static/test.php HTTP/2.0 1-249538190/209/14762_ 10.91604418390.00.6390.88 172.71.122.242http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-249538190/192/14780_ 10.787026280150.00.84120.30 3.130.96.91http/1.1server1.jointdivisoncxvii.me:44\n 1-249538190/208/15387_ 10.791114533670.00.28134.58 172.69.222.166http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x02 1-24
Found on 2025-06-30 05:08 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fe6154961Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Tuesday, 24-Jun-2025 16:03:36 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 17 Parent Server MPM Generation: 16 Server uptime: 8 days 17 hours 16 minutes 37 seconds Server load: 1.05 1.26 1.25 Total accesses: 771374 - Total Traffic: 5.8 GB - Total Duration: 24491541 CPU Usage: u126.19 s84.84 cu1265.33 cs720.66 - .292% CPU load 1.02 requests/sec - 8.0 kB/second - 7.9 kB/request - 31.7505 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0726427no1yes0025010 1726428no4yes1024031 Sum205 1049041 _____________________________________W____________.............. ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-167264270/1325/8636_ 73.67502231120.023.4879.17 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/plugins/seoplugins/mar.php HTTP/1.1 0-167264270/1195/8594_ 73.67412274880.05.4451.68 172.68.205.102http/1.1crypto-ft.com:80GET /cong.php HTTP/1.1 0-167264270/1219/8587_ 73.68412339300.08.2355.88 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/themes/index.php HTTP/1.1 0-167264270/1194/9559_ 73.70102476110.06.3565.53 172.69.214.44http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-167264270/1201/8603_ 73.68302173420.06.3159.13 172.68.205.102http/1.1crypto-ft.com:80GET /.well-known/pki-validation/about.php HTTP/1.1 0-167264270/1203/8580_ 73.69112146050.07.8557.98 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/about.php HTTP/1.1 0-167264270/1178/8602_ 73.69112310680.06.3957.97 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/file.php HTTP/1.1 0-167264270/1197/8839_ 73.68312386300.06.6555.75 172.68.205.102http/1.1crypto-ft.com:80GET /alfa.php HTTP/1.1 0-167264270/1199/8541_ 73.69112502110.05.2853.65 172.68.205.102http/1.1crypto-ft.com:80GET /buy.php HTTP/1.1 0-167264270/1244/8761_ 73.683982359970.06.1257.49 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/index.php HTTP/1.1 0-167264270/1222/8519_ 73.70002208410.06.8766.23 172.69.130.165http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 0-167264270/1184/8488_ 73.67402272050.06.0664.87 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/css/colors/index.php HTTP/1.1 0-167264270/1183/8482_ 73.68312132320.06.8552.37 172.68.205.102http/1.1crypto-ft.com:80GET /mah.php HTTP/1.1 0-167264270/1208/8495_ 73.67402368240.05.2851.09 172.68.205.102http/1.1crypto-ft.com:80GET /install.php HTTP/1.1 0-167264270/1792/9515_ 73.66512207010.05.2952.39 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/css/colors/coffee/index.php HTTP/1.1 0-167264270/1171/8473_ 73.70002321720.06.1057.79 108.162.242.70http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 0-167264270/1192/8541_ 73.70002234400.06.1852.79 172.69.130.179http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-167264270/1215/8540_ 73.70002319730.013.4365.28 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1 0-167264270/1215/8619_ 73.69112269520.06.1552.45 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/autoload_classmap.php HTTP/1.1 0-167264270/1174/8666_ 73.701722286460.05.7254.94 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/user/index.php HTTP/1.1 0-167264270/1181/8534_ 73.69212251120.07.3155.53 172.68.205.102http/1.1crypto-ft.com:80GET /randkeyword.php HTTP/1.1 0-167264270/1191/8596_ 73.68432289630.021.2071.99 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/themes/ HTTP/1.1 0-167264270/1193/8675_ 73.6917782359300.06.9668.88 108.162.242.70http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-167264270/1214/8508_ 73.68322330590.06.1876.42 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/js/index.php HTTP/1.1 0-167264270/1219/8541_ 73.69112382330.05.3171.00 172.68.205.102http/1.1crypto-ft.com:80GET /autoload_classmap.php HTTP/1.1 1-167264280/1361/11005_ 78.19213499730.03.7478.02 172.68.205.102http/1.1crypto-ft.com:80GET /wp-content/languages/index.php HTTP/1.1 1-167264280/1355/10840_ 78.19513427390.02.4692.75 172.68.205.102http/1.1crypto-ft.com:80GET /xleet.php HTTP/1.1 1-167264280/1316/10882_ 78.23103534840.03.12102.17 172.69.214.80http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-167264280/1320/10967_ 78.24003537130.03.9478.84 108.162.241.80http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-167264280/1292/11181_ 78.19913368120.04.89100.46 172.68.205.102http/1.1crypto-ft.com:80GET /function.php HTTP/1.1 1-167264280/1314/10857_ 78.2311883492150.03.9082.83 172.70.80.165http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-167264280/1312/10948_ 78.24003534620.09.3085.94 172.69.74.212h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-167264280/1360/10973_ 78.21613551090.03.21136.67 172.69.74.213http/1.1crypto-ft.com:80POST /wp-cron.php?doing_wp_cron=1750781010.64438104629516601562 1-167264280/1405/11064_ 78.24003420610.05.4575.15 108.162.241.223http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-167264280/1396/11068_ 78.23003359060.010.46101.92 172.68.205.7h2crypto-ft.com:443GET /wp-admin/user/index.php HTTP/2.0 1-167264280/2924/12496_ 78.22213344430.04.66111.39 172.68.205.7h2crypto-ft.com:443GET /wp-login.php?redirect_to=https%3A%2F%2Fcrypto-ft.com%2Fwp- 1-167264280/1397/11554_ 78.22143418040.05.7672.64 172.69.74.249http/1.1bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1750781014.90168094635009765625 1-167264282/1368/11024W 78.20003588360.04.3080.45 172.70.80.165http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-167264280/1370/11059_ 78.19503597180.03.0184.48 172.68.205.102http/1.1crypto-ft.com:80GET /.well-known/wp-login.php HTTP/1.1 1-167264280/1346/10852_ 78.20113414780.04.30109.58 172.68.205.102http/1.1crypto-ft.com:80GET /wp-admin/maint/maint.php HTTP/1.1 1-167264280/1352/11024_ 78.201013589940.03.0192.74 172.68.205.102http/1.1crypto-ft.com:80GET /makeasmtp.php?p= HTTP/1.1 1-167264280/1387/11012_ 78.201013324820.04.40110.39 172.68.205.102http/1.1crypto-ft.com:80GET /packed.php HTTP/1.1 1-167264280/1352/10919_ 78.201013429060.04.93110.88 172.68.205.102http/1.1crypto-ft.com:80GET /cgi-bin/index.php HTTP/1.1 1-167264280/1343/10985_ 78.24013607530.04.9685.34 172.68.205.7h2crypto-ft.com:443GET /wp-login.php?redirect_to=https%3A%2F%2Fcrypto-ft.com%2Fwp- 1-167264280/1340/10950_ 78.22203477770.03.4776.79 172.68.205.7h2crypto-ft.com:443GET /wp-admin/index.php HTTP/2.0 1-167264280/1378/10855_ 78.211003504740.02.78100.52 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-167264280/1352/10918_ 78.19103505690.0</
Found on 2025-06-24 16:03 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f46caaa7cApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Sunday, 22-Jun-2025 17:49:38 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 15 Parent Server MPM Generation: 14 Server uptime: 6 days 19 hours 2 minutes 39 seconds Server load: 0.87 1.06 1.13 Total accesses: 585872 - Total Traffic: 4.3 GB - Total Duration: 20528188 CPU Usage: u111.09 s69.02 cu984.8 cs568.46 - .295% CPU load .998 requests/sec - 7.7 kB/second - 7.7 kB/request - 35.0387 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01983659no0yes1024000 31983658no0yes0025000 Sum200 1049000 ________W________________....................................... ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1419836590/1274/6106_ 86.77101725290.013.1846.91 172.71.172.82http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-1419836590/1291/6146_ 86.77101756950.011.0739.09 172.71.144.32http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 0-1419836590/1261/6139_ 86.77001804690.013.1140.57 172.71.250.173http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 0-1419836590/1301/6156_ 86.7721772073810.020.6250.00 162.158.110.24http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-1419836590/1257/6180_ 86.60493551684600.09.3645.36 172.71.164.5h2ivarse.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1419836590/1259/6149_ 86.772701668260.011.3042.23 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1419836590/1289/6179_ 86.635801816300.010.7042.31 172.70.248.11h2ivarse.com:443GET /_all_dbs HTTP/2.0 0-1419836590/1286/6122_ 86.724901855800.017.2240.94 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1419836591/1264/6135W 86.57002004530.012.8441.53 172.71.148.113http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-1419836590/1266/6303_ 86.5958871814140.010.6142.13 172.70.179.71http/1.1crypto-ft.investments:80POST /xmlrpc.php HTTP/1.1 0-1419836590/1269/6089_ 86.6940841750070.020.6351.89 172.68.164.98http/1.1royaleliteservice.com:80POST /xmlrpc.php HTTP/1.1 0-1419836590/1278/6056_ 86.554001748460.026.5751.53 162.158.111.6http/1.1ivarse.com:80GET /actuator/env HTTP/1.1 0-1419836590/1255/6058_ 86.442201707160.010.9237.85 209.38.248.17http/1.1 0-1419836590/1264/6056_ 86.635801775210.012.9938.65 209.38.248.17http/1.1ivarse.com:443GET /.vscode/sftp.json HTTP/1.1 0-1419836590/1293/6476_ 86.755701750240.010.5237.67 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1419836590/1281/6099_ 86.764501860130.014.3342.68 172.71.223.78h2drumreed.co.uk:443GET /project-botanic_gardens_visitor_centre-3.html HTTP/2.0 0-1419836590/1266/6093_ 86.613001744860.010.8436.53 104.23.213.49h2drumreed.co.uk:443GET /our_purpose.html HTTP/2.0 0-1419836590/1242/6099_ 86.49591691778030.011.7142.84 104.23.221.204h2quikhost.ng:443GET /wp-admin/setup-config.php HTTP/2.0 0-1419836590/1279/6185_ 86.495801810790.012.6939.43 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1419836590/1286/6255_ 86.7422341770400.011.0041.48 172.71.134.222http/1.1crypto-ft.com:80POST /xmlrpc.php HTTP/1.1 0-1419836590/1278/6101_ 86.724501774340.013.2339.58 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 0-1419836590/1287/6169_ 86.545201702290.011.3043.28 172.71.164.73h2ivarse.com:443GET / HTTP/2.0 0-1419836590/1291/6267_ 86.645201786640.016.9053.99 209.38.248.17http/1.1ivarse.com:443GET /debug/default/view?panel=config HTTP/1.1 0-1419836590/1234/6058_ 86.763001835920.028.5962.29 79.124.58.198http/1.1server1.jointdivisoncxvii.me:44\x16\x03\x01\x05\xa8\x01 0-1419836590/1317/6120_ 86.7554921910970.011.8858.18 172.69.58.102http/1.1staplefordwingstravels.co.uk:80POST /xmlrpc.php HTTP/1.1 1-12-0/0/8411. 0.007935202889430.00.0058.48 172.69.6.184h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/webfont 1-12-0/0/8279. 0.007935202830610.00.0075.29 172.69.7.249h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/img-3.jpg HTTP/2.0 1-12-0/0/8344. 0.007935202890900.00.0083.59 172.69.7.140h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/f 1-12-0/0/8424. 0.00793523672951040.00.0058.40 172.68.26.33h2crypto-ft.investments:443GET /wp-content/plugins/pro-elements/assets/js/posts.aec5926531 1-12-0/0/8668. 0.007935202816890.00.0078.21 108.162.216.90h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/img-5.jpg HTTP/2.0 1-12-0/0/8331. 0.007935202928860.00.0062.28 172.68.27.78h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?v 1-12-0/0/8387. 0.007935202722620.00.0059.76 172.70.178.73h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/fonts/simple-line-icons/S 1-12-0/0/8409. 0.007935212938040.00.00118.23 162.158.175.21h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/corporate1.jpg HTTP/2.0 1-12-0/0/8427. 0.007935202794970.00.0055.24 172.70.94.93h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/homepage-phone-13.mp4 HTTP/2.0 1-12-0/0/8456. 0.007935202789230.00.0074.94 198.41.227.92h2crypto-ft.investments:443GET /wp-content/plugins/pro-elements/assets/js/slides.c0029640c 1-12-0/0/8356. 0.007935222745530.00.0087.33 108.162.216.166h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/j 1-12-0/0/8438. 0.007935202855410.00.0049.91 162.158.174.21h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/js/video.4343afefd25b5 1-12-0/0/8444. 0.007935202980320.00.0060.03 172.69.6.211h2crypto-ft.investments:443GET /wp-content/plugins/pro-elements/assets/js/frontend.min.js? 1-12-0/0/8380. 0.00793522102996350.00.0063.08 104.23.195.47h2payments.cryptofnpro.com:443GET /api/v1/stores/5GXujwbGJe84gitUiP9edr19TQtaPAgkoXuRcaBYdozT 1-12-0/0/8317. 0.007935202889950.00.0088.59 172.68.26.33h2crypto-ft.investments:443[0/0] init 1-12-0/0/8468. 0.007935202907650.00.0072.96 172.70.94.122h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/b 1-12-0/0/8435. 0.007935202719620.00.0088.44 172.69.7.160h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/js/text-editor.c084ef8 1-12-0/0/8375. 0.007935202853100.00.0089.70 172.69.17.191h2crypto-ft.investments:443GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/2.0 1-12-0/0/8430. 0.007935202971660.00.0061.64 172.71.1.177h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=4 1-12-0/0/8429. 0.007935202902720.00.0056.37 172.69.7.249h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/img-3.jpg HTTP/2.0 1-12-0/0/8285. 0.007935202854530.00.0082.40 108.162.216.181h2crypto-ft.investments:443
Found on 2025-06-22 17:49 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f5b2e4bb1Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Sunday, 22-Jun-2025 15:05:44 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 15 Parent Server MPM Generation: 14 Server uptime: 6 days 16 hours 18 minutes 44 seconds Server load: 0.75 1.03 1.15 Total accesses: 578514 - Total Traffic: 4.2 GB - Total Duration: 20416055 CPU Usage: u95.86 s61.51 cu984.8 cs568.46 - .296% CPU load 1 requests/sec - 7.7 kB/second - 7.7 kB/request - 35.2905 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 01983659no4yes1024040 31983658no6yes0025060 Sum2010 10490100 ____________W____________....................................... ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1419836590/1088/5920_ 73.28201702920.010.1343.86 172.70.247.117http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 0-1419836590/1113/5968_ 73.27301728180.09.6337.65 172.70.246.26http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 0-1419836590/1077/5955_ 73.28101765270.011.5338.99 172.70.240.8http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 0-1419836590/1120/5975_ 73.23412040150.018.9548.34 172.68.151.167h2ivarse.com:443GET /live/current/phpinfo.php HTTP/2.0 0-1419836590/1069/5992_ 73.24601655120.07.9943.99 162.158.86.226http/1.1comms.ivarse.com:80GET /server HTTP/1.1 0-1419836590/1068/5958_ 73.24501637870.010.0741.00 172.70.248.68http/1.1comms.ivarse.com:80GET /about HTTP/1.1 0-1419836590/1107/5997_ 73.24501786810.08.7740.39 162.158.87.147http/1.1comms.ivarse.com:80GET /debug/default/view?panel=config HTTP/1.1 0-1419836590/1103/5939_ 73.2731541829250.015.7939.51 172.70.248.131http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 0-1419836590/1074/5945_ 73.24101952590.08.8337.51 172.68.151.167h2ivarse.com:443GET /live/api/info.php HTTP/2.0 0-1419836590/1092/6129_ 73.24221773280.09.3340.85 172.68.151.167h2ivarse.com:443GET /live/services/phpinfo.php HTTP/2.0 0-1419836590/1076/5896_ 73.25411724370.015.9147.16 172.71.172.147http/1.1comms.ivarse.com:80GET /server-status HTTP/1.1 0-1419836590/1099/5877_ 73.23301721110.022.6247.57 172.68.151.167h2ivarse.com:443GET /live/lara/phpinfo.php HTTP/2.0 0-1419836591/1076/5879W 73.24001683090.08.9835.91 172.71.148.72http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 0-1419836590/1082/5874_ 73.24501749090.011.5237.19 172.71.172.18http/1.1comms.ivarse.com:80GET /.vscode/sftp.json HTTP/1.1 0-1419836590/1112/6295_ 73.25201725180.08.8836.03 162.158.87.80http/1.1comms.ivarse.com:80GET /s/33e2138313e27363e2237313/_/;/META-INF/maven/com.atlassia 0-1419836590/1112/5930_ 73.25401828890.011.8440.19 172.71.148.102http/1.1comms.ivarse.com:80GET /login.action HTTP/1.1 0-1419836590/1087/5914_ 73.25501730110.09.4035.08 162.158.95.231http/1.1comms.ivarse.com:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 0-1419836590/1056/5913_ 73.16601743310.08.7839.91 172.70.46.203h2ivarse.com:443GET /.git/config HTTP/2.0 0-1419836590/1091/5997_ 73.23301795800.09.5436.29 172.68.151.167h2ivarse.com:443GET /live/help/phpinfo.php HTTP/2.0 0-1419836590/1100/6069_ 73.26201740700.08.9039.38 172.71.172.147http/1.1comms.ivarse.com:80GET /telescope/requests HTTP/1.1 0-1419836590/1106/5929_ 73.25401758720.010.5336.88 172.71.164.3http/1.1comms.ivarse.com:80GET /_all_dbs HTTP/1.1 0-1419836590/1102/5984_ 73.23311668780.09.3341.31 172.68.151.167h2ivarse.com:443GET /live/development/phpinfo.php HTTP/2.0 0-1419836590/1112/6088_ 73.25301741580.015.6752.76 172.71.144.57http/1.1comms.ivarse.com:80GET /.git/config HTTP/1.1 0-1419836590/1064/5888_ 73.02601811990.025.8359.52 172.70.85.167h2ivarse.com:443GET /debug/default/view?panel=config HTTP/2.0 0-1419836590/1125/5928_ 73.24501895380.09.8156.11 172.71.172.183http/1.1comms.ivarse.com:80GET /v2/_catalog HTTP/1.1 1-12-0/0/8411. 0.006951702889430.00.0058.48 172.69.6.184h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/webfont 1-12-0/0/8279. 0.006951702830610.00.0075.29 172.69.7.249h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/img-3.jpg HTTP/2.0 1-12-0/0/8344. 0.006951702890900.00.0083.59 172.69.7.140h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/f 1-12-0/0/8424. 0.00695173672951040.00.0058.40 172.68.26.33h2crypto-ft.investments:443GET /wp-content/plugins/pro-elements/assets/js/posts.aec5926531 1-12-0/0/8668. 0.006951702816890.00.0078.21 108.162.216.90h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/img-5.jpg HTTP/2.0 1-12-0/0/8331. 0.006951702928860.00.0062.28 172.68.27.78h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?v 1-12-0/0/8387. 0.006951702722620.00.0059.76 172.70.178.73h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/fonts/simple-line-icons/S 1-12-0/0/8409. 0.006951712938040.00.00118.23 162.158.175.21h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/corporate1.jpg HTTP/2.0 1-12-0/0/8427. 0.006951702794970.00.0055.24 172.70.94.93h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/homepage-phone-13.mp4 HTTP/2.0 1-12-0/0/8456. 0.006951702789230.00.0074.94 198.41.227.92h2crypto-ft.investments:443GET /wp-content/plugins/pro-elements/assets/js/slides.c0029640c 1-12-0/0/8356. 0.006951722745530.00.0087.33 108.162.216.166h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/j 1-12-0/0/8438. 0.006951702855410.00.0049.91 162.158.174.21h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/js/video.4343afefd25b5 1-12-0/0/8444. 0.006951702980320.00.0060.03 172.69.6.211h2crypto-ft.investments:443GET /wp-content/plugins/pro-elements/assets/js/frontend.min.js? 1-12-0/0/8380. 0.00695172102996350.00.0063.08 104.23.195.47h2payments.cryptofnpro.com:443GET /api/v1/stores/5GXujwbGJe84gitUiP9edr19TQtaPAgkoXuRcaBYdozT 1-12-0/0/8317. 0.006951702889950.00.0088.59 172.68.26.33h2crypto-ft.investments:443[0/0] init 1-12-0/0/8468. 0.006951702907650.00.0072.96 172.70.94.122h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/b 1-12-0/0/8435. 0.006951702719620.00.0088.44 172.69.7.160h2crypto-ft.investments:443GET /wp-content/plugins/elementor/assets/js/text-editor.c084ef8 1-12-0/0/8375. 0.006951702853100.00.0089.70 172.69.17.191h2crypto-ft.investments:443GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/2.0 1-12-0/0/8430. 0.006951702971660.00.0061.64 172.71.1.177h2crypto-ft.investments:443GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=4 1-12-0/0/8429. 0.006951702902720.00.0056.37 172.69.7.249h2crypto-ft.investments:443GET /wp-content/uploads/2021/10/img-3.jpg HTTP/2.0 1-12-0/0/8285. 0.006951702854530.00.0082.40 108.162.216.181h2crypto-ft.investments:443GET /wp-includes/j
Found on 2025-06-22 15:05 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fd94404b1Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 20-Jun-2025 19:10:52 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 10 Parent Server MPM Generation: 9 Server uptime: 4 days 20 hours 23 minutes 53 seconds Server load: 1.25 1.43 1.31 Total accesses: 442187 - Total Traffic: 3.4 GB - Total Duration: 16119585 CPU Usage: u124.8 s69.73 cu697.13 cs424.32 - .314% CPU load 1.06 requests/sec - 8.4 kB/second - 8.0 kB/request - 36.4542 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 13469387no0yes1024000 33469388no0yes0025000 Sum200 1049000 ........................._____________W___________.............. ..........._________________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.0019000901195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.0019000901186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.0019000901297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.0019000901497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.0019000901174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.0019000901156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.0019000911291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.0019000901330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.0019000901381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.0019000901241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.00190009341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.0019000901277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.0019000901240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.0019000901268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.0019000931229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.0019000901345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.0019000961262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.0019000901250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.0019000901323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.0019000901168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.0019000911233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.0019000911200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.0019000911193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.0019000911291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.0019000901395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-934693870/1263/7196_ 104.03002501170.021.6153.72 104.23.168.98http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-934693870/1264/7067_ 104.03002393660.042.6870.77 104.23.170.93http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-934693870/1295/7151_ 104.002502388110.042.0479.44 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-934693870/1292/7185_ 103.963502515470.020.0353.97 162.158.38.74http/1.1comms.ivarse.com:80GET /wp-content/uploads/wp.php HTTP/1.1 1-934693870/1273/7469_ 103.955002362170.038.6873.33 162.158.38.74http/1.1comms.ivarse.com:80GET /wp-content/wp-login.php HTTP/1.1 1-934693870/1268/7147_ 104.01202433390.023.2955.50 172.71.102.163http/1.1bayer-application.fi-careers.onGET /@vite/env HTTP/1.1 1-934693870/1289/7135_ 103.995502304540.021.7954.38 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-934693870/1279/7181_ 103.97502524060.044.18112.19 162.158.38.74http/1.1comms.ivarse.com:80GET /index/admin.php HTTP/1.1 1-934693870/1335/7216_ 103.972312354710.021.4252.03 162.158.38.74http/1.1comms.ivarse.com:80GET /updates.php HTTP/1.1 1-934693870/1300/7260_ 103.963532396290.037.0569.91 162.158.38.74http/1.1comms.ivarse.com:80GET /css.php HTTP/1.1 1-934693870/1267/7111_ 103.994012335960.048.8382.98 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-934693870/1288/7250_ 103.972012450860.018.0846.03 162.158.38.74http/1.1comms.ivarse.com:80GET /wp-content/plugins/wp-help/admin/wp-fclass.php HTTP/1.1 1-934693870/1256/7256_ 103.972302602450.022.8356.47 162.158.38.74http/1.1comms.ivarse.com:80GET /wp-content/themes/twentytwentytwo/admin.php HTTP/1.1 1-934693871/1277/7195W 103.95002634660.026.5159.07 104.23.166.126http/1.1bayer-application.fi-careers.onGET /server-status HTTP/1.1 1-934693870/1273/7135_ 103.955002493520.029.4659.01 162.158.38.74http/1.1comms.ivarse.com:80GET /wp-content/plugins/seoplugins/admin.php HTTP/1.1 1-934693870/1291/7259_ 104.02102484480.034.1568.92 104.23.166.131http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-934693870/1255/7255_ 103.89502302300.043.1184.15 162.158.38.74http/1.1comms.ivarse.com:80GET /wp-content/themes/seotheme/admin.php HTTP/1.1 1-934693870/1261/7159_ 104.01202419380.045.5683.97 104.23.166.174http/1.1bayer-application.fi-careers.onGET /actuator/env HTTP/1.1 1-934693870/1295/7214_ 104.002842607410.024.7156.56 104.23.195.51h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-934693870/1310/7233_ 104.001002474600.021.3551.16 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-934693870/1288/7092_ 104.0134902486930.038.2375.44 172.70.46.132http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-9
Found on 2025-06-20 19:10 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fb3573a3fApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Friday, 20-Jun-2025 17:08:34 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 10 Parent Server MPM Generation: 9 Server uptime: 4 days 18 hours 21 minutes 34 seconds Server load: 0.96 1.11 1.17 Total accesses: 433867 - Total Traffic: 3.3 GB - Total Duration: 15810357 CPU Usage: u111.58 s61.83 cu697.13 cs424.32 - .315% CPU load 1.05 requests/sec - 8.5 kB/second - 8.0 kB/request - 36.4406 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 13469387no20yes00250191 33469388no0yes1024000 Sum2020 10490191 ........................._________________________.............. ...........__________W______________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.0018267001195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.0018267001186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.0018267001297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.0018267001497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.0018267001174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.0018267001156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.0018267011291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.0018267001330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.0018267001381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.0018267001241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.00182670341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.0018267001277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.0018267001240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.0018267001268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.0018267031229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.0018267001345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.0018267061262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.0018267001250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.0018267001323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.0018267001168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.0018267011233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.0018267011200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.0018267011193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.0018267011291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.0018267001395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-934693870/1052/6985_ 90.69002421210.020.1052.21 162.158.110.25http/1.1bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-934693870/1061/6864_ 90.66102315870.041.3869.47 104.23.190.214h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-934693870/1092/6948_ 90.68002304790.040.8678.25 104.23.187.40h2bayer-application.fi-careers.onGET /server-status HTTP/2.0 1-934693870/1069/6962_ 90.47202385510.017.9751.91 104.23.223.78http/1.1quikhost.ng:80GET /wp-admin/setup-config.php HTTP/1.1 1-934693870/1057/7253_ 90.652722299420.037.3972.04 172.70.230.68h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-934693870/1054/6933_ 90.69002339860.021.8654.06 162.158.62.81h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-934693870/1068/6914_ 90.67002226740.020.6853.27 172.70.247.88http/1.1bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/1.1 1-934693870/1059/6961_ 90.67102428600.042.87110.88 172.71.164.165http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-934693870/1123/7004_ 90.68002274240.020.0050.61 162.158.86.207http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-934693870/1084/7044_ 90.67102323200.035.8468.71 162.158.62.81h2bayer-application.fi-careers.onGET /v2/_catalog HTTP/2.0 1-934693870/1060/6904_ 90.6713172262130.047.7081.85 172.70.114.146h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-934693870/1083/7045_ 90.58002353630.016.8544.80 172.70.230.51h2drumreed.co.uk:443GET /upload/team/Board_Anthony_Drumreed_mobile.jpg HTTP/2.0 1-934693870/1032/7032_ 90.51022513090.021.3554.99 162.158.166.208http/1.1comms.ivarse.com:80GET / HTTP/1.1 1-934693870/1058/6976_ 90.66112548490.025.1457.70 162.158.154.114h2bayer-application.fi-careers.onGET /debug/default/view?panel=config HTTP/2.0 1-934693870/1060/6922_ 90.52102425030.028.4357.98 162.158.170.19h2royaleliteservice.com:443GET /oldsite/wp-admin/install.php HTTP/2.0 1-934693870/1066/7034_ 90.66102414310.032.0466.82 172.68.193.144http/1.1bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/1.1 1-934693870/1048/7048_ 90.62102240960.041.4482.48 172.69.74.232h2bayer-application.fi-careers.onPOST /wp-cron.php?doing_wp_cron=1750439310.50761890411376953125 1-934693870/1037/6935_ 90.63002303740.043.9282.33 162.158.155.209h2bayer-application.fi-careers.onGET / HTTP/2.0 1-934693870/1064/6983_ 90.60102511170.023.3255.17 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-934693870/1072/6995_ 90.65202373840.019.7449.55 172.70.246.15http/1.1bayer-application.fi-careers.onGET /server HTTP/1.1 1-934693870/1080/6884_ 90.690522407570.036.9774.18 172.70.230.249h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-934693870/1018/6926_
Found on 2025-06-20 17:08 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543fc3387d80Apache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 19-Jun-2025 14:27:14 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 9 Parent Server MPM Generation: 8 Server uptime: 3 days 15 hours 40 minutes 15 seconds Server load: 1.25 0.95 0.95 Total accesses: 361624 - Total Traffic: 2.0 GB - Total Duration: 10811236 CPU Usage: u12.76 s13.24 cu642.14 cs388.89 - .335% CPU load 1.15 requests/sec - 6.7 kB/second - 5.8 kB/request - 29.8963 ms/request 2 requests currently being processed, 0 workers gracefully restarting, 48 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12170522no0yes1024000 32170523no0yes1024000 Sum200 2048000 .........................__________R______________.............. ...........__W______________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.008659101195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.008659101186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.008659101297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.008659101497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.008659101174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.008659101156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.008659111291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.008659101330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.008659101381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.008659101241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.0086591341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.008659101277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.008659101240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.008659101268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.008659131229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.008659101345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.008659161262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.008659101250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.008659101323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.008659101168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.008659111233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.008659111200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.008659111193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.008659111291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.008659101395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-821705220/2/5516_ 0.07021623350.00.0130.60 206.168.34.211h2cserver1.jointdivisoncxvii.me:80[0/0] done 1-821705220/1/5396_ 0.14001519770.00.0026.56 162.158.155.103http/1.1bayer-application.fi-careers.onGET /about HTTP/1.1 1-821705220/1/5436_ 0.0203041506730.00.0032.25 104.23.190.65h2bayer-application.fi-careers.on[0/0] init 1-821705220/1/5454_ 0.02011574570.00.0032.41 172.69.17.41http/1.1bayer-application.fi-careers.onGET /wp-content/themes/hello-elementor/style.min.css?ver=3.1.1 1-821705220/2/5763_ 0.14031546560.00.0133.09 104.23.190.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/1/5459_ 0.02011546990.00.0030.68 172.69.17.193http/1.1bayer-application.fi-careers.onGET /wp-content/themes/hello-elementor/theme.min.css?ver=3.1.1 1-821705220/2/5439_ 0.15011502260.00.0029.28 162.158.159.207h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/2/5504_ 0.15001715710.00.0166.69 172.70.114.147http/1.1bayer-application.fi-careers.onGET /v2/_catalog HTTP/1.1 1-821705220/1/5459_ 0.04021485180.00.0027.96 172.71.255.80http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/pro-elements/assets/css/conditionals/po 1-821705220/2/5547_ 0.15011568020.00.0031.76 162.158.159.115h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-821705220/1/5393R 0.04501475950.00.0232.38 172.70.90.41http/1.1bayer-application.fi-careers.on 1-821705220/2/5513_ 0.09501586750.00.0126.53 198.41.227.37http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runt 1-821705220/1/5576_ 0.09001705880.00.0032.52 172.68.27.106http/1.1bayer-application.fi-careers.onGET /wp-content/themes/hello-elementor/assets/js/hello-frontend 1-821705220/2/5503_ 0.09501728920.00.0131.41 198.41.227.158http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/elementor/assets/js/webpack.runtime.min 1-821705220/2/5442_ 0.09511663900.00.0128.38 172.71.170.16http/1.1bayer-application.fi-careers.onGET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP 1-821705220/2/5545_ 0.09551564040.00.0333.69 172.68.27.65http/1.1bayer-application.fi-careers.onGET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1 1-821705220/2/5584_ 0.10531487690.00.0239.52 198.41.227.161http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/elementor/assets/js/frontend-modules.mi 1-821705220/2/5480_ 0.1212611526050.00.0236.67 172.71.241.57http/1.1bayer-application.fi-careers.onGET / HTTP/1.1 1-821705220/2/5496_ 0.11301674910.00.0130.47 172.17.0.2http/1.1server1.jointdivisoncxvii.me:80GET /server-status?auto HTTP/1.1 1-821705220/2/5526_ 0.12101605290.00.0128.43 172.71.148.80h2bayer-application.fi-careers.onGET / HTTP/2.0 1-821705220/1/5393_ 0.06101582440.00.0035.96 172.70.126.2h2bayer-application.fi-careers.onGET /wp-content/uploads/2024/11/logo.png HTTP/2.0 1-8217052
Found on 2025-06-19 14:27 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310c78543f0c78543f23357f0eApache Status Apache Server Status for bayer-application.fi-careers.online (via 63.250.44.3) Server Version: Apache/2.4.58 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.13 mod_perl/2.0.13 Perl/v5.38.2 Server MPM: event Server Built: 2025-04-03T14:36:49 Current Time: Thursday, 19-Jun-2025 14:27:17 UTC Restart Time: Sunday, 15-Jun-2025 22:46:59 UTC Parent Server Config. Generation: 9 Parent Server MPM Generation: 8 Server uptime: 3 days 15 hours 40 minutes 17 seconds Server load: 1.31 0.97 0.96 Total accesses: 361662 - Total Traffic: 2.0 GB - Total Duration: 10811328 CPU Usage: u12.86 s13.26 cu642.14 cs388.89 - .335% CPU load 1.15 requests/sec - 6.7 kB/second - 5.8 kB/request - 29.8935 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 49 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 12170522no24yes00250231 32170523no0yes1024000 Sum2024 10490231 ........................._________________________.............. ...........___W_____________________............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-6-0/0/4073. 0.008659301195700.00.0024.90 172.71.148.57h2drumreed.co.uk:443GET /upload/project/The-Hub-Hornby-thumb.jpg HTTP/2.0 0-6-0/0/4097. 0.008659301186380.00.0018.98 172.70.248.165h2drumreed.co.uk:443GET /upload/project/72898Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4130. 0.008659301297860.00.0019.94 172.70.248.152h2drumreed.co.uk:443GET /img/arrow-down.gif HTTP/2.0 0-6-0/0/4095. 0.008659301497990.00.0020.82 172.68.192.193h2drumreed.co.uk:443GET /upload/project/82579thumbnail.jpg HTTP/2.0 0-6-0/0/4181. 0.008659301174040.00.0027.29 172.71.144.57h2drumreed.co.uk:443GET /upload/project/55006projects-cial-thumb.jpg HTTP/2.0 0-6-0/0/4114. 0.008659301156850.00.0020.20 172.71.164.47h2drumreed.co.uk:443[0/0] init 0-6-0/0/4146. 0.008659311291900.00.0022.09 172.68.193.210h2drumreed.co.uk:443GET /upload/project/Hornby1.jpg HTTP/2.0 0-6-0/0/4090. 0.008659301330010.00.0016.50 172.71.148.7h2drumreed.co.uk:443GET /upload/project/Burwood-Thumb.jpg HTTP/2.0 0-6-0/0/4116. 0.008659301381040.00.0018.28 172.71.148.138h2drumreed.co.uk:443GET /upload/project/Benmore%201.jpg HTTP/2.0 0-6-0/0/4241. 0.008659301241350.00.0020.88 172.71.164.232h2drumreed.co.uk:443GET /upload/project/49263thumbnail.jpg HTTP/2.0 0-6-0/0/4093. 0.0086593341281930.00.0022.43 172.71.148.124h2drumreed.co.uk:443GET /upload/project/14318Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4049. 0.008659301277330.00.0016.62 172.70.240.194h2drumreed.co.uk:443GET /upload/project/32730Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4048. 0.008659301240940.00.0018.20 172.71.144.181h2drumreed.co.uk:443GET /upload/project/MeadowMushroom500x500.jpg HTTP/2.0 0-6-0/0/4069. 0.008659301268050.00.0017.17 172.71.148.50h2drumreed.co.uk:443GET /upload/project/42032Chinese-Church-Thumb.jpg HTTP/2.0 0-6-0/0/4441. 0.008659331229000.00.0019.80 172.71.144.87h2drumreed.co.uk:443GET /upload/project/les-mills500x500.jpg HTTP/2.0 0-6-0/0/4034. 0.008659301345250.00.0020.59 162.158.110.142h2drumreed.co.uk:443GET /upload/project/Thumb.jpg HTTP/2.0 0-6-0/0/4078. 0.008659361262070.00.0016.67 172.71.172.88h2drumreed.co.uk:443GET /upload/project/Newworld_thumb.jpg HTTP/2.0 0-6-0/0/4100. 0.008659301250310.00.0023.77 172.69.150.31h2drumreed.co.uk:443GET /upload/project/The-Piano-Thumb.jpg HTTP/2.0 0-6-0/0/4151. 0.008659301323640.00.0020.08 172.70.251.236h2drumreed.co.uk:443GET /upload/project/parkside7.jpg HTTP/2.0 0-6-0/0/4197. 0.008659301168680.00.0020.25 172.71.172.119h2drumreed.co.uk:443GET /upload/project/Thumbnail.jpg HTTP/2.0 0-6-0/0/4048. 0.008659311233370.00.0018.21 172.71.164.47h2drumreed.co.uk:443GET /upload/project/Mainfreight_thumb.jpg HTTP/2.0 0-6-0/0/4119. 0.008659311200010.00.0022.32 162.158.111.183h2drumreed.co.uk:443GET /upload/project/97071Website-Thumbnail-500x500.jpg HTTP/2.0 0-6-0/0/4220. 0.008659311193300.00.0017.69 172.70.242.54h2drumreed.co.uk:443GET /upload/project/97040projects_kilmore_thumb.jpg HTTP/2.0 0-6-0/0/4062. 0.008659311291550.00.0023.40 172.69.150.178h2drumreed.co.uk:443GET /upload/project/Drumreed_thumb_12.jpg HTTP/2.0 0-6-0/0/4039. 0.008659301395700.00.0037.76 172.70.248.95h2drumreed.co.uk:443GET /upload/project/75202Thumbnail-500x500.jpg HTTP/2.0 1-821705220/2/5516_ 0.07121623350.00.0130.60 206.168.34.211h2cserver1.jointdivisoncxvii.me:80[0/0] done 1-821705220/2/5397_ 0.20001519770.00.0026.56 141.101.98.113h2bayer-application.fi-careers.onGET /about HTTP/2.0 1-821705220/2/5437_ 0.20111506750.00.0032.25 172.70.115.104http/1.1bayer-application.fi-careers.onGET /info.php HTTP/1.1 1-821705220/2/5455_ 0.200851575430.00.0032.42 162.158.155.103http/1.1bayer-application.fi-careers.onGET /?rest_route=/wp/v2/users/ HTTP/1.1 1-821705220/2/5763_ 0.14031546560.00.0133.09 104.23.190.65h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/2/5460_ 0.20011546990.00.0030.68 104.23.187.41h2bayer-application.fi-careers.onGET /.DS_Store HTTP/2.0 1-821705220/2/5439_ 0.15011502260.00.0029.28 162.158.159.207h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/3/5505_ 0.21001715710.00.0166.69 162.158.159.115h2bayer-application.fi-careers.onGET /.env HTTP/2.0 1-821705220/1/5459_ 0.04021485180.00.0027.96 172.71.255.80http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/pro-elements/assets/css/conditionals/po 1-821705220/2/5547_ 0.15011568020.00.0031.76 162.158.159.115h2bayer-application.fi-careers.onGET /.vscode/sftp.json HTTP/2.0 1-821705220/2/5394_ 0.17001475950.00.0232.38 172.70.90.41h2bayer-application.fi-careers.onGET /actuator/env HTTP/2.0 1-821705220/4/5515_ 0.21001586750.00.0126.53 172.70.231.79h2bayer-application.fi-careers.onGET /config.json HTTP/2.0 1-821705220/2/5577_ 0.21001705880.00.0032.52 104.23.190.144h2bayer-application.fi-careers.onGET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 1-821705220/2/5503_ 0.09001728920.00.0131.41 198.41.227.158http/1.1bayer-application.fi-careers.onGET /wp-content/plugins/elementor/assets/js/webpack.runtime.min 1-821705220/3/5443_ 0.18201663900.00.0128.38 104.23.190.170http/1.1bayer-application.fi-careers.onGET /_all_dbs HTTP/1.1 1-821705220/3/5546_ 0.18151564040.00.0333.69 104.23.195.51h2n-cloud.ivarse.com:443GET /apps/richdocuments/settings/fonts.json HTTP/2.0 1-821705220/3/5585_ 0.18131487690.00.0239.52 172.69.224.34h2bayer-application.fi-careers.onGET /server HTTP/2.0 1-821705220/3/5481_ 0.1912611526050.00.0236.67 104.23.190.68h2bayer-application.fi-careers.onGET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 1-821705220/3/5497_ 0.18101674910.00.0130.47 104.23.190.210http/1.1bayer-application.fi-careers.onGET /.DS_Store HTTP/1.1 1-821705220/2/5526_ 0.12101605290.00.0128.43 172.71.148.80h2bayer-application.fi-careers.onGET / HTTP/2.0 1-821705220/1/5393_ 0.06101582440.00.0035.96 172.70.126.2h2bayer-application.fi-careers.onGET /wp-content/uploads/2024/11/logo.png HTTP/2.0 1-821705220/2/5493_ 0.19101494560.00.0127.00 162.158.154.41http/1.1
Found on 2025-06-19 14:27
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-08-05 12:41-
Severity: medium
Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949bFound 33 files trough .DS_Store spidering: /404.html /aliplay.html /DPlayer.min.js /favicon.ico /hls.js /home.html /jquery.css /jquery.min.css /play.html /qiaolu.css /static /static/19j /static/app.css /static/bookmark /static/jieav /static/jiejie /static/limit.js /static/loading.gif /static/m1 /static/m1/css /static/m1/favicon.ico /static/m1/favicon.png /static/m1/fonts /static/m1/js /static/mmcg /static/ningmeng /static/player /static/ql /static/sqwlgs /static/taiav /static/VideoJS /static/xo /test.html
Found on 2025-08-05 12:41
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 104.21.46.114
Domain: lotteryvn1m.gpkgaming.com
Port: 443
URL: https://lotteryvn1m.gpkgaming.comFirst seen 2025-04-09 10:32
Last seen 2025-07-07 08:16
Open for 88 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bba0d5f181d3328a53b060ade5646a8d3Found 14 files trough .DS_Store spidering: /aapx /aapx/css /aapx/img /app /Core /hxpay /lib /resources /Template /Template/imgk3 /Template/Mobile /Uploads /Uploads/2019-02-24 /Uploads/2019-03-02
Found on 2025-07-07 08:16 -
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fbd9f4aac86eca8f16b1d66224ef62e9dFound 10 files trough .DS_Store spidering: /aapx /aapx/css /aapx/img /app /Core /hxpay /lib /resources /Template /Uploads
Found on 2025-04-24 06:07 -
Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744dbd2db992061f19e7b5384c009bdb5766Found 12 files trough .DS_Store spidering: /aapx /aapx/css /aapx/img /app /Core /hxpay /lib /resources /Template /Template/imgk3 /Template/Mobile /Uploads
Found on 2025-04-22 15:28
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 104.21.46.114
Domain: lotteryvn1web.gpkgaming.com
Port: 443
URL: https://lotteryvn1web.gpkgaming.comFirst seen 2025-04-09 10:32
Last seen 2025-07-07 02:29
Open for 88 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35bba0d5f181d3328a53b060ade5646a8d3Found 14 files trough .DS_Store spidering: /aapx /aapx/css /aapx/img /app /Core /hxpay /lib /resources /Template /Template/imgk3 /Template/Mobile /Uploads /Uploads/2019-02-24 /Uploads/2019-03-02
Found on 2025-07-07 02:29 -
Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fbd9f4aac86eca8f16b1d66224ef62e9dFound 10 files trough .DS_Store spidering: /aapx /aapx/css /aapx/img /app /Core /hxpay /lib /resources /Template /Uploads
Found on 2025-07-02 18:52 -
Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744dbd2db992061f19e7b5384c009bdb5766Found 12 files trough .DS_Store spidering: /aapx /aapx/css /aapx/img /app /Core /hxpay /lib /resources /Template /Template/imgk3 /Template/Mobile /Uploads
Found on 2025-06-26 11:59
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 104.21.46.114
Domain: lotteryvn1ad.gpkgaming.com
Port: 443
URL: https://lotteryvn1ad.gpkgaming.comFirst seen 2025-04-09 10:25
Last seen 2025-07-06 13:20
Open for 88 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc6c1655b8df5c9f299fd41ad27a43c28bFound 4 files trough .DS_Store spidering: /lib /Runtime /Template /Template/admin
Found on 2025-07-06 13:20
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-04-28 02:11-
Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe800eab3a647aaba8afbcb3e327750113Found 15 files trough .DS_Store spidering: /assets /assets/.DS_Store /assets/fonts /assets/img /assets/img/.DS_Store /assets/img/icon-facebook.png /assets/img/icon-instagram.png /assets/img/icon-twitter.png /assets/img/icon-youtube.png /assets/img/logo-white-small.png /assets/img/logo-white-small.svg /assets/img/mobile-toggle.svg /assets/img/social-sprite.png /assets/img/xyz-logo.png /assets/style.css
Found on 2025-04-28 02:11
-
-
Apache server-status page is publicly available
The server-status page (usually
/server-status) allows server administrators to find out how well their server is performing.This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
First seen 2025-04-28 02:11-
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3171c08c2e71c08c2ec4166374Apache Status Apache Server Status for k0dy.xyz (via 127.0.0.1) Server Version: Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 Server MPM: prefork Server Built: Apr 3 2019 18:04:25 Current Time: Monday, 28-Apr-2025 02:11:16 UTC Restart Time: Friday, 25-Apr-2025 18:36:34 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 2 days 7 hours 34 minutes 41 seconds Server load: 0.00 0.01 0.05 Total accesses: 2758215 - Total Traffic: 2.8 GB CPU Usage: u15.94 s5.79 cu0 cs0 - .0109% CPU load 13.8 requests/sec - 14.5 kB/second - 1075 B/request 1 requests currently being processed, 9 idle workers ..................................__..............__............ ......................_.................................._..._.. .......__....W........ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process <SrvPIDAccMCPU SSReqConnChildSlotClientVHostRequest 0-1-0/0/128978. 0.81417200.00.00141.57 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 1-1-0/0/150819. 0.46418100.00.00164.09 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 2-1-0/0/128314. 0.43417900.00.00140.09 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 3-1-0/0/134947. 0.38418200.00.00147.59 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 4-1-0/0/132596. 0.06418000.00.00145.52 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 5-1-0/0/92153. 0.04418800.00.00100.45 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 6-1-0/0/172347. 0.05417300.00.00198.55 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 7-1-0/0/118618. 1.92417700.00.00136.44 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 8-1-0/0/66699. 0.00417000.00.0064.63 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 9-1-0/0/93016. 0.01418300.00.00101.98 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 10-1-0/0/97610. 0.01417500.00.00105.26 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 11-1-0/0/46594. 0.02418400.00.0047.97 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 12-1-0/0/64193. 0.00418600.00.0066.81 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 13-1-0/0/84994. 0.01416400.00.0087.15 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 14-1-0/0/50660. 0.00406300.00.0050.76 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 15-1-0/0/31075. 1.60417800.00.0029.98 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 16-1-0/0/46786. 0.00417600.00.0049.79 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 17-1-0/0/53442. 0.00417400.00.0057.51 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 18-1-0/0/94093. 1.72418900.00.00113.17 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 19-1-0/0/40795. 0.00416500.00.0028.83 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 20-1-0/0/29471. 0.00405500.00.0027.07 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 21-1-0/0/72352. 0.01405600.00.0086.45 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 22-1-0/0/52266. 0.00412800.00.0057.47 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 23-1-0/0/23040. 0.00416100.00.0018.48 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 24-1-0/0/13883. 0.03405400.00.009.43 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 25-1-0/0/8533. 0.00416300.00.005.41 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 26-1-0/0/28161. 0.00417100.00.0031.79 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 27-1-0/0/7690. 0.00415710.00.005.11 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 28-1-0/0/14889. 0.00415800.00.0016.52 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 29-1-0/0/9245. 0.00416900.00.006.42 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 30-1-0/0/13991. 1.50405800.00.0014.29 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 31-1-0/0/6034. 0.00416800.00.004.04 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 32-1-0/0/14782. 1.66418700.00.0016.68 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 33-1-0/0/15278. 0.00416200.00.0011.16 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 34-1208200/4407/10887_ 0.86000.05.9410.36 127.0.0.1127.0.0.1:8080GET /debug/default/view?panel=config HTTP/1.1 35-1208210/4515/13512_ 0.914100.05.9014.64 127.0.0.1127.0.0.1:8080NULL 36-1-0/0/6397. 0.00416000.00.004.13 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 37-1-0/0/19362. 1.76415900.00.0018.44 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 38-1-0/0/4507. 0.00416700.00.002.90 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 39-1-0/0/9238. 0.00415600.00.007.44 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 40-1-0/0/6419. 0.00416600.00.004.16 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 41-1-0/0/5700. 0.00414000.00.003.60 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 42-1-0/0/4467. 0.00415500.00.002.98 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 43-1-0/0/13180. 0.00414400.00.008.16 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 44-1-0/0/9768. 0.00415100.00.006.28 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 45-1-0/0/4334. 0.00415400.00.002.93 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 46-1-0/0/3334. 0.00415300.00.002.28 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 47-1-0/0/3758. 0.00413710.00.002.46 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 48-1-0/0/3266. 0.00415000.00.002.24 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 49-1-0/0/6031. 0.00415200.00.003.90 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 50-1208430/4814/12581_ 0.963200.06.9312.05 127.0.0.1127.0.0.1:8080GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 51-1208440/4887/8185_ 0.912600.06.808.91 127.0.0.1127.0.0.1:8080GET /lock360.php HTTP/1.1 52-1-0/0/21256. 0.00414900.00.0013.31 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 53-1-0/0/4838. 0.00414800.00.003.24 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 54-1-0/0/31523. 0.00414710.00.0035.72 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 55-1-0/0/4399. 0.00413400.00.002.94 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 56-1-0/0/3441. 0.00414500.00.002.35 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 57-1-0/0/8329. 0.00414600.00.005.25 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 58-1-0/0/6141. 0.00413600.00.004.19 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 59-1-0/0/6563. 0.00414300.00.004.49 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 60-1-0/0/7018. 0.00413500.00.006.53 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 61-1-0/0/2995. 0.00412600.00.001.95 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 62-1-0/0/10205. 0.00414210.00.006.64 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 63-1-0/0/27178. 0.00414100.00.0033.11 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 64-1-0/0/5560. 0.00413800.00.003.85 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 65-1-0/0/23216. 0.00413100.00.0026.28
Found on 2025-04-28 02:11
-
-
Apache server-status page is publicly available
The server-status page (usually
/server-status) allows server administrators to find out how well their server is performing.This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
First seen 2025-04-28 02:11-
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3171c08c2e71c08c2ec4166374Apache Status Apache Server Status for k0dy.xyz (via 127.0.0.1) Server Version: Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 Server MPM: prefork Server Built: Apr 3 2019 18:04:25 Current Time: Monday, 28-Apr-2025 02:11:16 UTC Restart Time: Friday, 25-Apr-2025 18:36:34 UTC Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 2 days 7 hours 34 minutes 41 seconds Server load: 0.00 0.01 0.05 Total accesses: 2758215 - Total Traffic: 2.8 GB CPU Usage: u15.94 s5.79 cu0 cs0 - .0109% CPU load 13.8 requests/sec - 14.5 kB/second - 1075 B/request 1 requests currently being processed, 9 idle workers ..................................__..............__............ ......................_.................................._..._.. .......__....W........ Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process <SrvPIDAccMCPU SSReqConnChildSlotClientVHostRequest 0-1-0/0/128978. 0.81417200.00.00141.57 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 1-1-0/0/150819. 0.46418100.00.00164.09 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 2-1-0/0/128314. 0.43417900.00.00140.09 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 3-1-0/0/134947. 0.38418200.00.00147.59 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 4-1-0/0/132596. 0.06418000.00.00145.52 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 5-1-0/0/92153. 0.04418800.00.00100.45 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 6-1-0/0/172347. 0.05417300.00.00198.55 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 7-1-0/0/118618. 1.92417700.00.00136.44 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 8-1-0/0/66699. 0.00417000.00.0064.63 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 9-1-0/0/93016. 0.01418300.00.00101.98 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 10-1-0/0/97610. 0.01417500.00.00105.26 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 11-1-0/0/46594. 0.02418400.00.0047.97 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 12-1-0/0/64193. 0.00418600.00.0066.81 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 13-1-0/0/84994. 0.01416400.00.0087.15 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 14-1-0/0/50660. 0.00406300.00.0050.76 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 15-1-0/0/31075. 1.60417800.00.0029.98 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 16-1-0/0/46786. 0.00417600.00.0049.79 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 17-1-0/0/53442. 0.00417400.00.0057.51 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 18-1-0/0/94093. 1.72418900.00.00113.17 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 19-1-0/0/40795. 0.00416500.00.0028.83 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 20-1-0/0/29471. 0.00405500.00.0027.07 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 21-1-0/0/72352. 0.01405600.00.0086.45 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 22-1-0/0/52266. 0.00412800.00.0057.47 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 23-1-0/0/23040. 0.00416100.00.0018.48 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 24-1-0/0/13883. 0.03405400.00.009.43 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 25-1-0/0/8533. 0.00416300.00.005.41 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 26-1-0/0/28161. 0.00417100.00.0031.79 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 27-1-0/0/7690. 0.00415710.00.005.11 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 28-1-0/0/14889. 0.00415800.00.0016.52 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 29-1-0/0/9245. 0.00416900.00.006.42 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 30-1-0/0/13991. 1.50405800.00.0014.29 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 31-1-0/0/6034. 0.00416800.00.004.04 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 32-1-0/0/14782. 1.66418700.00.0016.68 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 33-1-0/0/15278. 0.00416200.00.0011.16 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 34-1208200/4407/10887_ 0.86000.05.9410.36 127.0.0.1127.0.0.1:8080GET /debug/default/view?panel=config HTTP/1.1 35-1208210/4515/13512_ 0.914100.05.9014.64 127.0.0.1127.0.0.1:8080NULL 36-1-0/0/6397. 0.00416000.00.004.13 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 37-1-0/0/19362. 1.76415900.00.0018.44 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 38-1-0/0/4507. 0.00416700.00.002.90 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 39-1-0/0/9238. 0.00415600.00.007.44 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 40-1-0/0/6419. 0.00416600.00.004.16 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 41-1-0/0/5700. 0.00414000.00.003.60 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 42-1-0/0/4467. 0.00415500.00.002.98 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 43-1-0/0/13180. 0.00414400.00.008.16 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 44-1-0/0/9768. 0.00415100.00.006.28 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 45-1-0/0/4334. 0.00415400.00.002.93 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 46-1-0/0/3334. 0.00415300.00.002.28 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 47-1-0/0/3758. 0.00413710.00.002.46 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 48-1-0/0/3266. 0.00415000.00.002.24 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 49-1-0/0/6031. 0.00415200.00.003.90 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 50-1208430/4814/12581_ 0.963200.06.9312.05 127.0.0.1127.0.0.1:8080GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1 51-1208440/4887/8185_ 0.912600.06.808.91 127.0.0.1127.0.0.1:8080GET /lock360.php HTTP/1.1 52-1-0/0/21256. 0.00414900.00.0013.31 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 53-1-0/0/4838. 0.00414800.00.003.24 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 54-1-0/0/31523. 0.00414710.00.0035.72 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 55-1-0/0/4399. 0.00413400.00.002.94 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 56-1-0/0/3441. 0.00414500.00.002.35 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 57-1-0/0/8329. 0.00414600.00.005.25 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 58-1-0/0/6141. 0.00413600.00.004.19 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 59-1-0/0/6563. 0.00414300.00.004.49 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 60-1-0/0/7018. 0.00413500.00.006.53 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 61-1-0/0/2995. 0.00412600.00.001.95 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 62-1-0/0/10205. 0.00414210.00.006.64 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 63-1-0/0/27178. 0.00414100.00.0033.11 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 64-1-0/0/5560. 0.00413800.00.003.85 ::1127.0.0.1:8080OPTIONS * HTTP/1.0 65-1-0/0/23216. 0.00413100.00.0026.28
Found on 2025-04-28 02:11
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2025-04-28 02:11-
Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe800eab3a647aaba8afbcb3e327750113Found 15 files trough .DS_Store spidering: /assets /assets/.DS_Store /assets/fonts /assets/img /assets/img/.DS_Store /assets/img/icon-facebook.png /assets/img/icon-instagram.png /assets/img/icon-twitter.png /assets/img/icon-youtube.png /assets/img/logo-white-small.png /assets/img/logo-white-small.svg /assets/img/mobile-toggle.svg /assets/img/social-sprite.png /assets/img/xyz-logo.png /assets/style.css
Found on 2025-04-28 02:11
-
-
Apache server-status page is publicly available
The server-status page (usually
/server-status) allows server administrators to find out how well their server is performing.This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
First seen 2024-06-30 02:40
Last seen 2024-08-12 13:47
Open for 43 days-
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f0abe32741Apache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.61 (Debian) Server MPM: prefork Server Built: 2024-07-07T12:08:26 Current Time: Monday, 12-Aug-2024 15:47:09 CEST Restart Time: Monday, 12-Aug-2024 02:14:59 CEST Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 13 hours 32 minutes 9 seconds Server load: 0.00 0.00 0.00 Total accesses: 290 - Total Traffic: 354 kB - Total Duration: 382 CPU Usage: u.88 s2.6 cu0 cs0 - .00714% CPU load .00595 requests/sec - 7 B/second - 1249 B/request - 1.31724 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 7 idle workers W_______........................................................ ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-09260/44/44W 0.0400590.00.060.06 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 1-09270/44/44_ 0.0502590.00.060.06 127.0.0.1http/1.1wa0k.xyz:8080GET / HTTP/1.0 2-09280/46/46_ 0.0500630.00.060.06 ::1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 3-09290/46/46_ 0.0400580.00.050.05 ::1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 4-09300/45/45_ 0.0400480.00.040.04 127.0.0.1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 5-0119020/45/45_ 0.0400610.00.050.05 127.0.0.1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 6-0204860/19/19_ 0.0200290.00.030.03 ::1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 7-0274670/1/1_ 0.000120.00.000.00 127.0.0.1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8b20ea671ea50e32',t:'MTcyMzQ3MDQyOS4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-08-12 13:47 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f0763e71e2Apache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.61 (Debian) Server MPM: prefork Server Built: 2024-07-07T12:08:26 Current Time: Saturday, 10-Aug-2024 15:19:13 CEST Restart Time: Friday, 09-Aug-2024 16:26:58 CEST Parent Server Config. Generation: 2 Parent Server MPM Generation: 1 Server uptime: 22 hours 52 minutes 14 seconds Server load: 0.02 0.06 0.01 Total accesses: 468 - Total Traffic: 1.0 MB - Total Duration: 5126 CPU Usage: u1.42 s3.46 cu.12 cs.14 - .00624% CPU load .00568 requests/sec - 13 B/second - 2297 B/request - 10.953 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 7 idle workers ____W___........................................................ ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-1260080/51/69_ 0.040035040.00.060.17 ::1http/1.1wa0k.xyz:8080GET / HTTP/1.0 1-1260090/51/71_ 0.04005450.00.050.17 ::1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 2-1260100/50/69_ 0.0400850.00.060.12 ::1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 3-1260110/51/71_ 0.0300750.00.050.19 127.0.0.1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 4-1260120/50/69W 0.0400860.00.070.16 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 5-1260540/49/68_ 0.04007600.00.070.13 127.0.0.1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 6-1321460/33/33_ 0.0200330.00.050.05 127.0.0.1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 7-1442440/18/18_ 0.0200340.00.040.04 ::1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8b1046bd7fa61c15',t:'MTcyMzI5NTk1My4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-08-10 13:19 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f06ff8b9ceApache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.61 (Debian) Server MPM: prefork Server Built: 2024-07-07T12:08:26 Current Time: Thursday, 08-Aug-2024 17:36:39 CEST Restart Time: Thursday, 08-Aug-2024 15:35:54 CEST Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 2 hours 44 seconds Server load: 0.01 0.07 0.14 Total accesses: 217 - Total Traffic: 2.3 MB - Total Duration: 354 CPU Usage: u.19 s.54 cu.01 cs.02 - .0105% CPU load .03 requests/sec - 332 B/second - 10.8 kB/request - 1.63134 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 9 idle workers ___W__..____.................................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-04904220/26/26_ 0.026560330.00.380.38 185.224.128.83http/1.1wa0k.xyz:8080GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co 1-04904230/27/27_ 0.0300410.00.400.40 ::1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 2-04904240/27/27_ 0.0300380.00.460.46 127.0.0.1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 3-04904250/25/25W 0.0200380.00.440.44 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 4-04904260/25/25_ 0.0300370.00.310.31 ::1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 5-04928330/17/17_ 0.0111190.00.100.10 127.0.0.1http/1.1wa0k.xyz:8080GET / HTTP/1.0 6-0-0/0/1. 0.005300000.00.000.00 ::1http/1.1wa0k.xyz:8080OPTIONS * HTTP/1.0 7-0-0/0/1. 0.005299000.00.000.00 ::1http/1.1wa0k.xyz:8080OPTIONS * HTTP/1.0 8-04928360/17/17_ 0.0200230.00.020.02 ::1http/1.1wa0k.xyz:8080GET / HTTP/1.0 9-04928370/17/17_ 0.0100690.00.070.07 127.0.0.1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 10-04928380/17/17_ 0.0200250.00.050.05 ::1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 11-04928390/17/17_ 0.0100260.00.060.06 127.0.0.1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8b009550dd402c51',t:'MTcyMzEzMTM5OS4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-08-08 15:36 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31abe74f22abe74f2201a0b528Apache Status Apache Server Status for localhost (via ::1) Server Version: Apache/2.4.59 (Debian) Server MPM: prefork Server Built: 2024-04-05T12:02:26 Current Time: Thursday, 01-Aug-2024 14:21:42 CEST Restart Time: Monday, 08-Jul-2024 01:53:08 CEST Parent Server Config. Generation: 24 Parent Server MPM Generation: 23 Server uptime: 24 days 12 hours 28 minutes 33 seconds Server load: 0.00 0.00 0.00 Total accesses: 6421 - Total Traffic: 7.8 MB - Total Duration: 34951 CPU Usage: u28.22 s98.18 cu8.15 cs12.49 - .00694% CPU load .00303 requests/sec - 3 B/second - 1281 B/request - 5.44323 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 8 idle workers _W_______....................................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-232942460/53/861_ 0.080011250.00.041.19 127.0.0.1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 1-232942470/25/873W 0.0700219890.00.021.17 ::1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 2-232942480/54/866_ 0.090060960.00.030.97 127.0.0.1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 3-232942490/56/899_ 0.090011630.00.051.23 ::1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 4-232942500/54/857_ 0.060011410.00.051.08 127.0.0.1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 5-232942840/21/750_ 0.030118850.00.020.80 ::1http/1.1wa0k.xyz:8080GET / HTTP/1.0 6-232948270/50/674_ 0.06008380.00.030.81 127.0.0.1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 7-232948290/50/403_ 0.06025000.00.030.41 127.0.0.1http/1.1wa0k.xyz:8080GET / HTTP/1.0 8-232983380/31/160_ 0.02001560.00.020.14 ::1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 9-16-0/0/77. 0.005700550520.00.000.05 45.128.232.152http/1.1 10-6-0/0/1. 0.001434077130.00.000.00 120.92.12.14http/1.1wa0k.xyz:8080GET / HTTP/1.1 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8ac5ca1bd8405d4d',t:'MTcyMjUxNDkwMi4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-08-01 12:21 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f051b40e93Apache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.59 (Debian) Server MPM: prefork Server Built: 2024-04-05T12:02:26 Current Time: Tuesday, 30-Jul-2024 12:19:34 CEST Restart Time: Monday, 08-Jul-2024 01:53:08 CEST Parent Server Config. Generation: 22 Parent Server MPM Generation: 21 Server uptime: 22 days 10 hours 26 minutes 25 seconds Server load: 0.00 0.00 0.00 Total accesses: 5372 - Total Traffic: 7.1 MB - Total Duration: 33669 CPU Usage: u25.72 s89.95 cu7.32 cs11.33 - .00693% CPU load .00277 requests/sec - 3 B/second - 1376 B/request - 6.2675 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 7 idle workers W_______........................................................ ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-212779740/11/720W 0.04009820.00.011.08 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 1-212779760/13/762_ 0.0411218550.00.011.08 ::1http/1.1wa0k.xyz:8080GET / HTTP/1.0 2-212779780/14/724_ 0.040059320.00.010.87 ::1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 3-212779790/13/758_ 0.04009640.00.021.13 127.0.0.1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 4-212779800/12/715_ 0.03009750.00.020.96 127.0.0.1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 5-212786790/11/646_ 0.040017700.00.010.73 127.0.0.1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 6-212803460/6/545_ 0.02006670.00.000.72 ::1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 7-212808740/3/295_ 0.00003410.00.000.34 ::1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 8-18-0/0/129. 0.0021716901240.00.000.11 88.214.25.64http/1.1127.0.1.1:8081\x03 9-16-0/0/77. 0.003899270520.00.000.05 45.128.232.152http/1.1 10-6-0/0/1. 0.001253949130.00.000.00 120.92.12.14http/1.1wa0k.xyz:8080GET / HTTP/1.1 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8ab49c72781c9bdd',t:'MTcyMjMzNDc3NC4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-07-30 10:19 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31abe74f22abe74f22f89329b5Apache Status Apache Server Status for localhost (via ::1) Server Version: Apache/2.4.59 (Debian) Server MPM: prefork Server Built: 2024-04-05T12:02:26 Current Time: Monday, 22-Jul-2024 02:06:58 CEST Restart Time: Monday, 08-Jul-2024 01:53:08 CEST Parent Server Config. Generation: 14 Parent Server MPM Generation: 13 Server uptime: 14 days 13 minutes 49 seconds Server load: 0.00 0.00 0.00 Total accesses: 3502 - Total Traffic: 5.6 MB - Total Duration: 31325 CPU Usage: u16.06 s56.55 cu4.57 cs7.49 - .007% CPU load .00289 requests/sec - 4 B/second - 1668 B/request - 8.94489 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 6 idle workers __W____......................................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-131397540/3/458_ 0.02006670.00.000.88 ::1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 1-131397550/3/507_ 0.0100215480.00.000.89 127.0.0.1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 2-131397560/2/459W 0.000055740.00.000.67 ::1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 3-131397570/2/499_ 0.00006380.00.000.91 ::1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 4-131397580/2/501_ 0.00006830.00.000.76 127.0.0.1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 5-131399940/2/394_ 0.000014730.00.000.53 ::1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 6-131399950/2/346_ 0.01004040.00.000.54 127.0.0.1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 7-10-0/0/202. 0.0018041502350.00.000.26 46.105.97.78http/1.1wa0k.xyz:8080GET /manager/html HTTP/1.1 8-9-0/0/97. 0.002667920780.00.000.08 84.54.51.37http/1.1wa0k.xyz:8080GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&co 9-7-0/0/38. 0.004396110180.00.000.03 112.94.97.53http/1.1wa0k.xyz:8080POST /GponForm/diag_Form?images/ HTTP/1.1 10-6-0/0/1. 0.00525993130.00.000.00 120.92.12.14http/1.1wa0k.xyz:8080GET / HTTP/1.1 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8a6f30182d289b25',t:'MTcyMTYwNjgxOC4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-07-22 00:06 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f01311227dApache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.59 (Debian) Server MPM: prefork Server Built: 2024-04-05T12:02:26 Current Time: Tuesday, 16-Jul-2024 05:09:08 CEST Restart Time: Monday, 08-Jul-2024 01:53:08 CEST Parent Server Config. Generation: 8 Parent Server MPM Generation: 7 Server uptime: 8 days 3 hours 15 minutes 59 seconds Server load: 0.10 0.05 0.01 Total accesses: 2237 - Total Traffic: 4.0 MB - Total Duration: 24668 CPU Usage: u9.45 s32.94 cu2.63 cs4.24 - .00701% CPU load .00318 requests/sec - 5 B/second - 1861 B/request - 11.0273 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 9 idle workers W_________...................................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-7742260/13/258W 0.02004020.00.020.61 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 1-7742270/57/309_ 0.0500212840.00.030.68 ::1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 2-7742280/12/263_ 0.0213813590.00.010.42 184.105.247.240http/1.1127.0.1.1:8081CONNECT www.shadowserver.org:443 HTTP/1.1 3-7742290/56/299_ 0.04014010.00.040.60 ::1http/1.1wa0k.xyz:8080GET / HTTP/1.0 4-7742310/55/301_ 0.04013820.00.030.50 127.0.0.1http/1.1wa0k.xyz:8080GET / HTTP/1.0 5-7745670/55/290_ 0.050013180.00.030.42 127.0.0.1http/1.1wa0k.xyz:8080GET /server HTTP/1.0 6-7752310/48/254_ 0.03002860.00.030.44 127.0.0.1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 7-7752340/39/160_ 0.02001770.00.030.23 ::1http/1.1wa0k.xyz:8080GET /.vscode/sftp.json HTTP/1.0 8-7752350/39/72_ 0.0400460.00.020.04 ::1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 9-7752490/30/30_ 0.010060.00.010.01 127.0.0.1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 10-6-0/0/1. 0.0018523130.00.000.00 120.92.12.14http/1.1wa0k.xyz:8080GET / HTTP/1.1 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'8a3ecaacbaa51d9e',t:'MTcyMTA5OTM0OC4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-07-16 03:09 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f05e7fe0e5Apache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.59 (Debian) Server MPM: prefork Server Built: 2024-04-05T12:02:26 Current Time: Sunday, 30-Jun-2024 04:40:42 CEST Restart Time: Thursday, 13-Jun-2024 01:10:16 CEST Parent Server Config. Generation: 18 Parent Server MPM Generation: 17 Server uptime: 17 days 3 hours 30 minutes 25 seconds Server load: 0.00 0.00 0.00 Total accesses: 278 - Total Traffic: 714 kB - Total Duration: 636 CPU Usage: u17.17 s63.02 cu3.24 cs6.34 - .00606% CPU load .000188 requests/sec - 0 B/second - 2629 B/request - 2.28777 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 4 idle workers ____W........................................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-171138530/5/63_ 0.06001600.00.010.16 127.0.0.1http/1.1wa0k.xyz:8080GET /.git/config HTTP/1.0 1-171138550/5/58_ 0.00001220.00.000.10 127.0.0.1http/1.1wa0k.xyz:8080GET /s/431313e26343e21323e2430313/_/;/META-INF/maven/com.atlass 2-171138570/5/56_ 0.00001190.00.000.15 127.0.0.1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 3-171138600/5/54_ 0.00001090.00.000.16 127.0.0.1http/1.1wa0k.xyz:8080GET /config.json HTTP/1.0 4-171138610/4/47W 0.00001250.00.000.13 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'89bacb072cf09bbc',t:'MTcxOTcxNTI0Mi4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-06-30 02:40 -
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb311e0e17f01e0e17f06f59f998Apache Status Apache Server Status for localhost (via 127.0.0.1) Server Version: Apache/2.4.59 (Debian) Server MPM: prefork Server Built: 2024-04-05T12:02:26 Current Time: Sunday, 30-Jun-2024 04:40:41 CEST Restart Time: Thursday, 13-Jun-2024 01:10:16 CEST Parent Server Config. Generation: 18 Parent Server MPM Generation: 17 Server uptime: 17 days 3 hours 30 minutes 24 seconds Server load: 0.00 0.00 0.00 Total accesses: 263 - Total Traffic: 701 kB - Total Duration: 617 CPU Usage: u17.17 s63.02 cu3.24 cs6.34 - .00606% CPU load .000178 requests/sec - 0 B/second - 2729 B/request - 2.34601 ms/request 1 requests currently being processed, 0 workers gracefully restarting, 4 idle workers ____W........................................................... ................................................................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-171138530/2/60_ 0.06001550.00.000.16 127.0.0.1http/1.1wa0k.xyz:8080GET /about HTTP/1.0 1-171138550/2/55_ 0.00001190.00.000.09 127.0.0.1http/1.1wa0k.xyz:8080GET /debug/default/view?panel=config HTTP/1.0 2-171138570/2/53_ 0.00001160.00.000.15 127.0.0.1http/1.1wa0k.xyz:8080GET /v2/_catalog HTTP/1.0 3-171138600/2/51_ 0.00001060.00.000.16 127.0.0.1http/1.1wa0k.xyz:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor 4-171138610/1/44W 0.00001190.00.000.12 127.0.0.1http/1.1wa0k.xyz:8080GET /server-status HTTP/1.0 SrvChild Server number - generation PIDOS process ID AccNumber of accesses this connection / this child / this slot MMode of operation CPUCPU usage, number of seconds SSSeconds since beginning of most recent request ReqMilliseconds required to process most recent request DurSum of milliseconds required to process all requests ConnKilobytes transferred this connection ChildMegabytes transferred this child SlotTotal megabytes transferred this slot (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'89bacb02e9e19158',t:'MTcxOTcxNTI0MS4wMDAwMDA='};var a=document.createElement('script');a.nonce='';a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();Found on 2024-06-30 02:40
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.
First seen 2023-11-14 06:04
Last seen 2024-05-01 02:25
Open for 168 days-
Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226601672f[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://ffsg:NA6ZCgB7VHQty7MZVDPU@bitbucket.org/ffsg/pierodesanctis.com.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2024-05-01 02:25300 Bytes
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-08-31 10:49
Last seen 2023-12-24 09:08
Open for 479 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18cFound 2 files trough .DS_Store spidering: /templs /templs/templ7
Found on 2023-12-24 09:08
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-12 15:38
Last seen 2023-12-24 05:23
Open for 406 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18cFound 2 files trough .DS_Store spidering: /templs /templs/templ7
Found on 2023-12-24 05:23
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-09 03:50
Last seen 2023-12-24 01:05
Open for 440 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18cFound 2 files trough .DS_Store spidering: /templs /templs/templ7
Found on 2023-12-24 01:05
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-01-06 03:13
Last seen 2023-08-30 10:48
Open for 236 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-01-06 03:13
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-22 05:40
Last seen 2023-08-28 10:44
Open for 310 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-22 05:40
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 02:30
Last seen 2023-08-27 02:56
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 02:30
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 02:33
Last seen 2023-08-27 02:56
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 02:33
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 02:33
Last seen 2023-08-27 02:56
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 02:33
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 04:38
Last seen 2023-08-27 02:01
Open for 334 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 04:38
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 104.21.46.114
Domain: barwatchsisfbankbreakcie.cf
Port: 80
URL: http://barwatchsisfbankbreakcie.cfFirst seen 2022-09-16 22:01
Last seen 2023-08-26 22:20
Open for 344 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-16 22:01
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-01-07 06:42
Last seen 2023-08-26 21:41
Open for 231 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-01-07 06:42
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-01 13:02
Last seen 2023-08-25 21:11
Open for 328 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-01 13:02
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-01 13:02
Last seen 2023-08-25 21:11
Open for 328 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-01 13:02
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-27 02:55
Last seen 2023-08-25 05:21
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-27 02:55
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-27 02:55
Last seen 2023-08-25 05:21
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-27 02:55
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-27 02:24
Last seen 2023-08-25 04:24
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-27 02:24
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-27 02:24
Last seen 2023-08-25 04:24
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-27 02:24
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-08 06:10
Last seen 2023-08-24 13:46
Open for 77 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-08 06:10
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-31 02:25
Last seen 2023-08-18 18:02
Open for 291 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-31 02:25
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-31 02:25
Last seen 2023-08-18 18:02
Open for 291 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-31 02:25
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-19 06:03
Last seen 2023-08-17 09:16
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-19 06:03
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-19 06:03
Last seen 2023-08-17 09:16
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-19 06:03
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-14 01:51
Last seen 2023-08-15 14:25
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-14 01:51
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-14 01:51
Last seen 2023-08-15 14:25
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-14 01:51
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-14 01:47
Last seen 2023-08-15 01:40
Open for 334 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-14 01:47
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-14 01:47
Last seen 2023-08-15 01:40
Open for 334 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-14 01:47
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-02-17 04:06
Last seen 2023-08-13 11:31
Open for 177 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-02-17 04:06
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-02-17 04:06
Last seen 2023-08-13 11:31
Open for 177 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-02-17 04:06
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-12-14 09:02
Last seen 2023-08-07 16:32
Open for 236 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-12-14 09:02
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-12-14 09:02
Last seen 2023-08-07 16:32
Open for 236 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-12-14 09:02
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-09 01:47
Last seen 2023-08-07 06:02
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-09 01:47
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-04 01:43
Last seen 2023-08-05 04:37
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af247251e0762cddcf60ee0dbc9fc1edb8ad44eFound 9 files trough .DS_Store spidering: /admin /config.php /content /include /index.php /init.php /install.php /robots.txt /rss.php
Found on 2022-09-04 01:43
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-04 01:43
Last seen 2023-08-05 04:37
Open for 335 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af247251e0762cddcf60ee0dbc9fc1edb8ad44eFound 9 files trough .DS_Store spidering: /admin /config.php /content /include /index.php /init.php /install.php /robots.txt /rss.php
Found on 2022-09-04 01:43
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 03:32
Last seen 2023-07-22 15:40
Open for 299 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 03:32
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-17 06:28
Last seen 2023-07-14 19:01
Open for 300 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-17 06:28
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-09 03:15
Last seen 2023-07-01 10:19
Open for 295 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-09 03:15
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-02-16 03:14
Last seen 2023-06-14 03:48
Open for 118 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-02-16 03:14
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-02 01:14
Last seen 2023-06-02 05:41
Open for 212 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-11-02 01:14
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-02 01:14
Last seen 2023-06-02 05:41
Open for 212 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-11-02 01:14
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-06-01 04:45-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-06-01 04:45
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-10 14:19
Last seen 2023-05-26 22:59
Open for 258 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-10 14:19
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-10 14:19
Last seen 2023-05-26 22:59
Open for 258 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-10 14:19
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 06:46
Last seen 2023-05-26 17:08
Open for 242 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 06:46
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-26 06:46
Last seen 2023-05-26 17:08
Open for 242 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-26 06:46
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-11 00:54
Last seen 2023-05-05 10:49
Open for 236 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-11 00:54
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-03-15 04:16-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d981cc624981cc624981cc624981cc624Found 1 files trough .DS_Store spidering: /index_files
Found on 2023-03-15 04:16
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-02-20 05:25
Last seen 2023-02-27 22:51
Open for 7 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-02-20 05:25
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-05 09:59
Last seen 2023-02-08 05:54
Open for 125 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18cFound 2 files trough .DS_Store spidering: /templs /templs/templ7
Found on 2022-10-05 09:59
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.
First seen 2022-07-20 17:25
Last seen 2023-02-01 19:41
Open for 196 days-
Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226d31f5a7[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://maiconmva:3TeWnNmXxMTunnZwVPge@bitbucket.org/maiconmva/apr-web.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2022-07-20 17:25299 Bytes
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.
First seen 2022-07-20 17:26
Last seen 2023-02-01 19:41
Open for 196 days-
Severity: critical
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226d31f5a7[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://maiconmva:3TeWnNmXxMTunnZwVPge@bitbucket.org/maiconmva/apr-web.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2022-07-20 17:26299 Bytes
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-25 01:19
Last seen 2023-01-23 00:14
Open for 119 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-25 01:19
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-25 01:19
Last seen 2023-01-23 00:14
Open for 119 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-25 01:19
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2023-01-13 20:15-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2023-01-13 20:15
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-03 01:38
Last seen 2022-12-30 14:02
Open for 118 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-03 01:38
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-20 02:30
Last seen 2022-12-18 11:58
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-20 02:30
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-20 02:30
Last seen 2022-12-18 11:58
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-20 02:30
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-30 05:47-
Severity: low
Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe02cbe81b75eeda1a183a4e4e62fbfa55Found 15 files trough .DS_Store spidering: /.well-known /api /backup-requests /blog /br-admin /content /css /download /fonts /img /inc /js /logs /partnerzone /vendor
Found on 2022-11-30 05:47
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-21 05:01-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-11-21 05:01
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-21 05:01-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-11-21 05:01
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
IP: 104.21.46.114
Domain: neyvielapstenwhitttrin.tk
Port: 443
URL: https://neyvielapstenwhitttrin.tkFirst seen 2022-09-23 03:28
Last seen 2022-11-21 04:52
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-23 03:28
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-23 03:28
Last seen 2022-11-21 04:52
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-23 03:28
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-23 01:46
Last seen 2022-11-21 04:29
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-23 01:46
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-23 01:31
Last seen 2022-11-21 03:24
Open for 59 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-23 01:31
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-22 13:38
Last seen 2022-11-20 03:40
Open for 58 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-22 13:38
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-11-19 05:25-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-11-19 05:25
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-20 02:03-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-20 02:03
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-10-20 02:03-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-10-20 02:03
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-21 01:03-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-21 01:03
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-21 01:03-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-21 01:03
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-13 01:38-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297Found 1 files trough .DS_Store spidering: /smartdoor
Found on 2022-09-13 01:38
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2022-09-03 21:20-
Severity: low
Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6dFound 1 files trough .DS_Store spidering: /img
Found on 2022-09-03 21:20
-
-
Open service 104.21.46.114:80 · chik-road-be.online
2026-01-26 14:36
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 14:36:15 GMT Content-Length: 0 Connection: close Location: https://chik-road-be.online/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5jYa2mMRiwBEHzwXP%2BpWIsQhlp1i4P1h575iEKv%2BjNiTFjs8FGAerXI3f8VSA77lyVp4uBNC0ghH028YpHzmU1syNivb28jaiu0NF2wZw9eYkXU%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c40bdd5deebd281-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · chik-road-be.online
2026-01-26 14:36
HTTP/1.1 200 OK Date: Mon, 26 Jan 2026 14:36:16 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, no-store, must-revalidate Set-Cookie: piuidbomzp5=019bfabb-e3da-798a-8a18-5554588bd423; expires=Tue, 26-Jan-2027 14:36:16 GMT; path=/; samesite=Lax; httponly Set-Cookie: pcpnkovrwe=empty; expires=Tue, 26-Jan-2027 14:36:16 GMT; path=/; samesite=Lax; httponly Set-Cookie: pwaidxvcur2=ErTR; expires=Tue, 26-Jan-2027 14:36:16 GMT; path=/; samesite=Lax; httponly Set-Cookie: pwasimidcj2zjy=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; samesite=Lax; httponly Set-Cookie: splitidjmqecp=-1; expires=Tue, 26-Jan-2027 14:36:16 GMT; path=/; samesite=Lax; httponly Set-Cookie: fpvdateplx49x=2026-01-26; expires=Tue, 26-Jan-2027 14:36:16 GMT; path=/; samesite=Lax; httponly Set-Cookie: sdatays36q9=qtUl66zrv8QL7PdO8XK8LKP%2FHbxNkHK5%2F6RVE6nfofM%3D; expires=Tue, 26-Jan-2027 14:36:16 GMT; path=/; samesite=Lax; httponly Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mEmGitxR73FitMM%2BLfZ0v3JSJfwX9as1dVlh%2Fyp7B5wDR7rKaBzdUvkL4O5Kze6auRWCuyisTYQGHe%2FdDCHN2un5Nyun1NtfYHih576nKeTX9DM%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c40bdd80d13b594-AMS alt-svc: h3=":443"; ma=86400 <!doctype html> <html lang="en"> <head> <meta charset="utf-8"/> <meta name="mobile-web-app-capable" content="yes"/> <meta name="apple-mobile-web-app-capable" content="yes"/> <meta name="viewport" content="width=device-width,initial-scale=1,shrink-to-fit=no"/> <title></title><script>window.pageData={}</script></head> <body> <div id="root"></div> </body> </html>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · chik-road-be.online
2026-01-26 14:36
HTTP/1.1 521 <none> Date: Mon, 26 Jan 2026 14:36:15 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=105,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c40bdd598d88c36-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · sonamhomestayhanle.in
2026-01-26 13:14
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 13:14:22 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Location: https://sonamhomestayhanle.in/ Server: cloudflare X-Powered-By: ASP.NET X-Powered-By-Plesk: PleskWin cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=33,cfOrigin;dur=297 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FvNXeYbyEkqjoBus7R58%2Bn8inm6rSz0BFTXeYEU6d1VOywyWLPSGQu3TKNpxq054C%2F3Bvzb4xGahEgeIrDDLZbA%2BO8G3bgcvreIXFBdHDZqMvXOY%2FA%3D%3D"}]} CF-RAY: 9c4045e0a94b39e6-FRA alt-svc: h3=":443"; ma=86400 Page title: Document Moved <head><title>Document Moved</title></head> <body><h1>Object Moved</h1>This document may be found <a HREF="https://sonamhomestayhanle.in/">here</a><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"0ce6ecebf3d94990973913799d33719e","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · sonamhomestayhanle.in
2026-01-26 13:14
HTTP/1.1 303 See Other Date: Mon, 26 Jan 2026 13:14:22 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 pragma: no-cache expires: Fri, 28 May 1999 00:00:00 GMT last-modified: Mon, 26 Jan 2026 13:14:22 GMT location: https://sonamhomestayhanle.in/login.php Server: cloudflare p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-powered-by: ASP.NET x-content-type-options: nosniff cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=11,cfOrigin;dur=275 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=BT0JgSuAr3u5FBwoaBFYlAv8sKAe9qdruVVMbr4sqQTMz0%2FQ0G1tGemTNzOvMIziCYZrIxtPY7wx8QMOojk92WQSwKUnVhzYJfFQ%2B1xlWyDNEmyfGw%3D%3D"}]} CF-RAY: 9c4045e05a5339d7-YYZ alt-svc: h3=":8443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · sonamhomestayhanle.in
2026-01-26 13:14
HTTP/1.1 200 OK Date: Mon, 26 Jan 2026 13:14:22 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=brDlOpmOBPE3HJZFHQrEOm%2F4yTlCdXbdwfmL%2Fnt2E%2FzLxi3ujyah22q1BtRjRYVYrayUMFajaw%2FbUnkcl%2Bj%2BLLJOT4I8nWMCO%2FnjDbWwL9UhEyCjbg%3D%3D"}]} last-modified: Fri, 28 Nov 2025 12:14:40 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=4,cfOrigin;dur=223 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} vary: Accept-Encoding Server: cloudflare x-powered-by: ASP.NET x-powered-by-plesk: PleskWin cf-cache-status: DYNAMIC CF-RAY: 9c4045dfcdd10c26-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · trackerad.com
2026-01-26 12:53
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 12:54:00 GMT Content-Length: 0 Connection: close Location: https://goodaff.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=diQzeuPBizlHhciT%2FVc7n%2BnEr8Gq%2FIEF3CKP5jTP8RAKaurRRczWHjyTzXBnWNtz4LRf45IdsOg8Ftn3cX5VbQawkvXGvEvUlgjG"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c40280fbf8c15d2-SJCFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · trackerad.com
2026-01-26 12:53
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 12:54:00 GMT Content-Length: 0 Connection: close Location: https://goodaff.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EwAZsoQd%2BV6E3hVJnrVzor%2BEmQkIfEhXsHJCWrSrxhvtsBdtw5vVhuv5gdQvQwONoGwwzNnck%2FgjV5XI6gUOymr%2F5eQWoJGpx2zaj5g%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c40280f0f63d2be-FRAFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · trackerad.com
2026-01-26 12:53
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 12:54:00 GMT Content-Length: 0 Connection: close Location: https://goodaff.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IP6DksWCgTDOxhEROuND81dCUJWiHHm6N1OgmVfm2jbmBFyf84VJciofwttueprX9lRGgWa9PYIIZ15Xz92t8QUYg60JWkdayc4zhh8%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c40280edaeb1b53-EWRFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · danceanimated.shop
2026-01-26 10:25
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 10:25:57 GMT Content-Length: 0 Connection: close Location: https://danceanimated.shop/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FbYF39OmJKETyiDiUMR%2FViFPZpju72GjPni70lCO3EJfs1p1aUkNVp%2FJv6ddj2%2BCqc4Rq3VauT8yQrCva75er8V76yu9BDS0VkPqir3NHcTHlA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=14,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c3f4f30fa7a3c3a-BOM alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · danceanimated.shop
2026-01-26 10:25
HTTP/1.1 404 Not Found Date: Mon, 26 Jan 2026 10:25:57 GMT Transfer-Encoding: chunked Connection: close Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS Access-Control-Allow-Origin: * Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tTmXoLsaiu0L0lchLqGwPNOXEsxAYBq2rBtEzBqHpCNa1XVV5TpY8%2B05bxZJ%2FQraAdmNEFbWdUqsv%2BGIG2yISpInrTrvIWht47669kitxBsoTg%3D%3D"}]} Vary: Accept-Encoding cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3f4f3039ff098f-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · danceanimated.shop
2026-01-26 10:25
HTTP/1.1 522 <none> Date: Mon, 26 Jan 2026 10:26:18 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3f4f364cefd8b6-LHR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · jktradisibet.today
2026-01-26 10:13
HTTP/1.1 521 <none> Date: Mon, 26 Jan 2026 10:13:04 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3f3c4e1a8d5392-AMS alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jktradisibet.today
2026-01-26 10:13
HTTP/1.1 200 OK Date: Mon, 26 Jan 2026 10:13:05 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close vary: Accept-Encoding cache-control: max-age=86400, public x-cacheable: 1 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2UwIr8m6Pasy8JSwPMTcri2HDS4SQErH8ryvMOhS1zSu9EpD9NjTvy%2FKzhazNfS7SLI8B%2FIXJyMs19udPBtpyaL0DQiU4MTYd4%2BHMDlCEBObVQ%3D%3D"}]} age: 1 x-cache: HIT x-cache-hits: 3 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} set-cookie: SRVNAME=222; path=/ cf-cache-status: DYNAMIC Server: cloudflare CF-RAY: 9c3f3c53580d92c9-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · jktradisibet.today
2026-01-26 10:13
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 10:13:04 GMT Content-Length: 0 Connection: close Location: https://jktradisibet.today/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=L2Ec%2Bm7jfTTLZLh6NlZWMxAqtjCTaICEIYB7uUC%2BPxclL6VcVFuMF5jqQzrgZcE%2BO8OGhofQjVOEJmrYPc0lc6fJhQRBdFr7LVR%2FUUrvptgBsg%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3f3c4d2adaf6a5-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · vip-primeinsight.click
2026-01-26 10:05
HTTP/1.1 503 Service Unavailable Date: Mon, 26 Jan 2026 10:05:47 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=736 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=E5pR%2Bkq%2BBJg638dksz2nyCEYiOvS%2BCvWC7zD0c4viDq%2BLqpqFvzPGUp%2B%2FJEBUaOHpOdySuZPdXVSIiF8oJyfebOKUkqcoTkgtNbEjgNwHMBS0k1EdZ0%3D"}]} CF-RAY: 9c3f31a17b29cf26-SJC alt-svc: h3=":443"; ma=86400 Page title: 503 Service Temporarily Unavailable <html> <head><title>503 Service Temporarily Unavailable</title></head> <body> <center><h1>503 Service Temporarily Unavailable</h1></center> <hr><center>nginx</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"5e7f918edb4f42b99f52de51a87da0f6","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · vip-primeinsight.click
2026-01-26 10:05
HTTP/1.1 503 Service Unavailable Date: Mon, 26 Jan 2026 10:05:46 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8tAsUHMfOum955irgsYVQnBQ14eKnEJ9hy8YRAmy3XtRdwrRJgqhrp%2BmfrstG8YPPTuusaNjj7Tru%2F1Sb6O5FinG1CjJXiey49h1ckwlyl6aJ0jxiCA%3D"}]} CF-RAY: 9c3f319e1b8b77d1-FRA alt-svc: h3=":443"; ma=86400 Page title: 503 Service Temporarily Unavailable <html> <head><title>503 Service Temporarily Unavailable</title></head> <body> <center><h1>503 Service Temporarily Unavailable</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · vip-primeinsight.click
2026-01-26 10:05
HTTP/1.1 522 <none> Date: Mon, 26 Jan 2026 10:06:06 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3f31a29fd3dbb5-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · invitmu.com
2026-01-26 09:41
HTTP/1.1 200 OK Date: Mon, 26 Jan 2026 09:41:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close x-dns-prefetch-control: on link: <https://invitmu.com/wp-json/>; rel="https://api.w.org/" link: <https://invitmu.com/wp-json/wp/v2/pages/45461>; rel="alternate"; title="JSON"; type="application/json" link: <https://invitmu.com/>; rel=shortlink vary: Accept-Encoding Server: cloudflare x-turbo-charged-by: LiteSpeed x-litespeed-cache: hit Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=t55QxiynoT0y60Ixs8j12JYLNBAKR01iQG5wlP9mamfSpqOlkmqF8doPgpgh47qjNXMcJBqbE5z%2BFdYvd3ZObz9ug0l%2Fs6B4P%2Fwq"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=9 CF-RAY: 9c3f0e8add09447c-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · invitmu.com
2026-01-26 09:41
HTTP/1.1 522 <none> Date: Mon, 26 Jan 2026 09:42:10 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19410,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3f0e915904c094-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · invitmu.com
2026-01-26 09:41
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 09:41:50 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close server: cloudflare x-turbo-charged-by: LiteSpeed location: https://invitmu.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4dUuihViuuvD2zjBloyim1G54xpOvhDfBVPBgK4riUI%2BmTVo6SAZV7YvZU5kjKY00YRsxUr6uofi%2FY06ubz4c1MmCMAkH61%2FLlQZ"}]} vary: Accept-Encoding Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=235 CF-RAY: 9c3f0e8daf3daaa0-YYZ alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved to <A HREF="%s">here</A>.</p> </div></div><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"5a40f10c47c6424eaa971cf122e6542f","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · dil-hope.com
2026-01-26 09:05
HTTP/1.1 403 Forbidden Date: Mon, 26 Jan 2026 09:05:04 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dOhfhzYIqUE6parx5BrMG8dluKGbWLB7Pst0yfD5JKnqW9BiiPZDKLJkKsPElYhLNKX3GM36mQx6qUySSIUR7%2FTYR4D%2FWftYWI44DA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3ed8b23cd8fdeb-SIN alt-svc: h3=":8443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> dil-hope.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9c3ed8b23cd8fdeb</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">146.190.103.103</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · dil-hope.com
2026-01-26 09:05
HTTP/1.1 403 Forbidden Date: Mon, 26 Jan 2026 09:05:04 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5YRNh%2BqykQUGPx3qzRVR2Du0iUiSYryrpn83ttbikxWAgrLw9uzEkeHLEfiH5jpR0Xv3WetAiRy%2BXelcMsiP90mIZ3RNv33J44KC6A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3ed8b21d66db0e-FRA alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> dil-hope.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9c3ed8b21d66db0e</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">159.89.12.166</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"clFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · dil-hope.com
2026-01-26 09:05
HTTP/1.1 403 Forbidden Date: Mon, 26 Jan 2026 09:05:04 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=34zjxp8gd7XoIImHnqu%2Bz7yiELKSbHC5vA%2Bk9SAtrK8qoEIakdEchR%2BHGQ%2BKusrQ5xkoLM2w0GrDapCq6gnQrXqVKygbGtk2eSsk3g%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3ed8b0ceae5d00-LHR alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> dil-hope.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9c3ed8b0ceae5d00</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">64.227.32.66</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"claFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · porno80.store
2026-01-26 08:38
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 08:38:54 GMT Content-Length: 0 Connection: close Location: https://www.porno80xx.site/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QA4Vhrtw3wDij3lJq1IFeh7bcsvhGFEMBAI%2Fwb9720uSWu42BGJ2tRKvdNRkIMVJW2YPst0id7rUUMp%2F5OVXGf28EMpPW5dCqucX59A%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3eb26159224c90-AMSFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · porno80.store
2026-01-26 08:38
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 08:38:54 GMT Content-Length: 0 Connection: close Location: https://www.porno80xx.site/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=P9r%2BmkkXm6YLI%2Bcx9FrfjZKd02UXciez9yKkfoJzjSriJ5BMSOXFDpdUOZyNKd6bcN2jBkivRIumguSX430qVE8mp5zqxjhWeaXn98A%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3eb26139680e3a-AMSFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · porno80.store
2026-01-26 08:38
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 08:38:54 GMT Content-Length: 0 Connection: close Location: https://www.porno80xx.site/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=twnzaigXjW7ZmXScIedZABZMcRP%2BBmcRV%2BXgw0kOQotOOrK1FGycSle%2B2XnWR9TEt0MfMvbMuS0o4upMOJef8RL1NNeZQ7FqVwfK0lk%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3eb261097fb8a8-AMSFound 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · atlanticpizzaauthentic.com
2026-01-26 04:54
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 04:54:50 GMT Content-Length: 0 Connection: close Location: https://www.atlanticpizzaauthentic.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FSAwVON1UuVVwPrrCcgfe2YBmq4lS5fzWK5o0e41auSIMDbpDFjj%2B8GGVh5CT8TLHR%2F5Jk1k5jW2eUhx7dLENJegZeC6l6eXMw%2FnqFMDHMe%2BaGsyoRysxDLp"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=2,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c3d6a28ac8c3884-SJC alt-svc: h3=":8443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · atlanticpizzaauthentic.com
2026-01-26 04:54
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 04:54:50 GMT Content-Length: 0 Connection: close Location: https://www.atlanticpizzaauthentic.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=eVMRsLUS05jT%2Bw3taTMp3%2FoRuV0iJPJxrBQSiR1WjyvbcbZw504Azi6k2S0iUs03Z%2BD2vAk5t6XTh8etyh60v5Aw7Irr3DDD%2BmKPWgD0EV2zIbB2AKp%2BLM9j"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3d6a27dad7d2f2-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · atlanticpizzaauthentic.com
2026-01-26 04:54
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 04:54:50 GMT Content-Length: 0 Connection: close Location: https://www.atlanticpizzaauthentic.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4IXWx72rsrkGq7qJTX%2FOqC46z6EPBkYjsrxpedajB57I47ALfZ04alhulF3mC1%2F0M49AaayZRYzbzGIpp7xAEedVzD5oluNQiYBugSZKIMdVcjUiLZ4Gv9lp"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=12,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c3d6a27fe093a27-BOM alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.jirisafka.cz
2026-01-26 00:56
HTTP/1.1 522 <none> Date: Mon, 26 Jan 2026 00:57:14 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19736,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3c0da15b98f795-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.jirisafka.cz
2026-01-26 00:56
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 00:56:59 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare location: https://jirisafka.cz/ x-redirect-by: WordPress cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=4,cfOrigin;dur=4597 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=yhbB2qopQt3BK9fXB2bDxDLotZwGiusIW79RXuWlvh0Jr2euEU6NHKreL%2BmuTA%2Fxcy%2Fb8tYRPdlC0jGLVrP2jIF6OSLaQWxgzfW1IHnQQVo%3D"}]} CF-RAY: 9c3c0da14ef8c79e-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.jirisafka.cz
2026-01-26 00:56
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 00:56:54 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://www.jirisafka.cz/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6bkRr6tcWfwzDfjDGok1919afWmPa4p7009NoOq0NYSP9o%2Fce1zIfqkywT0cxgIFhL%2BWCUSX0bVrP26nsPZj%2BO5jlu%2BntH4WAEmoYXap"}]} CF-RAY: 9c3c0d9aecdd7778-LHR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · jirisafka.cz
2026-01-26 00:56
HTTP/1.1 522 <none> Date: Mon, 26 Jan 2026 00:57:15 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=20097,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3c0da0682af7ce-BOM alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · jirisafka.cz
2026-01-26 00:56
HTTP/1.1 301 Moved Permanently Date: Mon, 26 Jan 2026 00:56:54 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://jirisafka.cz/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=11,cfOrigin;dur=148 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=W4Fo3BcYZnkZdj158R2JabR0jqOMabTK3woGBIPUwC3z7Q9c8jmjUXiDzqav49uTtr1e5QtXRsQE7CsrOzT6PX3pcGnX%2BnxG3BuZhA%3D%3D"}]} CF-RAY: 9c3c0d9bbe6bf3e6-EWR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"4168769ea21f4c0e944b66ccbe28cbfd","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jirisafka.cz
2026-01-26 00:56
HTTP/1.1 200 OK Date: Mon, 26 Jan 2026 00:57:00 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare link: <https://jirisafka.cz/wp-json/>; rel="https://api.w.org/" link: <https://jirisafka.cz/wp-json/wp/v2/pages/634>; rel="alternate"; type="application/json" link: <https://jirisafka.cz/>; rel=shortlink vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UdrDb7gYK1fmZu6OljquY2%2FOgrlExVg0UbK%2BMQRgQl1mFjFSTbd7zvczT7KRAQTRvpY4IPSVxEnlwLylwsWdIxyl5Q%2B61hO7ybUrAQ%3D%3D"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c3c0d9fefbd3630-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-26 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-25 21:13
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 21:13:14 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MaU4rry7oJUaeukQfZIyVsVpGjcRw5mfaDEZIaCwvQaGZ%2Ft%2BAN6nUYKMJINcz2IOyOewLJRvhAalXPojsozUgMeB98mOGuUaSJhL8A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9c3ac5f97ca87dcd-LHR alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · omm.co.com
2026-01-25 18:27
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 18:27:58 GMT Content-Length: 0 Connection: close Location: https://angelboard.io/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=afJLvjm7ugl48Xq2BeeMbQfCl0cshyjtY24TCRHoNfl7wtAy%2FGQVG%2BAmprMJDInreAJSirTbk0Kh%2FmHM9PteG7EMYbMO2NBWvWM%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c39d3e03e793466-AMSFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · omm.co.com
2026-01-25 18:27
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 18:27:58 GMT Content-Length: 0 Connection: close Location: https://angelboard.io/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qjijS6GS%2FZ%2F5gOJA324b6E5anN27bb6mZ1GNULj1%2BPwptVM3qjA0MHOJmGt1H3laTwGa2qhuvBrfIfXM2g8OUW1kwXqV1fAylyY%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c39d3e029d4774e-AMSFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · omm.co.com
2026-01-25 18:27
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 18:27:58 GMT Content-Length: 0 Connection: close Location: https://angelboard.io/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bB%2B2A1kFWSMw3VFPZxCdiCbL1OK0IRhVDDqvzfWVRBKmpcI8HQ67L7HWjZXMYOAHMw1xe3ZqY%2Bx6pxEzAqXdkBIBzeJeJTyrjKs%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c39d3e02a6b7aa3-AMSFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · gacor77.website
2026-01-25 18:14
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 18:14:24 GMT Content-Length: 0 Connection: close Location: https://gacor77.website/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NGZLJ01%2B%2FgdmjYzi07ptFYI5MshDWADX5YqSBTDvvpqwKCDtqc3%2F%2Bp22copu%2BlSfi9YSyNJEUGqkuwA8NOzdGVNAoOxvU%2FX5vPloAojc4w%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c39c00448203c73-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · gacor77.website
2026-01-25 18:14
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 18:14:24 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sun, 29 Jun 2025 08:12:06 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ogZ0TWjFXwrkdwf9Nl7GcY2UeAdamXJV9ddjXYy8wAtG4Tk9ic4WBPbfH0%2FGnTdTxCUaaG3sz1h%2BBIUAfvaJ7Y6k9hx90AHx%2FdhMvuI%3D"}]} Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9c39c0044ec76955-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · gacor77.website
2026-01-25 18:14
HTTP/1.1 522 <none> Date: Sun, 25 Jan 2026 18:14:44 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c39c00a4fd9373e-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · wenzizone.com
2026-01-25 17:43
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 17:43:10 GMT Content-Length: 0 Connection: close Location: https://wenzizone.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=w%2Fa1biPqcb8oFuTyeCwg3nmSNj0i5wc93nnlV16K4lAfQZaDQKC8E4BfFupWe7n%2Fr6u91YE3wHbJ%2FLWXPt5sNmr%2BFU5l2Eepf2%2FP"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=8,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c399243891944ce-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · wenzizone.com
2026-01-25 17:43
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · wenzizone.com
2026-01-25 17:43
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 17:43:10 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare location: https://www.wenzizone.com/ x-github-request-id: FEBD:1D5A31:32009B3:396A626:69765613 Accept-Ranges: bytes via: 1.1 varnish Age: 27 x-served-by: cache-lga21971-LGA x-cache: HIT x-cache-hits: 1 x-timer: S1769362991.590031,VS0,VE2 vary: Accept-Encoding x-fastly-request-id: 0e91e1b5400be65e2250ad384571fbfca5b7dc9b cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=18,cfOrigin;dur=6 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TJWRpteql63gpNVgGnISVkib7kVz0lKMfcab6Yt8X3gChlYR35XsjQ8k5vXGujdLtvcX2vl%2BTaoufkqZts2T1AlPIv%2FQ7SaaoEXchto%3D"}]} CF-RAY: 9c3992430d6042bd-EWR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"0af90f34dca240269a89b9ff558abce8","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · wpthms.com
2026-01-25 16:42
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · wpthms.com
2026-01-25 16:42
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 16:42:08 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=osJ4Gx%2FHl5whOfYj18p5gcwilA5uKYdKGmmFW2VHkoLBJssd26jlCxcmu8E3bt95SIJXWRuNYm2DoEKNu2lmSayAyBRB96qFHyc%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Location: https://wpthms.com/ platform: hostinger panel: hpanel Content-Security-Policy: upgrade-insecure-requests X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=15,cfOrigin;dur=492 CF-RAY: 9c3938d8ae35cc90-SJC alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved.</p> </div></div><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"32f23dcde6064ab881955cb6b9bd85ab","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · wpthms.com
2026-01-25 16:42
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 16:42:10 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GuuPpvkcDBN56WcBwjMgJ5Qj7hNBTW%2BX0%2FPtYv5G2pJSulInmqfF5x%2BDwBJcEf%2B%2B7eVWuaE5LkmZANr2NN0lXVVVnNUHpMZQTk0%3D"}]} vary: Accept-Encoding Server: cloudflare Cache-Control: no-cache,no-store x-frame-options: SAMEORIGIN x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=2444 CF-RAY: 9c3938da49712ed1-SJC alt-svc: h3=":443"; ma=86400 Page title: Bot Verification <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Bot Verification</title> <script> function onSubmit() { document.getElementById('lsrecaptcha-form').submit(); } var onloadCallback = function() { var cont = grecaptcha.render('recaptchadiv', { 'sitekey': '6LewU34UAAAAAHvXqFOcQlm8z1MP1xpGAZCYEeZY', 'callback': onSubmit, }); grecaptcha.execute(cont); }; </script> <style> body { height: 100%; } .panel { padding: 30px; max-width: 425px; margin: 10% auto; box-shadow: 0 0 2px 2px rgba(0, 0, 0, 0.2); } .title { font-size: 1.5em; font-weight: 100; margin-top: 10px; text-align: center; } .recaptcha-center { margin-top: 35px; margin-bottom: 20px; margin-left: 13%; margin-right: 13%; display: block; } </style> </head> <body> <div class="panel"> <h3 class="title">Verifying that you are not a robot...</h3> <form id="lsrecaptcha-form" method="POST" action="/.lsrecap/recaptcha?"> <div id="recaptchadiv" class="recaptcha-center"></div> </form> </div> <script src="https://www.recaptcha.net/recaptcha/api.js?onload=onloadCallback&render=explicit" async defer> </script> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"32f23dcde6064ab881955cb6b9bd85ab","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mp3indirdur.info
2026-01-25 16:39
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 16:39:57 GMT Content-Length: 0 Connection: close Location: https://mp3indirdur.info/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zdLfCYZOeLk9nqTnTS%2FAuKxtPF4jTBeDF55lt8RSxcj3fTykEt%2BP%2FA4%2Fs86I6TqicbfATC1WXk6aOiV4vIu3D7YqSXAlfCZuFoBqpTlz8yM%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3935a84980ad44-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mp3indirdur.info
2026-01-25 16:39
HTTP/1.1 303 See Other Date: Sun, 25 Jan 2026 16:39:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 pragma: no-cache expires: Fri, 28 May 1999 00:00:00 GMT last-modified: Sun, 25 Jan 2026 16:39:57 GMT location: https://mp3indirdur.info/login.php Server: cloudflare p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-powered-by: ASP.NET x-content-type-options: nosniff cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Kxp9VChUs61GATfp91nLERyFKPjk%2B%2B719uJU1cQx5QACeb7gq2femI%2B0cNZ24DPuugYXvaanWVzDLSQ8NGbQJXuCwhqMe6Q%2BqJuHyTKEAgc%3D"}]} CF-RAY: 9c3935a81b6875e1-EWR alt-svc: h3=":8443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mp3indirdur.info
2026-01-25 16:39
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 16:39:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close location: https://www.mp3indirdur.info/ Server: cloudflare x-powered-by: ASP.NET x-powered-by-plesk: PleskWin cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qKE%2BiSUyb1E69ZDKt%2B1m1rrJzU0rFjOK5pfKCmryEiO9JkcVrZlPkQsNzedpSITAmbQglrqZt03ejWllBajP2LpKYkq1jK8G%2F3EUj4vxfJk%3D"}]} CF-RAY: 9c3935a7dbea35dd-LHR alt-svc: h3=":443"; ma=86400 Page title: Document Moved <head><title>Document Moved</title></head> <body><h1>Object Moved</h1>This document may be found <a HREF="https://www.mp3indirdur.info/">here</a></body>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · plinkogame.pk
2026-01-25 14:36
HTTP/1.1 521 <none> Date: Sun, 25 Jan 2026 14:36:18 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c388085b9701e12-LHR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · plinkogame.pk
2026-01-25 14:36
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 14:36:18 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8O1oiRWYIgvYrsBRi9%2BgXcI8%2BnM%2B1QoyPxTJkvlLWbDqsfOzTRiQi9ZwDkh8yhsFssjNkt9bH11ThBHW1eRj63uLDq4kvbaDnsBZHmY%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c388087d897c0cf-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · plinkogame.pk
2026-01-25 14:36
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 14:36:18 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=O03rhQQj%2BVEH9tY6p4sqwkPKlQMEBHjaaeLlsgq9RMduaZEv2w9U4lqT8bjFk9G2gdYyK6hpb0US6nj19Bh3UQnJ0HMuTpxHbQ2rGU4%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c388086ddd77d93-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mssvc.com
2026-01-25 10:54
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 10:54:46 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=nqann9DaDn1cbY0Vr7tvPrNdh8A%2FDMEu6XQA%2BV8BqhtEkkt%2FbsyAqvRjpF5oYUyQE431oiMe3ic4ZTOluSvNQdJgGs2Fy273eQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=u5fY5s16vtYIAIRpTofUf2hkjL2Te4KVAP3CiC.NhI4-1769338486-1.0.1.1-0Gp98glPjz6oyBRxnCLqifisCC_3Gm_crwcc8tJJuCb76ATqNnVSpLhz3WLaIZdYG4GeHNXOIFwvxMbCShN4XFPaRcCX0WV5HUsLpYdx3UE_6254lBFKbZHBvRk2ONIR; path=/; expires=Sun, 25-Jan-26 11:24:46 GMT; domain=.mssvc.com; HttpOnly; Secure; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 9c373c042f54fd3e-SIN Page title: Cloudflare <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Cloudflare</title> <link rel="stylesheet" href="style.css" /> </head> <body> <main> <header> <h1><span id="domain-name"></span></h1> <h2> The owner of this domain hasn't put up a website yet. Try visiting again soon. This domain is registered using <a href="https://www.cloudflare.com/products/registrar/" target="_blank" >Cloudflare Registrar. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </h2> </header> <h3>Are you the domain owner?</h3> <section> <p> Log in to the Cloudflare Dashboard to <a href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/" target="_blank" >create a root domain record. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </p> </section> <h3>What is Cloudflare?</h3> <section> <p> Cloudflare is a global cloud provider designed to make everything you connect to the Internet secure, private, fast, and reliable. Our mission is to help build a better Internet. </p> </section> <section class="promotional-cards"> <a href="https://1.1.1.1/" target="_blank"> <section> <h2> Download 1.1.1.1 — the free app that makes your Internet safer. </h2> <p> Protect your traffic and speed up your connection on all your devices. </p> </section> </a> <a href="https://www.cloudflare.com/products/registrar/" target="_blank" > <section> <h2> Register your own domain name for the lowest cost, every time. </h2> <p> Cloudflare Registrar charges wholesale prices, without sneaky markups. </p> </section> </a> </section> <div class="animation_wrapper"> <div class="animation animation_center"></div> <div class="animation animation_left"></div> <div class="animation animation_right"></div> </div> </main> <footer> <div class="footer-border"> <div class="footer-left"> <svg width="80" height="2" fill="none" xmlns="http://www.w3.org/2000/svg" > <mask id="b" style="mask-type: alpha" maskUnits="userSpaceOnUse" x="0" y="0" width="80" height="2" > <path fill="Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mssvc.com
2026-01-25 10:54
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 10:54:46 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=F7fgZp%2FmkUcZf%2B378L%2B879N%2FTAQM%2BQJqgSN9%2F10xtE%2FiSHUgaNd2kmilg192niTcMZtwLYl4e8Whcg3qKe09LDH6VC32u7ysnQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=UklNcx5ScZI5UlO5BoNmm4m9i.XO8fTdGcfr79QNrrs-1769338486-1.0.1.1-ZhWVtsib7B5UWM.iwbAq5EjCqNOFJUZDQaASP5eGPFjxjbqquUSPaZVLLXThlfzTIH2Tyk_oed2oXGWiq5JIS2IGlB4ld3ghSj5c_YUpjBplcYyWksQ9_V18uXu775CW; path=/; expires=Sun, 25-Jan-26 11:24:46 GMT; domain=.mssvc.com; HttpOnly; Secure; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 9c373c032a3db5f2-SJC Page title: Cloudflare <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Cloudflare</title> <link rel="stylesheet" href="style.css" /> </head> <body> <main> <header> <h1><span id="domain-name"></span></h1> <h2> The owner of this domain hasn't put up a website yet. Try visiting again soon. This domain is registered using <a href="https://www.cloudflare.com/products/registrar/" target="_blank" >Cloudflare Registrar. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </h2> </header> <h3>Are you the domain owner?</h3> <section> <p> Log in to the Cloudflare Dashboard to <a href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/" target="_blank" >create a root domain record. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </p> </section> <h3>What is Cloudflare?</h3> <section> <p> Cloudflare is a global cloud provider designed to make everything you connect to the Internet secure, private, fast, and reliable. Our mission is to help build a better Internet. </p> </section> <section class="promotional-cards"> <a href="https://1.1.1.1/" target="_blank"> <section> <h2> Download 1.1.1.1 — the free app that makes your Internet safer. </h2> <p> Protect your traffic and speed up your connection on all your devices. </p> </section> </a> <a href="https://www.cloudflare.com/products/registrar/" target="_blank" > <section> <h2> Register your own domain name for the lowest cost, every time. </h2> <p> Cloudflare Registrar charges wholesale prices, without sneaky markups. </p> </section> </a> </section> <div class="animation_wrapper"> <div class="animation animation_center"></div> <div class="animation animation_left"></div> <div class="animation animation_right"></div> </div> </main> <footer> <div class="footer-border"> <div class="footer-left"> <svg width="80" height="2" fill="none" xmlns="http://www.w3.org/2000/svg" > <mask id="b" style="mask-type: alpha" maskUnits="userSpaceOnUse" x="0" y="0" width="80" height="2" > <path fill="Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mssvc.com
2026-01-25 10:54
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 10:54:46 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RaV8U4FEcs%2B1Nn%2FL4R6DN0Kn%2F5NVw%2FugUtLfgrVqdo49OW7d%2FJzn5f5VK7RciB%2B0Zc5gfMBBSNSC7wSMrsJYlGRypnKAdxzyyA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=_7V1VICT6eJBcbUHDjwg9WB_iBMpdllNXnP_nCiXsvk-1769338486-1.0.1.1-cdfgpRyF9rbocJYCzUQ1r0x_OtoDsg.4qZ5K7EpMgyC2PwyVO3vc9pk9xbZ8Cj70N9qy3ZwlRyJtf5nFDCz9mgVuLdcvN9jDOjOLUmeDPXZy.zcxtEdGcHNIeaQY2MWv; path=/; expires=Sun, 25-Jan-26 11:24:46 GMT; domain=.mssvc.com; HttpOnly Vary: Accept-Encoding Server: cloudflare CF-RAY: 9c373c0318172baa-FRA Page title: Cloudflare <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Cloudflare</title> <link rel="stylesheet" href="style.css" /> </head> <body> <main> <header> <h1><span id="domain-name"></span></h1> <h2> The owner of this domain hasn't put up a website yet. Try visiting again soon. This domain is registered using <a href="https://www.cloudflare.com/products/registrar/" target="_blank" >Cloudflare Registrar. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </h2> </header> <h3>Are you the domain owner?</h3> <section> <p> Log in to the Cloudflare Dashboard to <a href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/" target="_blank" >create a root domain record. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </p> </section> <h3>What is Cloudflare?</h3> <section> <p> Cloudflare is a global cloud provider designed to make everything you connect to the Internet secure, private, fast, and reliable. Our mission is to help build a better Internet. </p> </section> <section class="promotional-cards"> <a href="https://1.1.1.1/" target="_blank"> <section> <h2> Download 1.1.1.1 — the free app that makes your Internet safer. </h2> <p> Protect your traffic and speed up your connection on all your devices. </p> </section> </a> <a href="https://www.cloudflare.com/products/registrar/" target="_blank" > <section> <h2> Register your own domain name for the lowest cost, every time. </h2> <p> Cloudflare Registrar charges wholesale prices, without sneaky markups. </p> </section> </a> </section> <div class="animation_wrapper"> <div class="animation animation_center"></div> <div class="animation animation_left"></div> <div class="animation animation_right"></div> </div> </main> <footer> <div class="footer-border"> <div class="footer-left"> <svg width="80" height="2" fill="none" xmlns="http://www.w3.org/2000/svg" > <mask id="b" style="mask-type: alpha" maskUnits="userSpaceOnUse" x="0" y="0" width="80" height="2" > <path fill="Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · yy544.com
2026-01-25 10:28
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · yy544.com
2026-01-25 10:28
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 10:28:25 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Sat, 24 Jan 2026 22:26:01 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000 Alt-Svc: h3=":443"; ma=86400 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=S0nIO3DO0iummUGiTibNNJUYhsK1ZAneoTn6mk9XzES97CmGRfiIODe4E4mhcRKOfFufRge3yY3cAE%2BvrL%2Bwcd0EfT07Hfeypg%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c37156c9e4239f1-FRAFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · yy544.com
2026-01-25 10:28
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 10:28:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare last-modified: Sat, 24 Jan 2026 22:26:01 GMT vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=483 strict-transport-security: max-age=31536000 alt-svc: h3=":443"; ma=86400 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mnGRIrMYzHYcALJiJQlgOpjlL0hCgufUtX6uIPcZuE9yjk59dWwTdtIYp4lwfRvwCBrEdGjN88EsMCBrK7%2F2gVdth2imwShemQ%3D%3D"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c37156e094f90c2-EWRFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · tabienforcash.com
2026-01-25 08:32
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 08:32:58 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=3600 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=E99%2FGRss%2F%2BomRGCXoop8c1j3UTYTCe6V7neKjesN9wTpCSwfJyWoFEe2M5WG3N6RIPw3Zd8ohUI1kkuAkaU2FPHSNCvkNViUCLt7lhaSrGb%2B"}]} last-modified: Fri, 11 Jul 2025 18:03:22 GMT strict-transport-security: max-age=31556926 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} x-served-by: cache-rtm-ehrd2290048-RTM x-cache: HIT x-cache-hits: 1 x-timer: S1769329979.966299,VS0,VE1 vary: x-fh-requested-host, accept-encoding alt-svc: h3=":443"; ma=86400 cf-cache-status: DYNAMIC Server: cloudflare CF-RAY: 9c366c506dea5c49-AMS Page title: Tabien For Cash <!doctype html> <html lang="en" data-critters-container> <head> <meta charset="utf-8"> <title>Tabien For Cash</title> <base href="/"> <link rel="icon" type="image/x-icon" href="favicon.ico"> <link rel="preconnect" href="https://fonts.googleapis.com"> <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin> <style>@font-face{font-family:'Athiti';font-style:normal;font-weight:200;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAxDNCEfe_O98.woff2) format('woff2');unicode-range:U+02D7, U+0303, U+0331, U+0E01-0E5B, U+200C-200D, U+25CC;}@font-face{font-family:'Athiti';font-style:normal;font-weight:200;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAxDNCCve_O98.woff2) format('woff2');unicode-range:U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;}@font-face{font-family:'Athiti';font-style:normal;font-weight:200;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAxDNCC_e_O98.woff2) format('woff2');unicode-range:U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;}@font-face{font-family:'Athiti';font-style:normal;font-weight:200;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAxDNCBfe_.woff2) format('woff2');unicode-range:U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;}@font-face{font-family:'Athiti';font-style:normal;font-weight:300;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAoDBCEfe_O98.woff2) format('woff2');unicode-range:U+02D7, U+0303, U+0331, U+0E01-0E5B, U+200C-200D, U+25CC;}@font-face{font-family:'Athiti';font-style:normal;font-weight:300;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAoDBCCve_O98.woff2) format('woff2');unicode-range:U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;}@font-face{font-family:'Athiti';font-style:normal;font-weight:300;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAoDBCC_e_O98.woff2) format('woff2');unicode-range:U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;}@font-face{font-family:'Athiti';font-style:normal;font-weight:300;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0sMISdLIZIv1wAoDBCBfe_.woff2) format('woff2');unicode-range:U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;}@font-face{font-family:'Athiti';font-style:normal;font-weight:400;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0vMISdLIZIv1wIHxJXOtY.woff2) format('woff2');unicode-range:U+02D7, U+0303, U+0331, U+0E01-0E5B, U+200C-200D, U+25CC;}@font-face{font-family:'Athiti';font-style:normal;font-weight:400;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0vMISdLIZIv1wIBBJXOtY.woff2) format('woff2');unicode-range:U+0102-0103, U+0110-0111, U+0128-0129, U+0168-0169, U+01A0-01A1, U+01AF-01B0, U+0300-0301, U+0303-0304, U+0308-0309, U+0323, U+0329, U+1EA0-1EF9, U+20AB;}@font-face{font-family:'Athiti';font-style:normal;font-weight:400;font-display:swap;src:url(https://fonts.gstatic.com/s/athiti/v13/pe0vMISdLIZIv1wIBRJXOtY.woff2) format('woff2');unicode-range:U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;}@font-face{font-family:'Athiti';font-style:nFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · tabienforcash.com
2026-01-25 08:32
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 08:32:58 GMT Content-Length: 0 Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Retry-After: 0 Location: https://tabienforcash.com/ Accept-Ranges: bytes X-Served-By: cache-yyz4524-YYZ X-Cache: HIT X-Cache-Hits: 0 X-Timer: S1769329979.835929,VS0,VE0 alt-svc: h3=":443"; ma=86400 cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=1 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mbbhAElf46a5sZq27j5JjlokrKhpDUd%2FQ0OIHfntYTWhNTIMjOhyQkUnQLSJ7vQPBOMLE22O3284CBilwskumQv30HVaegnNuo9hGMZiRPrx"}]} CF-RAY: 9c366c4fa9ed5577-YYZFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · tabienforcash.com
2026-01-25 08:32
HTTP/1.1 522 <none> Date: Sun, 25 Jan 2026 08:33:19 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19389,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c366c55bc964c9b-YYZ alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · vidstream.dev
2026-01-25 07:09
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 07:09:38 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://vidstream.dev/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FCzcV6JhJ7DjtM3uRshr6R902RU6nWP1NFUKUw3wcviMbjv96eatR2HD7rkaxSUC3Jn5hwDZ7OT7oIpmghEO%2BBag1dqi5vYhWQaZsRI%3D"}]} CF-RAY: 9c35f23e69ed1cce-AMS alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · vidstream.dev
2026-01-25 07:09
HTTP/1.1 200 OK Date: Sun, 25 Jan 2026 07:09:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WBLZaW94d%2BKbdPaMhztB%2FehtsQpwHkIs%2B%2FcRnhXvpfhUlNZD6307WncOVyT2fkqmqc6vIinje1%2FcpSouKTlENd0jFgYuzhkLgjDWM3Q%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=98 CF-RAY: 9c35f2409d138c8c-EWR alt-svc: h3=":443"; ma=86400 Page title: Website Under Construction <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Website Under Construction</title> <style> body { background-color: #fffae3; font-family: 'Comic Sans MS', cursive, sans-serif; text-align: center; padding: 50px; } h1 { font-size: 3em; color: #ff4081; text-shadow: 2px 2px #000; animation: wiggle 1s infinite; } @keyframes wiggle { 0% { transform: rotate(-3deg); } 50% { transform: rotate(3deg); } 100% { transform: rotate(-3deg); } } .gif { width: 200px; margin: 20px auto; display: block; } p { font-size: 1.5em; color: #333; margin-top: 20px; } .button { background: linear-gradient(45deg, #ff0000, #ffff00); border: none; padding: 15px 30px; font-size: 1.2em; font-weight: bold; border-radius: 10px; cursor: pointer; animation: bounce 1.2s infinite; } @keyframes bounce { 0%, 100% { transform: translateY(0); } 50% { transform: translateY(-10px); } } </style> </head> <body> <h1>🚧 LOL! We Broke The Internet 🚧</h1> <img src="https://media.giphy.com/media/3o7abldj0b3rxrZUxW/giphy.gif" alt="funny gif" class="gif"> <p>Our website is currently being fixed by a team of hyperactive squirrels 🐿️ with screwdrivers. <br> Please don’t feed them… they already had too much coffee ☕😵.</p> <button class="button" onclick="alert('Patience, human! Rome wasn’t built in a day… but maybe our site will be 😜')">Click Me If You’re Bored</button> <p>Check back soon… or not, we love the suspense 😏</p> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"52a69a48f265403d8923bc0da31c0d72","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · vidstream.dev
2026-01-25 07:09
HTTP/1.1 521 <none> Date: Sun, 25 Jan 2026 07:09:38 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c35f23e0c63e866-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · tryideajamteam.company
2026-01-25 06:46
HTTP/1.1 522 <none> Date: Sun, 25 Jan 2026 06:46:44 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c35d034dd5e44a2-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · tryideajamteam.company
2026-01-25 06:46
HTTP/1.1 302 Found Date: Sun, 25 Jan 2026 06:46:24 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: http://ideajam.ai cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=49Z7M5Pj%2Bv%2FqC0A1a0d2I7vPXcwSf6liG0XzQscgRLInqW%2BDV6RlWDQmr9vrC9EkfxsgBfQOKfFfhq4gsub0wSYtzcxLsbtnGXpyrKwfAm6yh3hDA%2F4%3D"}]} CF-RAY: 9c35d02fd9b9f8ef-SIN alt-svc: h3=":443"; ma=86400 Page title: 302 Found <html> <head><title>302 Found</title></head> <body> <center><h1>302 Found</h1></center> <hr><center>openresty/1.27.1.2</center> </body> </html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · tryideajamteam.company
2026-01-25 06:46
HTTP/1.1 302 Found Date: Sun, 25 Jan 2026 06:46:23 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: http://ideajam.ai cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=riunwQdmpumtWs5QkkOsGkl36GigWG8Pj3crh4GWmbK%2Fz26R3s5Nb1daHi3Nn14cz6Q%2FJQ%2FFsYrMDPXItvJwESZnJ8EU7yyGb5U0n4KMcSdeS9OlN8g%3D"}]} CF-RAY: 9c35d02e4d2fae83-LHR alt-svc: h3=":443"; ma=86400 Page title: 302 Found <html> <head><title>302 Found</title></head> <body> <center><h1>302 Found</h1></center> <hr><center>openresty/1.27.1.2</center> </body> </html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · telegram-premium-prize-drop.top
2026-01-25 05:16
HTTP/1.1 301 Moved Permanently Date: Sun, 25 Jan 2026 05:16:56 GMT Content-Length: 0 Connection: close Location: https://telegram-premium-prize-drop.top/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=G4T17tZjaQJ8akxBmwrcCazVKUgcKgeqJYDURy2KJaNyWJBhiDXQwzZSgy%2FDO%2FzW7RYELpuTr5y7GT%2Fu%2BZPuvhl4l9%2FhtIVUTuIYzscdrClMJLPvYyUpenvI53PKwas%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c354d22cf7ec613-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · telegram-premium-prize-drop.top
2026-01-25 05:16
HTTP/1.1 521 <none> Date: Sun, 25 Jan 2026 05:16:56 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c354d23ee4bfd36-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · telegram-premium-prize-drop.top
2026-01-25 05:16
HTTP/1.1 302 Found Date: Sun, 25 Jan 2026 05:16:56 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} location: https://www.google.com cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TDpqzArvUBH8TntpO75vhNyn%2FFgG9orXElXuGu9rqfiUEoJ7NRDryCTq6HHv%2B2wVIALA60T%2B4zMcEjug7%2BdNyjvwgUyNJ1PcJsrLSkQyRuRp42Lim%2FFQMve9nRPXrws%3D"}]} CF-RAY: 9c354d24282e6a52-EWR alt-svc: h3=":443"; ma=86400 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://www.google.com">here</a>.</p> </body></html>Found 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · theppappointment.cfd
2026-01-25 02:47
HTTP/1.1 302 Found Date: Sun, 25 Jan 2026 02:47:20 GMT Content-Length: 0 Connection: close Location: https://payperappointment.co.uk/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=r88FqAcMf0FoPoqa0DcqqJziglkueBBPSbTDuK4EJde88mllFzl4ERi%2Fj1dWjLXogSVaBGvh%2F%2FDJpizted4Jd%2BtR2J7xnNzovSALczV%2FTooP9B1G"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3472022ba8fe14-SINFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · theppappointment.cfd
2026-01-25 02:47
HTTP/1.1 302 Found Date: Sun, 25 Jan 2026 02:47:20 GMT Content-Length: 0 Connection: close Location: https://payperappointment.co.uk/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wHmbLpn9WVsvCFRYtd%2FMG9Q1Yc9gvSNFUlB%2FSCT%2Fi5LKs8j9XsqL8CFp5XGhgKTiqMZUWAcq05GwTuLmipm6Jl8qu%2FdMg4Tcs2VHzL9yLiUfDTqm"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c347201ff918e13-SINFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · theppappointment.cfd
2026-01-25 02:47
HTTP/1.1 302 Found Date: Sun, 25 Jan 2026 02:47:20 GMT Content-Length: 0 Connection: close Location: https://payperappointment.co.uk/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=DhkuNi765H4kYVTb0%2FICMXOrBLWjoPlWcI2yv8nCqkbpF6G1kxcfaNfajVkYFaDDSD1GVrF%2Bl%2BhRvQv4apAIoR%2BLSUTDdDOH9gDPoJDkS4Gxz%2BoQ"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3472023ebe6bd3-SINFound 2026-01-25 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.bmi-calculator.co.uk
2026-01-24 23:24
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 23:24:53 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare cache-control: private, max-age=0, must-revalidate, no-cache, no-store display: staticcontent_sol, orig_site_sol expires: Fri, 23 Jan 2026 23:24:53 GMT vary: Accept-Encoding,Origin x-middleton-display: staticcontent_sol, orig_site_sol x-redirect-by: WordPress x-sol: orig cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} location: http://bmi-calculator.co.uk/ host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== X-Endurance-Cache-Level: 2 X-nginx-cache: WordPress Set-Cookie: nfd-enable-cf-opt=63a6825d27cab0f204d3b602; path=/; Max-Age=86400; HttpOnly Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tyJvT0sHQP4fuiL%2FrycvrcTWYE2%2Fltv%2BE0LtUaEymC2iT9a1jyzU4bxZNjVJXp4jrGflPCd49Q%2Frrb6TxaQaRTRtdYIEM%2BH6J6WawfDtbtR%2FnhAfj%2BmCzA%3D%3D"}]} CF-RAY: 9c33496eef21820d-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.bmi-calculator.co.uk
2026-01-24 23:24
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 23:24:53 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare cache-control: private, max-age=0, must-revalidate, no-cache, no-store display: staticcontent_sol, orig_site_sol expires: Fri, 23 Jan 2026 23:24:53 GMT vary: Accept-Encoding,Origin x-middleton-display: staticcontent_sol, orig_site_sol x-redirect-by: WordPress x-sol: orig location: http://bmi-calculator.co.uk/ host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ== X-Endurance-Cache-Level: 2 X-nginx-cache: WordPress Set-Cookie: nfd-enable-cf-opt=63a6825d27cab0f204d3b602; path=/; Max-Age=86400; HttpOnly cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=j92TyX6dTaaVwEtq0RCVxhTDtL2zGJaPaMgWegbYpMmzLzPziGRbBUedwLsdC%2B3qT8ze%2BoU%2FbYhM6J%2F5ibw7dt8vieT75JA4LykPdLX4CT3gtr7KpGjDtA%3D%3D"}]} CF-RAY: 9c33496e5d6037bd-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.bmi-calculator.co.uk
2026-01-24 23:24
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 23:24:52 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c33496c2db5cd74-LHR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · trvbet2.com
2026-01-24 22:55
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 22:55:38 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c331e218f595c85-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · trvbet2.com
2026-01-24 22:55
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 22:55:18 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hNK8wA7yYv480joeEFmFFZWI6%2BvYWGJZMTtZdYsl6HEzrx9PLHL%2FhmumhhPF%2F42rFQT32AokKivqnt2%2FPKj9YN7znVmTRhFGVZnK"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=4,cfOrigin;dur=23 CF-RAY: 9c331e1b1ccd1321-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · trvbet2.com
2026-01-24 22:55
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 22:55:18 GMT Content-Length: 0 Connection: close Location: https://trvbet2.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=k8LVXFQaNcTqLNzACcucIGn2Phr6TjadydD%2Bf%2FznIWh%2F%2BIPoMon5SdX2rvkUOSUgPJmbTLitVNmbdlXqlZGgWTCdVx0K8ifVVAQc"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=11,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c331e1a9ca743c2-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.jungletrims.co.uk
2026-01-24 21:51
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 21:51:28 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close cf-edge-cache: cache,platform=wordpress x-pingback: https://jungletrims.co.uk/xmlrpc.php permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") x-redirect-by: WordPress location: https://jungletrims.co.uk/ Server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=O1cgoaEzjNZ8kS1l5%2FIovsaglVxg59o37PQRzgSgWeeoH874s7iXHR3vCHIL73gyzM5aDVFXQgmMSf7pR7J5hNx%2BPigvqz3UM5bKKKgdj123wl5uqw%3D%3D"}]} CF-RAY: 9c32c097695b37ea-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · jungletrims.co.uk
2026-01-24 21:51
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 21:51:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close cf-edge-cache: cache,platform=wordpress x-pingback: http://jungletrims.co.uk/xmlrpc.php permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") x-redirect-by: WordPress location: https://jungletrims.co.uk/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=x1eD3r0wKvgSDawcQPr01N%2FJrB8UNrAX8hJAM0ptd2nsw0QWsmhD2ZHDTa4yKRNh8r0MNmybUEjX3asprK2JZnXc22BcNwYx3lm1WF9l33k1"}]} CF-RAY: 9c32c096a925d36c-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jungletrims.co.uk
2026-01-24 21:51
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 21:51:28 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close cf-edge-cache: cache,platform=wordpress x-pingback: https://jungletrims.co.uk/xmlrpc.php permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") link: <https://jungletrims.co.uk/wp-json/>; rel="https://api.w.org/" link: <https://jungletrims.co.uk/wp-json/wp/v2/pages/1183>; rel="alternate"; title="JSON"; type="application/json" link: <https://jungletrims.co.uk/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CWBGUh7gDesRYMNwDpAcUg9o7dK6jtXr8oVw6btFvlvGhSnSBV1WhHOA0mXyYBiTUR0m2PKZm2v2OZIXKR7OyJfGpXR2SAC0g8MISZ0xMxG5"}]} vary: Accept-Encoding Server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c32c0989f2b9165-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · jungletrims.co.uk
2026-01-24 21:51
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 21:51:48 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c32c09b69fd557f-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.jungletrims.co.uk
2026-01-24 21:51
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 21:51:47 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c32c09b89cc92b4-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.jungletrims.co.uk
2026-01-24 21:51
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 21:51:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close cf-edge-cache: cache,platform=wordpress x-pingback: http://jungletrims.co.uk/xmlrpc.php permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") x-redirect-by: WordPress location: https://jungletrims.co.uk/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OogKcVbuLKFfN1DysYjGNZaqWXdxTDRe1s6KNSXnDZV7R3m%2F9%2F54lZAnM2CcsmM%2BMfe9%2BgHOrGNMD9fPaUFTshLXsMc5C1vPBSKCb%2BEA59CqjA0u4g%3D%3D"}]} CF-RAY: 9c32c0967a23d411-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · clubok.it.com
2026-01-24 20:45
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 20:45:50 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=119,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c326073ee8c247e-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · clubok.it.com
2026-01-24 20:45
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 20:45:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Link: <https://clubok.it.com/wp-json/>; rel="https://api.w.org/", <https://clubok.it.com/wp-json/wp/v2/pages/2835>; rel="alternate"; title="JSON"; type="application/json", <https://clubok.it.com/>; rel=shortlink Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=p6KrhtYSUwdJ%2BD%2BbA9011TsRB9reETw2eR7Nn0KVHiw0n98K2u71RvVW04jwIuaTgc4dBIZ%2BW1ySuPxl5Ii6h5OxkY0GbR4Nacpr%2Fxw%3D"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=6230 CF-RAY: 9c3260789bbc4693-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · gwln.org
2026-01-24 18:25
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 18:25:33 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=11,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c3192fb0fec4340-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · gwln.org
2026-01-24 18:25
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 18:25:33 GMT Content-Length: 0 Connection: close Location: https://gwln.org/ X-Content-Type-Options: nosniff Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JFy4tJVpdK329Htb7623kBs%2FeQnSB%2B1CWWuBKas7eq2LDQ%2BLIEarUMjc%2BowUV%2BfShMYfBRqYQ93HOjWf%2F8l4Xo7M0Ji1fw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c3192facfcffba8-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · gwln.org
2026-01-24 18:25
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 18:25:34 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block expires: Sat, 24 Jan 2026 19:25:33 GMT Cache-Control: max-age=3600 x-redirect-by: WordPress location: https://www.gwln.org/ Server: cloudflare alt-svc: h3=":443"; ma=86400 x-turbo-charged-by: LiteSpeed Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Strict-Transport-Security: max-age=15552000; includeSubDomains X-Content-Type-Options: nosniff Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=26,cfOrigin;dur=83 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=s4Rct6nXWxPXjIbcCRDMRpvAuKuNdkyPm8A3xMj3D%2F2nx%2Fz5j9bSMgaldla9wYi2V1A%2FZmRWqGft6k6QgiReSket5wEJ3ZCm"}]} CF-RAY: 9c3192face6a5577-YYZFound 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · echochamber.cfd
2026-01-24 17:04
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 17:04:42 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, no-store, must-revalidate Expires: Sat, 24 Jan 2026 17:04:42 GMT Location: https://echochamber.cfd/ Vary: Accept-Encoding Access-Control-Allow-Origin: * cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=188 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wr8G8LkATBf3UVcg%2F4QfZo9jskCwoseD3nsgppS326pHZR4LH1HiJ%2B4TGu21ygU1gViQmxUFtjJLacIBJM29COxisWOk2q0Rv7bAbFRZfg%3D%3D"}]} CF-RAY: 9c311c8b0e5307e8-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · echochamber.cfd
2026-01-24 17:04
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 17:04:42 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, no-store, must-revalidate Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WD8qms2i%2BEjAwnu4LSycivszNlU8ZGp8tvhQhwHyqTW1U7HJe5NDPMq9d9ZiCL%2BPfpKtNYmlpUv4nxE%2B7eTfe0sONzAppqFaEmpiwYI%3D"}]} Expires: Sat, 24 Jan 2026 17:04:42 GMT Set-Cookie: _subid=hi35c290get; expires=Tue, 24 Feb 2026 17:04:42 GMT; path=/ Set-Cookie: 7531b=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI0MjYwXCI6MTc2OTI3NDI4Mn0sXCJjYW1wYWlnbnNcIjp7XCIyODJcIjoxNzY5Mjc0MjgyfSxcInRpbWVcIjoxNzY5Mjc0MjgyfSJ9.Yy1E8FoRORgqI4f_6FkVXllcZBsuFrgI5F0sLjwI76Y; expires=Sun, 25 Jan 2026 17:04:42 GMT; path=/ Set-Cookie: 1bb7ad49lp282=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoiMTIyIn0.IGDTY2xn-q88o4whPxBu_MJrUXnIRPVN9baN_mfEw24; expires=Sun, 25 Jan 2026 17:04:42 GMT; path=/ Set-Cookie: 1bb7ad49lp282ip=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoiXCIxNDMuMjQ0LjE2OC4xNjFcIiJ9.davI4o8uZJoDUdZwYGgrLxuElghsLEYO_0-pwDbbHHg; expires=Sun, 25 Jan 2026 17:04:42 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: * cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=14,cfOrigin;dur=247 CF-RAY: 9c311c895a770fab-EWR alt-svc: h3=":443"; ma=86400 <!DOCTYPE html> <html> <head><base href="/lander/dragon-money/index.html"> <meta charset="utf-8" /> <!--<meta name=description content="This site was generated with Anima. www.animaapp.com"/>--> <!-- <link rel="shortcut icon" type=image/png href="https://animaproject.s3.amazonaws.com/home/favicon.png" /> --> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" /> <link rel="shortcut icon" type="image/png" href="https://animaproject.s3.amazonaws.com/home/favicon.png" /> <meta name="og:type" content="website" /> <meta name="twitter:card" content="photo" /> <link rel="stylesheet" type="text/css" href="css/index.css" /> <link rel="stylesheet" type="text/css" href="css/styleguide.css" /> <link rel="stylesheet" type="text/css" href="css/globals.css" /> </head> <body style="margin: 0; background: #161824"> <input type="hidden" id="anPageName" name="page" value="index" /> <div class="container-center-horizontal"> <div class="index screen"> <div class="image-container"> <img class="image-8899" src="img/image-8899.png" alt="image 8899" /> <a href="indexu95more.html"><img class="image-8916" src="img/image-8916.png" alt="image 8916" /> </a> </div> <div class="rectangle-1"></div> <a href="indexu95all.html"> <div class="group-21 group"></div></a ><a href="indexu95slots.html"> <div class="group-15 group"></div></a ><a href="indexu95crash.html"> <div class="group-14 group"></div></a> </div> </div> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"90b213a4355b41a9a19a2d8dc4831b01","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · echochamber.cfd
2026-01-24 17:04
HTTP/1.1 523 <none> Date: Sat, 24 Jan 2026 17:04:42 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=210,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c311c88ad339cd5-SIN alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · rideourunable.blog
2026-01-24 16:36
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 16:36:56 GMT Content-Length: 0 Connection: close Location: https://assignsliceten.pro/3hNbnbSX?zone_id= Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zgBxSpC0kyKfM4n5UPBRNYqO1fcGMcw7Yp7l978eBLAArEkmR9Thgj%2FwZ%2Bz5F05Di2T9n21gEancDmDy60HpyXDSDQMDXQbQ4CTMm4umQEGB6g%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c30f3db4da036d7-YYZ alt-svc: h3=":8443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · rideourunable.blog
2026-01-24 16:36
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 16:36:55 GMT Content-Length: 0 Connection: close Location: https://assignsliceten.pro/3hNbnbSX?zone_id= Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ScT86C3kQBqm9bp9psVSPcU%2Bh5iCSPRUVpKTPGNgXD8RHVdGKRDALEWV%2BSt7oauEwxjYXyFJYTkrY9WnNl%2B03CULJApWvFYv6wl9YwipBJf3CA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c30f3d9bc1ad262-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · rideourunable.blog
2026-01-24 16:36
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 16:36:55 GMT Content-Length: 0 Connection: close Location: https://assignsliceten.pro/3hNbnbSX?zone_id= Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=p4ZHLvw3aZhu1TBCZVU0iHhFxXKuzac7IMPHJiK1WU06sz6DWSgl%2Bm7cE35dU3ZdOCV6dwN9GElQuRHYPSWZD0um00Go0dsipQAFkGshukWZig%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c30f3d9682e8f31-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · hermesbet.net
2026-01-24 13:33
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 13:33:12 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gV1tEIrTU7%2B3jrIZivblewlFnli1rX%2F1A6F9BqPFMbBt%2FzvLlkgFn4oHmvX9qWDxumU0Gtv9WvqpuEizuLl5L64jCQUL6H%2Fu2xsS%2B5I%3D"}]} vary: Accept-Encoding Server: cloudflare alt-svc: h3=":443"; ma=86400 x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=336 CF-RAY: 9c2fe6b6cab3aaa8-YYZ Page title: Index of / <!DOCTYPE html><html><head><meta http-equiv="Content-type" content="text/html; charset=UTF-8" /><meta name="viewport" content="width=device-width, initial-scale=1.0" /><link rel="stylesheet" href="/_autoindex/assets/css/autoindex.css" /><script src="/_autoindex/assets/js/tablesort.js"></script><script src="/_autoindex/assets/js/tablesort.number.js"></script><title>Index of /</title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head><body><div class="content"><h1 style="color: #555;">Index of /</h1> <div id="table-list"><table id="table-content"><thead class="t-header"><tr><th class="colname" aria-sort="ascending"><a class="name" href="?ND" onclick="return false"">Name</a></th><th class="colname" data-sort-method="number"><a href="?MA" onclick="return false"">Last Modified</a></th><th class="colname" data-sort-method="number"><a href="?SA" onclick="return false"">Size</a></th></tr></thead> </table></div> <address>Proudly Served by LiteSpeed Web Server at hermesbet.net Port 443</address></div><script>new Tablesort(document.getElementById("table-content"));</script><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"953c0b2bde134b7b9d71f6848b91adf8","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · hermesbet.net
2026-01-24 13:33
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 13:33:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=120,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2fe6b4cf7debb4-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · hermesbet.net
2026-01-24 13:33
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 13:33:11 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=HA30aCVeBCPueEzt%2BxrdzSyG0neNPal63270cG4hqDMwCRhlGi2faOSIZAEedbC8Nj1l5ox5p0dyUIR82YjlsZJIlYRDivoLVZ9334c%3D"}]} Last-Modified: Tue, 05 Aug 2025 23:18:59 GMT Accept-Ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9c2fe6b30c6188ce-AMS alt-svc: h3=":443"; ma=86400 <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body></body></html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · presilience.info
2026-01-24 09:55
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 09:55:34 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: Accept-Encoding vary: Accept-Encoding,Cookie link: <https://presilience.info/wp-json/>; rel="https://api.w.org/", <https://presilience.info/wp-json/wp/v2/pages/110>; rel="alternate"; title="JSON"; type="application/json", <https://presilience.info/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ykE%2FqFBzlH8HUXO0YVFY7JtKA7P%2FRrNmdjDSURAEM%2BO3EDXiqB4gy08d5ABErS4kf8NTw8FgPZRXeJQnS0QAWfp2H8jUIlZ8v%2FSBIrV26Sg%3D"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=916 CF-RAY: 9c2ea7e74eba5e82-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · presilience.info
2026-01-24 09:55
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 09:55:32 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=97,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2ea7e16bbe3dcf-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · presilience.info
2026-01-24 09:55
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 09:55:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding,Cookie X-Redirect-By: WordPress - Really Simple Security Location: https://presilience.info/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ADYcmEviZA%2BBN9PY%2FqzmkQbobxNqnBIf39RUDdj3iwsUx%2F1ThIZwjW82TjmX7iCJBWVSyc60Af6J5TRPw5m5%2BK7nQhrrb2ybMSvOT%2FphLos%3D"}]} CF-RAY: 9c2ea7e41ef1f415-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · thebrigky12.co.uk
2026-01-24 08:30
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · thebrigky12.co.uk
2026-01-24 08:30
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 08:30:29 GMT Content-Length: 0 Connection: close Location: https://thebrigky12.co.uk/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9t9824gAnkqnkRxsumzmrcKr9RgC%2Fv6HuXrPp0HA%2BH5s6A2TEvgX1G2QfLmQM9fqJXbAjnHbMyuOHAtHndSHuliFW0LBUHvbVFOcBOFTbwg8"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2e2b4b3affde62-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · thebrigky12.co.uk
2026-01-24 08:30
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 08:30:30 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close expires: Sat, 24 Jan 2026 15:00:00 GMT machine: EC2AMAZ-CC5LICG app_colour: green app_region: eu-west-1 app_buid: 569 app_buno: 20240528.1 app_bbbr: release-028 app_bbcs: 3f97d5499dd12b19f936a14106fe25c1221e70d5 app_env: prod cf-cache-status: MISS last-modified: Sat, 24 Jan 2026 08:30:30 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: accept-encoding Server-Timing: cfCacheStatus;desc="MISS" Server-Timing: cfEdge;dur=14,cfOrigin;dur=654 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=04F9c%2BjdE7NXezvcnWDyzf1%2B0nV8QZyLgHWTSFyNpbDad%2BWkIw6%2BOwYu5mNUb45gdaNnLTVG8WSah2DWyEQ1PK7wWwMjMLCHhfwqPCaTWrWg"}]} Server: cloudflare CF-RAY: 9c2e2b4ebf830027-BOM alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · oneonlinetoken.com
2026-01-24 08:13
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 08:13:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=js9%2FwAfTp6eFhaa%2FfAqFP%2F71cwipnx9T8%2FMcO%2Bke9Mrmaw8PqhwFHxpA8zGvcyFD9uhkOmHBPK%2BVQu8Tf4DPL4J9iGEeCydZmJ45ZiRqNYfOvA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9c2e12115f5ada5a-SJC alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · oneonlinetoken.com
2026-01-24 08:13
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 08:13:16 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2e12107e6842ea-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · oneonlinetoken.com
2026-01-24 08:13
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 08:13:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache Server: cloudflare alt-svc: h3=":443"; ma=86400 x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PaFesj1fs4M1BcYOw0M%2Bygk6zTz4%2BtJHMlQdyNj%2F9uL1qm%2Fjf1N5g0avyZFDLXDEKWnt3Aj5PK1zlKThyrxBbYv126Py27zIZLaf9y7fWG0eBg%3D%3D"}]} CF-RAY: 9c2e1211dea1db9d-FRA Page title: 403 Forbidden <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <title> 403 Forbidden </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">403</h1> <h2 style="margin-top:20px;font-size: 30px;">Forbidden </h2> <p>Access to this resource on the server is denied!</p> </div></div></body></html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · casinoneon54.com
2026-01-24 07:44
HTTP/1.1 521 <none> Date: Sat, 24 Jan 2026 07:44:31 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=108,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2de7f46d31c9d6-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · casinoneon54.com
2026-01-24 07:44
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 07:44:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Powered-By: PHP/7.4.33 Set-Cookie: PHPSESSID=9c78c9f427e63f844165dc1ba48210ae; path=/ Set-Cookie: aXBwXzE0My4xMTAuMjE3LjI0NA=none; expires=Sat, 18-Dec-2032 07:44:31 GMT; Max-Age=217728000 Set-Cookie: aXBwXzM4LjE4MC4xNzUuMzU=none; expires=Sat, 18-Dec-2032 07:44:31 GMT; Max-Age=217728000 Set-Cookie: cntr_MTQzLjExMC4yMTcuMjQ0=CA; expires=Sat, 22-Jan-2095 07:44:31 GMT; Max-Age=2177280000 Set-Cookie: Y2FzaW5_originn=bookm; expires=Sat, 24-Jan-2026 08:44:31 GMT; Max-Age=3600 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Location: https://casinoneon54.com/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=13,cfOrigin;dur=199 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=C84Yx8ONO8NrWSRsRh7dv9DT%2BlmVeX3mrtTcNKXUBqUdnIRtmDACrql58iITQYh9mBxR1yuulPCeZL%2BDpRYc1FVXGPZ3aEVqukyovkaEiMw%3D"}]} CF-RAY: 9c2de7f48e7bab00-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · casinoneon54.com
2026-01-24 07:44
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 07:44:31 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Powered-By: PHP/7.4.33 Set-Cookie: PHPSESSID=29982d72940c66dd6f73138cc6670a0a; path=/ Set-Cookie: aXBwXzE0Ni4xOTAuMjQyLjE2MQ=none; expires=Sat, 18-Dec-2032 07:44:31 GMT; Max-Age=217728000 Set-Cookie: aXBwXzM4LjE4MC4xNzUuMzU=none; expires=Sat, 18-Dec-2032 07:44:31 GMT; Max-Age=217728000 Set-Cookie: cntr_MTQ2LjE5MC4yNDIuMTYx=CA; expires=Sat, 22-Jan-2095 07:44:31 GMT; Max-Age=2177280000 Set-Cookie: Y2FzaW5_originn=bookm; expires=Sat, 24-Jan-2026 08:44:31 GMT; Max-Age=3600 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UR1QIxMWvZi%2BdBZj%2B%2BCaNI0%2BLJ3Uz9rw1ObZmeix4GMeJ2LvJDo6nNj6faV99PEtUFHmSshesJxdKtgZbcEyb%2BSW%2BvtdMLD5IfkbIpsnE68%3D"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=4,cfOrigin;dur=241 CF-RAY: 9c2de7f54e348eb6-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · desktoplesbians.net
2026-01-24 06:46
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 06:46:33 GMT Content-Length: 0 Connection: close Location: https://www.desktoplesbians.net/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zTE6KpqGSBEWgAUbCOVaqmJWOWkXn4RfF%2Bu%2BWm7xx%2FpgMCCizf2MZjDCj0wX4vMOu0hzi1oGuCSarprvdrVFDuyAEahagjQGrrCjOlk1GWpU8t0%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=5,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c2d930bad99ccf1-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · desktoplesbians.net
2026-01-24 06:46
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 06:46:33 GMT Content-Length: 0 Connection: close Location: https://www.desktoplesbians.net/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2NNZKSmYQYdUMi%2Be%2BqWr2GjLk30CxwcFgAPj5C4FEk9NVIYParqMJe%2BNtx2HWPhMuMCcG9AVhrS4fe4h685dvaofPW8fzezb4iI%2BvbhA8OhWTuA%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=2,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c2d930b7f36a450-YYZ alt-svc: h3=":8443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · desktoplesbians.net
2026-01-24 06:46
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 06:46:33 GMT Content-Length: 0 Connection: close Location: https://desktoplesbians.net/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ot6yAStEWLxsEO6rZvwg2uNXQPMaQlHTGQnnm%2F21eIRq8NVixoDykEkUZB3AIK34E8Io3PF1rfd6WV3hHKMnsrbpn4xNM82sXIR4J%2BwclKp9gq8%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2d930b2ed9fea7-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · rudyah.com
2026-01-24 06:18
HTTP/1.1 502 Bad Gateway Date: Sat, 24 Jan 2026 06:18:19 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=9,cfOrigin;dur=163 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2d69abeb254251-EWR alt-svc: h3=":443"; ma=86400 error code: 502
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · rudyah.com
2026-01-24 06:18
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 06:18:39 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2d69b0bd7b6585-LHR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · rudyah.com
2026-01-24 06:18
HTTP/1.1 502 Bad Gateway Date: Sat, 24 Jan 2026 06:18:19 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2d69ac6e0fdf76-AMS alt-svc: h3=":443"; ma=86400 error code: 502
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · smilesontrindledentalcare.net
2026-01-24 05:36
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 05:36:34 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=04zUw2zAd5jDG3%2FZfI7gkkgzj3ifBIUrlGfbxjoK3mRQFGxCBHYLYZ3bGxnjWPPFM44asspDjO6e1ANE6ldtjI5pcduM0%2BWPT%2F3AvPhw%2FbQYxoU27U2orQ6mGGY%2B"}]} Server: cloudflare CF-RAY: 9c2d2c85ff839e40-SIN error code: 1005Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · smilesontrindledentalcare.net
2026-01-24 05:36
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 05:36:34 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=b0nQMn3TUfyVefxoO%2BBdSG5CmU1QbnjnL3N5K9lioAcLL1CwJ9VZmW%2BYHfQxhw8OvnwOYV6QsooNoe7k%2FZiF90aT05lnNy2dy5JSGsN%2FO1N7wW96XgAzPHigjkeD"}]} Server: cloudflare CF-RAY: 9c2d2c855ee0e6ac-LHR error code: 1005Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · smilesontrindledentalcare.net
2026-01-24 05:36
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 05:36:34 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=nSnSqMxtj%2FoBrcWyYL2Oh8%2FivjBnj6DmXIGIABS0ix4xn0Z%2FDHk17thNnJquADd5uNBs0%2BZrSYn6nly7YVZOyBRL22AbQg0n1MC4Kc00kCM8nJ6tPfbq8TNnSz%2FR"}]} Server: cloudflare CF-RAY: 9c2d2c853b347741-LHR error code: 1005Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · audition.ppacademy.co.uk
2026-01-24 04:50
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 04:51:01 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19439,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2ce951d921ebb9-YYZ alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · audition.ppacademy.co.uk
2026-01-24 04:50
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 04:50:40 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Sy4TDUoc02Q5W7gelIS64rpLF3mp6VSUCDRUpUiLIaPqH0XVJlxejCAq38UgAb1Segjr%2F5Uze5XqXzHl6zCqrQmzQjIryrys%2FzLtMj2ecbO8q7xonBnI%2FQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Server: cloudflare cache-control: no-cache,no-store x-frame-options: SAMEORIGIN X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9c2ce94aee6edcb8-FRA alt-svc: h3=":443"; ma=86400 Page title: Bot Verification <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Bot Verification</title> <script> function onSubmit() { document.getElementById('lsrecaptcha-form').submit(); } var onloadCallback = function() { var cont = grecaptcha.render('recaptchadiv', { 'sitekey': '6LewU34UAAAAAHvXqFOcQlm8z1MP1xpGAZCYEeZY', 'callback': onSubmit, }); grecaptcha.execute(cont); }; </script> <style> body { height: 100%; } .panel { padding: 30px; max-width: 425px; margin: 10% auto; box-shadow: 0 0 2px 2px rgba(0, 0, 0, 0.2); } .title { font-size: 1.5em; font-weight: 100; margin-top: 10px; text-align: center; } .recaptcha-center { margin-top: 35px; margin-bottom: 20px; margin-left: 13%; margin-right: 13%; display: block; } </style> </head> <body> <div class="panel"> <h3 class="title">Verifying that you are not a robot...</h3> <form id="lsrecaptcha-form" method="POST" action="/.lsrecap/recaptcha?"> <div id="recaptchadiv" class="recaptcha-center"></div> </form> </div> <script src="https://www.recaptcha.net/recaptcha/api.js?onload=onloadCallback&render=explicit" async defer> </script> </body> </html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · audition.ppacademy.co.uk
2026-01-24 04:50
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 04:50:40 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9Ha7dK9FnMamSR3ZxP1s5t5dj6sRLr1vroHGtkc%2Bh6yRXyucQFctvz%2FMA8nouXhWp4bDznxs8%2FpseBKIFJXMIxzmLyINpn38UQ4rXnDHjaZQxc2MJN9aCw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Location: https://audition.ppacademy.co.uk/ platform: hostinger panel: hpanel Content-Security-Policy: upgrade-insecure-requests X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9c2ce94a9fb1dbe0-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved.</p> </div></div></body></html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · walt-music.co.uk
2026-01-24 03:16
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 03:17:13 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2c5fe9a904982f-YYZ alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · walt-music.co.uk
2026-01-24 03:16
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 03:16:52 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare location: http://walt-music.co.uk/ cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=M9akr42RAvpyXJDAjN2W762HNRT4LfcMK2vNh4A9MrEDTCiBsA%2F1y%2BEcRtz0mEKv7utwwCB%2FGJWtxKaUtsYLaGhJEgKdrPvY91LjM9tA"}]} CF-RAY: 9c2c5fe2dff836b2-YYZ alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · walt-music.co.uk
2026-01-24 03:16
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 03:16:52 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Last-Modified: Tue, 22 Jul 2025 05:23:06 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vwcRpb9leQIEtVdPPRwePaoK8Cb3NpEcWgZqxxM5foEFB392Vs5kXCACvWLtaaOTUzRHWeNlAlcGuC6yklgZzJpKG63OYZq0ZVw4sL8YPcc%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2c5fe2c8070eaf-AMS alt-svc: h3=":443"; ma=86400 Page title: Access Denied <!doctype html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1" /> <title>Access Denied</title> <style> body { background-color: #f5f5f5; margin-top: 8%; color: #5d5d5d; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, "Noto Sans", sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji"; text-shadow: 0px 1px 1px rgba(255, 255, 255, 0.75); text-align: center; } h1 { font-size: 2.45em; font-weight: 700; color: #5d5d5d; letter-spacing: -0.02em; margin-bottom: 30px; margin-top: 30px; } .container { width: 100%; margin-right: auto; margin-left: auto; } .animate__animated { animation-duration: 1s; animation-fill-mode: both; } .animate__fadeIn { animation-name: fadeIn; } .info { color: #5594cf; fill: #5594cf; } .error { color: #c92127; fill: #c92127; } .warning { color: #ffcc33; fill: #ffcc33; } .success { color: #5aba47; fill: #5aba47; } .icon-large { height: 132px; width: 132px; } .description-text { color: #707070; letter-spacing: -0.01em; font-size: 1.25em; line-height: 20px; } .footer { margin-top: 40px; font-size: 0.7em; } @keyframes fadeIn { from { opacity: 0; } to { opacity: 1; } } </style> </head> <body> <div class="container"> <div class="row"> <div class="col"> <div class="animate__animated animate__fadeIn"> <svg class="error icon-large fa-times-circle" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512" > <path d="M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm121.6 313.1c4.7 4.7 4.7 12.3 0 17L338 377.6c-4.7 4.7-12.3 4.7-17 0L256 312l-65.1 65.6c-4.7 4.7-12.3 4.7-17 0L134.4 338c-4.7-4.7-4.7-12.3 0-17l65.6-65-65.6-65.1c-4.7-4.7-4.7-12.3 0-17l39.6-39.6c4.7-4.7 12.3-4.7 17 0l65 65.7 65.1-65.6c4.7-4.7 12.3-4.7 17 0l39.6 39.6c4.7 4.7 4.7 12.3 0 17L312 256l65.6 65.1z" ></path> </svg> </div> <h1 class="animate__animated animate__fadeIn">Access Denied</h1> <div class="description-text animate__animated animate__fadeIn"> <p>You do not have permission to view this page.</p> <p>Please check your credentials and try again.</p> <section class="footer"><strong>Error Code:</strong> 403</section> </div> </div> </div> </div> </body> </html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · portal.ppacademy.co.uk
2026-01-24 02:21
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 02:21:20 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GKFVTrnyhmqkx53ryyh2u%2Fi%2Fu%2FqsyCXJpkrhyLBFWZZ%2B1sj6w0EqV8gWbsCHQxaP%2F0IOIdkmXTwmpLH%2BCn07UXsvmmYCSnmYa5Li0Qkb2YQWZzH%2BCGk%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=1955 Vary: Accept-Encoding Server: cloudflare cache-control: no-cache,no-store x-frame-options: SAMEORIGIN X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9c2c0e7fcebdebb8-YYZ alt-svc: h3=":443"; ma=86400 Page title: Bot Verification <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Bot Verification</title> <script> function onSubmit() { document.getElementById('lsrecaptcha-form').submit(); } var onloadCallback = function() { var cont = grecaptcha.render('recaptchadiv', { 'sitekey': '6LewU34UAAAAAHvXqFOcQlm8z1MP1xpGAZCYEeZY', 'callback': onSubmit, }); grecaptcha.execute(cont); }; </script> <style> body { height: 100%; } .panel { padding: 30px; max-width: 425px; margin: 10% auto; box-shadow: 0 0 2px 2px rgba(0, 0, 0, 0.2); } .title { font-size: 1.5em; font-weight: 100; margin-top: 10px; text-align: center; } .recaptcha-center { margin-top: 35px; margin-bottom: 20px; margin-left: 13%; margin-right: 13%; display: block; } </style> </head> <body> <div class="panel"> <h3 class="title">Verifying that you are not a robot...</h3> <form id="lsrecaptcha-form" method="POST" action="/.lsrecap/recaptcha?"> <div id="recaptchadiv" class="recaptcha-center"></div> </form> </div> <script src="https://www.recaptcha.net/recaptcha/api.js?onload=onloadCallback&render=explicit" async defer> </script> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"c7373e03adcc40de880e56a748104d95","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · portal.ppacademy.co.uk
2026-01-24 02:21
HTTP/1.1 301 Moved Permanently Date: Sat, 24 Jan 2026 02:21:18 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=nDTS3fZN%2F%2Bork0fgLM6EUFb3SGNDwRZo3mHFeB%2BerElWET46TjNZz%2FdnIxiW2KE6UUOog1S3rGnskLo3XHPaRlvIcBWZoCdJshNbCbhPH3wljs%2Fn7SI%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Location: https://portal.ppacademy.co.uk/ platform: hostinger panel: hpanel Content-Security-Policy: upgrade-insecure-requests X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9c2c0e7e9df8b847-AMS alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved.</p> </div></div></body></html>Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · portal.ppacademy.co.uk
2026-01-24 02:21
HTTP/1.1 522 <none> Date: Sat, 24 Jan 2026 02:21:38 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2c0e8448dc974c-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · adverge.site
2026-01-24 01:26
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 01:26:08 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare last-modified: Mon, 07 Apr 2025 07:08:37 GMT vary: Accept-Encoding strict-transport-security: max-age=31536000 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Tw5zyr%2F2tlNJamphbVgdtHs2fjHCkZCHiLDKRoALqFT%2FmxZmWiRKVZLSOm8kzKZTsJRKmTCZWdf9E5n4RuVlaZYyDZH3q4PjmxMHrA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9c2bbdae8f2cd2a8-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · adverge.site
2026-01-24 01:26
HTTP/1.1 200 OK Date: Sat, 24 Jan 2026 01:26:08 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Mon, 07 Apr 2025 07:08:37 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=yfeHwTb0gc%2Fz11FJqTsD5zrmlnHhWwf8Tz1ZVAzYjNZRFrQn0E%2FNEc%2Bts29j98WW6qGoR69VIRIQ0kzRaFpe8FQNp5sP1iKq6cnKAQ%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2bbdadab73271b-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · adverge.site
2026-01-24 01:26
HTTP/1.1 523 <none> Date: Sat, 24 Jan 2026 01:26:08 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2bbdad5b279436-LHR alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · trystrategicsite.com
2026-01-24 00:08
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 00:08:30 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9c2b4bf96fce1cad" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qALupZTCGC88WieeFjudWQJnpS%2F%2FLLChd2C1qObKgGu%2BiX8Jr8ERGNvfTpdr7wps3Oq7JX9VVkcTkFL5I7ZoEyTV3VvE3VvMGqTM1gu0flSBJVIhBUdOM1MSHK15WOLyDufCx1qAQA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 9c2b4bf96fce1cad-FRA alt-svc: h3=":443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,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");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: 'trystrategicsite.com',cType: 'non-interactive',cRay: '9c2b4bf96fce1cad',cH: 'i.q2MOLXx0ca4ZwbFGY5HcGMK4iyqBVQZTzQctn55zE-1769213310-1.2.1.1-sfjxxArMyjt6y5lRinf5XSo.perW6kumo2YKGZoLvLpNjqwDwNOjuL9NNyUcTmyE',cUPMDTk:"\/?__cf_chl_tk=BKALooIeEajhgOXGQet_JavSthAU66mQBhQyxOeR5d0-1769213310-1.0.1.1-pNC2HMoaXaH1_IJTieqNdtY7RBM22PAPDXTMnz9LKBo",cFPWv: 'b',cITimeS: '1769213310',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=BKALooIeEajhgOXGQet_JavSthAU66mQBhQyxOeR5d0-1769213310-1.0.1.1-pNC2HMoaXaH1_IJTieqNdtY7RBM22PAPDXTMnz9LKBo",md: 'I09GSAcKC1wmtQsKVJqn.OlWuHL99fW9ZUmBVgLL3PY-1769213310-1.2.1.1-r1vE84Bxvd80sSKWTWugB6eJxSRFGmI5TV_AHPsYg5lvJtRdiezMVQJmVDUH6dUr35FG7vbvtv6z1o1QMqc86Qqmf_Uzq7qRDclRKUodJkv4idG1aBaivqxr_hpOqyn2Rv3AV3vTGu_lXX39bsRD.bhh4KtAxME8g2cKearfLrj6BLZVGc9mTHG4clXW6VCIR_rw9GoS9KZF3cdyg3ttiNMiR7NjWCwSU3n4xq_138Zw2zzSLmlVBKEQiLGz9V9yFEMcv5A1Bf9zdsA4fz4g5glBBimX91r..omBZhyytlaGOegscXoTNXpRFve9rEvUtO51aq_hf.qvYUFl5Am5EUE6Fecxy6Xwi634SRcuHjEKhP689ZdzTd9S7IVbSd55VkZw.rd5tlfhq8SOBrLkQ_78HIY7qmJJeEc0JA5e6yHg08aedhgVRcApxDPgxavykn084AcPx9jxGVw5XybrWi1Yo2mfgEijMp9Kdr5JzGihmti3KDgHbEWfaEGEYnk6DGFgwRFSiZIZDRMdHwP0s_Xv_UJuCjaHlw9WBTPIVYlanPKHKvB2_RiMrK9mu3h8fhdglPVyGH5MeTZ4PzbCxkTtK1WGRi26WN9UdZgDUBi87Qn31CpfOXwAICz7fr4AnyKXDu75zOv.u5PJcCkWDopnx7N0CuNxAI29vK.lsRwi5bkyQIWkzEXgKd6FrWXlwhprvNgfG3qn8iUyofdoupahgpKMoSY2cfHsESn9ZTsSqBTlpzDmZfcfB06F0UVH.jxq37Iin2xmRS3JXq1JAF_tJ70fyfnAIb1pd69zJYpGlkK4xGs0H74SyZhO5O.gN66qV9VoG9TPaO0LqeEKyWEo4zkYMMKU.aIXke181M5KafR1Gcyiwrq98XXpvk6_SjdFJIb0.rMv96ukPVUQM.A8ZFQ0MdlxG42eR75fKvHX4LmNo4AObf37YtzHZQHu4w.z7q1z.pUKDHNd77dU.hALJ7mwn1XNekjemZ0NoPNhJrEt9wu42ZiRzxXuoGKu',mdrd: 'va47xDrC2XSiitGC5j6kWkn3mHqGad.ipDr8rPrao90-1769213310-1.2.1.1-a5cc7indXUxnk85FMSyzMbjPSt7XZJ4ZYw1GiDTw_jeOwj1rjBA54wnBQ96zKOdQk.3YI7NkYPEE0lSth3Hh3MZ_VXK7vJ5xk9220aeREou_JLLlt1Y0xfuY0JAkAXue2NbqaqiwiSRwBOt6zRhpRoaT99zwb6ZfeqNzSL0OwDWk6ATm6CFT7UJR_s4HEtZmhSPIlmISsdPbcbj7IEzPleXGf66DimKlPVzBK05R8deYC01k97txotWmryc3eGUkuElbJYWvVDmP2ildaAqBbTICKO4v5askqvtKdV0cLe9uI7qassQ59eMYmgcRgvbOT8UoYDf6fJ926EdVPQRXZowGrP_BaNy_mmo5dkIVvDi8XUO1jpFEfTFound 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · trystrategicsite.com
2026-01-24 00:08
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 00:08:30 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9c2b4bf90f70c6ec" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZQmoONh34SMEDfpMLD6m62rB220X8N1LrxL4sjo%2FpLqWa5Vw3TezYKeu%2FeCYypZoMinU0c0hu7q5Wmz88AcFpxkUK4U4tBZpXmHbIp8J5ZdqYRO0q6YMCrwxIBksGA4D4AFuECTXCA%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 9c2b4bf90f70c6ec-SJC alt-svc: h3=":8443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,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");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: 'trystrategicsite.com',cType: 'non-interactive',cRay: '9c2b4bf90f70c6ec',cH: 'EmfRvWQP18s.hHN27Y.QBhKwsky3tPXb7FMCUoetDSQ-1769213310-1.2.1.1-R2u4O.atZyD7vWBtwMu3FV_lAaIzDDI5i.GJd9XCEA4rkJqR.ruFrEBtBmh9Bbp6',cUPMDTk:"\/?__cf_chl_tk=rDQ9EwYKq1vYaZoIfY81I4QWbm4VVfVAtgpvfpu.EAQ-1769213310-1.0.1.1-UeajpvEdJugEwsSIhu3jo5RwES6lA.mke8lnXvC8Uyc",cFPWv: 'b',cITimeS: '1769213310',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=rDQ9EwYKq1vYaZoIfY81I4QWbm4VVfVAtgpvfpu.EAQ-1769213310-1.0.1.1-UeajpvEdJugEwsSIhu3jo5RwES6lA.mke8lnXvC8Uyc",md: 'riKPict5O..LZ1MGeu1qD3YzUSbBx7nbVEYhvz6fXkw-1769213310-1.2.1.1-D8L7Tr96h7pOj1cGOsjAMvvLSEtFODg9xfurmaXxmQ0qzarRNQGjhQ2Qgcj7qPLh2pfC7hz9BSOuW4eUurdnvhi4xouJXQNdHtBpLsEQfn7Tu1sRmuSCmvoJsqQz2QaZzfpG0cbUafTwCfbUtlxU6PvEFBD3VpQrKqqyMJo3oz5sIsw3DuLN2BB3iGdejjeQLx1NCaTuzpUdg7anijr4dvcLlg0__eZ3amkoZV6KyreUfLkYgZzEDOXIiVBk7sVKk748hIH4cxFgpFNHXxYAQ9lbcUVCsedn0.YGhUFi65Di5epmETn_nM6CW0tYVMuhGkFf.vDaa98WDq3E56wt1XrtbMiBrNE9nbZ5rWkZ_o5aGjlxsoi99op1u5bQB1NbVSz8eGXatgnfA4BBAcgQUZv38o.zO3_xB_LQ4UZH8.Reaih0f5PzIlBhAqKIa9JO5BM.exx.Ew87lJakd8UD1PLD2tRHi6MArdKrp1r8rsTpBeoFrhkROPZjMhipYZVuFADYsUIf_2WUDOjOpJLDbWnOmkzczH7Wl.Dmbu6N9siQHzAXqVzjyOmwOjZlY75tqqGclv_0LySPxy9ACSAtYpGBvdiQM9ay4L8H_uehZ47mfbKehmatrGHZFZE.weRfrj8gVhiKgTqu.V0ZXuwSeBp9jPR8lVvGRXAtu9UQHHGJMQ8aR6X7gk4ZqgQ8I4pShTURDtKN.F1EvX261UMsTnwnhzqH.xgZfoVaTp1GHtjH0t8JQiozyO1dHpILPw8lcn2zM8V.y8gwmLRNPlwunyZQP73KL05By9MNBNSYPeKHrphEJXWnh7AQTcq1BXW66gZpQHvpwqyezEMzzZOIvh.3TN5qrjTOeBU4Pm1GO9hWCVhb67iVNiR1XCuo4aNidsrJBd0Hyu4TomawBEncRI0WU88YDc2kkeqRCt6PVs5smFirIv7FzpcLSKmXk5n1KKFR83OZv1mIGmk.xdhj37InvpM8Z56FYhRciD5YoTR1F7AtT7lfcCcQbZ5AkJ23',mdrd: 'rwAWwC2sWNV8_zr1JWYFl9aV.VR68V1aYTjZUlnVQyQ-1769213310-1.2.1.1-YPuf7TSE1buM1L5ut6u7OHgi6xzf_3ZO_GU5kH9uHlUDUueCU0Xu59Q6fy2S93MBB3JzXEc8KvqFcoSKf7KDNuayjYfsN.3SwXE2YaoEuCVFK0mFXfm744ZrxBUYwMKJaC.kZdjDMLUubSe0Ac0hygYzRJgeVINK_AHSe6kEPrQmJbJKc84FbvaoZA9YjyIdFqWOeep6WUhb9J9jkbm76xwu7eOnNfGZ7HCIRBTuU54PaQFXayLgO4hvyPQkj8U_DPl1iZYHY68UTVb7BKrLTPi7O9cLvbVDoglsehvgxSn5NcL5bQMHz9Xfo6HQRtUgRt.QynOxMq9WMXLbkLT0i0VgkeqoEbOXCiqUg9GiLtAGZA6gLnjJj8Found 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · trystrategicsite.com
2026-01-24 00:08
HTTP/1.1 403 Forbidden Date: Sat, 24 Jan 2026 00:08:30 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9c2b4bf938474479" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BcovMHkB%2FDPeysfTLEgjuwb62LNRnrgRm85T2xRXtb%2BGirebh7e%2BCBcFlVnJ50i2pACRbIGSj0CS5A8tLT2LffuelHOvOixwTRtYnqEpTlFRQ%2BR4BsLlbNWa1do7OQRsdh1y3lr13A%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 9c2b4bf938474479-BOM alt-svc: h3=":443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHdpZHRoPSIzMiIgaGVpZ2h0PSIzMiIgZmlsbD0ibm9uZSI+PHBhdGggZmlsbD0iI0IyMEYwMyIgZD0iTTE2IDNhMTMgMTMgMCAxIDAgMTMgMTNBMTMuMDE1IDEzLjAxNSAwIDAgMCAxNiAzbTAgMjRhMTEgMTEgMCAxIDEgMTEtMTEgMTEuMDEgMTEuMDEgMCAwIDEtMTEgMTEiLz48cGF0aCBmaWxsPSIjQjIwRjAzIiBkPSJNMTcuMDM4IDE4LjYxNUgxNC44N0wxNC41NjMgOS41aDIuNzgzem0tMS4wODQgMS40MjdxLjY2IDAgMS4wNTcuMzg4LjQwNy4zODkuNDA3Ljk5NCAwIC41OTYtLjQwNy45ODQtLjM5Ny4zOS0xLjA1Ny4zODktLjY1IDAtMS4wNTYtLjM4OS0uMzk4LS4zODktLjM5OC0uOTg0IDAtLjU5Ny4zOTgtLjk4NS40MDYtLjM5NyAxLjA1Ni0uMzk3Ii8+PC9zdmc+");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: 'trystrategicsite.com',cType: 'non-interactive',cRay: '9c2b4bf938474479',cH: 'HbQDCqs_ZKQVqzPuBv1XA8Aj1gvmsbKT_m5bU9ET1hQ-1769213310-1.2.1.1-PMcVZkwnpIsDc4T0TLRNmT3Nw8pnyfnq3teoCoCwCAAwhUx.X.FV7pIpvyfogenw',cUPMDTk:"\/?__cf_chl_tk=UQwXz.F3mpgLG0GhDXBn7rs.5Y8rJnB2TPMAV4TnAI0-1769213310-1.0.1.1-UZ9i6O9X13B9swYSB9KyyOVVUZIl9WothsIww9Z5XME",cFPWv: 'b',cITimeS: '1769213310',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=UQwXz.F3mpgLG0GhDXBn7rs.5Y8rJnB2TPMAV4TnAI0-1769213310-1.0.1.1-UZ9i6O9X13B9swYSB9KyyOVVUZIl9WothsIww9Z5XME",md: '1ehfDdz_eVTA0Fho160r589qDjkVLfJjP0Outld78ik-1769213310-1.2.1.1-vXPoATnE4StFNIC_iKq5UeY2ZGW8hjHJotM48Z75_tHaO7sHlOGAlaei_UzUKUuQ3hHPNHjRb8eIXfeAEnfoXghrI8vQtduJHgkX7P_GQFNfCLBwpgvC.Nyw8tYvwxJd1OZacpj8WhHbue8NMXLbly25yUPdxPjQ1UqgOdcuHc7Vxw1g2vnJPVMRS0KhGl7CQznqOWARlada3Tc3vLVAwtmDS8WuDxVOmd5KDArXpNOR94cVBMxwrOAAczjJd2jYvKKoRj88sbO7CcWhPA0SDQShifdlgxCtjMONzQrFwSgAgeHcnoyY.M08pAU36TpT4Hy1dXatoVIEtsx.Kbcd5.4yja1997KvJbVI825fv0lEHNxMXxGeTCc7UIN9dsrifGL524uXPZWMr30GyikfzyTQCVyXSRRvQBmZrgUwbrEwJXr6.q.EelxEMBijBQsod5XJW6fLeZ2YrT38Ytqfb2hU2WIRhHaKroAdkGt_b8n6qK1mTqplmls5kbbBYC1JXjdJAoku767.SZVJlWMMSjyFuw.PSKBuegcqdeZP5cQ2kh.nC7tOW1xRtyqSB6u53ZFcinhgkhjnYOzr8wDKkuzCZkqnxGMoDLkb0kYBkyyGBLEJY5QGzoxWNxsm9B9yU2jgmkArCuiyaesAMLNK1DMB2u4D53WKgsY9GrS0dEmRvadIZUwT40i9KzS9xTWKes3AEn4O5TvQ3uNMhFFcCafgt6fOvWudpTK0AliBzF2Qzzw.GNKmI7UpFcO.fkRfTP032Cb14MSYDhAq.F8j2OWqA1090h.mYzKUKEQp3E0z8jVvGbOwIfpam.mIChLA7hc.ExTjM4jKHM9rrhEzeRwlDFZpbFvyqz__cwcFdrbh2IbsT7AmxNss64o_yPQKqOUIddZcKPO.pYuikNt3UEQ7jFg0yeBK2B6rzqeo7YCjpac4ipawDjp6i4riexN.STqRiY_3xS7mPyhCDzWKXbv9qqsnZlNSWXWPlDYnL3ClaAac7MWuOkB4zSq_76VE',mdrd: '2A1cM7HzGtFAQL_m6LL9nEakmmqfrqJZ1fgKJTnrmfI-1769213310-1.2.1.1-ytrgEb7L_9ZOeD7S01flyruRHMJPgQt.Nvnkt9a.KmzP4wB_H.Uy45dasa_YcKAlKF8imSnlRVPNAbeH5ZBEUU09QePE68F98ePuDWXVML3bLgol2CHcNbG7EVqoqqm_gLHJuJbAmiuWFgbgYGcZaVsuYutq3CocFpOY.Uc4iuNSivQHBE4W54w8dBl_de4wYW9VLHevPGuktkeIhLNosWfFLSfa1PcPLmK3Qt7WEx9chtYINp3F51X7yBCKFVKCByZusszsg3UBDbniffeVgo7I4pce8DmGRMNZPnLMZopeNjifPG.eVb0LgwVKYsNRGX282K70UAJ5sFt.JGiUm0vvKhlcWbHRyXmoXjcMFZ8KYNCcwu0EHcFound 2026-01-24 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · es-topplinko-x1000.site
2026-01-23 22:53
HTTP/1.1 503 Service Unavailable Date: Fri, 23 Jan 2026 22:53:34 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1GGeNRHhAOnyGC7zc7uR4iSn25mcDqVZI5s4PiouCD95fkYJmkmweSlndZITgupIgWt6n8HWJybPSruI8SjueQzE7KctXtXIM1Ao%2Bngyp%2Fq7D3DNEqYB"}]} CF-RAY: 9c2ade324844e90a-LHR alt-svc: h3=":443"; ma=86400 Page title: 503 Service Temporarily Unavailable <html> <head><title>503 Service Temporarily Unavailable</title></head> <body> <center><h1>503 Service Temporarily Unavailable</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · es-topplinko-x1000.site
2026-01-23 22:53
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:53:34 GMT Content-Length: 0 Connection: close Location: https://es-topplinko-x1000.site/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VWrbPzecj1%2F1dp%2FsYu%2B5YSux25egqV6MNnKBRGknORxmAQhlAu%2Fhy7vQ28FhMlVjdYNBlUP7i3Lqn2Uz4lZa0bgV6UJDYkZyNN%2Bdx8UD7BOC%2B086Xzvs"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2ade31ccdcedbd-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · es-topplinko-x1000.site
2026-01-23 22:53
HTTP/1.1 521 <none> Date: Fri, 23 Jan 2026 22:53:34 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2ade32895babee-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jmma.cn
2026-01-23 22:52
HTTP/1.1 403 Forbidden Date: Fri, 23 Jan 2026 22:52:44 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=3,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=awjPUYGvypvoTlrXgd1YoPXstP4BlL55UYFq8gibGPbMxKZYGFWeY0NGNswgpEeAd%2FCA6U0K15qfF1VwKYP1SynCHd6hQBQ%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2adcfa1e87aaad-YYZ alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> jmma.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9c2adcfa1e87aaad</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">165.227.39.235</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classLFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · jmma.cn
2026-01-23 22:52
HTTP/1.1 403 Forbidden Date: Fri, 23 Jan 2026 22:52:44 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VUwH1t6GwDKAHIu8IxtwI9S80o1oFsV8gcgdjKVPveydJPk1Bxi3ZWoKai1ObAmhniIfDsXI0pm60WQmTFI90tWnt3OWMuY%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2adcf94fa59748-FRA alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> jmma.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9c2adcf94fa59748</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">138.68.86.32</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classLisFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · jmma.cn
2026-01-23 22:52
HTTP/1.1 403 Forbidden Date: Fri, 23 Jan 2026 22:52:44 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fp8bDS9yWoaIQS6Du56oQvVWxThNkpVmK4FlBqeIcgK11Q15X4rTbsf5TFmQi%2FgrXw8%2Bzz2%2BoROY0COuiEsbnt3Avp1s2%2Bo%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2adcf8ef68d34e-FRA alt-svc: h3=":8443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> jmma.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9c2adcf8ef68d34e</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">139.59.132.8</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classLisFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.papilo99zeus.com
2026-01-23 22:38
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:38:52 GMT Content-Length: 0 Connection: close Location: https://www.papilo99zeus.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3Q58G%2BHZexaCW88kd8at%2FZvEVDUb54mb84DYdYvye%2BEsYEZhUAe2Gs%2FJNH1L8WDQOUQorL8pQ%2BbhKllWbl3ATDrji2lDP0%2B6T2IirrXBzkcu06hm"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2ac8a809e58fc5-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.papilo99zeus.com
2026-01-23 22:38
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 22:39:12 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2ac8addf58d2d6-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.papilo99zeus.com
2026-01-23 22:38
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:38:52 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close Server: cloudflare Location: https://papilo99vc.com/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Mn%2BNRCB0wzlVMi0fAGGKGr1q6QxHYq%2FjWJdewb69VSavTdDQw48rFCWkESrOkho%2F%2B0aNBrUq0Ub41QFH9bGxzpqQV1BJJHrlWU8EGAUiTlAu%2BLhL"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2ac8a7ebce4e32-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="https://papilo99vc.com/">here</a>.</p> </body></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · reahl.org
2026-01-23 22:31
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:31:50 GMT Content-Length: 0 Connection: close Location: https://www.reahl.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KWyApZuKBr2GVOD46tYqMiXIgWM935tR5RtxO5bMwdbFeiv9TFNms%2F5NaUXDWZXEEzI1Vvb%2FUh6QGuiLiZL%2BEVWQ%2BZC163NM6A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2abe5e9de43556-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · reahl.org
2026-01-23 22:31
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:31:50 GMT Content-Length: 0 Connection: close Location: https://www.reahl.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=81LGVQ2PAGeEqJikGNmlTF8GbRA2Aq1H125DMejL7qYhubsc4xrXuaXizUcd8yAPhoJXKABCjDUjwitDjlvspYs%2FwscLFDnM3Q%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=14,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c2abe5da9d3422b-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · reahl.org
2026-01-23 22:31
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:31:50 GMT Content-Length: 0 Connection: close Location: https://www.reahl.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UCRwl3kwRaX6BVn3%2FXnkW0DSOO4gUEqXs4N5sfjQdKDI1bX1A2KyRV4y5SB5Aqs1PZrebN0dznV%2F5mKi1brADtVwwq9dnwaWUw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2abe5d6ec5413f-LHR alt-svc: h3=":8443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · myrtle-beach-roofing.com
2026-01-23 22:30
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:30:20 GMT Content-Length: 0 Connection: close Location: https://www.unitedroofing.ai/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XL62mknC9GcnKMOFWpqzCdMtrhtJeHjJELgAdD1wxSrlQiRdAM7wCQ85yyamxZwSamPtyI5vHypnju9hw1fF2QLV%2BDaFSN2zT0Xws8ev7OzqZT2FHSTLyA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2abc275d32d379-FRAFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · myrtle-beach-roofing.com
2026-01-23 22:30
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:30:20 GMT Content-Length: 0 Connection: close Location: https://www.unitedroofing.ai/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=N68mjS7V5UPKVtlLtIdD6xmFTmHTLk33MDgorabri%2BJ6Q7EQk6YKdqyYBvC%2FpG46wQeXUdH0mnQmHeT2ylwhRQuX28BWYnWDTO%2FTXt1eNrMYJY78y5iGZw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2abc2748cf9134-FRAFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · myrtle-beach-roofing.com
2026-01-23 22:30
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 22:30:20 GMT Content-Length: 0 Connection: close Location: https://www.unitedroofing.ai/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XGn8kAKCCofRsN15x6LjfTMYjVVb3EWBd8fvPI795dWuEN9j7ME%2B%2BRPySsYp7uCfZnkMPOLGfT4b7dV3lFl9FIxlRK8pzvKm43xmeFP%2Bn7bDo9MHgMCBqg%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2abc26fc7e9150-FRAFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-23 21:10
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 21:10:35 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=182,cfOrigin;dur=13 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8CP4SoZ0FxKTA%2FdZ9GPtbJ2COc2gzsm1JgZ2lNAkPMswVhDFx1e9%2B1ju5l90D1WZX%2F1XcTjFQf2ulOuYMAyb1TmRc7h%2FH1meHiRAkw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9c2a4755cad5f888-SIN alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · lacleducoachingholistique.fr
2026-01-23 21:09
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 21:09:09 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=h%2FkVjpmcGgTNDW%2Bc8QDwJmKowxjLpJBWGxh4EAt58OXEppIdJ4FxNMwdtB5iFt3vaLXwsSB0ig4KP%2BaR7Ksx8Ju4Lhn4yJpnmz3V%2BlPLvWTuaOqTuBGEm7QWEcY%3D"}]} Location: https://lacleducoachingholistique.fr/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=18,cfOrigin;dur=347 CF-RAY: 9c2a453d1dda797f-SIN alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"a3385a0bc64e45958b19b7124084e4de","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · lacleducoachingholistique.fr
2026-01-23 21:09
HTTP/1.1 521 <none> Date: Fri, 23 Jan 2026 21:09:08 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=225,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2a45373ac7ff8f-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · lacleducoachingholistique.fr
2026-01-23 21:09
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 21:09:08 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EPb%2FhDAp%2FVxlG8RObcWwmNs7%2BjPItSaL%2BgdHCB6FYN79QISTVXr3wgvyJCjupPd6RsTZA7VO3Eki6Yx0LJCZgsU5UCAMSrI7LCJyotfCBw9L1Bnc6twrfKsZ3bw%3D"}]} Vary: Accept-Encoding X-Powered-By: PHP/7.3.26 cf-cache-status: DYNAMIC CF-RAY: 9c2a45361eaa1893-LHR alt-svc: h3=":443"; ma=86400 Page title: Under Construction <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>Under Construction</title> <meta name="robots" content="noindex, nofollow"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <style> html, body { height: 100%; margin: 0; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Arial, sans-serif; background: #f5f5f5; color: #333; } .wrapper { display: flex; align-items: center; justify-content: center; height: 100%; } .box { background: #fff; padding: 40px 50px; border-radius: 12px; box-shadow: 0 10px 40px rgba(0,0,0,.08); text-align: center; max-width: 420px; } h1 { font-size: 28px; margin-bottom: 12px; } p { font-size: 16px; color: #666; margin: 0; } .icon { font-size: 48px; margin-bottom: 20px; } </style> </head> <body> <div class="wrapper"> <div class="box"> <div class="icon">🚧</div> <h1>Under Construction</h1> <p>We are working on this page.<br>Please check back soon.</p> </div> </div> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · textlaneebookfilingportal.com
2026-01-23 16:33
HTTP/1.1 302 Found Date: Fri, 23 Jan 2026 16:33:53 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 58 Set-Cookie: XSRF-TOKEN=eyJpdiI6IlY1WU1yVDhHbUYrWlRKc1drcGN2ZHc9PSIsInZhbHVlIjoiUG0yWlV5eExTL0duUTdkN3hGbnJtTkRTclNES3lPYzAzaUNLeHd1bVNHYU9JN200VGUzbVVueVBqVTNLZG1IRWlsVitVSncyM3psRW53VzZNV3NLTElJSi82cElkYVlXQmt1ZXdxZkhOMi82VFhFSWhvSDMySmdSa2FkakRDK1AiLCJtYWMiOiI3NDkyNDI4YWYwNWJlYjEzZGIwZWExZjI0ZGRmYzVlOTZhNTZhZjJlMDVlOTQzM2NhOTNlYmNlNmRmODQ3MjI0IiwidGFnIjoiIn0%3D; expires=Fri, 23-Jan-2026 18:33:53 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6IjAyYjBZQkoxVHpBalY0OGR0ZTBWb2c9PSIsInZhbHVlIjoiQndQSjFiQlVlSzNTdnFibk1zbWdWSUV0WEovL2t1V2RENGxUcVFKcXpWTEN3S0dvUEkxTnBrakRHR05IampCdEdxK1VaeDNJQ3VYOFc4enhGMDVsOU56d044bTg2Ujd3eWdZd3ZBQU9RYXBDdWJWczlQK093ZlUxTmxBMjZxVlUiLCJtYWMiOiIzYTFmYjVkOTY0NmY4MjRlYzg5M2RmYWI3Njk2OTg2M2RkMmQ3ZDM2MWQ5NDhkNzE1ZmE5NDFkMTFkYWFiZDc0IiwidGFnIjoiIn0%3D; expires=Fri, 23-Jan-2026 18:33:53 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=HnVogXOyAoq5YLTHEZ0F%2Baz4%2FPlizBqUu04dxzjERxg9fv0tPwRRR%2F5R%2FfDeOzWfs%2Fqi1bpiPF4g22zGQz0whrIl4yhoI7I31nS%2FQ4fBZ0VfeV5qMa0B1xpkpN3S"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c28b20699aea19f-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · havsgaardens.dk
2026-01-23 16:33
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 16:33:31 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare last-modified: Sun, 14 Jul 2024 09:37:00 GMT access-control-allow-origin: * expires: Fri, 23 Jan 2026 16:09:37 GMT Cache-Control: max-age=600 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ACVWfDOOoM%2FQrj5AOZ25Lv97kBJYuRN7im%2B8YuMfKRjD9%2FlcIEkhB0ODZF5Lcp%2BXcBDtxWQ2wji2PNMN%2Fr7nmX8b2UuzZ6q7RkBc%2BkhZlw%3D%3D"}]} x-proxy-cache: MISS x-github-request-id: 65A4:35E925:1260010:12A8CBC:69739AE9 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} via: 1.1 varnish Age: 1 x-served-by: cache-fra-eddf8230185-FRA x-cache: HIT x-cache-hits: 1 x-timer: S1769186012.798974,VS0,VE3 vary: Accept-Encoding x-fastly-request-id: 96828ee3c1a441486234bd46acca4858df34f19e cf-cache-status: DYNAMIC CF-RAY: 9c28b17d9998381a-FRA alt-svc: h3=":443"; ma=86400 Page title: Havsgaardens Vandanalyse ApS <!doctype html> <html class="no-js" lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Havsgaardens Vandanalyse ApS</title> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/css/foundation.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/motion-ui/1.2.3/motion-ui.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/css/foundation-prototype.min.css"> <link href='https://cdnjs.cloudflare.com/ajax/libs/foundicons/3.0.0/foundation-icons.css' rel='stylesheet' type='text/css'> <link rel="preconnect" href="https://fonts.googleapis.com"> <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin> <link href="https://fonts.googleapis.com/css2?family=Rosarivo:ital@0;1&display=swap" rel="stylesheet"> </head> <style type="text/css"> #map { width: 100%; height: 620px; } .custom-h1 { font-family: 'Rosarivo', serif; /* Apply Rosarivo font */ font-size: 3rem; /* Adjust font size */ font-weight: bold; /* Ensure text is bold */ color: #333; /* Set text color */ /* text-transform: uppercase; Convert text to uppercase */ text-align: center; /* Center align text */ margin-bottom: 1rem; /* Add space below the heading */ } </style> <body> <!-- Start Top Bar --> <div class="top-bar"> <div class="top-bar-left"> <ul class="menu vertical medium-horizontal"> <li class="menu-text hide-for-small-only">H</li> </ul> </div> <div class="top-bar-right"> <ul class="menu"> <li> <a href="#">Home</a> </li> <li> <a href="#about">About Us</a> </li> </ul> </div> </div> <!-- End Top Bar --> <div class="callout large"> <div class="row column text-center"> <h1 class="custom-h1">Havsgaardens Vandanalyse ApS</h1> <p class="lead"><em>Innovative Insights for Cleaner Water</em> - offering specialized services in process inhibition quantification, disinfection efficiency testing, standard water parameter measurement, and biochemical parameter evaluation for superior wastewater management.</p> <p>At Innovative Insights for Cleaner Water, we conduct custom analyses of unique wastewater scenarios, focusing on detecting inhibitory effects and assessing essential chemical parameters for biological processes and oxygen demand. We provide precise analytical methods for self-monitoring, supported by comprehensive services including implementation, training, documentation, and regulatory approval to deliver tailored solutions.</p> </div> </div> <div class="row column"> <article class="grid-container"> <h2> Services </h2> <div class="grid-x grid-margin-x"> <div class="medium-3 cell"> <h5><b>Process Inhibition Quantification</b></h5> <p>Nitrification inhibition tests for high saline and non-saline environments to assess microbial activity impact.</p> </div> <div class="medium-3 cell"> <h5><b>Disinfection Efficiency Testing</b></h5> <p>Disinfection tests for UV, machines, and chemicals, including regulatory approval for system effectiveness.</p> </div> <div class="medium-3 cell"> <h5><b>Standard Water Parameter</b>s</h5> <p>Measuring COD in high salt and seawater, total bacteria enumeration, and detection of MS2-coliphages and antibiotic-resistant bacteria.</p> </div> <div class="medium-3 cell"> <h5><b>Biochemical Parameter Quantification</b></h5> <p>Biological oxygen demand tests for unconventional water sources to evaluate organic matter levels.</p> </div> </div> </article> </div> <hr> <article class="grid-container"> <Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · x2.pg.cloudns.nz
2026-01-23 15:57
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 15:57:01 GMT Content-Type: application/json;charset=utf-8 Content-Length: 1288 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oSgbJB6ZCgnxBj%2FRi0r207uN3GrH1ULgl%2Bt%2FI9MOzmcLfDWma4qHho2TUUkiAmsk7NTYooNMGB%2BhnAcW7lJYh5HLXvJ6Le6Ku1%2FZlHhDSCM%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c287c022858d406-FRA alt-svc: h3=":443"; ma=86400 { "httpProtocol": "HTTP/1.1", "requestPriority": "", "edgeRequestKeepAliveStatus": 1, "requestHeaderNames": {}, "clientTcpRtt": 0, "colo": "FRA", "asn": 14061, "asOrganization": "DigitalOcean, LLC", "country": "DE", "isEUCountry": "1", "city": "Frankfurt am Main", "continent": "EU", "region": "Hesse", "regionCode": "HE", "timezone": "Europe/Berlin", "longitude": "8.68417", "latitude": "50.11552", "postalCode": "60306", "tlsVersion": "", "tlsCipher": "", "tlsClientRandom": "", "tlsClientCiphersSha1": "", "tlsClientExtensionsSha1": "", "tlsClientExtensionsSha1Le": "", "tlsClientHelloLength": "0", "tlsClientAuth": { "certPresented": "0", "certVerified": "NONE", "certRevoked": "0", "certIssuerDN": "", "certSubjectDN": "", "certIssuerDNRFC2253": "", "certSubjectDNRFC2253": "", "certIssuerDNLegacy": "", "certSubjectDNLegacy": "", "certSerial": "", "certIssuerSerial": "", "certSKI": "", "certIssuerSKI": "", "certFingerprintSHA1": "", "certFingerprintSHA256": "", "certNotBefore": "", "certNotAfter": "" }, "verifiedBotCategory": "" }Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · tiempomundo.es
2026-01-23 15:07
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 15:07:49 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding, Host, origin Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0D%2FYW4oLtP93UJ7F%2FnsmmZfLObfGjDSfw78bCpjLbc%2F8mIAUIoRhdHPO7409L%2BenhQT%2FUeBTHb15L3wuF%2FitMkEdPYkCzfYN62fS5Yun"}]} Cache-Control: public, max-age=300 X-Frame-Options: DENY X-Content-Type-Options: nosniff Referrer-Policy: same-origin Cross-Origin-Opener-Policy: same-origin cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=13752 CF-RAY: 9c28339a7e2c25d8-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · tiempomundo.es
2026-01-23 15:07
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 15:07:34 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://tiempomundo.es/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=16,cfOrigin;dur=239 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9yWXFKzI8tsxadLNLy8rmlejGwiN9GQk3b9Aq3%2ByR7goil5xTBGCk2b3O0ZDNlUiBCYZ9NE07KON8fUGn5zEI0JeBoWXJl1PGYVAQQ%3D%3D"}]} CF-RAY: 9c28339589ba0f41-EWR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"a9eb75a596c7459280d8781cc38eddbf","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · tiempomundo.es
2026-01-23 15:07
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 15:07:55 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19753,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c28339a29121512-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · sonar-leakdetection.com
2026-01-23 13:57
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 13:57:46 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/7.0.31 Link: <https://sonar-leakdetection.com/wp-json/>; rel="https://api.w.org/", <https://sonar-leakdetection.com/wp-json/wp/v2/pages/2989>; rel="alternate"; type="application/json", <https://sonar-leakdetection.com/>; rel=shortlink X-Frame-Options: SAMEORIGIN X-Mod-Pagespeed: 1.13.35.2-0 Vary: Accept-Encoding Cache-Control: max-age=0, no-cache, s-maxage=10 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1DtTjXuXAHN1eHIj6maphXN9R1pZcEh6KDHdvjZo0XmoRXxrOC8S6F44lic%2BHz4MQaVbI3kUSq9y5pvvGYUwh2fbe4w2xX4SGqfzegxKY1w1nQhgbBmA"}]} cf-cache-status: DYNAMIC CF-RAY: 9c27cd519cdaa6a2-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.hobstowingsupplies.com
2026-01-23 13:55
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 13:55:16 GMT Content-Length: 0 Connection: close Location: https://www.hobstowingsupplies.com/ Speculation-Rules: "/cdn-cgi/speculation" Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2pFcQQ2nlYv1g1hvciukXT1aSeoCxD1hPVoWC0DrOvezz0VP6Q%2BGwAdrZM2gBzkUVn%2BNHhCGijQyM1q9yo1MZyVuljObl9xPFzvNSFGlh54h%2F7YlWugAmO9a"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=12,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c27c9a979adaac5-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.hobstowingsupplies.com
2026-01-23 13:55
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 13:55:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19613,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c27c9aece6c07e8-SJC alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.hobstowingsupplies.com
2026-01-23 13:55
HTTP/1.1 202 Accepted Date: Fri, 23 Jan 2026 13:55:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare sg-captcha: challenge x-robots-tag: noindex Set-Cookie: nevercache-b39818=Y;Max-Age=-1 expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-store,no-cache,max-age=0 host-header: 8441280b0c35cbc1147f8ba998a563a7 x-proxy-cache-info: DT:1 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Speculation-Rules: "/cdn-cgi/speculation" Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kGGA7dCrKAqM8ovTGumW8c54B2Bg1s0dlZmjdLtuxyXJmPG0X76OAXLzjzc1tycstXkyXP5wJUdwz00PLFYvHwyReqjdau0LIOOwT0hC%2B5uWwl%2BW3XhaXyrM"}]} CF-RAY: 9c27c9ab3d3332d5-LHR alt-svc: h3=":443"; ma=86400 <html><head><link rel="icon" href="data:;"><meta http-equiv="refresh" content="0;/.well-known/sgcaptcha/?r=%2F&y=ipc:209.97.180.8:1769176516.410"></meta></head></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jirisafka.cz
2026-01-23 13:53
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 13:54:02 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare link: <https://jirisafka.cz/wp-json/>; rel="https://api.w.org/" link: <https://jirisafka.cz/wp-json/wp/v2/pages/634>; rel="alternate"; type="application/json" link: <https://jirisafka.cz/>; rel=shortlink vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JlUil0tW57fXyE9l%2B9Ewf50tpTXT9t1zgn4CF0ZVCU1usEYEFNsnYtXAo3QxzTDNAViALemdetLuuo5M4Kgtas%2BsEtTqe6EipyPY0A%3D%3D"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=3131 CF-RAY: 9c27c7c72ccafe10-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · papilo99zeus.com
2026-01-23 13:21
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 13:21:55 GMT Content-Length: 0 Connection: close Location: https://papilo99zeus.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mU4m8Eljr%2FBQrRFpMlaTrs5WqW2b%2FDPeGx%2FxJCHlpnIGiLO2mor2p16gp2YrRDoxqlkvBbJn8AvkFLuZOvlvHgVaPMO28VWi%2FTyH0q0AkEA%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2798d17bb066e7-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · papilo99zeus.com
2026-01-23 13:21
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 13:21:55 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close Server: cloudflare Location: https://papilo99vc.com/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CxnzA0oyOkprUAnfAv9Hp63di%2BcysaCwvSJnKra4G7BQRdbwVZKZI4E7krzA9FxdyXqI%2BGDJ%2FkRKeDuT%2FaaAlC7c3PplgUHWuf6FSpck"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2798d14e42f5fa-EWR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="https://papilo99vc.com/">here</a>.</p> </body></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · papilo99zeus.com
2026-01-23 13:21
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 13:22:15 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2798d69b2adc7a-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.soargrowplan.com
2026-01-23 12:16
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 12:16:15 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ErK1bz99gj%2FZohBKfBrOe3UKsyvBz8lUH0R6KFMFe0tEvKIQxM2V%2B%2FMgY8kR4fzE2bii%2FLb8PJDYelNG8Qwia610FfhaHF1rlGcRFR1D2qebQaUT"}]} Vary: Accept-Encoding X-Content-Type-Options: nosniff cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=14,cfOrigin;dur=16 Server: cloudflare CF-RAY: 9c2738a3c8086e28-EWR alt-svc: h3=":443"; ma=86400 Page title: soargrowplan.com is a custom short domain <!DOCTYPE html> <html> <head> <title>soargrowplan.com is a custom short domain</title> <link rel="preconnect" href="https://d2te5kruq0pvbl.cloudfront.net"> <meta name="viewport" content="width=device-width, initial-scale=1"/> <link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"> <style type="text/css"> html,body,div,span,applet,object,iframe,h1,h2,h3,h4,h5,h6,p,blockquote,pre,a,abbr,acronym,address,big,cite,code,del,dfn,em,img,ins,kbd,q,s,samp,small,strike,strong,sub,sup,tt,var,b,u,i,center,dl,dt,dd,ol,ul,li,fieldset,form,label,legend,table,caption,tbody,tfoot,thead,tr,th,td,article,aside,canvas,details,embed,figure,figcaption,footer,header,hgroup,menu,nav,output,ruby,section,summary,time,mark,audio,video{margin:0;padding:0;border:0;font-size:100%;font:inherit;vertical-align:baseline}article,aside,details,figcaption,figure,footer,header,hgroup,menu,nav,section{display:block}body{line-height:1}ol,ul{list-style:none}blockquote,q{quotes:none}blockquote:before,blockquote:after,q:before,q:after{content:'';content:none}table{border-collapse:collapse;border-spacing:0} * { box-sizing: border-box; } html { min-height: 100%; font-size: clamp(12px, 1.19791vw, 21px); } body { --default-line-height: 1.56rem; min-height: 100vh; background-color: #f9f9f9; display: grid; grid-template-rows: 1fr auto 1fr; font-family: Avenir, Montserrat, Corbel, 'URW Gothic', source-sans-pro, sans-serif; align-items: center; color: rgba(56, 55, 56, 0.7); line-height: var(--default-line-height); } a { color: rgba(56, 55, 56, 0.7); } h1 { color: rgba(51,51,61,1); font-weight: 600; font-size: 2rem; line-height: 2.47rem; text-align: center; } .subtitle { margin-top: 1.7708vw; text-align: center; } .content { background-color: #fff; width: 52.08%; max-width: calc(100% - 16px); display: flex; flex-direction: column; align-items: center; padding: 7.08vmin 4.84375vmin; box-sizing: border-box; justify-self: center; } .content.fraud-content { padding-top: 5vmin; } .fraud-content .subtitle { margin-top: 16px; } h1.fraud { margin-top: 9px; } .main_image { margin-top: 0.364583vw; width: 24.11vmax; } .content_footer { text-align: center; } a.button { margin-top: 2.08333vmax; display: inline-block; background-color: #383738; color: #fff; padding: 1.3541vmax 3.0208vmax; text-decoration: none; display: flex; align-items: center; justify-content: center; letter-spacing: 0.5px; font-size: 0.85714rem; line-height: 0.85714rem; text-transform: uppercase; } button.button { margin-top: 2.08333vmax; display: inline-block; background-color: #383738; color: #fff; padding: 1.3541vmax 3.0208vmax; text-decoration: none; display: flex; align-items: center; justify-content: center; letter-spacing: 0.5px; font-size: 0.85714rem; line-height: 0.85714rem; text-transform: uppercase; } .fraud { color: #FE8161; font-weight: bold; } @media (max-width: 420px) { .content { width: calc(100% - 16px); margin: 8px; } } </style> </head> <body> <div></div> <div class="content"> <h1>soargrowplan.com is a branded short domain</h1> <p cFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.soargrowplan.com
2026-01-23 12:16
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 12:16:16 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Pc5P23zzPI4l6jj9sAB3ZydtdIASo0V3gj4jTh%2BI167gNJTViNeT4BWMrJatupgwWvBbRrcXJi1%2FVAvCvh2WTTk23vEbZkfSK5xBSBocfMBK3B4u"}]} vary: Accept-Encoding x-content-type-options: nosniff cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=6,cfOrigin;dur=21 Server: cloudflare CF-RAY: 9c2738a42921ac4b-YYZ alt-svc: h3=":443"; ma=86400 Page title: soargrowplan.com is a custom short domain <!DOCTYPE html> <html> <head> <title>soargrowplan.com is a custom short domain</title> <link rel="preconnect" href="https://d2te5kruq0pvbl.cloudfront.net"> <meta name="viewport" content="width=device-width, initial-scale=1"/> <link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"> <style type="text/css"> html,body,div,span,applet,object,iframe,h1,h2,h3,h4,h5,h6,p,blockquote,pre,a,abbr,acronym,address,big,cite,code,del,dfn,em,img,ins,kbd,q,s,samp,small,strike,strong,sub,sup,tt,var,b,u,i,center,dl,dt,dd,ol,ul,li,fieldset,form,label,legend,table,caption,tbody,tfoot,thead,tr,th,td,article,aside,canvas,details,embed,figure,figcaption,footer,header,hgroup,menu,nav,output,ruby,section,summary,time,mark,audio,video{margin:0;padding:0;border:0;font-size:100%;font:inherit;vertical-align:baseline}article,aside,details,figcaption,figure,footer,header,hgroup,menu,nav,section{display:block}body{line-height:1}ol,ul{list-style:none}blockquote,q{quotes:none}blockquote:before,blockquote:after,q:before,q:after{content:'';content:none}table{border-collapse:collapse;border-spacing:0} * { box-sizing: border-box; } html { min-height: 100%; font-size: clamp(12px, 1.19791vw, 21px); } body { --default-line-height: 1.56rem; min-height: 100vh; background-color: #f9f9f9; display: grid; grid-template-rows: 1fr auto 1fr; font-family: Avenir, Montserrat, Corbel, 'URW Gothic', source-sans-pro, sans-serif; align-items: center; color: rgba(56, 55, 56, 0.7); line-height: var(--default-line-height); } a { color: rgba(56, 55, 56, 0.7); } h1 { color: rgba(51,51,61,1); font-weight: 600; font-size: 2rem; line-height: 2.47rem; text-align: center; } .subtitle { margin-top: 1.7708vw; text-align: center; } .content { background-color: #fff; width: 52.08%; max-width: calc(100% - 16px); display: flex; flex-direction: column; align-items: center; padding: 7.08vmin 4.84375vmin; box-sizing: border-box; justify-self: center; } .content.fraud-content { padding-top: 5vmin; } .fraud-content .subtitle { margin-top: 16px; } h1.fraud { margin-top: 9px; } .main_image { margin-top: 0.364583vw; width: 24.11vmax; } .content_footer { text-align: center; } a.button { margin-top: 2.08333vmax; display: inline-block; background-color: #383738; color: #fff; padding: 1.3541vmax 3.0208vmax; text-decoration: none; display: flex; align-items: center; justify-content: center; letter-spacing: 0.5px; font-size: 0.85714rem; line-height: 0.85714rem; text-transform: uppercase; } button.button { margin-top: 2.08333vmax; display: inline-block; background-color: #383738; color: #fff; padding: 1.3541vmax 3.0208vmax; text-decoration: none; display: flex; align-items: center; justify-content: center; letter-spacing: 0.5px; font-size: 0.85714rem; line-height: 0.85714rem; text-transform: uppercase; } .fraud { color: #FE8161; font-weight: bold; } @media (max-width: 420px) { .content { width: calc(100% - 16px); margin: 8px; } } </style> </head> <body> <div></div> <div class="content"> <h1>soargrowplan.com is a branded short domain</h1> <p cFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.soargrowplan.com
2026-01-23 12:16
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · fu9060.com
2026-01-23 11:51
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 11:51:53 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 30 Dec 2025 09:05:17 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZdoMfYiYk1MwaTt4wYSR6SgvcaRivi6qXDvKi431w2A3HpYcqOMm3JjFas95G6HmaFYuNeP312qsNq3h3v2odDD492b7%2B5dRtFg%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2714ef8ec0c8ce-SJC alt-svc: h3=":443"; ma=86400 <!doctype html> <script> <!-- document.write(unescape("%3C%21doctype%20html%3E%0A%3Chtml%20lang%3D%22en%22%3E%0A%0A%3Chead%3E%0A%20%20%20%20%3Cmeta%20charset%3D%22utf-8%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22X-UA-Compatible%22%20content%3D%22IE%3Dedge%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22viewport%22%20content%3D%22width%3Ddevice-width%2Cinitial-scale%3D1%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22HandheldFriendly%22%20content%3D%22true%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22MobileOptimized%22%20content%3D%22width%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22cleartype%22%20content%3D%22on%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22theme-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-navbutton-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black-translucent%22%3E%0A%20%20%20%20%3Ctitle%3EK8%u51EF%u53D1%3C/title%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20type%3D%22image/x-icon%22%20href%3D%22favicon.ico%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20sizes%3D%22180x180%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-title%22%20content%3D%22K8%u51EF%u53D1%22/%3E%0A%20%20%20%20%3Clink%20rel%3D%22apple-touch-icon-precomposed%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-TileImage%22%20content%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%0A%20%20%20%20%3Cscript%20src%3D%22/data/links.js%22%3E%3C/script%3E%0A%20%20%20%20%3Clink%20href%3D%22/css/appag.css%22%20rel%3D%22stylesheet%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22stylesheet%22%20href%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css%22%20/%3E%0A%20%20%20%20%3Cscript%20src%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js%22%3E%3C/script%3E%0A%20%20%20%3Cstyle%3E%0A%20%20%20%20%20%20%20%20@media%28max-width%3A%20767px%29%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20.section-title%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20margin-bottom%3A10px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.game-card-wrapper%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding%3A4px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.featured-section%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding-top%3A%200px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%3C/style%3E%0A%3C/head%3E%0A%0A%3Cbody%3E%0A%20%20%20%20%3Cdiv%20id%3D%22app%22%3E%0A%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22home%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cheader%20data-v-0d1e5fd2%3D%22%22%20class%3D%22fixed-header%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22container%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Ca%20data-v-0d1e5fd2%3D%22%22%20href%3D%22/%22%20class%3D%22logo-link%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C%21--%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/header_logo.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E--%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/agk8_lg.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C/div%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3C/header%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20claFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · fu9060.com
2026-01-23 11:51
HTTP/1.1 523 <none> Date: Fri, 23 Jan 2026 11:51:53 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2714efdb20555f-LHR alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · fu9060.com
2026-01-23 11:51
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 11:51:53 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 30 Dec 2025 09:05:17 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QGRWOcsoPesYbowlkWuoeE6m0w7kIvX166qBuY3u3EzXAdqstMp%2FxtVVp1mHGrCs1AHDeC54i4rMcNiQVwucIkG%2F3sMoSHFD2YY%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2714f04b5994e3-YYZ alt-svc: h3=":443"; ma=86400 <!doctype html> <script> <!-- document.write(unescape("%3C%21doctype%20html%3E%0A%3Chtml%20lang%3D%22en%22%3E%0A%0A%3Chead%3E%0A%20%20%20%20%3Cmeta%20charset%3D%22utf-8%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22X-UA-Compatible%22%20content%3D%22IE%3Dedge%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22viewport%22%20content%3D%22width%3Ddevice-width%2Cinitial-scale%3D1%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22HandheldFriendly%22%20content%3D%22true%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22MobileOptimized%22%20content%3D%22width%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22cleartype%22%20content%3D%22on%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22theme-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-navbutton-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black-translucent%22%3E%0A%20%20%20%20%3Ctitle%3EK8%u51EF%u53D1%3C/title%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20type%3D%22image/x-icon%22%20href%3D%22favicon.ico%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20sizes%3D%22180x180%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-title%22%20content%3D%22K8%u51EF%u53D1%22/%3E%0A%20%20%20%20%3Clink%20rel%3D%22apple-touch-icon-precomposed%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-TileImage%22%20content%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%0A%20%20%20%20%3Cscript%20src%3D%22/data/links.js%22%3E%3C/script%3E%0A%20%20%20%20%3Clink%20href%3D%22/css/appag.css%22%20rel%3D%22stylesheet%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22stylesheet%22%20href%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css%22%20/%3E%0A%20%20%20%20%3Cscript%20src%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js%22%3E%3C/script%3E%0A%20%20%20%3Cstyle%3E%0A%20%20%20%20%20%20%20%20@media%28max-width%3A%20767px%29%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20.section-title%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20margin-bottom%3A10px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.game-card-wrapper%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding%3A4px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.featured-section%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding-top%3A%200px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%3C/style%3E%0A%3C/head%3E%0A%0A%3Cbody%3E%0A%20%20%20%20%3Cdiv%20id%3D%22app%22%3E%0A%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22home%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cheader%20data-v-0d1e5fd2%3D%22%22%20class%3D%22fixed-header%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22container%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Ca%20data-v-0d1e5fd2%3D%22%22%20href%3D%22/%22%20class%3D%22logo-link%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C%21--%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/header_logo.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E--%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/agk8_lg.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C/div%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3C/header%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20claFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · c.2q591200.workers.dev
2026-01-23 10:56
HTTP/1.1 404 Not Found Date: Fri, 23 Jan 2026 10:56:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0YxZs4V0uchcLz9qiACKMWOHwK9eS7guXD%2BJBZONNmXVcMhR2VV7riwACH4r8tyfFKI76Y05V1oeInRbIhVk7sde8GEIcMvBHzg2XGEeKyDa4F4ftCE%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c26c357fb68fbdc-AMS alt-svc: h3=":8443"; ma=86400 error code: 1042Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · c.2q591200.workers.dev
2026-01-23 10:56
HTTP/1.1 404 Not Found Date: Fri, 23 Jan 2026 10:56:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zGi0jDmHU8Vn0ot4CSY8w%2BNR0iJPRLXl0OZetuypJBoT6bDrSBk%2BrmYrFqKiPDzhkIHHqxu%2FHwfK8UqRnTriBKWUqwNkSQnBWFY3ys2acbEXlPihzLY%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c26c3576d252fe9-SJC alt-svc: h3=":443"; ma=86400 error code: 1042Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · c.2q591200.workers.dev
2026-01-23 10:56
HTTP/1.1 404 Not Found Date: Fri, 23 Jan 2026 10:56:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hZcJ2McZVPOMz0r9CWgHj8%2FZ5dUYdGtMpp9ZAVz%2FPEw88%2BJYgVka0vs18KCaz7hXpuPeENUnl7kxB8L%2FccCbsyGXmg8t5PAyHUZJvFykP62dX4TcXLE%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c26c3576e454b39-SJC alt-svc: h3=":443"; ma=86400 error code: 1042Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · doraemonxapk.net
2026-01-23 10:39
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 10:39:41 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://doraemonxapk.net/wp-json/>; rel="https://api.w.org/" link: <https://doraemonxapk.net/wp-json/wp/v2/pages/29>; rel="alternate"; title="JSON"; type="application/json" link: <https://doraemonxapk.net/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0gOF1bsAQ%2BaEqbEyR03THCxGd4C80I2XvIkTkbnU3Gh6cCtDzbXxAOyfUzLitdoC9dGsWABGAcGWOJtAwrEq%2F%2FEYVoEDeacvp3VDYpezimo%3D"}]} vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=752 Server: cloudflare CF-RAY: 9c26ab25fdc2e150-EWRFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · globalideas.us
2026-01-23 10:35
HTTP/1.1 403 Forbidden Date: Fri, 23 Jan 2026 10:35:45 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zvZs8RK4IzgrrPr7rbDUnsb83PDsbw4dWZ0qn13mwbETirk0Tz4fn7AGti9H8svLqSqWf%2BlgR70gzGDbKhFEkxaNj3CTblnt%2F7Z5mgWO"}]} CF-RAY: 9c26a569adbc3556-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · sgoc1.com
2026-01-23 10:06
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 10:06:40 GMT Content-Length: 0 Connection: close Location: https://sgoc1.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PS33eRM0qJ0oncS4YA4MmS5Jo8WJ1Zaek666Hi%2BTJqkAVIdjd3gixxWUpcw31pYPZi6k7hG%2B3t5shU1umQOF48hhzzsekV%2FVFA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c267acf8d0e37f6-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · sgoc1.com
2026-01-23 10:06
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 10:07:00 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c267ad5b93165aa-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · sgoc1.com
2026-01-23 10:06
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 10:06:41 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Tue, 27 May 2025 16:51:22 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mvHp%2FW6TcmlWOC557s%2F9iT3C9N1VHjvH15m%2BggDd2Taf9jv%2B%2FA1aOmwc%2BhLd7gfrpfuiAy7Ms2N9wxht38QwjpQOgLN8x4NmSQ%3D%3D"}]} Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9c267ad1c8f91957-FRA alt-svc: h3=":443"; ma=86400 <!doctype html> <html lang="en"> <head> <meta charset="utf-8"> <title></title> <meta name="description" content=""> <meta name="author" content=""> <link rel="stylesheet" href="css/styles.css?v=1.0"> <style> html, body { margin: 0; padding: 0; width: 100%; height: 100%; display: table; background-color: #111; color: #ccc; } #content { display: table-cell; text-align: center; vertical-align: middle; } a:link, a:visited, a:active { display: block; background-color: transparent; color: #fff; text-decoration: none; } a:hover { display: block; background-color: transparent; color: #999; text-decoration: none; } IMG { border: medium none; } TD { background-color: transparent; color: #ffffff; font-family: Verdana,Arial,sans-serif; font-size: 9pt; } p { font-size: 18px; text-align:center; } </style> </head> <body> <div id="content"> <p> </p> </div> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.silverandco.co.nz
2026-01-23 09:46
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 09:46:53 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9c265dd0788f085c-FRA Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding,Cookie Expires: Thu, 19 Nov 1981 08:52:00 GMT Link: <https://www.silverandco.co.nz/wp-json/>; rel="https://api.w.org/" Link: <https://www.silverandco.co.nz/wp-json/wp/v2/pages/254>; rel="alternate"; title="JSON"; type="application/json" Link: <https://www.silverandco.co.nz/>; rel=shortlink Pragma: no-cache X-Powered-By: WP Engine X-Cacheable: SHORT Cache-Control: max-age=600, must-revalidate X-Cache: MISS X-Cache-Group: normal X-Orig-Cache-Control: no-store, no-cache, must-revalidate Last-Modified: Fri, 23 Jan 2026 09:46:52 GMT CF-Cache-Status: HIT Set-Cookie: __cf_bm=nzUvcMQYoaHwareBUGo6N3jR.l.xsmFafg04l1XM7j0-1769161613-1.0.1.1-BdYBS7jLSQsDbYgPdXNlBMdQAWuG9.E6j4SRn3mHEvOLfoB16NEPi.F5h9jx06SI5mGfirpYAY4Do_8c_sSpZIh.uU72UXNlU9B3Wh6jHMA; path=/; expires=Fri, 23-Jan-26 10:16:53 GMT; domain=.www.silverandco.co.nz; HttpOnly; Secure; SameSite=None Server: cloudflare alt-svc: h3=":443"; ma=86400
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · x2.2q591200.workers.dev
2026-01-23 09:43
HTTP/1.1 404 Not Found Date: Fri, 23 Jan 2026 09:43:31 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7UFi6cwy0gMEVQeLewVI2VJde8IRgxK1SAEXVzUlT1GXNzyWpITxBhwnQXqtRkt7TKYWit%2FUEBQnOmrl2IampURwe1RgFbpbVEtqtP3g8jbJHCD88mK3"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2658e78ce05d48-FRA alt-svc: h3=":443"; ma=86400 error code: 1042Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · x2.2q591200.workers.dev
2026-01-23 09:43
HTTP/1.1 404 Not Found Date: Fri, 23 Jan 2026 09:43:31 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4aeGaTsdFBsKl7UwBPJ8SIWcogBPnjOp%2Bl0CYy4f5WqgVeMyx%2B7qN78cYbuomnxOZLrpHTI5uQ0lSWOeUFQ2TSYFfGNGSNBRvx6wymv5tHFXy7Zxyv3v"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2658e73e5e4693-EWR alt-svc: h3=":443"; ma=86400 error code: 1042Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · x2.2q591200.workers.dev
2026-01-23 09:43
HTTP/1.1 404 Not Found Date: Fri, 23 Jan 2026 09:43:31 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CsD4bjDqI8v6wCqWgaxesDqzgX53XNzGDrCXlkQQFqXbXb8JKdxX92TlErT1hY1xpb2l1ojOaa4TON5HE6Ui8Y21g8iP4I6Cwb7ub91ubUoJQjHm40vk"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2658e6fdcf9fce-FRA alt-svc: h3=":8443"; ma=86400 error code: 1042Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · c.pg.cloudns.nz
2026-01-23 09:28
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 09:28:16 GMT Content-Type: application/json;charset=utf-8 Content-Length: 1859 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MNjPSiCiAZTcbFDWC7s%2F5fh2Dwa6sZDdP5GbNTSOVo%2BlBMqoL9J%2Bl53z1n75tOfNm1U1UQQpZhgKaP1ourb%2F%2F6bir%2B3iTrnrjzS%2FnhScXg%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c26428fffd8f7ca-LHR alt-svc: h3=":8443"; ma=86400 { "httpProtocol": "HTTP/1.1", "requestPriority": "", "edgeRequestKeepAliveStatus": 1, "requestHeaderNames": {}, "clientTcpRtt": 2, "colo": "LHR", "asn": 14061, "asOrganization": "DigitalOcean, LLC", "country": "GB", "isEUCountry": false, "city": "London", "continent": "EU", "region": "England", "regionCode": "ENG", "timezone": "Europe/London", "longitude": "-0.12574", "latitude": "51.50853", "postalCode": "E1W", "tlsVersion": "TLSv1.3", "tlsCipher": "AEAD-AES128-GCM-SHA256", "tlsClientRandom": "We3vQNk4DNBcimzTSJDMOTFaRm8N2QpAlEa3JxDpslo=", "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=", "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=", "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=", "tlsExportedAuthenticator": { "clientHandshake": "2f67e273d75e95dc0c6438b30f1ff486366bd25622eea4573777699b2c4694a1", "serverHandshake": "2411bce7adfa28111a6912e8fbb78730e77acd5e27d93bd5350f97a0a93bb544", "clientFinished": "440285ec3547b64859b32b72de2c69984423c79f0cdcdf4f83364b3c7e2c19d8", "serverFinished": "0325119f81910985d884e8a2c3e73fd0e80cedc4d283967d9cb442e2b2e8735f" }, "tlsClientHelloLength": "1498", "tlsClientAuth": { "certPresented": "0", "certVerified": "NONE", "certRevoked": "0", "certIssuerDN": "", "certSubjectDN": "", "certIssuerDNRFC2253": "", "certSubjectDNRFC2253": "", "certIssuerDNLegacy": "", "certSubjectDNLegacy": "", "certSerial": "", "certIssuerSerial": "", "certSKI": "", "certIssuerSKI": "", "certFingerprintSHA1": "", "certFingerprintSHA256": "", "certNotBefore": "", "certNotAfter": "" }, "verifiedBotCategory": "" }Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mariebacal.com
2026-01-23 09:24
HTTP/1.1 202 Accepted Date: Fri, 23 Jan 2026 09:24:14 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} SG-Captcha: challenge X-Robots-Tag: noindex Set-Cookie: nevercache-b39818=Y;Max-Age=-1 Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-store,no-cache,max-age=0 Host-Header: 8441280b0c35cbc1147f8ba998a563a7 X-Proxy-Cache-Info: DT:1 cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Yeay7cjlziSfiS%2BJ8Ts40opmaHq9vJkiDNwGyqc0KHSzxHFfFBq2DvdExCDYFpzvkqD%2BsI6oxskQNXk9wi93wbXASEfZEKtmz2CZmQ%3D%3D"}]} CF-RAY: 9c263ca63d9b31fa-BOM alt-svc: h3=":443"; ma=86400 <html><head><link rel="icon" href="data:;"><meta http-equiv="refresh" content="0;/.well-known/sgcaptcha/?r=%2F&y=ipc:159.65.144.72:1769160254.838"></meta></head></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.mariebacal.com
2026-01-23 09:24
HTTP/1.1 202 Accepted Date: Fri, 23 Jan 2026 09:24:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} SG-Captcha: challenge X-Robots-Tag: noindex Set-Cookie: nevercache-b39818=Y;Max-Age=-1 Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-store,no-cache,max-age=0 Host-Header: 8441280b0c35cbc1147f8ba998a563a7 X-Proxy-Cache-Info: DT:1 cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dLn%2By9WyWmWnNmTfHPv2AMRI1fUGtrKmXC2EvHGZzxQZDpr2P2HADlYIyuCXYk3jtwPX4bD2j2SNZAA7jL%2BQ1VI9WluOHIgzl7%2B8y%2ByBTOw%3D"}]} CF-RAY: 9c263ca33f977803-SJC alt-svc: h3=":443"; ma=86400 <html><head><link rel="icon" href="data:;"><meta http-equiv="refresh" content="0;/.well-known/sgcaptcha/?r=%2F&y=ipc:64.23.218.208:1769160253.985"></meta></head></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.mariebacal.com
2026-01-23 09:24
HTTP/1.1 202 Accepted Date: Fri, 23 Jan 2026 09:24:14 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare sg-captcha: challenge x-robots-tag: noindex Set-Cookie: nevercache-b39818=Y;Max-Age=-1 expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-store,no-cache,max-age=0 host-header: 8441280b0c35cbc1147f8ba998a563a7 x-proxy-cache-info: DT:1 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xVWLJdzb%2BS67LA3pyZlo%2BLEr%2BdadYFXXtx2W6uBOO%2Bw8x5GJzWWb82gLF6T9hWc60kqtkSlLoXnwg3nMGiHwdgOhw8ynd%2BitMnj%2B4tC%2FpFjc7Q%3D%3D"}]} CF-RAY: 9c263ca78c4edc58-FRA alt-svc: h3=":443"; ma=86400 <html><head><link rel="icon" href="data:;"><meta http-equiv="refresh" content="0;/.well-known/sgcaptcha/?r=%2F&y=ipc:139.59.132.8:1769160254.722"></meta></head></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.mariebacal.com
2026-01-23 09:24
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 09:24:34 GMT Content-Length: 0 Connection: close Server: cloudflare Cache-Control: private, no-store cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 09:25:04 GMT set-cookie: cf_ob_info=522:9c263ca8c99f96fd:AMS; Expires=Fri, 23 Jan 2026 09:25:04 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QHma2Z%2BVxVW2ZSUFnJ68%2FM%2Foc2JTe4PHDJnMFCpmEh83dAfGZeplu4Du2yml8go8WpqJr97TiYIXhy%2B0qFgh3d%2BVkvOGn8Ra30ltw7GUf%2BERJQ%3D%3D"}]} CF-RAY: 9c263ca8c99f96fd-AMS alt-svc: h3=":8443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mariebacal.com
2026-01-23 09:24
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 09:24:34 GMT Content-Length: 0 Connection: close Server: cloudflare Cache-Control: private, no-store cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} set-cookie: cf_use_ob=8443; Expires=Fri, 23 Jan 2026 09:25:04 GMT set-cookie: cf_ob_info=522:9c263ca8b968249b:FRA; Expires=Fri, 23 Jan 2026 09:25:04 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kq0u4fyrzpgDYNJ6w9CEsuJHNFexz34bRw3ydEAy1r7YUhHV2QEv4fZdT1CvDH7Chy4VDd18n3Hp0hHfrV3oWvrDBNcPQPiRuynaZSGO"}]} CF-RAY: 9c263ca8b968249b-FRA alt-svc: h3=":8443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mariebacal.com
2026-01-23 09:24
HTTP/1.1 202 Accepted Date: Fri, 23 Jan 2026 09:24:15 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare sg-captcha: challenge x-robots-tag: noindex Set-Cookie: nevercache-b39818=Y;Max-Age=-1 expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-store,no-cache,max-age=0 host-header: 8441280b0c35cbc1147f8ba998a563a7 x-proxy-cache-info: DT:1 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=B0%2FTib8ErR9t7OGhHfv8RZGrxDDBWTVcMcQxNupQwexMJEGnu9co8kD5VYfcf1Fz2TljHwF%2B0UciGbKj5kJ8w%2Fv8G2BpmczuPGa8NXV%2F"}]} CF-RAY: 9c263ca61e70dc56-FRA alt-svc: h3=":443"; ma=86400 <html><head><link rel="icon" href="data:;"><meta http-equiv="refresh" content="0;/.well-known/sgcaptcha/?r=%2F&y=ipc:46.101.111.185:1769160254.954"></meta></head></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.clubok.it.com
2026-01-23 09:21
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 09:21:58 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Redirect-By: WordPress Location: https://clubok.it.com/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=1383 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=R8ic4lP3pfoFrEe4oSrb5IbjAjaQo8%2BrsEJ%2FJlG8PZEUNScq54BemRGgXsslHsMNdCPkxwqxcemi5dVCLBd%2BVTIYmdqL2fEYr87BzaQROQ%3D%3D"}]} CF-RAY: 9c26394eebc2f21e-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · cmdg.com.cn
2026-01-23 08:58
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 08:59:09 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19435,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c26176d9c3dfe0f-SIN alt-svc: h3=":443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · cmdg.com.cn
2026-01-23 08:58
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 08:59:09 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c26176ccc8a9713-AMS alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · fdefgr.com
2026-01-23 08:47
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 08:47:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare last-modified: Tue, 19 Apr 2022 03:16:12 GMT vary: Accept-Encoding Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} strict-transport-security: max-age=31536000 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=leMUiBNZahyoB0agdNamEMaRij2DrH0C4EcB89%2FIyDWIsBzC3pgkA2yuHih6D9HV5lMiQcd4RFg2aEowErC%2FguOmaHpmF7%2BojvQ%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2607877b2e1bf8-LHR alt-svc: h3=":8443"; ma=86400 Page title: iOS纯净版客户端下载页 <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, target-densitydpi=device-dpi" /> <link rel="stylesheet" href="./css/download.css?v=111"> <link rel="stylesheet" href="./css/swiper-bundle.min.css?v=111"> <title>iOS纯净版客户端下载页</title> </head> <body> <div class="content"> <a href="javascript:;" class="download-btn" id="download"></a> <div class="text"> <h3>- iOS纯净版客户端 -</h3> <p> 极速下载,化繁为简,小而轻便,稳定响应,为你带来专注、高效的游戏体验,快来体验吧 </p> </div> <p id="tutorial" class="tutorial"> <a href="javascript:;">查看安装教程》</a> </p> </div> <!-- 教程弹框 --> <div class="tutorial-dialog"> <div class="ct"> <span class="close">×</span> <!-- Swiper --> <div class="swiper-container"> <div class="swiper-wrapper"> <div class="swiper-slide"> <p><img src="./img/step01.png" alt=""></p> <div class="step"> <h3>第一步</h3> <p>点击允许</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step02.png" alt=""></p> <div class="step"> <h3>第二步</h3> <p>点击关闭>寻找手机通用</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step03.png" alt=""></p> <div class="step"> <h3>第三步</h3> <p>找寻手机通用介面</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step04.png" alt=""></p> <div class="step"> <h3>第四步</h3> <p>描述文件与设备管理</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step05.png" alt=""></p> <div class="step"> <h3>第五步</h3> <p>点击ManBetX描述文件</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step06.png" alt=""></p> <div class="step"> <h3>第六步</h3> <p>点击安装立即成功</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step07.png" alt=""></p> <div class="step"> <h3>第七步</h3> <p>请点击下一步</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step08.png" alt=""></p> <div class="step"> <h3>第八步</h3> <p>请点击安装</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step09.png" alt=""></p> <div class="step"> <h3>第九步</h3> <p>请点击安装</p> </div> </div> <div class="swiper-slide"> <p><img src="./img/step10.png" alt=""></p> <div class="step"> <h3>第十步</h3> <p>请点击完成</p> </div> </div> </div> <!-- Add Pagination --> <div class="swiper-pagination"></div> </div> </div> </div> </body> </html> <script src="./js/jquery.js"></script> <script src="./js/swiper-bundle.min.js"></script> <script> // 还原 $(function () { const config = `./file/file.mobileprovision?v=${Math.random()}` const isProd = window.location.host !== 'cvtoa.vidrji.com' ? true : false const app = isProd ? `./file/prod/ManBetX.mobileconfig?v=${Math.random()}` : `./file/dev/ManBetX.mobileconfig?v=${Math.random()}` $('#download').click(function () { // 可改成进入页面自动下载 window.location.href = app // 下�Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · metalicoolean.com
2026-01-23 08:45
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 08:45:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19384,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c260395cf7399cb-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · metalicoolean.com
2026-01-23 08:45
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 08:45:16 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Wed, 06 Mar 2019 15:21:16 GMT Accept-Ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ClGTVLskThYvS92P%2BanebfDcWozqaNpcBFH5PkziqudNhBFUesrq%2FgXWlxJawrMSa%2BugKKF0iE5MjHF5r9xQGOo5BNywlzj557U7Tub8SEBM"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=4,cfOrigin;dur=781 CF-RAY: 9c26038ff988811f-EWR alt-svc: h3=":443"; ma=86400 Page title: Metalico, Inc. - One of the nation’s largest recyclers of ferrous metals in the US such as scrap metal, aluminum, copper, lead products and demolition debris. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Frameset//EN" "http://www.w3.org/TR/html4/frameset.dtd"> <html> <link rel="stylesheet" type="text/css" href="style.css"> <!-- the favicon is the icon that shows up along with a website on the left side of a browser tab or next to the url. You need to use certain software to create a .ico file. They are 16x16 pixels */ --> <link rel="shortcut icon" href="favicon.ico"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="A full service company addressing all our customer needs. We specialize in collection and recycling of ferrous metals."> <meta name="keywords" content="scrap metal, scrap metal processors, aluminum, copper, Metalico, Lyell Metals, Lake Erie Recycling, Metalico Aluminum Recovery, Buffalo Hauling Corporation, Mayco Industries, Gulf Coast Recycling, Steel, recycled metals, recycling, catalytic converters, Aluminum Deox Products, Foundry Alloys, rail car loading, material storage, transportation of metals, rolloff service for construction, demolition debris, lead products, ASTM B749, QQL201, lead smelter, lead roof flashings, Calcium, antimonial leads"> <meta name="robots" content="index,follow"> <meta name="classification" content="Industrial"> <meta name="revisit-after" content="15 days"> <meta name="author" content="Metalico, Inc."> <meta name="identifier-url" content="www.metalico.com"> <meta name="resource-type" content="document"> <meta name="distribution" content="local,webcom,global"> <meta name="coverage" content="Worldwide"> <meta name="rating" content="General"> <meta name="language" content="English"> <!-- jquery library --> <script src="https://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js"></script> <!-- slideshow javascript --> <script src="js/slideshow.js"></script> <script> document.window.getElementById('stock').scrollTo(500, 200); </script> </head> <title>Metalico, Inc. - One of the nation’s largest recyclers of ferrous metals in the US such as scrap metal, aluminum, copper, lead products and demolition debris. </title> <body> <div class='wrapper'> <!--sub menu --> <!--sub menu --> <div class='header'> <div class='logo'> <img class ='img2' src="img/logo.png"></img> <img class ='img2' src="img/slogan.png" ></img> </div> <div class='nav'> <!-- nav buttons are html/css based, no images are used so it's important to maintain the same style --> <ul> <li><a class='navlinks'href="index.html"></a> </li> <li><a class='navlinks'href="index.html">Home</a> </li> <li><a class='navlinks'href="profile.html">Profile</a> </li> <li><a class='navlinks'href="locations.html">Locations</a> </li> <li><a class='navlinks'href="contact.html">Contact</a> </li> <li><a class='navlinksend'href="index.html"></a> </ul> <!-- closing div for nav --> </div> <!-- closing div for header --> </div> <!-- Slideshow html. If img tags are closed separately, it will create a slowdown in versions of internet explorer 8 and below. It will automatically scroll through more images if more are added within the div in the same format --> <div class='slideshow'> <img src="img/splash.png" /> <img src="img/splash2.png" /> <img src="img/splash3.png" /> <img src="img/splash4.png" /> <img src="img/splash5.jpg" /> </div> <!-- main body of text, adding <p> creates a new paragraph with the same style, should add </p> at end of the paragraph. The website will automatically extend vertically if more copy is included --> <div class='maintext'> <p> <img class='img5' src="img/hthumb1.jpg"></img> Metalico, Inc. is a Ferrous as well as a Non-Ferrous scrap metal processor operating in New York, New Jersey, Ohio, PennsylvaniFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · metalicoolean.com
2026-01-23 08:45
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 08:45:18 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Thu, 12 Dec 2024 17:26:56 GMT Accept-Ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=aBj9aL9b4PtRXEh5sHzCey5yJe0DSLYdnz7Aoi2NCDLKq%2BIG6ixGO77XqJB7hCsdSBlMmHPTkTSEwmXLK30YWtImPflbFmm3vSatH5Yv5qVT"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=14,cfOrigin;dur=2779 CF-RAY: 9c26038ffb4342e4-EWR alt-svc: h3=":443"; ma=86400 <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"37e81f940efc43debf350633784adbf7","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · havsgaardens.dk
2026-01-23 07:47
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 07:47:43 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Last-Modified: Sun, 14 Jul 2024 09:37:00 GMT Access-Control-Allow-Origin: * expires: Fri, 23 Jan 2026 07:57:42 GMT Cache-Control: max-age=600 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hnQEeiYdvsHSTScRtG753Vflst%2B1uLzHIJUoXilJNXaX3JQsW%2BXnCJ8wFKk72PDb1j0N1vFmxmNG%2Fn8p6geOQKU5xwGLgOuUOv1NVRhfYw%3D%3D"}]} x-proxy-cache: MISS X-GitHub-Request-Id: D963:3E97C5:F4FCF6:103DD9D:6973279D Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=35,cfOrigin;dur=3 Via: 1.1 varnish Age: 1 X-Served-By: cache-lga21971-LGA X-Cache: HIT X-Cache-Hits: 1 X-Timer: S1769154463.260210,VS0,VE1 Vary: Accept-Encoding X-Fastly-Request-ID: 278d3aa369b5eb02276b03bcc9e68367f08062b8 cf-cache-status: DYNAMIC CF-RAY: 9c25af432d03cef2-EWR alt-svc: h3=":443"; ma=86400 Page title: Havsgaardens Vandanalyse ApS <!doctype html> <html class="no-js" lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Havsgaardens Vandanalyse ApS</title> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/css/foundation.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/motion-ui/1.2.3/motion-ui.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/css/foundation-prototype.min.css"> <link href='https://cdnjs.cloudflare.com/ajax/libs/foundicons/3.0.0/foundation-icons.css' rel='stylesheet' type='text/css'> <link rel="preconnect" href="https://fonts.googleapis.com"> <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin> <link href="https://fonts.googleapis.com/css2?family=Rosarivo:ital@0;1&display=swap" rel="stylesheet"> </head> <style type="text/css"> #map { width: 100%; height: 620px; } .custom-h1 { font-family: 'Rosarivo', serif; /* Apply Rosarivo font */ font-size: 3rem; /* Adjust font size */ font-weight: bold; /* Ensure text is bold */ color: #333; /* Set text color */ /* text-transform: uppercase; Convert text to uppercase */ text-align: center; /* Center align text */ margin-bottom: 1rem; /* Add space below the heading */ } </style> <body> <!-- Start Top Bar --> <div class="top-bar"> <div class="top-bar-left"> <ul class="menu vertical medium-horizontal"> <li class="menu-text hide-for-small-only">H</li> </ul> </div> <div class="top-bar-right"> <ul class="menu"> <li> <a href="#">Home</a> </li> <li> <a href="#about">About Us</a> </li> </ul> </div> </div> <!-- End Top Bar --> <div class="callout large"> <div class="row column text-center"> <h1 class="custom-h1">Havsgaardens Vandanalyse ApS</h1> <p class="lead"><em>Innovative Insights for Cleaner Water</em> - offering specialized services in process inhibition quantification, disinfection efficiency testing, standard water parameter measurement, and biochemical parameter evaluation for superior wastewater management.</p> <p>At Innovative Insights for Cleaner Water, we conduct custom analyses of unique wastewater scenarios, focusing on detecting inhibitory effects and assessing essential chemical parameters for biological processes and oxygen demand. We provide precise analytical methods for self-monitoring, supported by comprehensive services including implementation, training, documentation, and regulatory approval to deliver tailored solutions.</p> </div> </div> <div class="row column"> <article class="grid-container"> <h2> Services </h2> <div class="grid-x grid-margin-x"> <div class="medium-3 cell"> <h5><b>Process Inhibition Quantification</b></h5> <p>Nitrification inhibition tests for high saline and non-saline environments to assess microbial activity impact.</p> </div> <div class="medium-3 cell"> <h5><b>Disinfection Efficiency Testing</b></h5> <p>Disinfection tests for UV, machines, and chemicals, including regulatory approval for system effectiveness.</p> </div> <div class="medium-3 cell"> <h5><b>Standard Water Parameter</b>s</h5> <p>Measuring COD in high salt and seawater, total bacteria enumeration, and detection of MS2-coliphages and antibiotic-resistant bacteria.</p> </div> <div class="medium-3 cell"> <h5><b>Biochemical Parameter Quantification</b></h5> <p>Biological oxygen demand tests for unconventional water sources to evaluate organic matter levels.</p> </div> </div> </article> </div> <hr> <article class="grid-container"> <Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · thunderrider498.shop
2026-01-23 07:34
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 07:34:20 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fEidVpRsRFmgq%2BQ10TLmM0jo80R1ATHfOJ1mMGZ3w21%2BrG8mC5%2FK9RN4aXtMSoX%2Fk9T7trKY7CGAMhc8HdY%2FrHm3E4cJ%2FzjZqcX7i%2FcqB8rYYeND"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c259baa4e19de94-EWR alt-svc: h3=":443"; ma=86400 Page title: Game Polygon Fantasy: Action RPG <!DOCTYPE html> <html lang=en> <head> <meta name="viewport"> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Game Polygon Fantasy: Action RPG</title> <link rel="stylesheet" type="text/css" href="main.css"> <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css" rel="stylesheet"> <link rel="shortcut icon" type="image/x-icon" href="../static/thunderrider498.shop/assets/RlH0nAjaw5w7oJ2YaTuq.jpg" /> </head> <body> <nav class="navbar navbar-expand-lg bg sticky-top"> <a href="" class="navbar-brand ms-6 text-white">Game Polygon Fantasy: Action RPG</a> <div class="collapse navbar-collapse ul-bg" id="btn"> <ul class="navbar-nav fs-6 text-nowrap"> <li class="nav-item"> <a href="#reviews" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Reviews</a> </li> <li class="nav-item"> <a href="#overview" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Terms of Use</a> </li> <li class="nav-item"> <a href="#overview2" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Privacy Policy</a> </li> <li class="nav-item nav-btn"> <a href=/ class="nav-link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> DOWNLOAD</a> </li> </ul> </div> </nav> <div class="header"> <div class="textt"> <h1 class="name"><span>Game Polygon Fantasy: Action RPG</span></h1> <div class="center" style="margin-top: 40px;"> <button type="button" class="btn"><a class="btn btn-primary text-white" href=/ role="button"> DOWNLOAD</a></button> </div> </div> </div> <div class="dis" id="overview"> <h1 class="font-cond-b fg-text-d lts-md fs-300 fs-300-xs no-mg" contenteditable="false">GAME POLYGON FANTASY: ACTION RPG</h1><br> <p class="fs-5" style="margin:10px; margin-bottom: 50px;">Virtual coaching tips are offered based on match length and difficulty. Penalty system deducts points for each victory and advance through ranks. The risk-reward system lets players review winning strategies. Dynamic scoring adjusts based on final standings....</p> </div> <div class="wrapper" id="reviews"> <h1 class="font-cond-b fg-text-d lts-md fs-300 fs-300-xs no-mg" contenteditable="false"> WHAT OUR FANTASTIC REVIEWS</h1><br> <div class="team"> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/PgOkchKRQSbHdJMN4ySh.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Trevor L</h3> <p>I'm loving this game, it's got great replay value and the graphics are outstanding, love it..</p> </div> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/Yhrv9pD3oQyINkOBc6pq.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Christopher R</h3> <p>Complex story line that keeps you hooked for hours..</p></div> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/xNbAY9C190gVFFMCdxuC.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Alyssa M</h3> <p>Intuitive controls that make it a visual delight..</p> </div> </div> </div> <div class="header"> <div class="textt"> <h1 class="name"><span>Game Polygon Fantasy: Action RPG</span></h1> <div class="center" style="margin-top: 40px;"> <button type="button" class="btn"><a class="btn btn-primary text-white" href=/ role="button"> DOWNLOAD</a></button> </div> </div> </div> </div> <div class="wrapperr"> <img src="../static/thunderrider498.shop/assets/HoH7u643v2zLhqCFc0OV.jpg" alt=""> <img src="../static/thunderrider498.shop/asFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · thunderrider498.shop
2026-01-23 07:34
HTTP/1.1 521 <none> Date: Fri, 23 Jan 2026 07:34:20 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c259ba8ebcbfc8f-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · thunderrider498.shop
2026-01-23 07:34
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 07:34:20 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=waQcCLsXSHp%2Fsf8e28dVJDnfRPC9OXnOWZjuR6Q0YmJJiTV4dUJ8gIUTIvXLwq63be%2BjUDqQ9z9iXTiS707MBIyNyXgRF8NOuE1w5C58uNKYzj3P"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c259ba93de46e28-EWR alt-svc: h3=":443"; ma=86400 Page title: Game Polygon Fantasy: Action RPG <!DOCTYPE html> <html lang=en> <head> <meta name="viewport"> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Game Polygon Fantasy: Action RPG</title> <link rel="stylesheet" type="text/css" href="main.css"> <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css" rel="stylesheet"> <link rel="shortcut icon" type="image/x-icon" href="../static/thunderrider498.shop/assets/RlH0nAjaw5w7oJ2YaTuq.jpg" /> </head> <body> <nav class="navbar navbar-expand-lg bg sticky-top"> <a href="" class="navbar-brand ms-6 text-white">Game Polygon Fantasy: Action RPG</a> <div class="collapse navbar-collapse ul-bg" id="btn"> <ul class="navbar-nav fs-6 text-nowrap"> <li class="nav-item"> <a href="#reviews" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Reviews</a> </li> <li class="nav-item"> <a href="#overview" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Terms of Use</a> </li> <li class="nav-item"> <a href="#overview2" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Privacy Policy</a> </li> <li class="nav-item nav-btn"> <a href=/ class="nav-link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> DOWNLOAD</a> </li> </ul> </div> </nav> <div class="header"> <div class="textt"> <h1 class="name"><span>Game Polygon Fantasy: Action RPG</span></h1> <div class="center" style="margin-top: 40px;"> <button type="button" class="btn"><a class="btn btn-primary text-white" href=/ role="button"> DOWNLOAD</a></button> </div> </div> </div> <div class="dis" id="overview"> <h1 class="font-cond-b fg-text-d lts-md fs-300 fs-300-xs no-mg" contenteditable="false">GAME POLYGON FANTASY: ACTION RPG</h1><br> <p class="fs-5" style="margin:10px; margin-bottom: 50px;">Virtual coaching tips are offered based on match length and difficulty. Penalty system deducts points for each victory and advance through ranks. The risk-reward system lets players review winning strategies. Dynamic scoring adjusts based on final standings....</p> </div> <div class="wrapper" id="reviews"> <h1 class="font-cond-b fg-text-d lts-md fs-300 fs-300-xs no-mg" contenteditable="false"> WHAT OUR FANTASTIC REVIEWS</h1><br> <div class="team"> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/PgOkchKRQSbHdJMN4ySh.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Trevor L</h3> <p>I'm loving this game, it's got great replay value and the graphics are outstanding, love it..</p> </div> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/Yhrv9pD3oQyINkOBc6pq.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Christopher R</h3> <p>Complex story line that keeps you hooked for hours..</p></div> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/xNbAY9C190gVFFMCdxuC.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Alyssa M</h3> <p>Intuitive controls that make it a visual delight..</p> </div> </div> </div> <div class="header"> <div class="textt"> <h1 class="name"><span>Game Polygon Fantasy: Action RPG</span></h1> <div class="center" style="margin-top: 40px;"> <button type="button" class="btn"><a class="btn btn-primary text-white" href=/ role="button"> DOWNLOAD</a></button> </div> </div> </div> </div> <div class="wrapperr"> <img src="../static/thunderrider498.shop/assets/HoH7u643v2zLhqCFc0OV.jpg" alt=""> <img src="../static/thunderrider498.shop/asFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.casinoonlineitaly.com
2026-01-23 07:29
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 07:29:13 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close x-redirect-by: WordPress location: https://casinoonlineitaly.com/ Cache-Control: public, max-age=0 expires: Fri, 23 Jan 2026 07:29:12 GMT x-litespeed-cache: hit Server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EG0Ou%2BuyB4QfGXWz%2BOmUayF4yHk%2F2DQHL%2BCyV3lZafGk1Sxb1gHTwxHhT4TPNP%2BuC2E%2B2RXsVzI4oPB2vZYegP1gAPRJJZpIL1X7M8FQegQn9u2diDRfZmU%3D"}]} CF-RAY: 9c2594297e3f1e2f-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · elementor.createonweb.com
2026-01-23 07:20
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 07:20:56 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://elementor.createonweb.com/wp-json/>; rel="https://api.w.org/" link: <https://elementor.createonweb.com/wp-json/wp/v2/pages/16>; rel="alternate"; title="JSON"; type="application/json" link: <https://elementor.createonweb.com/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=n8iqI4iz1rG3z13qG3KVLKrZfVWgxAl2qZo7a9pGQQu6KLL4gEA2ITomXy%2BqKcMWdwMJN5ob4UnherForU0ggcjKUvb6o02gEUGY9BZBZYvZCek9qF8x8YY%3D"}]} vary: Accept-Encoding Server: cloudflare x-turbo-charged-by: LiteSpeed x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c2588072dbbd2a9-FRA alt-svc: h3=":443"; ma=86400 Page title: Elementor <!doctype html> <html lang="en-US"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="profile" href="https://gmpg.org/xfn/11"> <title>Elementor</title> <meta name='robots' content='noindex, nofollow' /> <link rel="alternate" type="application/rss+xml" title="Elementor » Feed" href="https://elementor.createonweb.com/feed/" /> <link rel="alternate" type="application/rss+xml" title="Elementor » Comments Feed" href="https://elementor.createonweb.com/comments/feed/" /> <link rel="alternate" title="oEmbed (JSON)" type="application/json+oembed" href="https://elementor.createonweb.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Felementor.createonweb.com%2F" /> <link rel="alternate" title="oEmbed (XML)" type="text/xml+oembed" href="https://elementor.createonweb.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Felementor.createonweb.com%2F&format=xml" /> <style id='wp-img-auto-sizes-contain-inline-css'> img:is([sizes=auto i],[sizes^="auto," i]){contain-intrinsic-size:3000px 1500px} /*# sourceURL=wp-img-auto-sizes-contain-inline-css */ </style> <style id='wp-emoji-styles-inline-css'> img.wp-smiley, img.emoji { display: inline !important; border: none !important; box-shadow: none !important; height: 1em !important; width: 1em !important; margin: 0 0.07em !important; vertical-align: -0.1em !important; background: none !important; padding: 0 !important; } /*# sourceURL=wp-emoji-styles-inline-css */ </style> <link rel='stylesheet' id='wp-block-library-css' href='https://elementor.createonweb.com/wp-includes/css/dist/block-library/style.min.css?ver=6.9' media='all' /> <style id='global-styles-inline-css'> :root{--wp--preset--aspect-ratio--square: 1;--wp--preset--aspect-ratio--4-3: 4/3;--wp--preset--aspect-ratio--3-4: 3/4;--wp--preset--aspect-ratio--3-2: 3/2;--wp--preset--aspect-ratio--2-3: 2/3;--wp--preset--aspect-ratio--16-9: 16/9;--wp--preset--aspect-ratio--9-16: 9/16;--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--preset--color--luminous-vivid-orange: #ff6900;--wp--preset--color--luminous-vivid-amber: #fcb900;--wp--preset--color--light-green-cyan: #7bdcb5;--wp--preset--color--vivid-green-cyan: #00d084;--wp--preset--color--pale-cyan-blue: #8ed1fc;--wp--preset--color--vivid-cyan-blue: #0693e3;--wp--preset--color--vivid-purple: #9b51e0;--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple: linear-gradient(135deg,rgb(6,147,227) 0%,rgb(155,81,224) 100%);--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan: linear-gradient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgb(252,185,0) 0%,rgb(255,105,0) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: linear-gradient(135deg,rgb(255,105,0) 0%,rgb(207,46,46) 100%);--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray: linear-gradient(135deg,rgb(238,238,238) 0%,rgb(169,184,195) 100%);--wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135deg,rgb(255,206,236) 0%,rgb(152,150,240) 100%);--wp--preset--gradient--blush-bordeaux: linear-gradient(135deg,rgb(254,205,165) 0%,rgb(254,45,45) 50%,rgb(107,0,62) 100%);--wp--preset--gradient--luminous-dusk: linear-gradient(135deg,rgb(255,203,112) 0%,rgb(199,81,192) 50%,rgb(65,88,208) 100%);--wp--preset--gradient--pale-ocean: linear-gradient(135deg,rgb(255,245,203) 0%,rgb(182,227,212) 50%,rgb(51,167,181) 100%);--wp--preset--gradient--electric-grass: linear-gradient(135deg,rgb(202,248,128) 0%,rgb(113,206,126) 100%);--wp--preset--gradient--midnight: linear-gradient(135deg,rgb(2,3,129) 0%,rgb(40,116,252) 100%);--wp--preset--font-size--small: 13px;--wp--preset--font-size--medium: 20px;--wp--prFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · x2.pg.cloudns.nz
2026-01-23 06:48
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 06:48:04 GMT Content-Type: application/json;charset=utf-8 Content-Length: 1866 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2F9NMzw7l13JXCPy1jk46RzOWKvKaw%2BG%2FU5Ri%2BlAbh1LzTHNl%2FYBmISqdl4QIs09QMnujAiDQtvKFzLHMZe8sNyDYBV2o2RaRFlB3tzloX0s%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2557e359ec30f0-FRA alt-svc: h3=":443"; ma=86400 { "httpProtocol": "HTTP/1.1", "requestPriority": "", "edgeRequestKeepAliveStatus": 1, "requestHeaderNames": {}, "clientTcpRtt": 0, "colo": "FRA", "asn": 14061, "asOrganization": "DigitalOcean, LLC", "country": "DE", "isEUCountry": "1", "city": "Frankfurt am Main", "continent": "EU", "region": "Hesse", "regionCode": "HE", "timezone": "Europe/Berlin", "longitude": "8.68417", "latitude": "50.11552", "postalCode": "60306", "tlsVersion": "TLSv1.3", "tlsCipher": "AEAD-AES128-GCM-SHA256", "tlsClientRandom": "Z++wOp1qA7H75oA0M9amoU1qwer3AQzXj2JC72K5lkU=", "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=", "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=", "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=", "tlsExportedAuthenticator": { "clientHandshake": "6429eba1349d9e497401bcd340fe11448b32cf8222082c92b4117ec70b16782e", "serverHandshake": "15a9a1ae9f6a18b20bfc24ea7b6151f901cb194ac0812d4b7f690a72ba1b50fa", "clientFinished": "149e7fe59f18d8645587ba04b9611caa3725333e42dbd2d522228b78c1982cea", "serverFinished": "1f0c7d525964201ae545847f5238ff3ed4dc7b63d0f409bdb5d04a960f7e9988" }, "tlsClientHelloLength": "1499", "tlsClientAuth": { "certPresented": "0", "certVerified": "NONE", "certRevoked": "0", "certIssuerDN": "", "certSubjectDN": "", "certIssuerDNRFC2253": "", "certSubjectDNRFC2253": "", "certIssuerDNLegacy": "", "certSubjectDNLegacy": "", "certSerial": "", "certIssuerSerial": "", "certSKI": "", "certIssuerSKI": "", "certFingerprintSHA1": "", "certFingerprintSHA256": "", "certNotBefore": "", "certNotAfter": "" }, "verifiedBotCategory": "" }Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · x2.pg.cloudns.nz
2026-01-23 06:19
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 06:19:04 GMT Content-Type: application/json;charset=utf-8 Content-Length: 1868 Connection: close Server-Timing: cfEdge;dur=64,cfOrigin;dur=0 Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=w%2FwHcP%2BFDH0BQZh4PduTGcBZWGu%2BQ32FOx%2BUsCkz6LnazpVgy7ZJd%2FpQsaiK1PQETjRV12X859u3utvnri7Fcr9YQdjRQOQwXTmdXx7G6AI%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c252d67da7b37a5-BOM alt-svc: h3=":8443"; ma=86400 { "httpProtocol": "HTTP/1.1", "requestPriority": "", "edgeRequestKeepAliveStatus": 1, "requestHeaderNames": {}, "clientTcpRtt": 13, "colo": "BOM", "asn": 14061, "asOrganization": "DigitalOcean, LLC", "country": "IN", "isEUCountry": false, "city": "Bāshettihalli", "continent": "AS", "region": "Karnataka", "regionCode": "KA", "timezone": "Asia/Kolkata", "longitude": "77.575", "latitude": "13.2257", "postalCode": "560100", "tlsVersion": "TLSv1.3", "tlsCipher": "AEAD-AES128-GCM-SHA256", "tlsClientRandom": "aGR1UwmMDzQBaXnIOIxAuVhaU1l184HRJ84hN11KRXM=", "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=", "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=", "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=", "tlsExportedAuthenticator": { "clientHandshake": "88fb40a3b0e353934c79cf7d450bf6eb3bbc5135df7aa5f2f99a534012261c9d", "serverHandshake": "79310671691a5d0e162100fce2ce20764ba0b08953b38b9a19b0c9f366adaa31", "clientFinished": "e57e9fcbe3cd61222c6be5070b3f0fa231a55c96e284578540b384dfad4b09e4", "serverFinished": "a81bd49aabb3b1c0128ed57985ed40a4dc293031598bc634541c2e5dc1001232" }, "tlsClientHelloLength": "1499", "tlsClientAuth": { "certPresented": "0", "certVerified": "NONE", "certRevoked": "0", "certIssuerDN": "", "certSubjectDN": "", "certIssuerDNRFC2253": "", "certSubjectDNRFC2253": "", "certIssuerDNLegacy": "", "certSubjectDNLegacy": "", "certSerial": "", "certIssuerSerial": "", "certSKI": "", "certIssuerSKI": "", "certFingerprintSHA1": "", "certFingerprintSHA256": "", "certNotBefore": "", "certNotAfter": "" }, "verifiedBotCategory": "" }Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mustangaanbiedingen.com
2026-01-23 04:26
HTTP/1.1 403 Forbidden Date: Fri, 23 Jan 2026 04:26:14 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kCZqhh8DkNL%2FOD%2BhZDjx9FiU3Wm0XPvjmPOUblKoLoAvIcFQoPMnnI9vcxG5v6%2FbsJatg%2BmWGPD6VNG7%2FOix5hcMgF2Wpac3NOXdmJOm7JrUb6MSRQs1"}]} CF-RAY: 9c24881b3a195fe3-SJC alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.mustangaanbiedingen.com
2026-01-23 04:26
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 04:26:33 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c24881e2b2a1d47-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mustangaanbiedingen.com
2026-01-23 04:26
HTTP/1.1 522 <none> Date: Fri, 23 Jan 2026 04:26:33 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c24881daf54a17f-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mustangaanbiedingen.com
2026-01-23 04:26
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 04:26:14 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://mustangaanbiedingen.com/ Strict-Transport-Security: max-age=31536000 cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bRXHQhEir9OKoXr9ao70iGoMdKMkPAiLYnWdK0ruByhqH6gM%2F2BCcyjAptagK3MOpR3Mgo8evwWF4dEGPCmgK9RlrCoj6y3cj5O%2F4KkT5K57%2FYWI%2Fz8R"}]} CF-RAY: 9c24881be94efd33-SIN alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.mustangaanbiedingen.com
2026-01-23 04:26
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 04:26:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://www.mustangaanbiedingen.com/ Strict-Transport-Security: max-age=31536000 cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wHrxh62arIwu%2FB833u3JbQ%2BwhIEc8EpnuDhnC4DVFQq44L73MjelvQGQRW0khrUKmFsXnR%2FbaTh1TsxsPwQnuIi8t0kx2UjgKZVKan3%2FqAcrxmAy3rhxfy08LA%3D%3D"}]} CF-RAY: 9c24881968ee373e-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.mustangaanbiedingen.com
2026-01-23 04:26
HTTP/1.1 403 Forbidden Date: Fri, 23 Jan 2026 04:26:14 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zeCvpPlONX0UdNvxmccOzmyK8CWcscQSmg10%2BqvVBEH5O0uE6w2zZbbhZDFJ4slmASStK9560T4luDh44gs%2BnUNAq9QHjRcnWt3j3JPQEYZtS8EQAnEqEsxHlA%3D%3D"}]} CF-RAY: 9c24881a4b0d63b3-LHR alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx</center> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.jirisafka.cz
2026-01-23 03:34
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 03:34:28 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare location: https://jirisafka.cz/ x-redirect-by: WordPress cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vpILEHyNVqZyYIVy%2FZ9p2UFgEMIKt8gmSHWkCCiHeKDUubA7QiifbWRQgNEiNllbldldDa2vDAP17mrGReJiDIinwO52vssXkwwbzOSmJx0%3D"}]} CF-RAY: 9c243c4a0897ac6b-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.obrabodaroleta.com
2026-01-23 03:02
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 03:02:02 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close x-redirect-by: WordPress location: https://obrabodaroleta.com/ Cache-Control: max-age=7200 expires: Fri, 23 Jan 2026 05:02:02 GMT x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=205 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=AyhA2X7lccookoSVvnDIHwYS2uEB3JGXYtR88AcLh8RZ6ci2nmpC8gv6BvpYTZ6909EUYNIINm44H2OqjLoMFOzGycEzfOgi4qJxoKu4d%2FwjBF7veAY%3D"}]} CF-RAY: 9c240cc72a6df569-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · ffece.com
2026-01-23 02:09
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 02:09:07 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare x-powered-by: PHP/8.0.30 x-redirect-by: WordPress location: https://www.ffece.com/ cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=179 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=o77k22%2BZ4hLbPuU4U6yEALbFqV%2BbGd34lpDzGhFQ2048Az7BTGnoABOe8YR1r2dfJdvE11YZ5BBsqoKt7gHLQ%2BRd0M65Zahsyg%3D%3D"}]} CF-RAY: 9c23bf478bb833fc-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · estaantrag.org
2026-01-23 01:57
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 01:57:29 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Vary: Accept-Encoding,Cookie,User-Agent Expires: Fri, 23 Jan 2026 02:57:29 GMT Cache-Control: max-age=3600 X-Redirect-By: WordPress cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MC%2B8R0u4uR9JJCaq%2B2VjRkGvBbPIiD0KOPibSgVk0A5h2A%2B%2BHGYsCdekx4vrnO8QzMLMKi2LRyEYfzNKtaMyyuBeB2jxDOaTFvFDHrHb"}]} Location: https://www.estaantrag.org/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=205,cfOrigin;dur=351 CF-RAY: 9c23ae3a2f3657d4-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · skylease.homes
2026-01-23 01:13
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 01:13:14 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cUR8LeUoi6gzJxwLk68qeZtpMW7WmeuJGqVkRPb3%2Bx8ZmCZxpLgwoYy3YgTDO9qOv2uKMg1Nm8lnoXDFJCkVIDMSV4LOeI%2BfK5z8Yod2"}]} cf-cache-status: DYNAMIC CF-RAY: 9c236d602c0c7a47-SIN alt-svc: h3=":443"; ma=86400 Page title: Skylease <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <!--metatextblock--> <title>Skylease</title> <meta name="description" content="Premium Helicopter Rentals for Business, Travel, and Aerial Experiences. From VIP transfers to scenic flights and event logistics — Skylease offers safe, stylish, and fully managed helicopter rental services with maximum flexibility and comfort." /> <meta name="keywords" content="helicopter rental service, private helicopter charter, aerial sightseeing flights, VIP helicopter transfer" /> <meta property="og:url" content="https://skylease.homes" /> <meta property="og:title" content="Skylease" /> <meta property="og:description" content="Premium Helicopter Rentals for Business, Travel, and Aerial Experiences. From VIP transfers to scenic flights and event logistics — Skylease offers safe, stylish, and fully managed helicopter rental services with maximum flexibility and comfort." /> <meta property="og:type" content="website" /> <meta property="og:image" content="images/tild3264-3134-4936-a165-383538663062__-__resize__504x__image.png" /> <link rel="canonical" href=" https://skylease.homes"> <!--/metatextblock--> <meta name="format-detection" content="telephone=no" /> <meta http-equiv="x-dns-prefetch-control" content="on"> <link rel="dns-prefetch" href="https://ws.tildacdn.com"> <link rel="shortcut icon" href="images/tildafavicon.ico" type="image/x-icon" /> <!-- Assets --> <link rel="stylesheet" href="css/tilda-grid-3.0.min.css" type="text/css" media="all" onerror="this.loaderr='y';"/> <link rel="stylesheet" href="css/tilda-blocks-page69864145.min.css?t=1748513093" type="text/css" media="all" onerror="this.loaderr='y';" /> <link rel="preconnect" href="https://fonts.gstatic.com"> <link href="https://fonts.googleapis.com/css2?family=Manrope:wght@300;400;500;600;700&subset=latin,cyrillic" rel="stylesheet"> <link rel="stylesheet" href="css/tilda-animation-2.0.min.css" type="text/css" media="all" onerror="this.loaderr='y';" /> <link rel="stylesheet" href="css/tilda-cover-1.0.min.css" type="text/css" media="all" onerror="this.loaderr='y';" /> <link rel="stylesheet" href="css/tilda-forms-1.0.min.css" type="text/css" media="all" onerror="this.loaderr='y';" /> <link rel="stylesheet" href="css/tilda-cards-1.0.min.css" type="text/css" media="all" onerror="this.loaderr='y';" /> <script nomodule src="js/tilda-polyfill-1.0.min.js" charset="utf-8"></script> <script type="text/javascript">function t_onReady(func) {if(document.readyState!='loading') {func();} else {document.addEventListener('DOMContentLoaded',func);}} function t_onFuncLoad(funcName,okFunc,time) {if(typeof window[funcName]==='function') {okFunc();} else {setTimeout(function() {t_onFuncLoad(funcName,okFunc,time);},(time||100));}}</script> <script src="js/tilda-scripts-3.0.min.js" charset="utf-8" defer onerror="this.loaderr='y';"></script> <script src="js/tilda-blocks-page69864145.min.js?t=1748513093" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/lazyload-1.3.min.export.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/tilda-animation-2.0.min.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/tilda-menu-1.0.min.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/tilda-cover-1.0.min.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/tilda-cards-1.0.min.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/tilda-skiplink-1.0.min.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script src="js/tilda-events-1.0.min.js" charset="utf-8" async onerror="this.loaderr='y';"></script> <script type="text/javascript">window.dataLayer=window.dataLayer||[];</script> <script type="text/javascript">(function() {if((/bot|google|yandex|baidu|bing|msn|duckduckbot|teoma|slurp|crawler|spider|robot|crawling|facebook/i.test(navigator.userAgeFound 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · skylease.homes
2026-01-23 01:13
HTTP/1.1 521 <none> Date: Fri, 23 Jan 2026 01:13:14 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c236d5ffe2b6e08-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.walkinthepark.ie
2026-01-23 00:10
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 00:11:00 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare x-powered-by: PHP/8.3.30 x-powered-by: PleskLin vary: Accept-Encoding,Cookie x-redirect-by: WordPress location: https://walkinthepark.ie/ cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=1197 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tFtlm9VOJGWHYTBRgbKsDKq0cdUaCbNANlXnpGMg1Oc0q4Bj4rbmGm9inH60502lJOZ6AHonn8Vn%2Fkaht3fi1hOcdeJcEcUy6QZX5M5ImtQ%2FF1JR"}]} CF-RAY: 9c23123639223eba-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · rubuaalkaram.com
2026-01-23 00:08
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 00:08:58 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Link: <https://172-104-251-49.ip.linodeusercontent.com/index.php/wp-json/>; rel="https://api.w.org/" Vary: Accept-Encoding Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=283w%2B8G2zVQrrKJ0uEEdwkBKK12rD7yPw1vckOpiLwI%2BqAm5KnzgNwvDtirisks3zYgmFOL1hzn59i3d%2Bhg0%2Fibnd1siWfo6e8Ot7Tv4DrQ%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c230f419f3b3870-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · hermesbet.net
2026-01-22 23:58
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 23:58:17 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7moxa2umxvah8Tz5sJoT9HLFrTMjAG92nHCr2C%2FQ0S6O9CH6SxlQvoyDTCsV66yWxuaPg6WeCeZV00JNho7trVslT3qMRGg54AdRjVs%3D"}]} Last-Modified: Tue, 05 Aug 2025 23:18:59 GMT Accept-Ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9c22ffa1ba91dbab-FRA alt-svc: h3=":443"; ma=86400 <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body></body></html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · walkinthepark.ie
2026-01-22 23:16
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 23:16:54 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare x-powered-by: PHP/8.3.30 x-powered-by: PleskLin vary: Accept-Encoding,Cookie Cache-Control: max-age=3, must-revalidate Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lsXNYGZZp8zM9xHzyy01GfvjL%2Bfk09y3pjRin2xsMtJR0qnjeMVS5LnnLg9JTOgBE8TuzC9NQXrNvGp4pAPkPFard6HejQ1MIBKhBTvKvow%3D"}]} last-modified: Thu, 22 Jan 2026 23:00:04 GMT cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=6,cfOrigin;dur=229 CF-RAY: 9c22c3017bf2dcac-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · seliware.net
2026-01-22 23:14
HTTP/1.1 400 Bad Request Server: cloudflare Date: Thu, 22 Jan 2026 23:14:22 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · thruelove.solucionesqa.com
2026-01-22 23:10
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 23:10:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://thruelove.solucionesqa.com/wp-json/>; rel="https://api.w.org/", <https://thruelove.solucionesqa.com/wp-json/wp/v2/pages/41>; rel="alternate"; title="JSON"; type="application/json", <https://thruelove.solucionesqa.com/>; rel=shortlink Cache-Control: max-age=0 expires: Thu, 22 Jan 2026 23:10:29 GMT vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2Frowe51FODxCEFP2Enmmlu0ARhacxUUb7ygs6bcmPYZ2iM5z%2BaTnBv3ipF8Dnx4s9OYCs98CbQJD8KTgpVB001lHXw7OEJnvUBVrkq%2BDPXAbpzFDwGBGsKAb"}]} x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=1262 CF-RAY: 9c22b99bdc2de5e2-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · superwin365.bet
2026-01-22 22:37
HTTP/1.1 403 Forbidden Date: Thu, 22 Jan 2026 22:37:29 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=1 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5cRwenR4hluuWUE7n5V%2B0qrAFBTvJEV33f9KR3VFeW9Cmjd8ZwCv%2B4gqtzjcAplocfot0ANl6ICIqFp5kW1xL7A6tugQx3CHZCdGtXCoBQ%3D%3D"}]} CF-RAY: 9c228942ff6b9b96-SIN alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"ef035e1da0fb4b64929ebe921b6e57c9","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · superwin365.bet
2026-01-22 22:37
HTTP/1.1 521 <none> Date: Thu, 22 Jan 2026 22:37:29 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close set-cookie: cf_use_ob=0; Expires=Thu, 22 Jan 2026 22:37:59 GMT Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2289440b0960e5-AMS alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · superwin365.bet
2026-01-22 22:37
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 22:37:29 GMT Content-Length: 0 Connection: close Location: https://superwin365.bet/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c0FH0gPXJbTVaFG4LJF7Aq7EWhfGIuu8JC34Dp3awXKqKgih3Yt8C0fZh8RFoeYN3IOUWVHpOSPu5rrwMFMUICikG%2B9SCe6RjUlunchAJQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c228942e9de8cb6-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · lucaspires.com.br
2026-01-22 22:32
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 22:32:27 GMT Content-Length: 0 Connection: close Location: https://lucaspires.com.br/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9Sh2B1SZ5rQsH8Wu6eBRTi2JPD%2F8pihuKxHNCgDaquxlz7QhP3arRiKuQFfUOXyipHF5CBw8WBiKK9wk7m9GK6lyQeSeAF7JcDQonUFxlrWn"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c2281e69cd303f0-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · lucaspires.com.br
2026-01-22 22:32
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 22:32:28 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Fri, 01 Sep 2023 01:04:16 GMT Vary: Accept-Encoding Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lZ%2BVWvLRIAavv%2Fok8fM1BnPPGiD9giZJ9WiYw7D%2FkgXiZAh%2FCj%2FojLvHe1wkn8O1sfHdRSh3rjwOqJ9KLfxcEAhsm4%2BUmoAJ0JdGzk%2BILuoL"}]} cf-cache-status: DYNAMIC CF-RAY: 9c2281e7593cc3fd-EWR alt-svc: h3=":443"; ma=86400 Page title: Lucas Pires <html> <head> <title>Lucas Pires</title> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" /> <link rel="stylesheet" href="assets/css/main.css" /> <noscript><link rel="stylesheet" href="assets/css/noscript.css" /></noscript> </head> <link rel="shortcut icon" href="favicon.png" > <body class="is-preload"> <!-- Wrapper --> <div id="wrapper"> <!-- Main --> <section id="main"> <header> <span class="avatar"><img src="images/avatar.jpg" alt="" /></span> <h1>Lucas Pires</h1> <p>Aviação Civil & Produção Executiva de Audiovisual</p> </header> <footer> <ul class="icons"> <li><a href="https://br.linkedin.com/in/lucaspiresbarbosa" target="_blank" class="icon brands fa-linkedin">LinkedIn</a></li> <li><a href="https://instagram.com/capslukas" target="_blank" class="icon brands fa-instagram">Instagram</a></li> </ul> </footer> </section> <!-- Footer --> <footer id="footer"> <ul class="copyright"> <li>© Lucas Pires 2023</li><li></a></li> </ul> </footer> </div> <!-- Scripts --> <script> if ('addEventListener' in window) { window.addEventListener('load', function() { document.body.className = document.body.className.replace(/\bis-preload\b/, ''); }); document.body.className += (navigator.userAgent.match(/(MSIE|rv:11\.0)/) ? ' is-ie' : ''); } </script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · lucaspires.com.br
2026-01-22 22:32
HTTP/1.1 521 <none> Date: Thu, 22 Jan 2026 22:32:28 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c2281e7cefedbcb-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · en.arabdia.com
2026-01-22 21:41
HTTP/1.1 400 Bad Request Server: cloudflare Date: Thu, 22 Jan 2026 21:41:22 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-22 21:28
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 21:28:38 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=108,cfOrigin;dur=12 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qllmUPl4zdt34aNbbKsZPbTAwlOLKdWF%2BGMIpBdIm0b%2BdYad7p3yLEUxse%2Fn%2FrZpem4Kct%2Fsxa0Y1kKq0vxayKfeR71dlZ55%2FoiZ6Q%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9c222466cd3a74e5-YYZ alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · 655336.cn
2026-01-22 21:12
HTTP/1.1 403 Forbidden Date: Thu, 22 Jan 2026 21:12:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9c220d6fdcb3de9b" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BG9i9Nn5EZ9qayMXnXOVhOdoHBRm8hI8VitniR0DlB1DgUndf2g5LKkuL3AEH16jrZhrrmQtqdUXTWOJjpJTjm5uVZNDxcUrqmp%2BVpIsck71%2B3Eq6t6bGMQPXZc%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 9c220d6fdcb3de9b-EWR alt-svc: h3=":443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,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");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: '655336.cn',cType: 'managed',cRay: '9c220d6fdcb3de9b',cH: 'KqCicygyA47yEkHXzKqAO5JJavABNBe9JE8VRc8YN_w-1769116377-1.2.1.1-rqN74CkxiyrCJuPr6Xh3pROEE_u3f3dk7n.o80TEm.4kMJIbvKy2IT.RlYHbwKPM',cUPMDTk:"\/?__cf_chl_tk=1j4SqtqDCAoUm1d7pKSXyz2yn63EZM1zRibf.2pLdPk-1769116377-1.0.1.1-3lhdjTPtRT4b_5k8_UCaZucvNHCpVJkd.9t168AFLfI",cFPWv: 'b',cITimeS: '1769116377',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=1j4SqtqDCAoUm1d7pKSXyz2yn63EZM1zRibf.2pLdPk-1769116377-1.0.1.1-3lhdjTPtRT4b_5k8_UCaZucvNHCpVJkd.9t168AFLfI",md: 'nqNu50lokVXA62qPeuw8CtAwL2Ad0qFiGG7RM6kjnUA-1769116377-1.2.1.1-xHUFzTN76oiyrat3Yri3iK1wyV6WGHbaykFGq65PE867ylP.bFuIiRAAQbcrofhWLybq6xWMPdTq8kKNrfxWCYSrel6sqyQ59vgic0t4JlDK1Jvr0ptzUqfMrkl9eC8JsucsuplX5JgpXtvtiXYKQWBxqkdj5y6ykZXvofdDY7PZnSDPcNW8vy6KOJ72hn4dGVBIQQAH5MzHUbI_9bWQBsOmaKkWJwl_NxatPg5dulmn3gTCJgvk1S3QAseJNESlyC90VEd6Qr92EpJQ.3wDJCy_PsLzs7PX_4MEzdHXYjbG2NZN_5Zivuwf5iytH2ZgZXTAtzshJh589.CVUD1.8Zn_HlyjsmlfrPZLi1eeriqJbLJ7TNwniS.3oc18UQ1qYQpeUZc5N0u13Hh_I3gFis23lYr1qTDIvvWZdPAvQTQwWsV_i.3J2Gp2..zzHLEGdnyOG3vgkJ2uOdZhxWPFFOULJ.sE1rt.2Bd21yfLjUse6zegHbmU781oemNogzUr_OtU8.96SWjWgyOIviGZ7XzadJlSHT3KXP5tvRhrPAl9NFhJU2PEZQ06SNsiSsIM1kybQsEbbcX_gdPgwwQgB9Vo9uJrZzPyYOmwW6dL9VzQjjE83xzI2qB.2nEIduJjgJOGU2U.FAB0rObe.L.k7.Fpmvmmbxlo9d0gbtoRAPffohfsxkyKRovimQ9Yb4sU_WWvb0X9SbcEXKLg9_7xAst_SzKLmC8AQtvDGBq9he7lQ4vvyT8gUbBYjKnM8mdFtXL3.ViFolGQ3JPg6e5VljwSrg_64ewX39yJriSlM.LbiF1sI.6daGGcRyJVbnjeIFjfh9z.8ZGV626DifUJRXL546mFMxC5eU5HFPin7NQ53PWpAZ4AA.ck1HzzIaW3hOYAfKs7bhd1qxRBaBdax8HHm0r53OHEA.bTBilGqGd85atSvPXnid79S2u9EqTec9Lw1aYxFQfuyUCV4ASf_Q',mdrd: 'tbaxAabUNPxgnVG5tIpqIesOzksDmKLDSssE2c56T38-1769116377-1.2.1.1-cR3ZvDlbf7e26b.bfajVPCcjasWCu04h223tUlnXLk_eXoUd4wPCuqPABedgP6UYiiFudKfdCuYIS77QuuZWeznqj3JgxMP8XFv1S.vwud1Vw7H9ycZyFecSec96Ol6_macPS3nBpZE4.RCoBVvGEEaw2yeqlIgJhvPi_M2sCHUf19MHRu5eBE0Re8TbGFApzt6XhWqcN4veHK5switsb2ys6v3zh_jCjNnHZXkSrcpSMOtj4xUNYFS5jNNSZ8i.szEKOqtNvqDS1XDmEGIedJIYKSKtd8w8jcvHKhlkWp9reuzgoFhAcHnW03rTdiOEQa3qAfTqT9R0V.r9Pl09sv49oIREW403kqKJ7qTPxw2GyBBN8k0hqHq1K8itQDdsws2fnTOj6rF7J9dFJ7N.x.NQMmEZEYPSnhcHNgcsA1wX8EjFIv_Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · 655336.cn
2026-01-22 21:12
HTTP/1.1 403 Forbidden Date: Thu, 22 Jan 2026 21:12:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9c220d6c6cb566e2" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F1la7pJM9k0RSFPXtqw2CcwvL40qv1SvsTlIgVYgOLYPUmSj%2F58%2BoPHJ29VLbTbzn7TQQjtGbRTlL%2FnFyZp9UcgSTOiKOHMkXl6Yd8jRg0GeWLWwp8WZ%2FAzFClQ%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 9c220d6c6cb566e2-AMS alt-svc: h3=":443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,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");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: '655336.cn',cType: 'managed',cRay: '9c220d6c6cb566e2',cH: 'XCak_gDNlCXblZ58PvGwwh6HyocAzHoe5N6D.a9FowY-1769116377-1.2.1.1-1MgVWzDKh5mhcjCbRxBGVLNzjlqAEqEY.ZQ0_ki6nG05Ayu_I9XpmrW7ViXEp5KJ',cUPMDTk:"\/?__cf_chl_tk=rkFADwhTuFjBMbZdbfMKU6Ie64uy7yH5UMOwZkv_Ggc-1769116377-1.0.1.1-8bh4t1YHDyPxCxYpLTN_7BdpUDfROGzhTLELG6LlOSQ",cFPWv: 'b',cITimeS: '1769116377',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=rkFADwhTuFjBMbZdbfMKU6Ie64uy7yH5UMOwZkv_Ggc-1769116377-1.0.1.1-8bh4t1YHDyPxCxYpLTN_7BdpUDfROGzhTLELG6LlOSQ",md: 'bxIN9SAfJMx6wPtirx_e7DXJmdSBpYjdF4wKNs.dVD8-1769116377-1.2.1.1-.bbOTts5mzMkFQEhtOeEsSZ3vx1_ML0YEBgLoZjGGjAiegVQVdqbSe5tAMRhySU0a216ryXeh9JyPDR7XeZc.wG8_dcLnDbJAXeLilwgSgc.HY4B1wd62ciFxuoJwgDT.fAMfcNRezO1nKxAQH9TlHSciy6HZz.cvM8VNqWPIpG8qGq92J1uQVy7JIs40TE8n6U9aptD14aJt822FjA4I5abiHqGiW0KbVv6HeaCs0Z7QOUjGD6Gmji3kTs8TOxwFb4jXPAvFnalf84KbgIQ3YJwv6xeZMEbfR2p_25O8H0oIEHmmUobX4hT55NAzlPQW1W5Y2OeNvUlG3.jhnQzM4FOSkQNa0uKlMpVYgw34Jer56KIdP3nqZhk3TnzWI2WJVBDPDKKGrJ6TakhdZhyAmb8ikH_NLLv0K4Rpa1eULwhh3PanO41CQs8YKasTRR1f80FL.kMleKYX6c9oWJ_ewSHJVrwveUUt4FKttL9vznhSaTMy5hQXW8veHPzBpOSaSaDGgFFjmigRi.JT4s2z5yYqVI2fwSQj_x5KDbntyyYp3GjxxJNpn3zYdSFeeH4UFjwOGIo2AbdMh2CFmXQSmYvXv5DowNqjDY3DWZiDUtkyzgHrlSOM_aTVm9TMOGmgAeoA8gh7aX.EcnSpcRjzieB5nrppuZK1crfVXg4eOfwg.v2wV1bavK65Km4zYH42hWuVRlpFVTnAy9hbs0iPJDnb6WgRVwCJz0I5ziTFI7OmT8gtkFoCsdLBQqxKbzGFrDwPzTqfengCyk029hzF0g5kHcw3.U4zhIYaI.qUsv8SmYwE0HY3gssfW_s8FyZYZ.TYXXlSI.PNKugZKpBlZjklGfhCXO0aa4AFCMzU3cLjj0SWC6xBaKOTr.QxAYRacDfgIeQEJuPMprSr.AmClOri19bR8lL5pbaix8TL.u2p1O7tBW_71cj7no5fr6i2N9JvX59fmtOK20wA0YHQA',mdrd: '3F6MITzoVaGcfX4sBlK7FNqM_lnEyEjD4ickyNptJ6k-1769116377-1.2.1.1-qtYJBd2yEwLF8IWuPds22UWWS42Yo9qDjDrPyjpfveJU5yeXUBRCWteaaXXuF9zl2esHN14lI0VbBx7EZPT3VEgjmEBic0KfZHl_sLJXPdpb03kH.faxMWQ6OwFQlItoQl2aW7TnxHgacmBLYtpOdLlOFi5v6Zm8.CS7SsoOhZWsP8.YkM7JG79gQRzs9mNdmEPuPefvrFiosnvDDksYfUSSrJnBa_VqIIbok8tWuUQCelTUzss.RaJNIa60M9uDgD_TM1z7QD0eu.RKnBhZILaB2sWt75Z2vH6D7X61HYWsRAmwWygTbWhOTh8oOxGF11SE.3YMne7FLRecFPn5hV37L1CV9TLVFMndNIS6Mzb5qzv75j25CPWWGr.VPCx78td9kP7Pswz7NNPVnqcvygz0AUFJ5DwYmXZGT8.PY.xhMrGWsVCFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · 655336.cn
2026-01-22 21:12
HTTP/1.1 403 Forbidden Date: Thu, 22 Jan 2026 21:12:56 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9c220d6c0be28f32" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G5DcDsFsSyppsEOWoxAq4L382DsmDhngAybBKkzfCC%2FycgZ1gTAxc23lJK%2Bz7ovjDA5jjiFzB8wNEpc8O8ofleIxIvKNsUcLFD8xMoAP%2Fgos4UwIlkz0cMb5uHg%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 9c220d6c0be28f32-FRA alt-svc: h3=":8443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHdpZHRoPSIzMiIgaGVpZ2h0PSIzMiIgZmlsbD0ibm9uZSI+PHBhdGggZmlsbD0iI0IyMEYwMyIgZD0iTTE2IDNhMTMgMTMgMCAxIDAgMTMgMTNBMTMuMDE1IDEzLjAxNSAwIDAgMCAxNiAzbTAgMjRhMTEgMTEgMCAxIDEgMTEtMTEgMTEuMDEgMTEuMDEgMCAwIDEtMTEgMTEiLz48cGF0aCBmaWxsPSIjQjIwRjAzIiBkPSJNMTcuMDM4IDE4LjYxNUgxNC44N0wxNC41NjMgOS41aDIuNzgzem0tMS4wODQgMS40MjdxLjY2IDAgMS4wNTcuMzg4LjQwNy4zODkuNDA3Ljk5NCAwIC41OTYtLjQwNy45ODQtLjM5Ny4zOS0xLjA1Ny4zODktLjY1IDAtMS4wNTYtLjM4OS0uMzk4LS4zODktLjM5OC0uOTg0IDAtLjU5Ny4zOTgtLjk4NS40MDYtLjM5NyAxLjA1Ni0uMzk3Ii8+PC9zdmc+");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: '655336.cn',cType: 'managed',cRay: '9c220d6c0be28f32',cH: 'nNKRjsvr3dVtyf4BcfGNxBprIQneI.ZEiRJYFsEZO0g-1769116376-1.2.1.1-7H_tFTtzUMGwe9BEouE53XbCCT.1sad4fPzc9Y4RzzaRVh.KgEEKBext.R2crZUV',cUPMDTk:"\/?__cf_chl_tk=vDdaPUM4_J_msd4MXKXk2rNp_gBpCM60zjXNk2kNbQw-1769116376-1.0.1.1-U1tcWTXibKZ9lvNzNwSq2OKufkeaA.p3yCfug5Px8WM",cFPWv: 'b',cITimeS: '1769116376',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=vDdaPUM4_J_msd4MXKXk2rNp_gBpCM60zjXNk2kNbQw-1769116376-1.0.1.1-U1tcWTXibKZ9lvNzNwSq2OKufkeaA.p3yCfug5Px8WM",md: 'cFeTuZpMXlTZOhACWEkJ1w93xFYXS0ttJyzkVlfcw78-1769116376-1.2.1.1-PPkBHdj25QBjyirVvzSnKKli76a.8i1QqlyYPlTBW6ExacWYB96zGynqWopg1U01ZCaM4V5EBdb07rG8GMJq.Rpk5yAVBKFVt7P5NK3s9HTwVkSYYDmeHuEyOcmqJPgzNVXoT8nZvv79nOD867ZrgaRUzB.dbkfUNy7VkC_cIjKodr.k.Mz_xPYpnyHxPfR2BZuW4XZR6UKsovaax9M3tKDN3DiTCLYAomdvsGD12Rc.TbEDwkyB6xJpP6uYF.gD2WNVRPUeEjKhDv2oDs7BmK.rUhfobqawz9un.vGozfJdr_kV.hSND7pJwL681eWjxO80_1loxFRrLYGek0NxMI0PeRn546Kw_qSJBfrcAiPgwDjeanFFJxZS9_tuzVCVq0Hxs1GTzE8vx8DGF_eedMhGcCugkyD1PaFTAQXMpFipAP5ov8lTXKTFI7pBdTf4evH0lO5nKd1j7neqnuFhEbVqqIoDzsQIJFkzYEt5wCNoXzYT.KJ0DOuZeVpkuFOJNP.WQApwtapoEQnZS1OnDtyq9H5O4Te2UXPJmVicH1UjXLOCVquwYNsRm1nVItwNzaEu.JutpbUaAeP9b21H5dXePRf3EE8NNELem17H3hYUih8XpJ4ULEHviNXsFyygRZmkzeP_kRjFfz00PAh9GaG.Z8syedxuShtWhK_5UzJcZJjq83nucaLjdqJOaFoyxcYQm7rDeL5Fyk7I.9eOb214um9v3fILvsVLTmKCybnN7CWpP9STsFIu2XKYMnoaTSjinPLYYcc14MoRmrxc7AjitLJnJv2iHXhYBVeHtLsBQM1R8skXZGV9Ell9JaQk3lzalE.R2BoebzGL6ZxE5c7qI_q1uhhmnzKm6UJM2D5owZdzygfFPi7dTDSUfc8mBAXajRW5yUPZLFHtglFgZWcBF532B5P3Pr59kMzbOtBG_s1tT.6PUjXg5ZMIlpThJrgGg8q835OFGOE_0hxHTw',mdrd: 'r0Xut4i44ffGLvsKeeAc_vF5u.6iH0N7q4EFmHn2P2Q-1769116376-1.2.1.1-tnPuX7RTTGZ_NieFmaLB5yTSvpvRC0LW1leAMBwJ3PypprilRIWCCne4.xln5FkzIdJv3kwWL6Wj_yllYb2QI4l3_iqO49mzxPSLEPo0e8tSKzqxJzK8CIiWfQjVyQnWyPUx9TfAiNbRNc6MgimBEmrn.Mpai4OsEkoOiO99rRSnwZc_igdicSuKzuMgAhj5nlImyoRyFGrWS8FybIjA_kG0R9PG9QdBrYbgcfp1wMU1wXXfhYjbbTyOi_FY_7wjebYowYNZrpqw83iq2aAc6U9l1IWtgueM5kvFYEsjlfd9lJDyuFFGwUbawZMbE3AkcoGz20qB.G2uyOVIxOKZOHpdJ0_sZmsIo0u028Rcj8FZ.KVG8pio3UJmL5sBhxyfBbaICFqGuOx6QuIReE9wIS2pr3yQLGrx00uKEOsM.zEBZPslAQTFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · melilef-mingako.com
2026-01-22 20:29
HTTP/1.1 400 Bad Request Server: cloudflare Date: Thu, 22 Jan 2026 20:29:21 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · control.modoguardian.cl
2026-01-22 20:22
HTTP/1.1 522 <none> Date: Thu, 22 Jan 2026 20:22:33 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c21c31f6c4c9bb8-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · control.modoguardian.cl
2026-01-22 20:22
HTTP/1.1 302 Found Date: Thu, 22 Jan 2026 20:22:13 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: /auth/login?next=%2F Vary: Cookie Set-Cookie: session=.eJwNyDEKhDAQBdCrfKYWcVtPsb2KfOLEDUgiM3Gb4N21evCarPGg_9RlnJqgvkjKsUgn32KI_BfrkPJu6kS9HMF00xwSD3WcNIIhvGUg1Ctxztcw6GdPmb0s93I_254i1Q.aXKG9Q.olF7lqXYk2ilWWXjWK3bnLMMBKI; HttpOnly; Path=/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8vJNNEy%2Bx4i04PDWuPZmQO8LMm7Wkx2voFiMxt3lk2CrKmnz5ApMzLKUiI%2FmBUMlBAbab%2BA0FnLLr4H7IYOwW9VxyqLRXaX4oVrMnuP0Uuiwywq5Tw%3D%3D"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=342 CF-RAY: 9c21c31adee20f4f-EWR alt-svc: h3=":443"; ma=86400 Page title: Redirecting... <!doctype html> <html lang=en> <title>Redirecting...</title> <h1>Redirecting...</h1> <p>You should be redirected automatically to the target URL: <a href="/auth/login?next=%2F">/auth/login?next=%2F</a>. If not, click the link. <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"e3a5b18ca57b4dde95c803d2f29fabab","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mabicyclette.ca
2026-01-22 20:07
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 20:07:43 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9c21adddecc61ed8-LHR Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding,Cookie Link: <https://mabicyclette.ca/wp-json/>; rel="https://api.w.org/" Link: <https://mabicyclette.ca/wp-json/wp/v2/pages/7120>; rel="alternate"; type="application/json" Link: <https://mabicyclette.ca/>; rel=shortlink X-Powered-By: WP Engine X-Cacheable: SHORT Cache-Control: max-age=600, must-revalidate X-Cache: HIT: 1 X-Cache-Group: normal Content-Security-Policy: upgrade-insecure-requests cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=EmQ6_jw5Vjzv.ms4.VAgH_siOOSgE4eUu5qoAlFXIhs-1769112463-1.0.1.1-VFHqg9iJohq64opOqZAiQUk2L7EQmOLpNHj3wAAN_ujvyCDeZuPeL7.1Y3bEHhcO47UzLt_q_0y.pTqn35nxuAYtGoDKibm5naIzxQZwOMw; path=/; expires=Thu, 22-Jan-26 20:37:43 GMT; domain=.mabicyclette.ca; HttpOnly; Secure; SameSite=None Server: cloudflare alt-svc: h3=":443"; ma=86400
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · bestraingiftco.shop
2026-01-22 19:55
HTTP/1.1 520 <none> Date: Thu, 22 Jan 2026 19:55:39 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c219c306e6706c2-AMS alt-svc: h3=":443"; ma=86400 error code: 520
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · nextco.solucionesqa.com
2026-01-22 19:36
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 19:36:28 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sun, 11 May 2025 02:58:20 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=97 Cache-Control: max-age=7200 expires: Thu, 22 Jan 2026 21:36:28 GMT vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=V3stVKJ7MxQctpUO0dwvMMXKkfyOH7n7nYBPZ%2BdygIeSEirsOiLa7ZIQlcXhhZP0To7h%2FlvukaTH3auvtP6QQuJkVZoUZH%2B%2BzWzO%2BBS1cEH%2B7DDTwg%3D%3D"}]} x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c21801c1d97edd5-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · biurowiec-archetura.pl
2026-01-22 19:24
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 19:24:09 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://biurowiec-archetura.pl/wp-json/>; rel="https://api.w.org/" vary: User-Agent,Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tkvsQ1u13U29jPIEGD3F85ptyT%2Bj2AbSe%2FB5PLbMJBnGTFS0c4F0diBtX0wzgMkjaf6uEnRIxmL3Et0xeZx%2BeS0bKPzd34rlYf7wNmGmHpCZrBe%2BcnA%3D"}]} Server: cloudflare alt-svc: h3=":443"; ma=86400 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c216e040a4e35f2-SINFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · buscatufondo.com
2026-01-22 16:40
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 16:40:56 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare last-modified: Fri, 26 Sep 2025 09:05:30 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=192,cfOrigin;dur=14 x-powered-by: PleskLin Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KibMZXxnmiXRZpF83nwgzDLEjNkIEOQ6DNu18AmNlEmGXqFFDdR%2BrIs%2F8pbf5VdlqCH01NwelmSFgP9fCN2PVY9C77uqdSq94m1OEbqRJSA%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} vary: accept-encoding cf-cache-status: DYNAMIC CF-RAY: 9c207efaca3f0c97-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · buscatufondo.com
2026-01-22 16:40
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 16:40:57 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://buscatufondo.com/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=329,cfOrigin;dur=2 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=e9VJorVKf4BUt8No1EaQ%2BwzbtU3GMYxdfrhnDLF1pOlcYPmNA9A0%2FgAgar%2BH2liXEk%2BEcdGJYSV%2Bn7yuBybqgJ6uJwxPAivYlNPMIhkh"}]} CF-RAY: 9c207efa6917f4cc-YYZ alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"439f419f8410446c85f6186a55b573f8","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · buscatufondo.com
2026-01-22 16:40
HTTP/1.1 303 See Other Date: Thu, 22 Jan 2026 16:40:56 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare location: https://buscatufondo.com/login.php expires: Fri, 28 May 1999 00:00:00 GMT last-modified: Thu, 22 Jan 2026 16:40:56 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 pragma: no-cache p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cTuC7h0TiEUo6i2lhYA%2BQbd1%2BUYZuqHmhTxv7lVA%2Fj8cp40mT0reOjwzkGUG%2F1UTDbhHljnypIUQeYPyHxmbNH3%2FQZAzx3%2BHQ7Id0NZ4eTQ%3D"}]} CF-RAY: 9c207ef969ae199c-AMS alt-svc: h3=":8443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · opo.dk
2026-01-22 15:45
HTTP/1.1 307 Temporary Redirect Date: Thu, 22 Jan 2026 15:45:33 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age:30, public Expires: Thu, 22 Jan 2026 15:46:02 GMT Last-Modified: Thu, 22 Jan 2026 15:45:32 GMT Location: http://77.68.150.180 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FednbyZrN4nQ58tLvhI%2BIS3puvFtO0LkSVBHgai2KdfQrkt0HMe3cIj3fWvBtR3YA5FlOzMb5lcFMw%2Fw%2Bd2YeCmW2rLfaw%3D%3D"}]} Vary: X-Forwarded-Proto, Accept-Encoding X-Varnish: 196479454 229704546 Age: 1 Via: 1.1 webcache1-fra1 (Varnish/trunk) Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Server: cloudflare CF-RAY: 9c202dd80945d266-FRA alt-svc: h3=":443"; ma=86400 <a href="http://77.68.150.180">Temporary Redirect</a>.Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · opo.dk
2026-01-22 15:45
HTTP/1.1 522 <none> Date: Thu, 22 Jan 2026 15:45:53 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c202dddfb4fd25d-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · opo.dk
2026-01-22 15:45
HTTP/1.1 307 Temporary Redirect Date: Thu, 22 Jan 2026 15:45:33 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age:30, public expires: Thu, 22 Jan 2026 15:46:02 GMT last-modified: Thu, 22 Jan 2026 15:45:32 GMT location: http://77.68.150.180 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0kmsVSG%2Fbaf%2FmfVbaSKPU2JMpY9sWr0uGvCfBxrUNPR4YAjDYSyc0c5ebsha9bdTTvGrBLm35r%2BC4ZNhhVFt9MkP%2FnGjxQ%3D%3D"}]} vary: X-Forwarded-Proto, Accept-Encoding x-varnish: 232915222 189009133 Age: 1 via: 1.1 webcache1-fra1 (Varnish/trunk) cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c202dd86e29046e-FRA alt-svc: h3=":443"; ma=86400 <a href="http://77.68.150.180">Temporary Redirect</a>.Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · globalideas.us
2026-01-22 15:11
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 15:12:06 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-UA-Compatible: IE=edge Link: <https://globalideas.us/wp-json/>; rel="https://api.w.org/" Link: <https://globalideas.us/wp-json/wp/v2/pages/9>; rel="alternate"; title="JSON"; type="application/json" Link: <https://globalideas.us/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wmfX8b8eQ%2BETpkfinQZrRy%2FZYmQF96RX%2BF0XuwrvzBBjtRx%2FOqatChcQ%2FJMZU8i9JwaCENr2kNURE4ySmq1ZVwboGN6Ho8H59rUr6S%2F3"}]} Vary: Accept-Encoding,User-Agent Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=12379 CF-RAY: 9c1ffc8bef37cca0-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · globalideas.us
2026-01-22 15:11
HTTP/1.1 521 <none> Date: Thu, 22 Jan 2026 15:11:54 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=1371,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1ffc87485985ad-BOM alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · openiv.top
2026-01-22 13:26
HTTP/1.1 404 Not Found Date: Thu, 22 Jan 2026 13:26:06 GMT Content-Length: 0 Connection: close Access-Control-Allow-Origin: * Cache-Control: no-store referrer-policy: strict-origin-when-cross-origin Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FZp1JOTub%2BXUC4s6TpZ6ttltXWtFyfgHf8SDxNexhBVRjwiHyLaIoPJEwe2js2OEL25nFhyaStHSHYAh53EhUjY19EmYsXm1LXk%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9c1f61911b94d9dc-FRA alt-svc: h3=":8443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · openiv.top
2026-01-22 13:26
HTTP/1.1 404 Not Found Date: Thu, 22 Jan 2026 13:26:06 GMT Content-Length: 0 Connection: close Access-Control-Allow-Origin: * Cache-Control: no-store referrer-policy: strict-origin-when-cross-origin Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OQCBQgWSdWEpDaXQyrNcYlFVnz3DYkEDLvfjmlV1KCJbMajXUu6RX%2FKXpB7c4EGOoDi7mTQI2rmoAqnSinnEAAOxVQ%2F9A5Wx0qk%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9c1f61912891d9cf-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · openiv.top
2026-01-22 13:26
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 13:26:06 GMT Content-Length: 0 Connection: close Location: https://openiv.top/ Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jcyd1rF%2FHt6vwCWzq5EUZU4%2BtamR%2BKVXI6mjMkBD66vdOUV2VKVd90UCQgwzjCmgOb6vTDHnLUV8hCzyX1FX%2Bu%2BJEobftqrNK3E%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9c1f6190ce29098f-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · maritimepestcontrol.ca
2026-01-22 12:43
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 12:43:02 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Frame-Options: SAMEORIGIN X-Frame-Options: sameorigin Last-Modified: Wed, 21 Jan 2026 00:29:56 GMT Vary: Accept-Encoding X-XSS-Protection: 1: mode=block X-Content-Type-Options: nosniff Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2F662SBBJYIyDMcgkkyXD9fFskJMF9hYGCL7vubLiAW25wAuUsHxk5aDH%2BHde87%2FD84oqgGLbR93NlI%2BlJ36bf0NuywL%2B2yXLxQivIcs0WNMfXNL03q4%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9c1f227a3d5d932b-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · maritimepestcontrol.ca
2026-01-22 12:43
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 12:43:01 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Redirect-By: WordPress X-Frame-Options: SAMEORIGIN X-Frame-Options: sameorigin cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vyqjx1%2BROwzh4WwfMetpk8XGokJO0N3hTg69dLMKOVEBz3SyM7GaGXdy5GLv3C2zuZ0OnFoEPrL8cXTVJ9JYGCwBAabuSLbLODTlDQTN2AINtAAaagc%3D"}]} Location: https://maritimepestcontrol.ca/ X-XSS-Protection: 1: mode=block X-Content-Type-Options: nosniff Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=16,cfOrigin;dur=717 CF-RAY: 9c1f22741dfd6e2f-EWR alt-svc: h3=":443"; ma=86400 <!-- simplehtmldom failed to process the html -->Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · maritimepestcontrol.ca
2026-01-22 12:42
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · computerize.eu.org
2026-01-22 12:24
HTTP/1.1 522 <none> Date: Thu, 22 Jan 2026 12:25:12 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1f07e64cdb27c6-EWR alt-svc: h3=":443"; ma=86400 error code: 522
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · computerize.eu.org
2026-01-22 12:24
HTTP/1.1 522 <none> Date: Thu, 22 Jan 2026 12:25:12 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1f07e54b5358d7-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · towncarseattle.com
2026-01-22 12:16
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 12:16:40 GMT Content-Length: 0 Connection: close x-amz-id-2: nLp2EmHV9YNAsmnshEY7ld2yoNieshp5yEVXgV5R0lVFKpaTmp6JNTGAkozsYZ+rKSsBdN+zYyE= x-amz-request-id: GDR94E8DR29PD0ZK Location: http://www.towncarseattle.com/ Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=90,cfOrigin;dur=63 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c%2FFBs3E8f1UFdryFI40abKCeKF20g67J6wOSe3rQGjgVWooaJ%2FS5UOFbfXlnaMPrZBI%2BbkyxZshWll2DOEX6FVLAJlMZfQbvztfw1J2XKKRyjQ%3D%3D"}]} CF-RAY: 9c1efbd96cacac5a-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · towncarseattle.com
2026-01-22 12:16
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 12:16:39 GMT Content-Length: 0 Connection: close Location: https://towncarseattle.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9yApDMLjGg88a04cvDaxUPXrFMgBuAIx9uh8adP%2FCeXffdihTjcTaH58h2NMTADt%2F%2BFl4UrUonxB3eDROkAv%2Ba8mX7PAfJ%2B0%2BQsSTbwnNXNmQw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=9,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9c1efbd91d47fe8c-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · towncarseattle.com
2026-01-22 12:16
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · shopsancap.com
2026-01-22 10:51
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 10:51:47 GMT Content-Length: 0 Connection: close Location: https://sanibel-captiva.org/shopsancap/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=b%2FFtStTMoC4bMOpHX%2FlmJNNZY6fo523qkxpeYrUpcelHtw3P%2FQSDZAuL5jB3uG4BDtQZIpDyPNgwIzmZYnhoKosybBbvjLT7r0Gz9f8f"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1e7f82df6adbb5-FRAFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · shopsancap.com
2026-01-22 10:51
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 10:51:46 GMT Content-Length: 0 Connection: close Location: https://sanibel-captiva.org/shopsancap/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=s%2FiCxl8RS4fM%2FUIZjnDtBmzqHUh7SDUGHQHA3HjIi0eTMoeu%2BWsryUSRDRxI4eFD2VPY0GrtHQbUysT0dHAOkjtNt6CuFA0AHWI90wqr"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1e7f81ff6965ab-FRAFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · shopsancap.com
2026-01-22 10:51
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 10:51:46 GMT Content-Length: 0 Connection: close Location: https://sanibel-captiva.org/shopsancap/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FWgC37lS5aVvK1ZJ%2FSCacrCRgR3Hutwveu%2B6gmhfAnhLk3Wo8xB%2FNsolADu0dK4eZW0v1OlUgAAmU%2FjIMj6gyeWkSw0tW0EGEJxvbKq%2F"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1e7f81b877ae55-FRAFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · esenyamiss.com
2026-01-22 09:44
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 09:44:04 GMT Content-Length: 0 Connection: close Location: https://instagram.com/esenya_miss Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4VwapD%2BADQ8N7dcJlJxM6WRTD%2BA8NaKoRMXx4OdxAjm6mtmoRXXr%2FWv%2FONSAUFGJ1sd4l1e3W23U%2FiuWVy9Z8XsqCDC63oIGcHHNUz9I"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1e1c53ab75ace5-EWRFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · esenyamiss.com
2026-01-22 09:44
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 09:44:04 GMT Content-Length: 0 Connection: close Location: https://instagram.com/esenya_miss Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bFfJNXo0u4OSb5WfZOb6zBr%2Bt9H0QSRcWbkCOoJqAkl2rQx9p1rkgcZ6szB7KhHHhSmcxD9Z6WOOhjtVTvHswN8sM2%2BLjKZJ62LWWQqj"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1e1c537d9935fc-FRAFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · esenyamiss.com
2026-01-22 09:44
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 09:44:04 GMT Content-Length: 0 Connection: close Location: https://instagram.com/esenya_miss Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8fS8tkbFo7KJ9Cy4ZP%2FpGybbiHVNzHD0OU%2B68Ghemc2LrRrIh0egAHrHYbTphftd0Fofqh59MNf0qqlcvHuMTlzArBGuwuAt22dx%2FrBK"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1e1c535d419fed-AMSFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · predikto.pl
2026-01-22 09:02
HTTP/1.1 303 See Other Date: Thu, 22 Jan 2026 09:02:07 GMT Content-Length: 0 Connection: close Location: /home Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zcqU1EuSYYz5yn6faLPk8vmCGuhRxRMX%2BbWBF5NaSiiJBDS8Bk36oIsACez44O4wu91oahYzXVrBPOrCsZvnpCVlk2Yb6MXye8ql"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=120 cf-cache-status: DYNAMIC CF-RAY: 9c1ddeddfd97d264-FRA alt-svc: h3=":8443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · predikto.pl
2026-01-22 09:02
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 09:02:06 GMT Content-Length: 0 Connection: close Location: https://predikto.pl/ Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=r9F5Z6vLFz2UAhyy6c8B%2B0GpPNWsxByYi38yM73im%2B2X9%2B5PlUmlJ2ZqUiz6j4i4Ak8GVGHbAmfW%2FSd5RIxyXDuhFxSoVnI9BIuu"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=18,cfOrigin;dur=7 cf-cache-status: DYNAMIC CF-RAY: 9c1ddedc9fdcac54-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · predikto.pl
2026-01-22 09:02
HTTP/1.1 303 See Other Date: Thu, 22 Jan 2026 09:02:06 GMT Content-Length: 0 Connection: close Location: /home Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Mr7VLrygKpVufToYBiOo8S0GGVjal7SiHICU5iffJw2KmTUIhc%2BTe%2BSxawGifKFJrsjqxhMfNkOeTZlWUkQEW0eHp8QiXTpZkMYP"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=20 cf-cache-status: DYNAMIC CF-RAY: 9c1ddedcf96db29e-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.customvitaminbox.com
2026-01-22 07:28
HTTP/1.1 500 Internal Server Error Date: Thu, 22 Jan 2026 07:28:47 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare expires: Wed, 11 Jan 1984 05:00:00 GMT Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=582 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UX611ogM8zRADMjIztdKx7gNKzIilHLxZGT4S0OhIxzjeA8iCeWG1YUOnkQJlwAF9zVKpT9PUpDLTY3VFRxHIAHmY9PC2MHrbwaK7Y09F8js%2B8YUFsPKrg%3D%3D"}]} CF-RAY: 9c1d56283a7b20bb-SIN alt-svc: h3=":443"; ma=86400 Page title: WordPress › Error <!DOCTYPE html> <html lang="en-US"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name='robots' content='max-image-preview:large, noindex, follow' /> <title>WordPress › Error</title> <style type="text/css"> html { background: #f1f1f1; } body { background: #fff; border: 1px solid #ccd0d4; color: #444; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen-Sans, Ubuntu, Cantarell, "Helvetica Neue", sans-serif; margin: 2em auto; padding: 1em 2em; max-width: 700px; -webkit-box-shadow: 0 1px 1px rgba(0, 0, 0, .04); box-shadow: 0 1px 1px rgba(0, 0, 0, .04); } h1 { border-bottom: 1px solid #dadada; clear: both; color: #666; font-size: 24px; margin: 30px 0 0 0; padding: 0; padding-bottom: 7px; } #error-page { margin-top: 50px; } #error-page p, #error-page .wp-die-message { font-size: 14px; line-height: 1.5; margin: 25px 0 20px; } #error-page code { font-family: Consolas, Monaco, monospace; } ul li { margin-bottom: 10px; font-size: 14px ; } a { color: #2271b1; } a:hover, a:active { color: #135e96; } a:focus { color: #043959; box-shadow: 0 0 0 2px #2271b1; outline: 2px solid transparent; } .button { background: #f3f5f6; border: 1px solid #016087; color: #016087; display: inline-block; text-decoration: none; font-size: 13px; line-height: 2; height: 28px; margin: 0; padding: 0 10px 1px; cursor: pointer; -webkit-border-radius: 3px; -webkit-appearance: none; border-radius: 3px; white-space: nowrap; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box; vertical-align: top; } .button.button-large { line-height: 2.30769231; min-height: 32px; padding: 0 12px; } .button:hover, .button:focus { background: #f1f1f1; } .button:focus { background: #f3f5f6; border-color: #007cba; -webkit-box-shadow: 0 0 0 1px #007cba; box-shadow: 0 0 0 1px #007cba; color: #016087; outline: 2px solid transparent; outline-offset: 0; } .button:active { background: #f3f5f6; border-color: #7e8993; -webkit-box-shadow: none; box-shadow: none; } </style> </head> <body id="error-page"> <div class="wp-die-message"><p>There has been a critical error on this website.</p><p><a href="https://wordpress.org/documentation/article/faq-troubleshooting/">Learn more about troubleshooting WordPress.</a></p></div><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"1aa0a6ed52284d1abe1f4959701d908c","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.customvitaminbox.com
2026-01-22 07:28
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 07:28:46 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://www.customvitaminbox.com/ Strict-Transport-Security: max-age=31536000 Alt-Svc: h3=":443"; ma=86400 cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=27,cfOrigin;dur=102 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NYDYVEBVCp8KSKJGq2xkl94m%2FMh08yLID%2BVvkM3FmuLM2NQ%2BWOZPLJq5AtTjO%2BRbimkZoVOS9MhGKULkGL2XGKjobQAw%2FHZm5wyQBXVx8SrAinnrRkiW5Q%3D%3D"}]} CF-RAY: 9c1d56221fb4aaeb-YYZ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"1aa0a6ed52284d1abe1f4959701d908c","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.customvitaminbox.com
2026-01-22 07:28
HTTP/1.1 521 <none> Date: Thu, 22 Jan 2026 07:28:46 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=75,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1d5621c86cc35a-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.unminifydev.com
2026-01-22 04:59
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 04:59:41 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 43 Connection: close Cache-Control: public, max-age=2592000 Display: staticcontent_sol Display: orig_site_sol Location: https://www.unminifydev.com/ Response: 301 Server: cloudflare Vary: Accept-Encoding,User-Agent,Origin X-Ez-Proxy-Out: true 2.4 X-Ezoic-Cdn: Hit d2;mm;e6baa28b6f1351cafcc3c36d3c0afbea;2-517807-48;IZ5Z3CicJQC058SU0izul X-Middleton-Display: staticcontent_sol X-Middleton-Display: orig_site_sol X-Middleton-Response: 301 X-Nf-Request-Id: 01KDHZWKBXDQJ9RGJE97PD41RH X-Origin-Cache-Control: X-Sol: orig cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=31 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=inbWT8ufHqAeAcPNN2xgA70BCGubz0C2BLTbpvSzB%2Bbv40TfxggpianxDHnDs2X6W6jlNGJ4aqf9SwlXBGJDjx4kS1QBXyc9UZA7kmwleBDiUGo%3D"}]} CF-RAY: 9c1c7bc0dafbb634-YYZ alt-svc: h3=":443"; ma=86400 Redirecting to https://www.unminifydev.com/Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.unminifydev.com
2026-01-22 04:59
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.unminifydev.com
2026-01-22 04:59
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 04:59:41 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Age: 1676 Cache-Control: private, max-age=0, must-revalidate, no-cache, no-store cache-status: "Netlify Edge"; hit Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mOM2i%2FMv2pzAn085fvZdBaA2gUEqyDe0mux93NcpNfonfbVP%2F7aNAlxmhIqvnS%2BXzv6p9kQ5wL6eIKZEaw4NXgNe80xIMx3vJU1EBpfUucIJhJY%3D"}]} display: orig_site_sol Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=11,cfOrigin;dur=73 expires: Wed, 21 Jan 2026 04:59:41 GMT response: 200 Server: cloudflare Set-Cookie: ezoictest=stable; Path=/; Domain=unminifydev.com; Expires=Thu, 22 Jan 2026 05:29:41 GMT; HttpOnly strict-transport-security: max-age=31536000 vary: Accept-Encoding,User-Agent x-ez-proxy-out: true 2.4 x-ezoic-cdn: Miss x-middleton-display: orig_site_sol x-middleton-response: 200 x-nf-request-id: 01KFJ1555PCFENF6H3J0XNBHFM x-origin-cache-control: public,max-age=0,must-revalidate x-sol: orig cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c1c7bc0b9ee434f-EWR alt-svc: h3=":443"; ma=86400 Page title: Unminify JS, CSS, HTML, JSON, XML Online <!DOCTYPE html><html lang="en"><head><meta charset="utf-8"/> <script>var __ezHttpConsent={setByCat:function(src,tagType,attributes,category,force,customSetScriptFn=null){var setScript=function(){if(force||window.ezTcfConsent[category]){if(typeof customSetScriptFn==='function'){customSetScriptFn();}else{var scriptElement=document.createElement(tagType);scriptElement.src=src;attributes.forEach(function(attr){for(var key in attr){if(attr.hasOwnProperty(key)){scriptElement.setAttribute(key,attr[key]);}}});var firstScript=document.getElementsByTagName(tagType)[0];firstScript.parentNode.insertBefore(scriptElement,firstScript);}}};if(force||(window.ezTcfConsent&&window.ezTcfConsent.loaded)){setScript();}else if(typeof getEzConsentData==="function"){getEzConsentData().then(function(ezTcfConsent){if(ezTcfConsent&&ezTcfConsent.loaded){setScript();}else{console.error("cannot get ez consent data");force=true;setScript();}});}else{force=true;setScript();console.error("getEzConsentData is not a function");}},};</script> <script>var ezTcfConsent=window.ezTcfConsent?window.ezTcfConsent:{loaded:false,store_info:false,develop_and_improve_services:false,measure_ad_performance:false,measure_content_performance:false,select_basic_ads:false,create_ad_profile:false,select_personalized_ads:false,create_content_profile:false,select_personalized_content:false,understand_audiences:false,use_limited_data_to_select_content:false,};function getEzConsentData(){return new Promise(function(resolve){document.addEventListener("ezConsentEvent",function(event){var ezTcfConsent=event.detail.ezTcfConsent;resolve(ezTcfConsent);});});}</script> <script>if(typeof _setEzCookies!=='function'){function _setEzCookies(ezConsentData){var cookies=window.ezCookieQueue;for(var i=0;i<cookies.length;i++){var cookie=cookies[i];if(ezConsentData&&ezConsentData.loaded&&ezConsentData[cookie.tcfCategory]){document.cookie=cookie.name+"="+cookie.value;}}}} window.ezCookieQueue=window.ezCookieQueue||[];if(typeof addEzCookies!=='function'){function addEzCookies(arr){window.ezCookieQueue=[...window.ezCookieQueue,...arr];}} addEzCookies([{name:"ezoab_517807",value:"mod42-c; Path=/; Domain=unminifydev.com; Max-Age=7200",tcfCategory:"store_info",isEzoic:"true",},{name:"ezosuibasgeneris-1",value:"392930da-a5c5-46dd-4a31-1f3539f56b98; Path=/; Domain=unminifydev.com; Expires=Fri, 22 Jan 2027 04:59:41 UTC; Secure; SameSite=None",tcfCategory:"understand_audiences",isEzoic:"true",}]);if(window.ezTcfConsent&&window.ezTcfConsent.loaded){_setEzCookies(window.ezTcfConsent);}else if(typeof getEzConsentData==="function"){getEzConsentData().then(function(ezTcfConsent){if(ezTcfConsent&&ezTcfConsent.loaded){_setEzCookies(window.ezTcfConsent);}else{console.error("cannot get ez consent data");_setEzCookies(window.ezTcfConsent);}});}else{console.error("getEzConsentData is not a function");_setEzCookies(window.ezTcfConsent);}</script><script type="text/javascript" data-ezscrex='false' data-cfasync='false'>window._ezaq = Object.assign({"edge_cache_status":11,"edge_response_time":39,"url":"https://www.unminifydev.com/"}, typeof window._ezaq !== "undefined" ? window._ezaq : {});</script><script type="text/javascript" data-ezscrex='false' data-cfasync='false'>window._ezaq = Object.assign({"ab_test_id":"mod42-c"}, typeof window._ezaq !== "undefined" ? window._ezaq : {});window.__ez=window.__ez||{};window.__ez.tf={};</script><script type="text/javascript" data-ezscrex='false' data-cfasync='false'>window.ezDisableAds = true;</script> <script src="https://cmp.gatekeeperconsent.com/min.js" async></script> <script data-ezscrex='false' data-cfasync='false' data-pagespeed-no-defer>var __ez=__ez||{};__ez.stms=Date.now();__ez.evt={};__ez.script={};__ez.ck=__ez.ck||{};__ez.template={};__ez.template.isOrig=true;__ez.queue=__ez.queue||function(){var e=0,i=0,t=[],n=!1,o=[],r=[],s=!0,a=function(e,i,n,o,r,s,a){var l=arguments.length>7&&void 0!==arguments[7]?arguments[7]:window,d=this;this.name=e,this.funcName=i,this.parameters=null===n?null:w(n)?n:[n],this.isBlock=o,this.blockedBy=r,this.deleteWhenComplete=s,this.isError=!1,Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · a.zzz9.dpdns.org
2026-01-22 03:23
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 03:23:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 17208 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WVDejg1DV116BWbkumOdYqpaT%2BcfwnD1Jy3JV6KyAcajiWgc4A3aDCJn4gCJ47rFqALmqsc7%2B%2F8RztYTjRUYLUEA%2FY4JWKrzpTJVShiboww%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1beef87aa23684-FRA alt-svc: h3=":443"; ma=86400 Page title: 终端 <!DOCTYPE html> <html lang="zh-CN" dir="ltr"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>终端</title> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: "Courier New", monospace; background: #000; color: #00ff00; min-height: 100vh; overflow-x: hidden; position: relative; display: flex; justify-content: center; align-items: center; } .matrix-bg { position: fixed; top: 0; left: 0; width: 100%; height: 100%; background: #000; z-index: -1; } @keyframes bg-pulse { 0%, 100% { background: linear-gradient(45deg, #000 0%, #001100 50%, #000 100%); } 50% { background: linear-gradient(45deg, #000 0%, #002200 50%, #000 100%); } } .matrix-rain { position: fixed; top: 0; left: 0; width: 100%; height: 100%; background: transparent; z-index: -1; display: none; } @keyframes matrix-fall { 0% { transform: translateY(-100%); } 100% { transform: translateY(100vh); } } .matrix-code-rain { position: fixed; top: 0; left: 0; width: 100%; height: 100%; pointer-events: none; z-index: -1; overflow: hidden; display: none; } .matrix-column { position: absolute; top: -100%; left: 0; color: #00ff00; font-family: "Courier New", monospace; font-size: 14px; line-height: 1.2; text-shadow: 0 0 5px #00ff00; } @keyframes matrix-drop { 0% { top: -100%; opacity: 1; } 10% { opacity: 1; } 90% { opacity: 0.3; } 100% { top: 100vh; opacity: 0; } } .matrix-column:nth-child(odd) { animation-duration: 12s; animation-delay: -2s; } .matrix-column:nth-child(even) { animation-duration: 18s; animation-delay: -5s; } .matrix-column:nth-child(3n) { animation-duration: 20s; animation-delay: -8s; } .terminal { width: 90%; max-width: 800px; height: 500px; background: rgba(0, 0, 0, 0.9); border: 2px solid #00ff00; border-radius: 8px; box-shadow: 0 0 30px rgba(0, 255, 0, 0.5), inset 0 0 20px rgba(0, 255, 0, 0.1); backdrop-filter: blur(10px); position: relative; z-index: 1; overflow: hidden; } .terminal-header { background: rgba(0, 20, 0, 0.8); padding: 10px 15px; border-bottom: 1px solid #00ff00; display: flex; align-items: center; } .terminal-buttons { display: flex; gap: 8px; } .terminal-button { width: 12px; height: 12px; border-radius: 50%; background: #ff5f57; border: none; } .terminal-button:nth-child(2) { background: #ffbd2e; } .terminal-button:nth-child(3) { background: #28ca42; } .terminal-title { margin-left: 15px; color: #00ff00; font-size: 14px; font-weight: bold; } .terminal-body { padding: 20px; height: calc(100% - 50px); overflow-y: auto; font-size: 14px; line-height: 1.4; } .terminal-line { margin-bottom: 8px; display: flex; align-items: center; } .terminal-prompt { color: #00ff00; margin-riFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · a.zzz9.dpdns.org
2026-01-22 03:23
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 03:23:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 17208 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tY75s4IeRtp7EoLkHHcU0I79o3AIFExoV46e6RG7pXNHAMlNSik2VE%2BksEFVwzkX2WcbaPqcnLL95RtLL7jilL1g7KdDH%2BnvGUZi1pQu"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1beef8dd1d7dd3-EWR alt-svc: h3=":8443"; ma=86400 Page title: 终端 <!DOCTYPE html> <html lang="zh-CN" dir="ltr"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>终端</title> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: "Courier New", monospace; background: #000; color: #00ff00; min-height: 100vh; overflow-x: hidden; position: relative; display: flex; justify-content: center; align-items: center; } .matrix-bg { position: fixed; top: 0; left: 0; width: 100%; height: 100%; background: #000; z-index: -1; } @keyframes bg-pulse { 0%, 100% { background: linear-gradient(45deg, #000 0%, #001100 50%, #000 100%); } 50% { background: linear-gradient(45deg, #000 0%, #002200 50%, #000 100%); } } .matrix-rain { position: fixed; top: 0; left: 0; width: 100%; height: 100%; background: transparent; z-index: -1; display: none; } @keyframes matrix-fall { 0% { transform: translateY(-100%); } 100% { transform: translateY(100vh); } } .matrix-code-rain { position: fixed; top: 0; left: 0; width: 100%; height: 100%; pointer-events: none; z-index: -1; overflow: hidden; display: none; } .matrix-column { position: absolute; top: -100%; left: 0; color: #00ff00; font-family: "Courier New", monospace; font-size: 14px; line-height: 1.2; text-shadow: 0 0 5px #00ff00; } @keyframes matrix-drop { 0% { top: -100%; opacity: 1; } 10% { opacity: 1; } 90% { opacity: 0.3; } 100% { top: 100vh; opacity: 0; } } .matrix-column:nth-child(odd) { animation-duration: 12s; animation-delay: -2s; } .matrix-column:nth-child(even) { animation-duration: 18s; animation-delay: -5s; } .matrix-column:nth-child(3n) { animation-duration: 20s; animation-delay: -8s; } .terminal { width: 90%; max-width: 800px; height: 500px; background: rgba(0, 0, 0, 0.9); border: 2px solid #00ff00; border-radius: 8px; box-shadow: 0 0 30px rgba(0, 255, 0, 0.5), inset 0 0 20px rgba(0, 255, 0, 0.1); backdrop-filter: blur(10px); position: relative; z-index: 1; overflow: hidden; } .terminal-header { background: rgba(0, 20, 0, 0.8); padding: 10px 15px; border-bottom: 1px solid #00ff00; display: flex; align-items: center; } .terminal-buttons { display: flex; gap: 8px; } .terminal-button { width: 12px; height: 12px; border-radius: 50%; background: #ff5f57; border: none; } .terminal-button:nth-child(2) { background: #ffbd2e; } .terminal-button:nth-child(3) { background: #28ca42; } .terminal-title { margin-left: 15px; color: #00ff00; font-size: 14px; font-weight: bold; } .terminal-body { padding: 20px; height: calc(100% - 50px); overflow-y: auto; font-size: 14px; line-height: 1.4; } .terminal-line { margin-bottom: 8px; display: flex; align-items: center; } .terminal-prompt { color: #00ff00; margin-riFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · a.zzz9.dpdns.org
2026-01-22 03:23
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 03:23:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 17208 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BvyBvX8qJ9MLWY2yH%2Fg%2BwAr7Op0tRTUGv92jHeDu0LbP7rtz7xciKQZuXLjLvST5TzZHP9vPpCs0EKc2C1JJgdMfk5EGo%2FIadeP6kXfbDeU%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1beef82db4b891-AMS alt-svc: h3=":443"; ma=86400 Page title: 终端 <!DOCTYPE html> <html lang="zh-CN" dir="ltr"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>终端</title> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: "Courier New", monospace; background: #000; color: #00ff00; min-height: 100vh; overflow-x: hidden; position: relative; display: flex; justify-content: center; align-items: center; } .matrix-bg { position: fixed; top: 0; left: 0; width: 100%; height: 100%; background: #000; z-index: -1; } @keyframes bg-pulse { 0%, 100% { background: linear-gradient(45deg, #000 0%, #001100 50%, #000 100%); } 50% { background: linear-gradient(45deg, #000 0%, #002200 50%, #000 100%); } } .matrix-rain { position: fixed; top: 0; left: 0; width: 100%; height: 100%; background: transparent; z-index: -1; display: none; } @keyframes matrix-fall { 0% { transform: translateY(-100%); } 100% { transform: translateY(100vh); } } .matrix-code-rain { position: fixed; top: 0; left: 0; width: 100%; height: 100%; pointer-events: none; z-index: -1; overflow: hidden; display: none; } .matrix-column { position: absolute; top: -100%; left: 0; color: #00ff00; font-family: "Courier New", monospace; font-size: 14px; line-height: 1.2; text-shadow: 0 0 5px #00ff00; } @keyframes matrix-drop { 0% { top: -100%; opacity: 1; } 10% { opacity: 1; } 90% { opacity: 0.3; } 100% { top: 100vh; opacity: 0; } } .matrix-column:nth-child(odd) { animation-duration: 12s; animation-delay: -2s; } .matrix-column:nth-child(even) { animation-duration: 18s; animation-delay: -5s; } .matrix-column:nth-child(3n) { animation-duration: 20s; animation-delay: -8s; } .terminal { width: 90%; max-width: 800px; height: 500px; background: rgba(0, 0, 0, 0.9); border: 2px solid #00ff00; border-radius: 8px; box-shadow: 0 0 30px rgba(0, 255, 0, 0.5), inset 0 0 20px rgba(0, 255, 0, 0.1); backdrop-filter: blur(10px); position: relative; z-index: 1; overflow: hidden; } .terminal-header { background: rgba(0, 20, 0, 0.8); padding: 10px 15px; border-bottom: 1px solid #00ff00; display: flex; align-items: center; } .terminal-buttons { display: flex; gap: 8px; } .terminal-button { width: 12px; height: 12px; border-radius: 50%; background: #ff5f57; border: none; } .terminal-button:nth-child(2) { background: #ffbd2e; } .terminal-button:nth-child(3) { background: #28ca42; } .terminal-title { margin-left: 15px; color: #00ff00; font-size: 14px; font-weight: bold; } .terminal-body { padding: 20px; height: calc(100% - 50px); overflow-y: auto; font-size: 14px; line-height: 1.4; } .terminal-line { margin-bottom: 8px; display: flex; align-items: center; } .terminal-prompt { color: #00ff00; margin-riFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · zzz9.dpdns.org
2026-01-22 02:58
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 02:58:53 GMT Content-Type: text/plain;charset=UTF-8 Content-Length: 12 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=L8ErrlEMerncWCDfWyp%2F%2FCHeDqoGBbijPduHF9%2B433T%2FINX0wqQaDBmH472u05a6dwqxRIsV%2FfpOaezpQdJpX3Km%2Fqv0y1XVGVzdP8L8"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1bcacd491679b0-LHR alt-svc: h3=":443"; ma=86400 Hello World!Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · zzz9.dpdns.org
2026-01-22 02:58
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 02:58:53 GMT Content-Type: text/plain;charset=UTF-8 Content-Length: 12 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Eve9qJnjFMXmqMfmvV8FYD1JWSn6cSFObMihmiVvKV53XCq67aXUMHPye8vgec%2BSIobDMa9z0n5xFII1%2BMDPrsGZGRLkc9CwFhu6RrSA"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1bcacd18b64c90-AMS alt-svc: h3=":443"; ma=86400 Hello World!Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · zzz9.dpdns.org
2026-01-22 02:58
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 02:58:53 GMT Content-Type: text/plain;charset=UTF-8 Content-Length: 12 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CTOO3K1iRzGOEQQMmdb1ZWj5pRNhXnGqcosigHihLKlh4%2F1TMeji0g5yWukKq5LKHFInKZSH4dW1MQs8lAHTRxSlIY7kwJbNIEFTiptq"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1bcacd38a141e3-EWR alt-svc: h3=":8443"; ma=86400 Hello World!Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · app.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Last-Modified: Mon, 19 Jan 2026 14:43:37 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=360 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gPUg1rDKa%2FeICXDwcW6nae4hsdUxHUCcSA2yBHEuznxS64YLBq0%2Bpjj9yclUqPG2fo4WsBeooL8hERPu0y2lqbqwTsJE%2FH7MmhVRRDAEFct4MHEVJEI%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c1b2bec2b7b1492-EWR alt-svc: h3=":443"; ma=86400 Page title: OverInspect - Inspeções e vistorias <!doctype html> <html lang="en"> <head> <meta charset="UTF-8" /> <link rel="icon" type="image/svg+xml" href="/logoicon.svg" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>OverInspect - Inspeções e vistorias</title> <script type="module" crossorigin src="/assets/index-gtBtKHZH.js"></script> <link rel="stylesheet" crossorigin href="/assets/index-DfsYb4EP.css"> </head> <body> <div id="root"></div> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"24689feb037c4542a8625dd0495d2038","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · auth.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://auth.overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MBW4RFP4DTB6O8xuqlYVbP0vs1Pqv4gu8rBt4axFxs59Nwb1rgA1uCugJmn1eRMq6ToMVY44%2FuPnVRwFhExhCJXB%2B%2FETYQ%2F39z9vUfDzT7iTANLULi9d"}]} CF-RAY: 9c1b2bebba88d3c0-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · app.overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · auth.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 404 Not Found Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Set-Cookie: csrf_token_63eef38b73f29c7dc2d0eb53883bb7cf617620b3957e833d2b656c7c52a1d2b5=k17q9w9D17p1ILTk+ObrIpidwaLMwfKtTDcRITXB8tU=; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=Lax Vary: Origin Vary: Cookie X-Content-Type-Options: nosniff cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=6,cfOrigin;dur=359 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BKr%2F5zTwczvHeh77uuAQD7b%2F5vH4bzSI12F%2FTUIcdpWLP6JnCyPiKUEp0%2Fd4WhWUkNEKJZe%2FyQx3ABSEzWwuhBLYHZCPkX8oLD7BufmOqbkPxyLALlU4"}]} CF-RAY: 9c1b2bebbf6bb3aa-EWR alt-svc: h3=":443"; ma=86400 404 page not foundFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · app.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://app.overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TWIjZ3sfNWasqaYYJzORs2rZtoPDvJKi8jnxBSLXwyDKGIDpYx1VmfD23A68w2nYtGOijfCd7BC6nrz%2BX0o3FHplTQaGf4fhWgl833Gt3vQW4ZGtevo%3D"}]} CF-RAY: 9c1b2beb2a2ce570-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · auth.overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · overinspect.com.br
2026-01-22 01:10
HTTP/1.1 502 Bad Gateway Date: Thu, 22 Jan 2026 01:10:25 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=8,cfOrigin;dur=110 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1b2beacfc20f99-EWR alt-svc: h3=":443"; ma=86400 error code: 502
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · services.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://services.overinspect.com.br/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=14,cfOrigin;dur=621 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sSvj4XU79f42HcxAu35ep%2B8HACsDpXWwMw3IvFgm2G%2BGdSWybVVtggWGs2ALFzq4jK7E1C9mi23BYNTNppqWGqsAVyLlVPth1765C0q6OXlsHHtaecEW4pT1yw%3D%3D"}]} CF-RAY: 9c1b2bec8da2fe18-SIN alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"24689feb037c4542a8625dd0495d2038","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · insp.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://insp.overinspect.com.br/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=17,cfOrigin;dur=614 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8VzMROUEFOHIFd%2Fn8BbzxiHqTJEDaTEGajZsRB2snOsq3YKDD56CHCCOgT2XRmjcNDyXEZnXeMBy3rrJhPhlNmYVLYVGZfQWXtlHT1vvWzgttOSIk9%2BD"}]} CF-RAY: 9c1b2bebcecd4720-BOM alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"24689feb037c4542a8625dd0495d2038","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · insp.overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 502 Bad Gateway Date: Thu, 22 Jan 2026 01:10:25 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=6,cfOrigin;dur=138 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1b2bea6890aaf2-YYZ alt-svc: h3=":443"; ma=86400 error code: 502
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · insp.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 200 OK Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 Pragma: no-cache Expires: 0 Last-Modified: Thursday, 22-Jan-2026 01:10:25 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=X3biEjSsllIl06rwtcuSBvXZ3ri09VBXgCcJicfpN%2FZCKqRsnFiCW1bUiKBcEQe58iniAsUPEJdXyF5irO6acxk7mDBJiIvFZjJgTCUwFutZcsO9NYo%2F"}]} cf-cache-status: DYNAMIC vary: accept-encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=413 CF-RAY: 9c1b2be9f82dc109-YYZ alt-svc: h3=":443"; ma=86400 Page title: OverInspect <!DOCTYPE html> <html> <head> <!-- If you are serving your web app in a path other than the root, change the href value below to reflect the base path you are serving from. The path provided below has to start and end with a slash "/" in order for it to work correctly. For more details: * https://developer.mozilla.org/en-US/docs/Web/HTML/Element/base This is a placeholder for base href that will be replaced by the value of the `--base-href` argument provided to `flutter build`. --> <base href="/"> <meta charset="UTF-8"> <meta content="IE=Edge" http-equiv="X-UA-Compatible"> <meta name="description" content="A new Flutter project."> <!-- iOS meta tags & icons --> <meta name="mobile-web-app-capable" content="yes"> <meta name="apple-mobile-web-app-status-bar-style" content="black"> <meta name="apple-mobile-web-app-title" content="OverInspect"> <link rel="apple-touch-icon" href="icons/Icon-192.png"> <!-- Favicon --> <link rel="icon" type="image/png" href="favicon.png"/> <title>OverInspect</title> <link rel="manifest" href="manifest.json"> </head> <body> <script src="flutter_bootstrap.js" async></script> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"24689feb037c4542a8625dd0495d2038","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · services.overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:25 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=x8sg2clBD9Oq3EkMHFm3N71p3%2BcNBXMGCYFecuJw3npyWf3HxsU9fy%2FhF5LnH8qKKgu531xRnzYbDqzjCSe1YWaSxlLFdrSoSZtg5WNvGCqNVQ%3D%3D"}]} CF-RAY: 9c1b2be9696137c4-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · api.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 500 Internal Server Error Date: Thu, 22 Jan 2026 01:10:27 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, private Vary: Origin cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4ydiSZ%2FvFR3sx1msjnvXXIWRVjST8fk4670%2FJ5nLSuMGXnQL7WFFliXF8gd76tkF2GQrjMQBZSKRup%2FSWCY1J%2FJrv8kXdzCYKKcunPzsUEpinIy7"}]} CF-RAY: 9c1b2bee1a55ef2f-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · services.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 404 Not Found Date: Thu, 22 Jan 2026 01:10:26 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ic4frXq7%2BVqBTv9Y5pdMXu1V1s2VMEOhNfnDG4PYvyiteV%2FWmU7LonSu1kgyuNvChWtkcEmTfov%2BFHtfgB11RHcbcBwEUfCQGo5sPLqTQ73kpuTx9HyeCIeEmg%3D%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9c1b2bea8d3e3656-FRA alt-svc: h3=":443"; ma=86400 Page title: 404 Not Found <html> <head><title>404 Not Found</title></head> <body> <center><h1>404 Not Found</h1></center> <hr><center>nginx/1.29.4</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · api.overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:25 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://www.overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Rg%2Fh1KqOrpn55In2pbNaIKcjeaGi3S%2F2ETo9JAVniYiaVktRUf50THPjnpHXZSsrOncJ5oubzKf1ElPm3NEmP3kF9Hzq0DzwfZBXOFuDBNlQbsLmjIg%3D"}]} CF-RAY: 9c1b2be96cdbd3b5-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · api.overinspect.com.br
2026-01-22 01:10
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 01:10:25 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://api.overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ErDwP4fkzVv3oPAiaZid8mpiVXSivvWAAf0DqNnUtdxfYZJGtozgmmyFGTnHKU4uQH9tiRpY%2BwJrHPsohpf1LjGIAFjDawu5UgGd0%2B1%2FHf69Aa2QnZM%3D"}]} CF-RAY: 9c1b2be94d936c21-FRA alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.overinspect.com.br
2026-01-22 01:10
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · obs.overinspect.com.br
2026-01-22 00:34
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · obs.overinspect.com.br
2026-01-22 00:34
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 00:34:34 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://obs.overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IOmtfjBKwYu6UuBqosIssmCNUlryLdP1gnxDXaKcFPvGrl2%2FkNCnqgs0xrP6PNVgefYs0ltsNtxJbBrl5vjsbad91pJFLdzqDxBkMg6Bd9fw5wFShOY%3D"}]} CF-RAY: 9c1af7621a75ea4b-AMS alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · otlp.overinspect.com.br
2026-01-22 00:34
HTTP/1.1 404 Not Found Date: Thu, 22 Jan 2026 00:34:34 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Content-Type-Options: nosniff cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sWxiayDhwmuQQYtKRpe%2BA6lN1jo9dQGsO4B4BhmhQM08l88gqsGpv50vVQhQ%2BA9P2NI5AfSObWNpc%2FbnU3jLtJe8dz5iBhO0ISqtvCsab5JMEk%2BffveN"}]} CF-RAY: 9c1af7637ec2d3b9-FRA alt-svc: h3=":443"; ma=86400 404 page not foundFound 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · otlp.overinspect.com.br
2026-01-22 00:34
HTTP/1.1 301 Moved Permanently Date: Thu, 22 Jan 2026 00:34:34 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://otlp.overinspect.com.br/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=iy7NJ47uhVyb3pHed86RTD%2F5aLWyDaVRrQEGpg4tYBTqgbFCnaTlesCu4BUYVq%2Fd8CBDxqBQamxnw9Rl20QZdhyMtnS7%2B3Gd6ydQAKW4auhoqJpTeHwK"}]} CF-RAY: 9c1af7627e533075-LHR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.24.0 (Ubuntu)</center> </body> </html>Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · otlp.overinspect.com.br
2026-01-22 00:34
Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · obs.overinspect.com.br
2026-01-22 00:34
HTTP/1.1 302 Found Date: Thu, 22 Jan 2026 00:34:34 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-store Location: /login X-Content-Type-Options: nosniff X-Frame-Options: deny X-Xss-Protection: 1; mode=block cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=6,cfOrigin;dur=119 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GZk9MZbhpdLFBiVjwemlY4M92idq1csSx2jtTp1zLqRiSh2Sf6auB85Yyb8V5CS4ahRmitV9tgOQuVqQnS0kcJsgSwzpwDU0HLKlf9bRBSLI%2B55qXxM%3D"}]} CF-RAY: 9c1af761ed53377a-EWR alt-svc: h3=":443"; ma=86400 <a href="/login">Found</a>.Found 2026-01-22 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · rideourunable.blog
2026-01-21 23:29
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 23:29:33 GMT Content-Length: 0 Connection: close Location: https://assignsliceten.pro/3hNbnbSX?zone_id= Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ss5Uej2v2jRNeXjkfTYRgdi85Rd%2BNnnhOO7wMSlDacubLrUi%2FwAGtXaB0WqWtlle6FDDpF09g9%2BfxliiZ7GxzYDAC3Nuqnv0Y0jOKW3ZYrgphA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1a982739adf914-SIN alt-svc: h3=":8443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · rideourunable.blog
2026-01-21 23:29
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 23:29:33 GMT Content-Length: 0 Connection: close Location: https://assignsliceten.pro/3hNbnbSX?zone_id= Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hYirpQlKMj3ZZ%2BN60zL%2F%2BRzlEqGGGAplxkDnF%2FXgzZZyxYV7UXyLU4dPq2OCvlzpk5fmSP4GKujdK6jHsBeA2iXLMnNEUqL5TOr1cQTtzUX65A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1a98274be9f910-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · rideourunable.blog
2026-01-21 23:29
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 23:29:32 GMT Content-Length: 0 Connection: close Location: https://assignsliceten.pro/3hNbnbSX?zone_id= Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vatJ2Jnul8eAdJ9rrJB4Ep0FnuQnAvpkq%2FfhvXB2q%2B8JzYunr3ycEz6gk3NtAOZfi5YfZY%2FTS2l7pjHGtzAFKto8kj85ZqdDVyXciITAVU0O9A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1a982498c4f47f-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · hobstowingsupplies.com
2026-01-21 22:01
HTTP/1.1 522 <none> Date: Wed, 21 Jan 2026 22:01:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19506,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c1a16d79d365ff2-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · hobstowingsupplies.com
2026-01-21 22:01
HTTP/1.1 202 Accepted Date: Wed, 21 Jan 2026 22:01:15 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare sg-captcha: challenge x-robots-tag: noindex Set-Cookie: nevercache-b39818=Y;Max-Age=-1 expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-store,no-cache,max-age=0 host-header: 8441280b0c35cbc1147f8ba998a563a7 x-proxy-cache-info: DT:1 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Speculation-Rules: "/cdn-cgi/speculation" Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=87 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Letxo5bbGddiH4hpf%2F%2FqRVYNBCbS3%2FhY7DtWMU032tGPLucffdBJ34DcXNGW3m2jdwFoKSiYvYZTw%2BMeZn0Jr%2FLN%2Bm7RZiR9vVVqiE1CwHN4Fc0sBQA%3D"}]} CF-RAY: 9c1a16d1b84cac48-YYZ alt-svc: h3=":443"; ma=86400 <html><head><link rel="icon" href="data:;"><meta http-equiv="refresh" content="0;/.well-known/sgcaptcha/?r=%2F&y=ipc:143.110.217.244:1769032875.875"></meta></head></html><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"fdb6009e629a45f09891c1f73a2042d3","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script>Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · hobstowingsupplies.com
2026-01-21 22:01
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 22:01:15 GMT Content-Length: 0 Connection: close Location: https://hobstowingsupplies.com/ Speculation-Rules: "/cdn-cgi/speculation" Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CDFt38nLmPxUULKzkEbwBE2ev%2B3PgtfFIETqZ5Iw8WoXn%2FzYa348fF0oNxmnKrI%2F9ygXiizKXQjmoUBAq11LQH4CsUkD7DtgmbbNWue3%2B6xp%2BdD9IwE%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1a16d0acfffea2-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-21 21:32
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 21:32:18 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kALCIsEpNiEztvaV1u7P%2B7OpozlZ3ZdwSkOJcNyQ%2BsqQDOhofnUMe3rhVp%2FhdLiWEjVkf10zxV%2Fe2DfV7mZMxjKGi%2Fe4Q7Gt8yTN5w%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9c19ec67acfb7708-LHR alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 21:20:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c19db45fcea35a4-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 302 Found Date: Wed, 21 Jan 2026 21:20:37 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 58 Set-Cookie: XSRF-TOKEN=eyJpdiI6IlF2anZSc2N1MmVFSHZ2MFNaSkFzQXc9PSIsInZhbHVlIjoidGRhRWQ5VXRnVVFmV2tIYVhsVmorS1hTaktZaitFRWtBQk9xWDk0b1VJSTJieGk5ZkVHNXJGbmwzRnVPNXVxMGw5clJuN2thcmp2MUdPbGozRXpQR2w2NEZTdkxBL0FJcWVvV3JTRGM4SVczK1dNWEdKVnIwYkJjWUpBR0FlNkciLCJtYWMiOiI2OTM4MjVjNmJmMjA0OWFjZDY1NWM2NThiOTNjNmVhZjViZDdhNjZkOWRhNTEzOTA3ZTJjNTVjZmNmMjhkOWM2IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6IkcyQnFBVDR2a29zRS9SOXRBTHkreEE9PSIsInZhbHVlIjoidko3eitFcEJ2aDJ0bkFLd05oVDFpcGlLZXcvK1hDcVk3OFpyL01HaFhVOWNFNFpPOXpJV21jL21EcktacStFZXNuWVkvRjZRcFc2VmVEMnlCeXh1NGRLcm8yZnhVQ00yWHJXTHk2ZWVXUytCbXorSC8reEF1dmYyeW1OakltZTYiLCJtYWMiOiI2ZWYxMjEzNTZiYjZlMGVlOGE1MzZjZmFjZjNjNmJkZTYyOTA3NjZhMGQwNGQ5YjQxZmFkNzg1ZTUzNzJiYWE3IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Akn5n6Tnu%2FreWm49BWoIWHzlLf7wOiY1IVtel4SnHldnI%2BtqB7CrtczuBxUV%2BdPOi6Fxey28F85OfD2HF9eHRBAGjwUqSN%2FvPzcYeJIVlBQLzWYCywk1CCZpjQ64Eb5lyw%3D%3D"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c19db47894a4dc6-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 302 Found Date: Wed, 21 Jan 2026 21:20:37 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 58 Set-Cookie: XSRF-TOKEN=eyJpdiI6Ikk4RnRFZmdqMjZpMDFNRm8yVnpEbXc9PSIsInZhbHVlIjoiamFteVBNWkFPSVV3MzZjVDl5V3dXYnN0RFZXYlZnakJZS3hnOVkrcFowOTA4NVN1Y1dZazRzVGtwa3NSK3BVUE5IZEc4VHNNRmFjS2NwTTNXS3BKeDdzZ082REVpKzY5Ykh1MkpMOTJNYmY1SGlQMEI1N3dmalNpRzV1ZkxEY1giLCJtYWMiOiIxNGE5Zjc5OWRhMjk3YjFmMWVjZGIwYmY5MDRkMWEwODg0MThlMmFhMWI0NjgwODBlOTM3NmQwODQ4OTMyZGM3IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6Ik9JUG1ldndoaHVtbDViRHJJdkswVkE9PSIsInZhbHVlIjoiNEo4T3B1UXZILzZ3RWhsTCt6Mm1ldW11UjFyK2tkV0JrRWFjYThsY2w0ZmNoRno0Q0pTQmwrSEpNSG9mblNSMnoyUStERFZ6WHgzOEszeExSSUZEV015ZitoVHRwNXBMNTVPaGZoa0F5MG41YzdOdUZtc1R6czlPUGFrVzg0VlkiLCJtYWMiOiI0NDU1NGU3YTk3MmIwNDkxOTI5N2ZmODM0MjBlMDUzZGQ1NzUyNDJmODc4Yzk2NTBmMzhkYmMzOThmOGFlYjUwIiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VIEY7%2BhopWo7QuItvf2UncMB%2BEDz%2F4Z1GyZWQz90zut8Hu1f3SkdR6S%2BxVZ0hZPNQhWB5BqAHjlevNHhqmOWTyLVAF5oKFbxuGv4c9%2FZbVoJ4XdZYeYkJlJ0khkOx8yufA%3D%3D"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c19db48d907423d-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mail.textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 302 Found Date: Wed, 21 Jan 2026 21:20:37 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 58 Set-Cookie: XSRF-TOKEN=eyJpdiI6IlBha3dFenBwTTdxcXlmZ0NheEJLZ1E9PSIsInZhbHVlIjoiQStwSXNQc1VwOC90N3pnYWVSSnJITzk2Z0M2Ui9KU0NIS052dDFHR0xVVkgzaVBhdVAzQVkzaVdZZGMxQWNaem10WFcwUHVPdjhyY2hZZ2l6cmRTc1hieHJQSFc1TnU1RitTKzBxdm1XaUpqNkEzaFA2cWMzS2tqV3JUS3BYcHAiLCJtYWMiOiI5NTE4MjBiNDYyZmUzNTk0MzczY2FhZWM5YTVmOWZmMTAxM2YwODk0Nzc4MTM3MGZkMzY2ZGNjNzgyZWI4ODRlIiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6IjdOUTI1UmdoOEMxczlZNGJmQjE0T1E9PSIsInZhbHVlIjoiMzcxR2o2b3g2VlN2OG9DN3ErVWdrSE5yK3hFdUYwVWxPMFFmc0c4c1JaY1ROSWhwTEJqRzJOZ2lPZkRqejBlbWNQM000bGRUVTE5MkRyZS9uY1V5V0JicmRTT2Fpd0pDVkpxZmJZc2RkalRpTVg2VTM5aVVWaVU5eTcxM2t1emIiLCJtYWMiOiI5N2ExZTlmNDViMGE1YTEyZmIxOTVkNDY1NGE1ZmRhZjQ1MDM5YWMxNmE4YjdiMmM4MmExNWMzNzhkMGRjZjM1IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lFcpv2ESm6yKh9GM2Mi8R2Eq6KoDDotYxVqvZ%2FY8g9%2B7msEIxd7%2F7NGaCrlOP3iQqZHnKt7W2xu4VuCETnDFDoVP8WgWpYOvulmAe%2BliO814P3hdp1WJVMNo9ja293vt%2FMU%3D"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c19db478ec98eab-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mail.textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 21:20:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c19db43ceafed0e-LHR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mail.textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 302 Found Date: Wed, 21 Jan 2026 21:20:36 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 58 Set-Cookie: XSRF-TOKEN=eyJpdiI6Imt0R0g2emVwNHdFVlBYWUcycnBmR3c9PSIsInZhbHVlIjoiV1Q5UmpEQ0Vqd05HRFFQNDgrK0M2eFcxWFd1WkkxVkFCdFNLY001YTBWNExPMzROUVhkNDduR3pOMjVYZWlmMVE4djB4VUlSVlVEQlFNMHpXWXFuditlY1ZnajY2TXdXVXBXVzdqeEZoVnhaYnZvaE9qcUY0SlpDU0dVR0N4T2ciLCJtYWMiOiJiODNjNDZlMzBmMzk5ZTUzMTVmMmFiZTRlNGY2ODk4OGRiYTliODk3MzY4YTEwMDg4ZjlhZmY4ODY1NGVmZmU1IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:36 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6Ilc3aUNteDBBS2VqYWJ2OEZrS204V0E9PSIsInZhbHVlIjoiWWtoenBTSDB0aFBselk3REo0WnpiUXp2WWJZREg2eGNSMlYzSmw3K1dJRUZYMEk3RUNzL3VzNUxSakhBZUtBWWUzKzFCNlFSMFpsVUdsMGQxODVNaDZKc1RJZmtUeDlNU0xQL3BzSUF1YlZsQ1dFdTIyTDh5VFQzYVdyUDM0S1UiLCJtYWMiOiIxODdkNzk4NmNmZWE2MTkyNTZhNGI3M2EwYzc2YzVhZDZhNjExZjY1YTliNGEyYTZhZmFiZTM2NmE0MzQ1MjY0IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:36 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RPi1pxsRyg4NnBcrqxEJ64meHoqeUmZeYaZ9lYxvdWDqm0Yvyhp40cVuvNfftHv8%2FO%2B3TPyFlAjeZifbr%2B%2BVLlWbdeYg%2FzWlCkScT0wQRpA4t9cj6gm2e6x0nrEm6XMhj%2BY%3D"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c19db451e5d8f3e-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 21:20:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c19db43f81dccb6-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 302 Found Date: Wed, 21 Jan 2026 21:20:37 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 55 Set-Cookie: XSRF-TOKEN=eyJpdiI6IlgwZmplTVdBd1NjaDlXTWhFYmtDZ0E9PSIsInZhbHVlIjoiekh2Q2d6YWZoNHJkWnFjdmU0ek5LeXhLRFN4Zys4UGFkMldkK1Vaa212djIydnNMMkUwK2NYVUZFV3l2WWVyZGlYcEZha0dnL0tsQmV6Yitlczl4dndOM0g5VlpaU3RvSGFsaG9RZm40SVM5c3hxay9ZVHRYNURPMWFudlRkN2EiLCJtYWMiOiI2MzgwZDg1ZDhjMTIyMTFmY2UwZjcyODE1ZDYzMWFkMzM1NThjMTIzZDFlYzM1MmI3MGYzZmNkODA3MTRlY2ZmIiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6InlVeGtWYmFJbEwrVFZ1V1ZxbllSTFE9PSIsInZhbHVlIjoidm52ZlVhaWtXaGVleTlBWWJGaGF4MU9XRHRwZ1lEREx4NUtCWVg1U1V1blk3V25HRDYydjRMUS9tQm51UG5jU2d4V2dseFRyZDlZMFFGcHU2ZmpWbVd6OGxzV2pmNFZ5WENwbFJ4SHBYSG0vZWY3Z09FcEhlSDU2NGlBdVJTRjUiLCJtYWMiOiJkN2ZmMTU0NDBmN2U2ODlmNDBlZmUxYmE5ZjA4YTNjYjc3YThiNGE5YjYxM2FjYzQ3N2M4ZjcyZTA3MWNkZDUwIiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=N6R5eFHNqQWAFiU%2F4khqAsYdYlcBENmGG%2BtTO2oWqxcXCcyTOdNxTu0hYvEPZpfuCRxsjmeXZKy35RGhmNqNjZEZtAab2nArenhSOHAINe58TfxyNZ8lOyWIqQEu"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c19db467ac14228-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · textlaneebookfilingportal.com
2026-01-21 21:20
HTTP/1.1 302 Found Date: Wed, 21 Jan 2026 21:20:37 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private X-RateLimit-Limit: 60 X-RateLimit-Remaining: 54 Set-Cookie: XSRF-TOKEN=eyJpdiI6IjAxUCsxclp6RzF5ckczejc1cnR0RVE9PSIsInZhbHVlIjoiUjRnZm1KeGVJa3VWdUhjSzRUNzJ3SGMvamU1bkxXUkNGMUFOMnpMeTBqN2ErVEo3bjZ6amZUZWloU01tWEt3enJLS2xIMGUrR3NPV010Z0R3MDdhRGdLa3ZnTHRhTUdGNk9xU0xFTUp3bkttTUxLOFdwcXE1bVhtK2pIaWxVTG0iLCJtYWMiOiI1YTIzMTkxMDI4YmM4ZDYwN2ZmYmI5M2JhMzg4YmQ1Y2I3MThlMTQ5NjE0MjQ1ZWM1ZDU5NjZkNTRjNTQ2ZGM5IiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: siteal01_session=eyJpdiI6IktiMDdUeW0xQnFqeWRLSERGbks3QXc9PSIsInZhbHVlIjoiOXpGQjhQYUpCSEFnRzgxWlNsV2JzU2tSNytHRnNwMTlFcHhjWXFuaWpuNy9XdUJtRlZkK3hXc1IzUTZobUo0VlNGSEs4U1M2KzdHNnBuek5hVGFlSmFVLzJHcmxjQk1mdDBvMk9DWHg0bDBUYUw4UkFoR2NRYnJLUFJQNDFmZGYiLCJtYWMiOiI3YjBmZDFmNjE3ZWQzZDBkN2UyNWMyYzU0ZmZjYTBiYmU3MGFkZDUwMmNjYjU3ZWI5MzYwMDE4NmFhZDkzNzcxIiwidGFnIjoiIn0%3D; expires=Wed, 21-Jan-2026 23:20:37 GMT; Max-Age=7200; path=/; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Permissions-Policy: geolocation=(), microphone=(), camera=(), payment=() cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bjH4rdjHus0%2FMx%2B4r7iL5Au7jhbNl1LlqiZcCEdnbE0TNjCAG8usTnDoWW62WKgz1KfEZI0JQ247lu2UHNf9tEh9VpZ8zdDlX2y3GczkX5Ps4GcL2AvqjiO2po6T"}]} Location: https://www.google.com Vary: Accept-Encoding,User-Agent Content-Security-Policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: about: ws: wss:; script-src 'self' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://static.cloudflareinsights.com https://js-agent.newrelic.com https://userstat.net data: blob: 'unsafe-inline' 'unsafe-eval'; Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c19db46af6d4219-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · aupoildange.com
2026-01-21 19:08
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 19:08:45 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=412,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c191a1fdf7ad3c6-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.aupoildange.com
2026-01-21 19:08
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 19:08:47 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=6,cfOrigin;dur=936 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=h7omFa4twHKTdSzkSidgJj4lZt3yeR%2BtNG462IMEqzEQ6AqLKHrpk7zGF9xmb4k7sOZffNPrDAEI7h8eul1%2FnuscweSNiPgJWNOUK4mKDI4PPuI%3D"}]} CF-RAY: 9c191a24ec8dfd91-SIN alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.aupoildange.com
2026-01-21 19:08
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 19:08:45 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=22,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c191a1dac826b0e-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.aupoildange.com
2026-01-21 19:08
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 19:08:45 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Wgaseku2qVB33HR8pqXCwZbKs1JKAJPaBjxIea1b1XLZWIXpftE%2F5eUTg3pZ6bfzEt%2BOSdJ6FXeoy1T3MrNlLdb0kYtpnL9CrgrS5GazZ4qwB1k%3D"}]} CF-RAY: 9c191a1e9c6b1c15-FRA alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · aupoildange.com
2026-01-21 19:08
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 19:08:45 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Eed7hhuP3H1RafXls1XZlsSa1L%2BJpJj%2BRdZR1vfEt5Tt%2FaNBkwNzeiwQsYxzDHmmXlgPDiGoTkbH%2Fft4fcgq87Ht3Q06DcAHvRt5VCT%2FMw%3D%3D"}]} CF-RAY: 9c191a1e8c0d8709-AMS alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · aupoildange.com
2026-01-21 19:08
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 19:08:45 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=15,cfOrigin;dur=44 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ur%2F1zsdImboKtTWLCUz0rbih6tM67bHtO2unIg1NafOrYdHL0KAZ7VpvdRgoLDKNSTV1%2Fr1PoCdwjBRSPE5PlNBatkfjn5%2FTNdaPw1BxBg%3D%3D"}]} CF-RAY: 9c191a1d9abb8c3b-EWR alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · pacoteio.click
2026-01-21 18:53
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 18:53:47 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=94,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c190433aa6d8574-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · pacoteio.click
2026-01-21 18:53
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 18:53:47 GMT Content-Length: 0 Connection: close Location: https://pacoteio.click/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vbba86R6X8NwVSu2ecbXhf4MSWnW2oHBuS10id7WNrsiI3CrtW49XyNw6JnbVMlGXgI9n98fKgc%2FW227Lw9WIC7wCndjgCa1wKxaajgd"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c190432eb4fd2b7-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · pacoteio.click
2026-01-21 18:53
HTTP/1.1 404 Not Found Date: Wed, 21 Jan 2026 18:53:47 GMT Content-Type: text/plain; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Headers: * Access-Control-Allow-Methods: * Access-Control-Allow-Origin: * Server: cloudflare Trace-Id: 4d5b7a42ccd38c18c40e535f583df8b8 Via: 1.1 Caddy cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=g9q9ooLVbQf5vwOILjsTdx7YVSR6kUSjOvEXcEuNHV6DRpWBAJ141VwIfh%2FwjpntvXBJZDqo8XPu8v83O7ux%2BJ4i8qVR1S4v4Tlu9b19"}]} CF-RAY: 9c190434c83cb909-AMS alt-svc: h3=":443"; ma=86400 Not FoundFound 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · trvbet2.com
2026-01-21 17:58
HTTP/1.1 522 <none> Date: Wed, 21 Jan 2026 17:59:21 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c18b3fccce53723-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · trvbet2.com
2026-01-21 17:58
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 17:59:00 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8m9F7fviBuJQ1UK4UiPm95nDOBAQ1hMW87sLbgMZzvQxH6mnqYC%2Bw2o7yHNMQSdLsz6FUB8TRG2InjFBqC%2BJdgKsflrjHNlQtqN0"}]} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=14,cfOrigin;dur=32 CF-RAY: 9c18b3f66b8a7ac8-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · trvbet2.com
2026-01-21 17:58
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 17:59:00 GMT Content-Length: 0 Connection: close Location: https://trvbet2.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=yS9sxZLzr1J1Vk%2Fq5YwlOscXamHUodhm1zvmyZb66bk8Dar60QQAkfeQWFo5M3HCCiQoiRzdQANBhEjwtLrJFkNbFrhPV0GaX4Fd"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c18b3f5d81f9a64-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · goochlanechurchofchrist.org
2026-01-21 16:30
HTTP/1.1 400 Bad Request Server: cloudflare Date: Wed, 21 Jan 2026 16:30:07 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · goochlanechurchofchrist.org
2026-01-21 16:30
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 16:30:07 GMT Content-Length: 0 Connection: close Location: https://www.goochlanechurch.com Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=76YE3F26dVwOfZ26YNkIGcPW76udd8KQeMLfDdktlSj%2BCJTuH61Q2tgQSO6h%2FPR3AtvYl3ixomNSM%2FpzZPBvuPYCaUEIzTbGb4y96JSq%2FpdVgP4tdre7AIvpiQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c1831c18b29b91a-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · goochlanechurchofchrist.org
2026-01-21 16:30
HTTP/1.1 400 Bad Request Server: cloudflare Date: Wed, 21 Jan 2026 16:30:07 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mythicmind.today
2026-01-21 14:17
HTTP/1.1 200 OK Date: Wed, 21 Jan 2026 14:17:43 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 0 Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, no-store, must-revalidate Expires: Wed, 21 Jan 2026 14:17:43 GMT Set-Cookie: _subid=3eh78v1c33na9; expires=Sat, 21 Feb 2026 14:17:43 GMT; path=/ Set-Cookie: 2a29c=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjM4NTk4XCI6MTc2OTAwNTA2M30sXCJjYW1wYWlnbnNcIjp7XCI1MDU5XCI6MTc2OTAwNTA2M30sXCJ0aW1lXCI6MTc2OTAwNTA2M30ifQ.u0ElJ7-Ki1Ywh7WZUtUk_ZHJj1Xcfy2bFPk5mlupPas; expires=Thu, 22 Jan 2026 14:17:43 GMT; path=/ Vary: Accept-Encoding Access-Control-Allow-Origin: * cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7YHbSf82AiJDJt7NkGFBCEvdGSQ8jS1twOwI6OtPdj%2B6uchKiGjWhjuCPlSUpLZLk2AHTNHMTigj2ZeQI3w%2BdhKaChgM6HSzNj2v4vWx8q0%3D"}]} CF-RAY: 9c176fcafa1836eb-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mythicmind.today
2026-01-21 14:17
HTTP/1.1 521 <none> Date: Wed, 21 Jan 2026 14:17:42 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9c176fc93805ab6a-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mythicmind.today
2026-01-21 14:17
HTTP/1.1 301 Moved Permanently Date: Wed, 21 Jan 2026 14:17:42 GMT Content-Length: 0 Connection: close Location: https://mythicmind.today/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Yniz4JLYQ0qQENNPcUqtDe9d59cYs5286B0O5d3%2BqUE5f7YOgnw0aNB9NvlZtOr%2BdJ4J%2FebP1gRSaNi5W9KcrSsvp7n%2BnVSlKU7jjG74VOE%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9c176fc7f958d218-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-21 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · myhobby.co.il
2026-01-13 00:28
HTTP/1.1 522 <none> Date: Tue, 13 Jan 2026 00:28:51 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19478,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bd0c62a1fbecf4d-SJC alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-13 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · myhobby.co.il
2026-01-13 00:28
HTTP/1.1 200 OK Date: Tue, 13 Jan 2026 00:28:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Link: <https://myhobby.co.il/wp-json/>; rel="https://api.w.org/", <https://myhobby.co.il/>; rel=shortlink X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff X-Server-Powered-By: Engintron Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kFKRJmeyVOX5%2BqCHqo4J5OAOr4LyLf%2F2nsBsURA%2FCg6FxIygBGr6FfhZTkQDdCdYeOoD3ykOqwDHQGDz5H%2B5BaAsJjsOhtiWIRzv1yo%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bd0c628d86ed288-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-13 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · myhobby.co.il
2026-01-13 00:28
HTTP/1.1 301 Moved Permanently Date: Tue, 13 Jan 2026 00:28:30 GMT Content-Length: 0 Connection: close Location: https://myhobby.co.il/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jzBVt2k29fyFQyN0GlZ4rttPdJTbyBWTsXZc%2BPKdG%2Fea9aAr2hFgJIKCErn%2BjRRjo6ZTXNzqEOkn6QIAOHwhfHDXpiManv%2Fi5azzx1M%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bd0c621db8319c0-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-13 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · corporatear.info
2026-01-12 23:36
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 23:36:30 GMT Content-Length: 0 Connection: close Location: https://www.verliance.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=i9HPSIuuxlVdHxs2leFT5lWv6LltMRKULwN6eFlu1Q6j%2BctxHZSiyesfalhChx73Hcyrd%2F9tV%2F%2BNcy5UoMYHy58z4%2BOaGmRIA6IwBCQ23dc%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bd079f39d953e03-BOMFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · corporatear.info
2026-01-12 23:36
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 23:36:29 GMT Content-Length: 0 Connection: close Location: https://www.verliance.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QCya%2Bt85VmSBRIsqN8LD9RDQp7PdU1Osyj3XlTTAKjrSaIp4T8jVdIbRBHy%2BxZxQLJ2yt2n4h9VGdN%2F6X1xn7lmfcLFSFhedbrH5YILkgW8%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bd079f36f985d86-FRAFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · corporatear.info
2026-01-12 23:36
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 23:36:29 GMT Content-Length: 0 Connection: close Location: https://www.verliance.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XL9CuKYJ4KXuYxeJilyj8tDMF1Z2Em2B5iVDJKcwTWHPaSlY716Xu74kWVaxsv7l44nMixRDrwzOiHimAyjIt%2FOAHB9Ax92b%2B2sPgKsfANI%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bd079f2bdf1dc59-FRAFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.nextco.solucionesqa.com
2026-01-12 23:31
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 23:31:03 GMT Content-Length: 0 Connection: close Location: https://www.nextco.solucionesqa.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=QYDB%2FhuvnY477az83xj8PtpVTZVwsriaPO%2FqTjfeQ3fdek5q0lRNvs5oV2QPLiv4d0KsJ9HdyOIckuq8vnu031tfFrAcl89D0PUdGE6WBBQTgkjBvcD9dWSgow%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=8,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bd071fdbf66493e-BOM alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · nextco.solucionesqa.com
2026-01-12 23:31
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 23:31:03 GMT Content-Length: 0 Connection: close Location: https://nextco.solucionesqa.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vyzadvWNWtyO1b7b9nterltvsgOVh0ggwpU6B4gTcjfe4eLLdRqIvyP0guikO2eb7IoDI7uo1Z%2F63ogWqupNBkXGpkAJoE5Wyd9yDkoQG0Sm0tCLyQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=9,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bd071fd7c7723fd-SJC alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · nextco.solucionesqa.com
2026-01-12 23:31
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 23:31:03 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=37,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bd071fd7c504379-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.nextco.solucionesqa.com
2026-01-12 23:31
HTTP/1.1 400 Bad Request Server: cloudflare Date: Mon, 12 Jan 2026 23:31:03 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.nextco.solucionesqa.com
2026-01-12 23:31
HTTP/1.1 400 Bad Request Server: cloudflare Date: Mon, 12 Jan 2026 23:31:03 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · nextco.solucionesqa.com
2026-01-12 23:31
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 23:31:04 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sun, 11 May 2025 02:58:20 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: max-age=7200 expires: Tue, 13 Jan 2026 01:31:04 GMT vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4imOFvIklEkN1sat%2BDWMqxZeGC%2BTfs28npOnx15TiseOEnPj3ovXS39pI3TVDFQYhZc4a0mnuyWI6CHNNgYI7OBHeP0kZNinB6hYKTbQsTH7l1I%2BuVBk"}]} x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9bd071ff0b83d35e-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-12 21:28
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 21:28:51 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=114,cfOrigin;dur=20 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WIqljdJ4cPicGNVAT60bEHidzfB7xKLyG4Xq4fH66%2Bvox%2F0Lmi%2F05BbvVtoseyWoyvaBGcFvDZSHSz0TldMFa5zQnG4yHcnwSRfzdA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9bcfbefacfa08ae3-EWR alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · 486405578.xyz
2026-01-12 21:13
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 21:13:09 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Location: https://www.564076479.xyz/ Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UiKYVtkbA0Px7NB8n5SHhhnWgvan%2FbLIfrohDyK8LXc0YRUQb1qBIiECMHQGh5AwEbZ7UR5Ckd4WDQZDBXxUjsYcmeQuARv%2BvamELXw%3D"}]} CF-RAY: 9bcfa7f568df2ddf-BOM alt-svc: h3=":443"; ma=86400 Page title: Document Moved <head><title>Document Moved</title></head> <body><h1>Object Moved</h1>This document may be found <a HREF="https://www.564076479.xyz/">here</a></body>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · 486405578.xyz
2026-01-12 21:13
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 21:13:08 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Location: https://www.564076479.xyz/ Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=v91Z%2BjR2Pte%2BztljYjgWcl9CfDZ1TyuEoy%2F549fY%2FPdRfYx7m%2BH0KDE4L7UJaPU2QeMM%2FJ8LuYLEosoUMWi1Ff7CLH%2BazKwlNZfe9mk%3D"}]} CF-RAY: 9bcfa7f2c875f993-SJC alt-svc: h3=":443"; ma=86400 Page title: Document Moved <head><title>Document Moved</title></head> <body><h1>Object Moved</h1>This document may be found <a HREF="https://www.564076479.xyz/">here</a></body>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · 486405578.xyz
2026-01-12 21:13
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 21:13:28 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcfa7f85ea24d26-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · visitsutherland.org
2026-01-12 21:11
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 21:11:36 GMT Content-Length: 0 Connection: close Location: https://assaona.com/en/music/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=K4XtM1IrVPXwd8xbqHUDnZ8wSSCYBxU9dvMqQjGpBM57UjgzOSyKLqh2n%2FtvHJyt%2F625ZLL1Gqe2ygB%2FhC9yMrT%2FJpdTB%2BGJSUk63IhYeTG4vO4%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcfa5b6c8332bec-FRA alt-svc: h3=":8443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · visitsutherland.org
2026-01-12 21:11
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 21:11:36 GMT Content-Length: 0 Connection: close Location: https://assaona.com/en/music/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YG0YeddidFka6pdcf%2B4gow8ep9QO%2BomxdPOMSkuIdpHbVWCnJqscm24LFjQNQUU4nH5dNRpXaqOu9N5wIWeX9L0ZAngaBkxPmDRyW9eiXbbYCMQ%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcfa5b6bd9e3ec5-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · visitsutherland.org
2026-01-12 21:11
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 21:11:36 GMT Content-Length: 0 Connection: close Location: https://assaona.com/en/music/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2LOkGIA5e3gBlW%2BI%2FV%2F7lE0PM%2FZlTpxlom9U0Dz8YUdbt0c8tymLqSDIW9vzmukr0RyfX8lsmOkmADw50rKoXQsUTO402thZQqhTDOuhy434fZY%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcfa5b64d0cfdb6-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · wajibmaindijangkau.xyz
2026-01-12 20:10
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 20:10:08 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=275,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcf4ba858939aa4-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · wajibmaindijangkau.xyz
2026-01-12 20:10
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 20:10:07 GMT Content-Length: 0 Connection: close Location: https://wajibmaindijangkau.xyz/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xklF%2BzVsEW67ibYkttpCFtkJpzORZ2%2FuBgd5trRZUmEVc%2F0GDOM55l9TNdOlBuE8XraCXWHKGiaHnLTR4EuUqS3yNIwdZuvGpnYZRTl8iGfl9e%2B51Bw%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcf4ba5688c0686-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · wajibmaindijangkau.xyz
2026-01-12 20:10
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 20:10:08 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding X-Powered-By: PHP/8.0.11 Cache-Control: private, must-revalidate pragma: no-cache expires: -1 Set-Cookie: XSRF-TOKEN=eyJpdiI6IjEwMitsdnBrTDR1OHI2eVNCTXh1TEE9PSIsInZhbHVlIjoiUnhMSUJlVVR2V3h1eU9HM3RtajFPNUljU3MwUWtkVjYvc3pSTjFYa2FFbCtPMmFoUGlYK0JYTlplNEhvZmRkZU5ONmJRdmNrRGNWUk9RWXVPdC94NGcwNW9kWHhIWS9qNDFmTmVHcDNxTC9qc21HL0gwTThhSll3ckRJbnlJaCsiLCJtYWMiOiJhY2Q2ZmQ3NDRlODFhOTdlZGM3Nzg2NmE1NWUzNDE1MWI5NTMwNjE5ZjA0NmVmNTE5NzU2ZWQ2NzQ2MDE0NjNiIiwidGFnIjoiIn0%3D; expires=Mon, 12-Jan-2026 23:10:08 GMT; Max-Age=10800; path=/; samesite=lax Set-Cookie: jangkautoto_session=eyJpdiI6IjVRSXlFOHpFV0gwTDN3dEUxVHlvUkE9PSIsInZhbHVlIjoiM3ZsV2I3YUhYa0lsdndnUytQSGsrRnVSS0tuUithblRYTkI5aFA1ajdIVFJLenM3b0xZSW9ZS2NvQmFDb3BpMlhHN29td2ZKNWQwbW1GWVF6MkxQSFJxRXpWMDRTYWhCTDNSTlVzWVhDbHFWcGhBWGtkMVNSc0lidVlFN3J2am8iLCJtYWMiOiIxNzNmZmI4Zjk0ZjQ4MzAxM2JkOGE2M2UwZTQ4MTM2MjZjNTQ4OWI0YjNkNzI4NzcyNzRjYWIzY2ZlZGRmN2MyIiwidGFnIjoiIn0%3D; expires=Mon, 12-Jan-2026 23:10:08 GMT; Max-Age=10800; path=/; httponly; samesite=lax Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,X-CSRF-TOKEN, authorization Access-Control-Expose-Headers: Content-Length,Content-Range Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gSKIBpb%2FYPd2eHQSCiRYjMtWXK%2F%2FzNOp6kT9aatCqa1qO1GvTJVDJtsgkCk9900WR3j1OSZRVhV7%2BE38T1zD29w1jBYcV%2BdpYklOcFMXb1M1nnO66Dw%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bcf4ba839db2d00-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · h-luckydoor.vip
2026-01-12 17:15
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 17:15:51 GMT Content-Length: 0 Connection: close Location: https://h-luckydoor.vip/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zB7J2HsjtIguI2veHJ%2F%2FXvxRPun6ddLTMmQ2BLkTR1SeBwjW3Slt6WxOhS%2FPphVDtkN0T8VRU6nMnKXdJFgfGop2cXesFMQLXasy3mUjRQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=10,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bce4c5bcd50edf5-BOM alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · h-luckydoor.vip
2026-01-12 17:15
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 17:16:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bce4c608b90b8ed-AMS alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · h-luckydoor.vip
2026-01-12 17:15
HTTP/1.1 302 Found Date: Mon, 12 Jan 2026 17:15:51 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: http://www.h-luckydoor.vip/ X-Served-By: Namecheap URL Forward Server: cloudflare cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bYQIHOCd1Mw9XkQSZxGqNC4y3npEft%2Fc2KZGnSIW1DpPjKQjzRyQkBO0vpM7mbNnm%2F%2FO3EAEkv8nj3%2Fyioa9fjOFfvPvJvLyau8olAoY0g%3D%3D"}]} CF-RAY: 9bce4c5c0d4fa63e-FRA alt-svc: h3=":443"; ma=86400 <a href='http://www.h-luckydoor.vip/'>Found</a>.Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · digitalsixpenny.shop
2026-01-12 16:16
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 16:16:25 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcdf54d6865cf1b-SJC alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · digitalsixpenny.shop
2026-01-12 16:16
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 16:16:24 GMT Content-Length: 0 Connection: close Location: https://digitalsixpenny.shop/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BoNli53wHVmcQxPGusA1wmhjdPw8pZF%2FfrElSIhCUl1vnVa2Najv2diZpna4MO%2BhXcJyT14zGLJcUwbtUB7oLn2tyhaGvMt9pbleJZSZesV0Llcp"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcdf54b5a5c667a-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · digitalsixpenny.shop
2026-01-12 16:16
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 16:16:25 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KSF%2BeyTSZfbGvObcRFRSsyUqemoOUL%2BPsXOzI1BN0Ah4fevQh0r27soDLtHNGctxpxpgaX55eQhg84B0%2BUicJeSd%2FgNCgi8m6weOxyiTWnnXwv62"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9bcdf54e78f11f67-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · samoyapi.com
2026-01-12 13:20
HTTP/1.1 400 Bad Request Server: cloudflare Date: Mon, 12 Jan 2026 13:20:23 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · samoyapi.com
2026-01-12 13:20
HTTP/1.1 400 Bad Request Server: cloudflare Date: Mon, 12 Jan 2026 13:20:23 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · samoyapi.com
2026-01-12 13:20
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 13:20:23 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Rate-Limit-Limit: 5s X-Rate-Limit-Remaining: 19 X-Rate-Limit-Reset: 2026-01-12T13:20:28.3536674Z cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wks0v3zIa0CIv612MKPpJUrTB0VIJdK%2BfVhydDAY6%2BcxkyIqMnsVwOXdWMH2S%2B64j7%2FROUmu2GqgQiIxvxIQQptrX%2BQ26XMZq7u5vQ%3D%3D"}]} CF-RAY: 9bccf371693b0a61-AMS alt-svc: h3=":443"; ma=86400 Page title: samoyapi.com Premium Park Sayfası <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>samoyapi.com Premium Park Sayfası</title> <meta name="robots" content="index,nofollow,noindex" /> <meta name="googlebot" content="noindex"> <meta name="description" content="{0} Alan adının premium park sayfasına göz atın. {1} domain boş uzantıları ve satılık alternatiflerini görün ve dilerseni satın alın." /> <meta name="keywords" content="sınırsız web hosting, cloud hosting , alan adı kaydı, domain kayıt , sunucu kiralama, dedicated server, kiralık sunucu, SSL Sertifikası" /> <meta name="author" content="natro.com" /> <meta name="copyright" content="Natro Web Hosting - Cizgi Telekomunikasyon A.Ş." /> <meta name="rating" content="General" /> <meta name="revisit-after" content="" /> <meta name="distribution" content="Global" /> <meta http-equiv="Content-Language" content="tr" /> <meta content="text/html; charset=UTF-8" http-equiv="Content-Type"> <meta http-equiv="reply-to" content="destek@natro.com" /> <meta http-equiv="pragma" content="no-cache" /> <meta http-equiv="pics-label" content="" /> <meta name="theme-color" content="#81bc00" /> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"> <meta name="robots" content="noindex,nofollow" /> <link rel="stylesheet" type="text/css" href="https://cdn.natrocdn.com/ResourceFiles/v1/plugins/bootstrap-3.3.7/css/bootstrap.css" media="all" /> <link rel="stylesheet" type="text/css" href="https://cdn.natrocdn.com/ResourceFiles/v1/plugins/bootstrap-3.3.7/css/bootstrap-toggle.css" /> <link rel="stylesheet" type="text/css" href="https://cdn.natrocdn.com/ResourceFiles/v1/plugins/jquery-fancybox/jquery.fancybox.css" /> <link rel="stylesheet" type="text/css" href="https://cdn.natrocdn.com/ResourceFiles/v1/css/font-awesome.min.css" /> <link rel="stylesheet" type="text/css" href="https://cdn.natrocdn.com/ResourceFiles/v1/bundle/css/bundle_header1.css?ver=cffe79ca-b829-db4e-0163-7fdf35a54e13" /> <link href="/css/page/domain-park.css" rel="stylesheet" type="text/css" /> <script> var inCustomerPanel = false; var base_currencyCodeList = [{ code: "TRY", symbol: "tr", parity: "3,5721" }, { code: "USD", symbol: "$", parity: "1" }] </script> <style> .loading-box { padding: 20px; font-size: 35px; } .no-result { padding: 20px; font-size: 25px; } #selectedSave[disabled='disabled'] { pointer-events: none; } </style> </head> <body style="margin-top:0px;"> <div class="page-wrap"> <section> <div class="banner image big no-border"> <div class="container"> <div class="row"> <div class="banner-content"> <div class="col-md-8 col-md-offset-2 col-sm-12 col-xs-12 text-content"> <div class="row margin-top-60"> <div class="text-center"><img src="/images/global/natro-white-logo.png" /></div> <div class="col-md-12"><span class="text-light banner-span-label">600.000+ Alan Adı Natro’ya Güveniyor! </span></div> <div class="col-md-12"><h1 class="text-bolder banner-h1-label">samoyapi.com</h1></div> <div class="col-md-12"><span class="text-light sub-label">Bu Alan Adı Kayıt Edilmiştir ve Natro Park Sayfasını KullanFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · api.re-up.app
2026-01-12 12:37
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 12:37:43 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=702,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bccb4ebbf4c9fd4-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · api.re-up.app
2026-01-12 12:37
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 12:37:42 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dvjuRktvXixo95F%2FWTQNRJmgbKtSEqWwx1GWAFLgDRI%2FqCKebZjVnrQNsPyYNcXGBt2LVnItQLCcbfaSzKyyMrrxAr5SZPyZbp71hFU%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=4,cfOrigin;dur=43 CF-RAY: 9bccb4e9b95a92c6-YYZ alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx/1.18.0 (Ubuntu)</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"46de9cbb06bb4302b0abcfe6a8637db2","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · api.re-up.app
2026-01-12 12:37
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 12:37:41 GMT Content-Length: 0 Connection: close Location: https://api.re-up.app/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WIiGIQeut8XYSCI5FEAM7V%2B%2FcOE28B%2Fj%2FvOynOYFk94gckjLfeDobGtaJ2XOYFI4ocoeUh1hKf6QbxFVdVdZz%2F44bFSjVqs5RtF1Mz0%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=9,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bccb4e95a0fa678-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · lasvegaskangen.com
2026-01-12 11:44
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 11:45:01 GMT Content-Length: 0 Connection: close Location: https://www.lasvegaskangen.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Yh6tReip5%2Ftq0CScam0he9H%2BdeRwIBSTPqKs2vWV8XnQfvScykGfGNEqdX%2B4v%2B%2FQs%2B5IkpCcPb1MvM86L49%2Bi7ur6wqp0lF8eBV4KTqO2yoINg%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcc67bf6c48d38e-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · lasvegaskangen.com
2026-01-12 11:44
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 11:45:01 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mc6ZKJZKi8oTNAcpCvZ%2Fkap2dcuy9G2ZXxbslEc98IK2MW47RdBtJjsnp5s23nOrMFpcPxDfV1TdoM6anq2uRg%2FvZAQpp7Upg93a2sRLz%2FofKw%3D%3D"}]} Server: cloudflare CF-RAY: 9bcc67bf7d3e5223-FRA error code: 1006Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · lasvegaskangen.com
2026-01-12 11:44
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 11:45:01 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gTuZClKoiJMFTm8rpP9q0UICoWyEgJ0HRuMt27yF9TSNXAHrj5Sd0Qa9a7ErI%2BBPTexO49CujIvl01463XhN75vAc%2FeT3jZQkUjDRqIncrO8ig%3D%3D"}]} Server: cloudflare CF-RAY: 9bcc67bf8a53bbaa-FRA error code: 1006Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mecuv-lopu.site
2026-01-12 11:30
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 11:30:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ouhbbu2Q8dmMnblaSuAKf4vN3WskXXKQUPD9dFIp0tLoiI6jgB8bR70PNZPoNh417YuBGyPHBYqF4jUDPxcT45zUakeM%2B9Al0XlPDePHkw%3D%3D"}]} Server: cloudflare CF-RAY: 9bcc5205c9037af8-SJC error code: 1005Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mecuv-lopu.site
2026-01-12 11:30
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 11:30:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jWyd8rVwMYPmV1YLVOZ8S6Ro7GHXIvcDvry4U5tly11YnPuajznz3O1MLAQj6kOLHNinV8KvB7O%2FqivnzekQnXDk8u9%2BBvffYXGQHVDr6Q%3D%3D"}]} Server: cloudflare CF-RAY: 9bcc5205080edca4-FRA error code: 1005Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mecuv-lopu.site
2026-01-12 11:30
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 11:30:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JbeJRYI2ktjXXRejy5ZI99GR9yJ2M9%2BV0nScDMB7p2qrQiWu81tO21ex40tqIDzjGUMfGthl%2FmCY3KfA4bjct48fNJI6WTqjiAWQkWCEhg%3D%3D"}]} Server: cloudflare CF-RAY: 9bcc5203cd3c1fc9-LHR error code: 1005Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · reindeergames-themovie.com
2026-01-12 11:05
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 11:06:08 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19736,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcc2e5018552c56-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · reindeergames-themovie.com
2026-01-12 11:05
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 11:05:54 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://reindeergames-themovie.com/wp-json/>; rel="https://api.w.org/", <https://reindeergames-themovie.com/wp-json/wp/v2/pages/51>; rel="alternate"; title="JSON"; type="application/json", <https://reindeergames-themovie.com/>; rel=shortlink vary: Accept-Encoding,User-Agent Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=P0NgRJlNB1EdzeexfS5%2F3BrxrIxwCh6OpMUvgcwVAvzH1q22DmrSwY%2FtoWsnSqU%2B9DGNymmvEsJDte55uxAZyZVjmqHYfjr2bPSlweljlvFMxpRDQctimFs%2B"}]} Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=4425 CF-RAY: 9bcc2e557b4eda06-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · reindeergames-themovie.com
2026-01-12 11:05
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 11:05:48 GMT Content-Length: 0 Connection: close Location: https://reindeergames-themovie.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IYivf9ADtl6Yo8pjd%2Fx8Gkv2%2BUQ%2BWgC%2B1WDEcOAd0iXALEp0u8FWBL5ETqTiX0wWU4m7tRx6HqObuVO1qfCpHbK%2FidAy7isvFmHSUa1tEWitRIG1vv88eS2m"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcc2e4eef0a9b58-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.reindeergames-themovie.com
2026-01-12 11:05
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 11:06:09 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcc2e54091fde7d-LHR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.reindeergames-themovie.com
2026-01-12 11:05
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 11:05:48 GMT Content-Length: 0 Connection: close Location: https://www.reindeergames-themovie.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5iph4zzr36rhFNifa%2FPqpiGivSlp5EHISxgYcnaz0eYTGeMiPsTwWtgZH7wAlCD3hoHwXQeIygHxIBgduL9cz0sR8oBzQrxYHhPrhYo6KvnT995i%2FqEdsqLM9fmqtQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcc2e4dd94c638e-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.reindeergames-themovie.com
2026-01-12 11:05
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 11:05:52 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close expires: Mon, 12 Jan 2026 12:05:52 GMT Cache-Control: max-age=3600 x-redirect-by: WordPress location: https://reindeergames-themovie.com/ vary: User-Agent Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Cycetegq0xAxbnG7G3HA5dodoPMTsfhIeeCQo7ol8h9WbdGNirgV0jGMEKKsC80TvW2rYYvnWU81119Sj1k%2Fssgor6ZBXzVYbn2V27keN4kw9U8TKsVc2FuYgwvrcw%3D%3D"}]} CF-RAY: 9bcc2e53fdbdc0d8-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mengnan1944850.buzz
2026-01-12 10:59
HTTP/1.1 523 <none> Date: Mon, 12 Jan 2026 10:59:12 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=266,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcc24a47c8847db-BOM alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mengnan1944850.buzz
2026-01-12 10:59
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 10:59:13 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers Cache-Control: public, max-age=14400 Expires: Mon, 12 Jan 2026 13:17:56 GMT?v=1768209476425 X-XSS-Protection: 1; mode=block Content-Language: en-US Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c3YNk5Vztl9rq2ChUL0h5qwTViBQlcRomSKJKQ3GZhUebjdolSHRQnnEgpX7fWl8SsM7N5boWFL4%2FISvaHeTWGzE29yBJ0TtyqOvXzbzIyztWMc%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bcc24a5ed790b77-AMS alt-svc: h3=":443"; ma=86400 Page title: 在嘈杂生活中的一块自留地 <!DOCTYPE html> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta http-equiv="Cache-Control" content="public,max-age=300"> <meta http-equiv="Pragma" content="public"> <meta http-equiv="Expires" content="300"> <title>在嘈杂生活中的一块自留地</title> <meta name="keywords" content="在嘈杂生活中的一块自留地"> <meta name="description" content="在嘈杂生活中的一块自留地"> <meta name="Author" content="在嘈杂生活中的一块自留地"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta name="yandex-verification" content="a53b486170c9d645" /> <link rel="favicon" href="/static/template/mengnan_new/favicon.png"> <script type="application/ld+json"> { "@context": "https://schema.org", "@type": "WebPage", "name": "猛男情报局 - 全网最全黑料大揭秘 | 独家热搜与实时爆料", "description": "猛男情报局提供黑料热搜以数亿用户海量的真实数据为基础,通过专业的数据挖掘方法,计算关键词的热搜指数,旨在建立权威、全面、热门、时效的各类关键词排行榜,引领热词阅读时代。", "url": "/shouye/index.html" } </script> <style> @font-face { font-family: iconfont; src: url(//at.alicdn.com/t/font_1706200_3sgw4esvyq9.eot?t=1584846914425); src: url(//at.alicdn.com/t/font_1706200_3sgw4esvyq9.eot?t=1584846914425#iefix) format('embedded-opentype'),url('data:application/x-font-woff2;charset=utf-8;base64,d09GMgABAAAAAAPcAAsAAAAACEAAAAOQAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHEIGVgCDMgqDVIMaATYCJAMUCwwABCAFhG0HUhswBxEVnPHIfiZkcgn7O+8oo66bEbK2OpSJxjfBA+X1vslMtll8iBW0KuzdSry1J/JGpwASAA0EaO7O95urXT4WOkKV5Nojj7b4hwrpy2SO/v97p78xLfvYuvYslzWHLex8DDAOpEDHnGQljg3TC+cUPEjbIQAHqRRD1GvQzI2BgvQTgBjYr083jJQNVcMRGEZbyVSVKhajY2hztCvAIv178YYywgANXUJ2atW7fk9qmZi1ZMCSjnILC8fbDUAHJFAMUCCGl/oGIm2uGBKHP1RRC3BgoKGZmLxVUbOWZcWqHRkc9A8PBBKFBsIGKXUBUAvlFZhwBAGmhiDBLIqgwKyVRwPuKwAOWAjCWUxL9mpIWOWKcikVmuwiF0+49sx9/bnn5gvfDdO/at6eQHTP5dHLd8Z6V67btSPG061Q523w0S5OzYETx4QbT9zXbnmuP/bdvOsL9lwR2D031utePndvMM7nXRncNy/G4xvlEveE69fc4Tdu+AbcnOdxa4E98/bFyZV75+5WxGRRnfY0cEulpaqbVCzNtxTEU1P1m2J4tFGwJ7VcytpevcrWOXd44oCjAyZu3DXRvQxryi09PV2/BcVQIlRxZPWvAFhMXkb1qQ3bHPFvOVXxWI1TjTLPFjtT5smFsAtxVqK82CcvekwcsbMOHDh4wOBxYw4eZI+NVR+A6Vmx4bGz1ZI0XFw1r0mlXm20lW5RpWd+s0u/ijYZwarmHJsZVi+tXKjMlU2rm186Hlk6tFxaPfwAWLPk3380K2u4Qm6xtmaprTL4b/dj0Nu/F+qwat8MpwLgzvpfdbSsPbbVBj9Ijy//kxa1tAb7qAqUxK4rT8490qpVpxGATiESBDT4aTX/LxTJg3H0MbPIZMAgJgaNIqSAxCCbpGjFQMdJObBhUBMcFKXhbCdRDEcilB0oZAYAQTiHQCOU4yAJ5ypJ0e6DTizvwEa4kODAK6KWdJIrLP1uHgWtYqDuj3zPi2FOvTHlb7BpaiWp1NwvSPRJKrMiW3zFAhljRPy2laohIzzTC9gN08S0Cgf0mjnV9ZLnpuxDWc/z5oZHQasYqPsj3/NiZGO9yX3/DTZNrdQQ+qJfkOjbpzIrWpBedUsrwrXcEr9tpWrICM/0AjyYaI5pLe8U0GvmemTWS47qmba6bH7D/IybAAdkZV1oQgoldGHjYViCYPl3WKxb86g+On/sE/+kc/CLtS1vNg==') format('woff2'),url(//at.alicdn.com/t/font_1706200_3sgw4esvyq9.woff?t=1584846914425) format('woff'),url(//at.alicdn.com/t/font_1706200_3sgw4esvyq9.ttf?t=1584846914425) format('truetype'),url(//at.alicdn.com/t/font_1706200_3sgw4esvyq9.svg?t=1584846914425#iconfont) format('svg') } .iconfont { font-family: iconfont!important; font-size: 16px; font-style: normal; -webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale } .icon-querenzhengque:before { content: "\e600" } .icon-tishi:before { content: "\e640" } .icon-cuowu:before { content: "\e602" } .icon-jinggao:before { content: "\e62b" } * { box-sizing: border-box; margin: 0; padding: 0; font-weight: 300 } body,body ::-webkit-input-placeholder { font-family: Source Sans Pro,sans-serif;Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mengnan1944850.buzz
2026-01-12 10:59
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 10:59:12 GMT Content-Length: 0 Connection: close Location: https://mengnan1944850.buzz/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jt7d1PPtPLSt9jsVCRrFXjq%2F9vaHlAuG8B6FviQL9%2FY7RVp5AoJoUYZxWZnUwLd9zIPRwtLZpbNSWShBB9gxHy4BLIc%2FkmZSLJudHGte1qfgRBM%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcc24a29b4d0038-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · modelsai.top
2026-01-12 10:39
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 10:39:33 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcc07d87b33bb55-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · modelsai.top
2026-01-12 10:39
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 10:39:33 GMT Content-Length: 0 Connection: close Location: https://modelsai.top/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mfF6iik7zmSt9Vtway46ukNZ67rgtovPjPCrbhPmjRTPH9b6gnsYSv8hv77sN0Hl9d8l5Tg59yVqZIa89FJBebztZtyEpYPD6NWgSQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcc07d86e466568-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · modelsai.top
2026-01-12 10:39
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 10:39:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding X-Powered-By: PHP/8.3.29 Set-Cookie: PHPSESSID=21b5c1f36bbd755e587cf553eefc2737; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Access-Control-Allow-Origin: * Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kNwDUuVTvzjADfHzA9meYlEGEO1EEi1AepMb7LI4MxuKafn6sZtYi%2FdR%2F8vbTVeUV8kydgzp6K5OQwbZHrtb9vU3b8bRLIRaohtY8A%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bcc07d888681c28-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · 3hu8.cn
2026-01-12 10:23
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 10:23:51 GMT Content-Length: 0 Connection: close Location: https://3hu8.cn/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NZNOKMW9f625TUr6m%2Bw6YL12mJJWLYjy9kCMZFjWm56zbCKD6xN83yaKS3C%2Fc8Q0TleLXsD1Jw5tbIYf0G%2FfTby3Nnsl1NQ%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcbf0d9cd5ff910-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · 3hu8.cn
2026-01-12 10:23
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 10:24:11 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcbf0deeb75cdf5-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · 3hu8.cn
2026-01-12 10:23
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 10:23:51 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: http://www.3hu8.cn/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YQFZtdYBsJ5AmO8oFBzi74%2FrIMzxaDqtNTzL5hQl9%2B44BriDcXTPvvMZZONONj1%2F6Hc7OVxRcAGxf78Xe6%2F1%2Bt9TlHSisFo%3D"}]} CF-RAY: 9bcbf0dafd5eabd6-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · laminaria.com.cn
2026-01-12 10:12
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 10:12:33 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcbdfd4de2d8c6d-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · laminaria.com.cn
2026-01-12 10:12
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 10:12:13 GMT Content-Length: 0 Connection: close Location: https://laminaria.com.cn/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1ZxTZxJDc1kmJq1UrgcZcGSiDodrzhB9T9DhO9MJeRxnZ7iakZv5K3U05NBpdlzfUlPjximhsWp5ygST0fmyEt0q4xQlprOsTdSqbXtf"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcbdfce5fc4d73b-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · laminaria.com.cn
2026-01-12 10:12
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 10:12:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: http://www.laminaria.com.cn/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ABXaHui7FsQX3nDwd5saonHRHbf%2FFolprntSj02KZlTfc91U5y3wxaLOS3T%2BOKSDeCLo26%2FhoaFzDELV8AN1sW0zNTDlJhz3EI4HxJZR3bE%3D"}]} CF-RAY: 9bcbdfce293491cc-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · i0995.cn
2026-01-12 09:39
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 09:39:55 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bcbb0026a5dfd30-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · i0995.cn
2026-01-12 09:39
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 09:39:36 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: http://www.i0995.cn/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EcgpRjxO%2BzW4s622YlQM63ZSCm9MzfEwPdVwX1oaoawhInN4WuhLap38Sy%2FoIux0hN1CHBivJAv0NFV9552nhXtZPQUMTi5p"}]} CF-RAY: 9bcbb0019d3b9f17-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · i0995.cn
2026-01-12 09:39
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 09:39:34 GMT Content-Length: 0 Connection: close Location: https://i0995.cn/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PLFGo1MLDBwFPiRpp1PjxW0fI1pU7jc9%2BEW%2FCKiYhdHdgGxwHIbaLyb1gJ83ZWvgG%2F%2FRiV4tPdfu3X631F8s83yWBNuTW8p7"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bcbaffafcebd382-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · greetkiosks.com
2026-01-12 08:38
HTTP/1.1 404 Not Found Date: Mon, 12 Jan 2026 08:38:55 GMT Content-Type: text/html; charset=us-ascii Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Speculation-Rules: "/cdn-cgi/speculation" Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=111 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YJBU1UzPAAxaUFcoU7fF2r2hRmqPOmbU7Q0r6lVQv72eBYEOfV8TYKA2T8W2rBEhy5zOI3aWTon%2F5l5WFWyWmLbh0FtGmsG8hVZ8CgY%3D"}]} CF-RAY: 9bcb5725ba46a1f0-YYZ alt-svc: h3=":443"; ma=86400 Page title: Not Found <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"> <HTML><HEAD><TITLE>Not Found</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD> <BODY><h2>Not Found</h2> <hr><p>HTTP Error 404. The requested resource is not found.</p> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"b58991b3bfae4bc7aaa4b6d6d924860a","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </BODY></HTML>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · greetkiosks.com
2026-01-12 08:38
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 08:38:55 GMT Content-Length: 0 Connection: close Location: https://greetkiosks.com/ Speculation-Rules: "/cdn-cgi/speculation" Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rLa3zqUrGxMcRsKZp9wG%2F1ZFscLH8R76XfyZO%2F3CjEW21KrE31ENrnYlKb2y8a6oekQo7AK%2BHsBrRKJADQDiaLenMyXmYIlZhoxiUfk%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=12,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bcb5724eab336a1-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · greetkiosks.com
2026-01-12 08:38
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 08:39:16 GMT Content-Length: 0 Connection: close Server: cloudflare Cache-Control: private, no-store cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} set-cookie: cf_use_ob=8443; Expires=Mon, 12 Jan 2026 08:39:46 GMT set-cookie: cf_ob_info=522:9bcb572ade8f430d:EWR; Expires=Mon, 12 Jan 2026 08:39:46 GMT Speculation-Rules: "/cdn-cgi/speculation" Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=19589,cfOrigin;dur=0 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kH4YXYZsP3iQz1Np1jRdijXVJ3%2BqYO4ap8xrs5AlJh8bpcfN8B1fNONv16qWu%2Fy5T2yVeGydwpGweoxuKE09yBjxdXuAK6lueIAQzDW%2BYQ%3D%3D"}]} CF-RAY: 9bcb572ade8f430d-EWR alt-svc: h3=":8443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · n8n.hellogenerator.co
2026-01-12 06:16
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 06:16:09 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: public, max-age=86400 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=o8vYwWw9RF1PBQrV2DBw6zwceMigc83jjAK%2Bu1QfnmDN0P2C5mH7osgi5s0WZ9lSA4En5xY903H3Djlr7eLxfmMXVOrnaMbrckSlT%2Bx5DDrHuhAsNA%3D%3D"}]} last-modified: Mon, 12 Jan 2026 06:09:45 GMT strict-transport-security: max-age=315360000; includeSubDomains; preload vary: Accept-Encoding x-content-type-options: nosniff x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC Server: cloudflare CF-RAY: 9bca86015c37de1c-AMS alt-svc: h3=":443"; ma=86400 Page title: n8n.io - Workflow Automation <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge" /> <meta name="viewport" content="width=device-width,initial-scale=1.0" /> <link rel="icon" href="/favicon.ico" /> <meta name="n8n:config:rest-endpoint" content="cmVzdA=="><meta name="n8n:config:sentry" content="eyJkc24iOiIiLCJlbnZpcm9ubWVudCI6ImRldmVsb3BtZW50IiwicmVsZWFzZSI6Im44bkAyLjIuNSJ9"> <link rel="stylesheet" href="/static/prefers-color-scheme.css"> <script src="/static/base-path.js" type="text/javascript"></script> <script src="/static/posthog.init.js" type="text/javascript"></script> <title>n8n.io - Workflow Automation</title> <script type="module" crossorigin src="/assets/index-DYKMwpCO.js"></script> <link rel="modulepreload" crossorigin href="/assets/_plugin-vue_export-helper-BwBpWJRZ.js"> <link rel="modulepreload" crossorigin href="/assets/preload-helper-CR0ecmWK.js"> <link rel="modulepreload" crossorigin href="/assets/chunk-6z4oVpB-.js"> <link rel="modulepreload" crossorigin href="/assets/vue.runtime.esm-bundler-tP5dCd7J.js"> <link rel="modulepreload" crossorigin href="/assets/_MapCache-BMHbvJCZ.js"> <link rel="modulepreload" crossorigin href="/assets/truncate-B1pKLfYW.js"> <link rel="modulepreload" crossorigin href="/assets/CalendarDate-zWqgZMlk.js"> <link rel="modulepreload" crossorigin href="/assets/empty-BuGRxzl4.js"> <link rel="modulepreload" crossorigin href="/assets/path-browserify-BtCDmZ3_.js"> <link rel="modulepreload" crossorigin href="/assets/sanitize-html-Cc45ZKm8.js"> <link rel="modulepreload" crossorigin href="/assets/en-CF30SCh2.js"> <link rel="modulepreload" crossorigin href="/assets/src-DqmLIEAl.js"> <link rel="modulepreload" crossorigin href="/assets/merge-CY7KXArB.js"> <link rel="modulepreload" crossorigin href="/assets/constants-D62txg5e.js"> <link rel="modulepreload" crossorigin href="/assets/_baseOrderBy-DhDCVDnK.js"> <link rel="modulepreload" crossorigin href="/assets/dateformat-CM9k0--B.js"> <link rel="modulepreload" crossorigin href="/assets/useDebounce-CfSDWjpl.js"> <link rel="modulepreload" crossorigin href="/assets/builder.store-D03YeWV5.js"> <link rel="modulepreload" crossorigin href="/assets/nodeIcon-Bq6ImsWM.js"> <link rel="modulepreload" crossorigin href="/assets/nodeCreator.store-CpwSg-PB.js"> <link rel="modulepreload" crossorigin href="/assets/useClipboard-CuFR0Oza.js"> <link rel="modulepreload" crossorigin href="/assets/usePinnedData-DXKvbgNr.js"> <link rel="modulepreload" crossorigin href="/assets/folders.store-CzHexdK7.js"> <link rel="modulepreload" crossorigin href="/assets/executions.store-CKuwjXt_.js"> <link rel="modulepreload" crossorigin href="/assets/useCanvasOperations-Cj5EHXV0.js"> <link rel="modulepreload" crossorigin href="/assets/retry-dP46utx2.js"> <link rel="modulepreload" crossorigin href="/assets/useRunWorkflow-526gGsiD.js"> <link rel="modulepreload" crossorigin href="/assets/uniqBy-Dkms4n6p.js"> <link rel="modulepreload" crossorigin href="/assets/NDVEmptyState-CFcIB3lC.js"> <link rel="modulepreload" crossorigin href="/assets/vue-json-pretty-DGKuDe33.js"> <link rel="modulepreload" crossorigin href="/assets/assistant.store-DKBbr3mA.js"> <link rel="modulepreload" crossorigin href="/assets/schemaPreview.store-CBZCG29q.js"> <link rel="modulepreload" crossorigin href="/assets/chatPanel.store-BDqyoUvy.js"> <link rel="modulepreload" crossorigin href="/assets/dateFormatter-Dqzt2wPY.js"> <link rel="modulepreload" crossorigin href="/assets/useExecutionHelpers-v2Eu_GJa.js"> <link rel="modulepreload" crossorigin href="/assets/externalSecrets.ee.store-DQNBRTAv.js"> <link rel="modulepreload" crossorigin href="/assets/RunDataHtml-CkjC7YuF.js"> <link rel="modulepreload" crossorigin href="/assets/isEmpty-BuyrzhgL.js"> <link rel="modulepreload" crossorigin href="/assets/exports-hpMZaOPT.js"> <link rel="modulepreload" crossorigin href="/assets/vue-Dg_43WEg.js"> <link rel="modulepreload" crossorigin href="/assets/date-picker-DcC7FxG4.js"> <link rel="modulepFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · n8n.hellogenerator.co
2026-01-12 06:16
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 06:16:08 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bca85fecb56f3b8-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · techalliance.com.br
2026-01-12 05:45
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 05:45:50 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19308,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bca591f4f223e1b-BOM alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · techalliance.com.br
2026-01-12 05:45
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 05:45:30 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ByAO903PcDxlui98eSsaRdWjFJb%2B2C5w5TQT1q7C%2Fs8nXTwHBUDmoS4Rql2o06o4fnUt%2Fh9eJ5r8A9tbl2cU10GYDQ1aQaVW8Kz67jubMin3S2g%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare Location: https://techalliance.com.br/ platform: hostinger panel: hpanel Content-Security-Policy: upgrade-insecure-requests X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=19,cfOrigin;dur=352 CF-RAY: 9bca591d3a32ce32-SIN alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved.</p> </div></div><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"5993b8402b244e609e446caae730ce6a","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · techalliance.com.br
2026-01-12 05:45
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 05:45:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close x-powered-by: PHP/8.2.28 link: <https://techalliance.com.br/wp-json/>; rel="https://api.w.org/" link: <https://techalliance.com.br/wp-json/wp/v2/pages/8160>; rel="alternate"; title="JSON"; type="application/json" link: <https://techalliance.com.br/>; rel=shortlink Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=1063 x-litespeed-cache: hit Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wYngHAMZZrRX9djuq3%2BcFyHuaoAzLU%2FgZ2HsvtBNcbEjmUj6SjGODnsuiCUBlfmP8MRRxxgR63Vl%2F%2F44OSUv3wDSjmNOXHBSDs%2B8SgGb0noxXr0%3D"}]} vary: Accept-Encoding Server: cloudflare platform: hostinger panel: hpanel content-security-policy: upgrade-insecure-requests alt-svc: h3=":443"; ma=86400 x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9bca591e6c65f892-SINFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · jmma.cn
2026-01-12 05:26
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 05:26:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=4,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=baVBuM1pCXlNIIlh96rq2py7dD4D496RqqWXW9bvS75WfTILDpD9UZhRPBI2ABATPumP4efqAn6F7xglJO0AIzWELUoNCeU%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bca3d538d551aea-EWR alt-svc: h3=":8443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> jmma.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bca3d538d551aea</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">165.22.34.189</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classLiFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jmma.cn
2026-01-12 05:26
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 05:26:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IxqtOc8lGRoClFj4D6Hvjwlgms7pUXKTudzJ1AINNOfQ0reU5dkFEGTg%2BVHCCryEvIR39j7ULzf3oQ0gB0c8KpuLBodgw3s%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bca3d53299fd272-FRA alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> jmma.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bca3d53299fd272</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">209.38.208.202</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classLFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · jmma.cn
2026-01-12 05:26
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 05:26:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=eq4ej%2B8MBvvHcNXFogBnFjcNuyMMekrIghDr7RL1RrRGnNd1NgWg8RnRzSPH%2F1PKqZQth7ckxYCnfz3qZaqLZU5sc9tNjsU%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bca3d522fb9583d-AMS alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> jmma.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bca3d522fb9583d</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">64.225.75.246</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classLiFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mabicyclette.ca
2026-01-12 05:03
HTTP/1.1 403 Forbidden Date: Mon, 12 Jan 2026 05:03:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN Referrer-Policy: same-origin Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Set-Cookie: __cf_bm=q3sKqtqiujD.jtc8LNOS.T0N1bHhVEsgqF5Dqw0b5FY-1768194212-1.0.1.1-rhCE3ztAxfOJLeayfH_7CX.zIh1pzZdtMLhhu25d86QWhVnGwkBOyT9Ld53XC4kRlArbW0nSOr2dHJHAVL4tLooHwUikwOKlcVHjZ3UlklI; path=/; expires=Mon, 12-Jan-26 05:33:32 GMT; domain=.mabicyclette.ca; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 9bca1ba56a0536d1-YYZ alt-svc: h3=":8443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> wpenginepowered.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bca1ba56a0536d1</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">167.99.181.249</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"classList"in b&&(b.Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mabicyclette.ca
2026-01-12 05:03
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 05:03:33 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close CF-RAY: 9bca1ba63c9ee911-LHR Location: https://mabicyclette.ca/ Content-Security-Policy: upgrade-insecure-requests cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=GBySpBNkKbzZZ9Qn5EVIZuH9CmeP.0EcnLM4jkzS9iI-1768194213-1.0.1.1-2mewEf6AgoKH4IDAvWBLPBFnuKg3XejpAE0v80hM0Ju55l8a8qdTF8I0asR51glINiESs7ftYG5dUefZ9QE5finmyYqDLqGPoihPQBfa9GA; path=/; expires=Mon, 12-Jan-26 05:33:33 GMT; domain=.mabicyclette.ca; HttpOnly Server: cloudflare alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mabicyclette.ca
2026-01-12 05:03
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 05:03:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9bca1ba70b6cf3f6-SJC Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding Vary: Accept-Encoding,Cookie Link: <https://mabicyclette.ca/wp-json/>; rel="https://api.w.org/" Link: <https://mabicyclette.ca/wp-json/wp/v2/pages/7120>; rel="alternate"; type="application/json" Link: <https://mabicyclette.ca/>; rel=shortlink X-Powered-By: WP Engine X-Cacheable: SHORT Cache-Control: max-age=600, must-revalidate X-Cache: HIT: 2 X-Cache-Group: normal Content-Security-Policy: upgrade-insecure-requests cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=V.c_udee4QqK1nFEO5DD3Sew9TiODfFYwL8YeVLZtV8-1768194213-1.0.1.1-mtTYkuEMTXMtSR979aPyO2ManMjUVwhUspYm_V_Ikh5BmejLOQUEVriBR5UycwWeAvKsxQKgF_xFonormp7br9SgQMQH_GYzk04O7aJDw6g; path=/; expires=Mon, 12-Jan-26 05:33:33 GMT; domain=.mabicyclette.ca; HttpOnly; Secure; SameSite=None Server: cloudflare alt-svc: h3=":443"; ma=86400
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · thunderrider498.shop
2026-01-12 02:44
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 02:44:43 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dDYINkc6h%2BdLc%2F91knV%2FC5itmsWTRyK85%2F%2BzEsYkGO7K8M0Z8zrL9QIqmt1QkTC2E40yabR439gcSHP08BegKfvfYiR2n87Mq2dP0GslSfrlRbPg"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9bc95048ab9cc8b9-EWR alt-svc: h3=":443"; ma=86400 Page title: Game Polygon Fantasy: Action RPG <!DOCTYPE html> <html lang=en> <head> <meta name="viewport"> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Game Polygon Fantasy: Action RPG</title> <link rel="stylesheet" type="text/css" href="main.css"> <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css" rel="stylesheet"> <link rel="shortcut icon" type="image/x-icon" href="../static/thunderrider498.shop/assets/RlH0nAjaw5w7oJ2YaTuq.jpg" /> </head> <body> <nav class="navbar navbar-expand-lg bg sticky-top"> <a href="" class="navbar-brand ms-6 text-white">Game Polygon Fantasy: Action RPG</a> <div class="collapse navbar-collapse ul-bg" id="btn"> <ul class="navbar-nav fs-6 text-nowrap"> <li class="nav-item"> <a href="#reviews" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Reviews</a> </li> <li class="nav-item"> <a href="#overview" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Terms of Use</a> </li> <li class="nav-item"> <a href="#overview2" class="nav-link link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> Privacy Policy</a> </li> <li class="nav-item nav-btn"> <a href=/ class="nav-link btn btn-white btn-white-outline mbr-editable-menu-item text-white mx-3"> DOWNLOAD</a> </li> </ul> </div> </nav> <div class="header"> <div class="textt"> <h1 class="name"><span>Game Polygon Fantasy: Action RPG</span></h1> <div class="center" style="margin-top: 40px;"> <button type="button" class="btn"><a class="btn btn-primary text-white" href=/ role="button"> DOWNLOAD</a></button> </div> </div> </div> <div class="dis" id="overview"> <h1 class="font-cond-b fg-text-d lts-md fs-300 fs-300-xs no-mg" contenteditable="false">GAME POLYGON FANTASY: ACTION RPG</h1><br> <p class="fs-5" style="margin:10px; margin-bottom: 50px;">Virtual coaching tips are offered based on match length and difficulty. Penalty system deducts points for each victory and advance through ranks. The risk-reward system lets players review winning strategies. Dynamic scoring adjusts based on final standings....</p> </div> <div class="wrapper" id="reviews"> <h1 class="font-cond-b fg-text-d lts-md fs-300 fs-300-xs no-mg" contenteditable="false"> WHAT OUR FANTASTIC REVIEWS</h1><br> <div class="team"> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/PgOkchKRQSbHdJMN4ySh.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Trevor L</h3> <p>I'm loving this game, it's got great replay value and the graphics are outstanding, love it..</p> </div> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/Yhrv9pD3oQyINkOBc6pq.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Christopher R</h3> <p>Complex story line that keeps you hooked for hours..</p></div> <div class="team_member"> <div class="team_img"> <img src="../static/thunderrider498.shop/assets/xNbAY9C190gVFFMCdxuC.jpg" class="card-img-top rounded-circl" alt=""> </div> <h3>Alyssa M</h3> <p>Intuitive controls that make it a visual delight..</p> </div> </div> </div> <div class="header"> <div class="textt"> <h1 class="name"><span>Game Polygon Fantasy: Action RPG</span></h1> <div class="center" style="margin-top: 40px;"> <button type="button" class="btn"><a class="btn btn-primary text-white" href=/ role="button"> DOWNLOAD</a></button> </div> </div> </div> </div> <div class="wrapperr"> <img src="../static/thunderrider498.shop/assets/HoH7u643v2zLhqCFc0OV.jpg" alt=""> <img src="../static/thunderrider498.shop/asFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · thunderrider498.shop
2026-01-12 02:44
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 02:44:42 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc95046afd01717-AMS alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · thunderrider498.shop
2026-01-12 02:44
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 02:44:42 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Set-Cookie: _pwa_title="Sweet Bonanza"; Expires=Wed, 12 Jan 2028 02:44:42 GMT; Max-Age=63072000; Path=/ Set-Cookie: _app_d=MjM5ODU=; Expires=Wed, 12 Jan 2028 02:44:42 GMT; Max-Age=63072000; Path=/ Set-Cookie: _t_data=e453caf1-4e96-3b6e-8b4e-980bf64e7741; Expires=Wed, 12 Jan 2028 02:44:42 GMT; Max-Age=63072000; Path=/ Cache-Control: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1W1O8XiqjYTWKVSbDAKFzY87kirww68tghkJ3rYcSmKNxvG0pVipKMv0BMu8UxIxI4sYi%2FwPjGrxuOrmD2WZz3cIEPpBmQsNY2xQZ%2BsOfOPOfiBU"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9bc950469cbb9463-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · nhacai7ball.com
2026-01-12 02:33
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 02:33:44 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc93fbcbcf548e7-LHR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · nhacai7ball.com
2026-01-12 02:33
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 02:33:24 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3Ggq9MjAVnPsS1utl%2F%2F4XjVScQN2woVBMqJ0OZI2pZDh3VSXz%2FEr0Ud9H%2FzubHeG1PHm2O91zi%2FEWEPePjICOIbdtcwlPPk9jyG4McjRAA%3D%3D"}]} CF-RAY: 9bc93fb88ebf38c0-LHR alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · nhacai7ball.com
2026-01-12 02:33
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 02:33:25 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TCfeuHKNA3X1A90h6%2BWU6XWo7EFZjtmjLAHbZZ%2Ba%2FlBt3%2FqJclVri2ppqZxOElJPQOS6WMUboY3tk12TxDbeHOyGqBubkJK5k80MiI3kTQ%3D%3D"}]} CF-RAY: 9bc93fbaaae037aa-LHR alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · javvajisconstructions.com
2026-01-12 02:26
HTTP/1.1 200 OK Date: Mon, 12 Jan 2026 02:26:09 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Expires: Thu, 01 Jan 1970 00:00:01 GMT Cache-Control: no-cache cf-cache-status: DYNAMIC Speculation-Rules: "/cdn-cgi/speculation" Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=14,cfOrigin;dur=254 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6%2Bn%2F4hs2sLJCFLfQ3q43gv3w7PRXbe3tvfSR0yPUtgs6gtRX9ofowXZRFigq2iw3Saa%2Fl6rduQnYf5g4nVBDYL60Nr5hck5Dt4Z9YcXBm7WNvseHNm1AQwU%3D"}]} CF-RAY: 9bc93517ed2443ef-EWR alt-svc: h3=":443"; ma=86400 <html><body><script type="text/javascript" src="/aes.js" ></script><script>function toNumbers(d){var e=[];d.replace(/(..)/g,function(d){e.push(parseInt(d,16))});return e}function toHex(){for(var d=[],d=1==arguments.length&&arguments[0].constructor==Array?arguments[0]:arguments,e="",f=0;f<d.length;f++)e+=(16>d[f]?"0":"")+d[f].toString(16);return e.toLowerCase()}var a=toNumbers("f655ba9d09a112d4968c63579db590b4"),b=toNumbers("98344c2eee86c3994890592585b49f80"),c=toNumbers("81b86c885adfdf742c0f148999dec3a9");document.cookie="__test="+toHex(slowAES.decrypt(c,2,a,b))+"; max-age=21600; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/"; location.href="https://javvajisconstructions.com/?i=1";</script><noscript>This site requires Javascript to work, please enable Javascript in your browser or use a browser with Javascript support</noscript><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"80eaec0a07d5463880c1411ca01687b9","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · javvajisconstructions.com
2026-01-12 02:26
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 02:26:09 GMT Content-Length: 0 Connection: close Location: https://javvajisconstructions.com/ Speculation-Rules: "/cdn-cgi/speculation" Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=eWPtv8T4YPY1prc%2BSfzISaf9djABKW6BS%2BWAtx5jq2fFMajn4XIBVPuZgJPweadhEtyDpB5rcBLjNuEWLWS%2FOfqXvwIxxWdikiylGcdBW%2FX4tVbkZKUBskM%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=8,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bc935169b8befd5-BOM alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · javvajisconstructions.com
2026-01-12 02:26
HTTP/1.1 521 <none> Date: Mon, 12 Jan 2026 02:26:09 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=89,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc935168b50e738-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · roomconf0818.world
2026-01-12 00:37
HTTP/1.1 522 <none> Date: Mon, 12 Jan 2026 00:38:07 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19385,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc8965ccae83f3b-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · roomconf0818.world
2026-01-12 00:37
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:37:46 GMT Content-Length: 0 Connection: close Location: https://roomconf0818.world/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2Td80fEiVjuESE7KtnsJ%2FbOpkCx5Ajv7vTL%2BJNtIqepvQhvk%2FtdHlzI37DwrhM%2BtCDxphBnbFkwzS%2FXtwkMyYAWwf%2BXogF74rM%2F8JLmuaMmRhA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc8965639e8c6b6-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · roomconf0818.world
2026-01-12 00:37
HTTP/1.1 404 Not Found Date: Mon, 12 Jan 2026 00:37:46 GMT Content-Type: text/html; charset=us-ascii Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ln7zzGDIRLwnG56niOKUf57m0clo6%2BMTSMcZC3zFEjxXtP1gTknXqd5buktQJLKNwXX2IcCs1IWgl5XP7ba9fb1C3LqCGJEtyc7UVMHAlEivPA%3D%3D"}]} CF-RAY: 9bc89656bf835781-LHR alt-svc: h3=":443"; ma=86400 Page title: Not Found <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"> <HTML><HEAD><TITLE>Not Found</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD> <BODY><h2>Not Found</h2> <hr><p>HTTP Error 404. The requested resource is not found.</p> </BODY></HTML>Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · nihon.sk
2026-01-12 00:31
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:31:42 GMT Content-Length: 0 Connection: close Location: https://www.nihon.com Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ItPlX2ul8v7QfeSp74TimyOCBgSlC4jKh9s65y7Q8SgYbnMI8AofzBeZElUan9CM2xDsvBq5BDRgbXMrv9rD%2FN27FBocB26n"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=3,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bc88d700e872fbd-SIN alt-svc: h3=":8443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · nihon.sk
2026-01-12 00:31
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:31:42 GMT Content-Length: 0 Connection: close Location: https://www.nihon.com Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=y8I2kuqx9d5Xb9BqKFwoOTQEO7iBuVrbKXuratiL2yghti4tyDt0hDjoPJoxjfQYwlVczNTowSEjQNF76tVxGU8ITrIfa8MT"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc88d6fcc159b9b-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · nihon.sk
2026-01-12 00:31
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:31:41 GMT Content-Length: 0 Connection: close Location: https://www.nihon.com Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ifEg7AmtRYP1JjNm%2FxICpUbAxhQn9%2F%2FuCG2wkTjkCGiCFKMyacwGhql%2BQ2XJLrh43NGIyySymy5zgvC02Dm%2F74WWcC%2FQd9Cw"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=4,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bc88d6f3b7a33d5-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · granat88bro.store
2026-01-12 00:15
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:15:57 GMT Content-Length: 0 Connection: close Location: https://pssijabar.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7U6s7CwTl%2BKlyKaBo4HqAUgKLjWMwv0cFEggbr7fN22olA%2BZwEpFQutfF72nRYvuRQEerisvH4kFPBj%2BbJzrslFjqVQfkrHvMDh3T6lgBR6t"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc87661dc7d41de-EWRFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · granat88bro.store
2026-01-12 00:15
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:15:57 GMT Content-Length: 0 Connection: close Location: https://pssijabar.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BZ8%2Fhyb07v9A5yd%2BF5jhKvZ8s4fpOaZCG2d%2FiQLkEjnyBWOr9b%2BOicteKlN5AWhdl2Zy%2BcL4TvDHXVA4wsl9n%2Bkm8M1PHc98es5SnBfhG7V4"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc8766149920b7b-AMSFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · granat88bro.store
2026-01-12 00:15
HTTP/1.1 301 Moved Permanently Date: Mon, 12 Jan 2026 00:15:57 GMT Content-Length: 0 Connection: close Location: https://pssijabar.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cm874VLCDdM7CWG2t%2F7AAKpBE19yCOAHJtvG73wka3cXlxAR7PxarN%2FifxdKAS%2BddilpX5ifXtmA4RyQvJuzdLC64nqyoQmOXYoI6%2FN0ZaFt"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc876612bf14310-EWRFound 2026-01-12 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · etw2023.org
2026-01-11 23:44
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 23:44:55 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close server: cloudflare location: https://kormikeckotajailolo.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dhLWEASTqSTzbkEku9iWvUnUSFBacVV1F%2B%2F0xkpzDAgFz06CnA4QN7ZEjEVxI5omVjOMEGEn5ZFXdtxMEMkDKASYQENFR7i%2F6g%3D%3D"}]} vary: Accept-Encoding Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9bc848e75b803d3e-EWR alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved to <A HREF="%s">here</A>.</p> </div></div></body></html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · etw2023.org
2026-01-11 23:44
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 23:44:54 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare location: https://kormikeckotajailolo.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZmKD4JZ%2FhXtEC%2FBdB2eCFwFmlEXoBVkLxZKxmAgSY9tWaEOsYrnGHGIPCpNsUUOTyBO3ev166HT4k7YoOPyJamuFpteZNUfVHAvU"}]} vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9bc848e68ace3804-FRA Page title: 301 Moved Permanently <!DOCTYPE html> <html style="height:100%"> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <title> 301 Moved Permanently </title><style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}</style></head> <body style="color: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;"> <div style="height:auto; min-height:100%; "> <div style="text-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;"> <h1 style="margin:0; font-size:150px; line-height:150px; font-weight:bold;">301</h1> <h2 style="margin-top:20px;font-size: 30px;">Moved Permanently </h2> <p>The document has been permanently moved to <A HREF="%s">here</A>.</p> </div></div></body></html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · etw2023.org
2026-01-11 23:44
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 23:44:54 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc848e5b993d25c-FRA alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.felizganador.solucionesqa.com
2026-01-11 23:31
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 23:31:41 GMT Content-Length: 0 Connection: close Location: https://www.felizganador.solucionesqa.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MHEm0zo%2BYWfIkdTT3lFm4SxR1o3yOvR5t9gpKKzLuahMjAS0YaR%2Fqx5CzEGE8GoyzpsyWHd7x%2FXEMMt8ZCj51LHoQzRePuSEhlLvVrA11df4eIW1tZ%2FZgFUQazlMmzAc8A%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=15,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bc8358568b34239-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.felizganador.solucionesqa.com
2026-01-11 23:31
HTTP/1.1 400 Bad Request Server: cloudflare Date: Sun, 11 Jan 2026 23:31:40 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.felizganador.solucionesqa.com
2026-01-11 23:31
HTTP/1.1 400 Bad Request Server: cloudflare Date: Sun, 11 Jan 2026 23:31:40 GMT Content-Type: text/html Content-Length: 253 Connection: close CF-RAY: - Page title: 400 The plain HTTP request was sent to HTTPS port <html> <head><title>400 The plain HTTP request was sent to HTTPS port</title></head> <body> <center><h1>400 Bad Request</h1></center> <center>The plain HTTP request was sent to HTTPS port</center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · felizganador.solucionesqa.com
2026-01-11 23:31
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 23:31:42 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sun, 11 May 2025 03:26:33 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=13,cfOrigin;dur=1022 Cache-Control: max-age=7200 expires: Mon, 12 Jan 2026 01:31:42 GMT vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XvN7dzyORLoJuuRz8dvecAz3DdiPV5FfdNQRUVQ2qPOu%2BFMkzOWLFCgOURRwsVdCLm8u%2F5OXpL6NerZvTpQEsipXJ4GubKUI9BERv59n5UUgx15F4SsKV3Bv1cb1"}]} x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9bc8358a4dd040a3-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · felizganador.solucionesqa.com
2026-01-11 23:31
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 23:31:41 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc83584aa8a7aef-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · felizganador.solucionesqa.com
2026-01-11 23:31
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 23:31:40 GMT Content-Length: 0 Connection: close Location: https://felizganador.solucionesqa.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0dBA%2FPC1YbCK0ZxP7juDY2s3azddb9x5W4uZw%2Fw4ZUNnBQ7CZT2Apf0EjIIE1UEviC6ywKp34li6y%2F7S3MZldzFRMEojMS2r%2FctgmaXtI6xbvSMCyNcKq6c4gwzb"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc835838fe87e3e-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · kuponcum286.com
2026-01-11 22:30
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 22:30:55 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding link: </_next/static/media/83afe278b6a6bb3c-s.p.3a6ba036.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2" Cache-Control: no-store, must-revalidate X-Powered-By: Next.js Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vc4yAUeJ6HfFs64JuynMryevQz0H%2BAuJzq7ZX1o7TKsoPRJvcYRAUDdfvGQCm3R67ReBtoaTL1cnRDXnH5qmfGP1%2BsafK1%2BmOMA%2BjHs%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc7dc824cb2ed0e-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · kuponcum286.com
2026-01-11 22:30
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 22:30:54 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc7dc815872db0e-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · kuponcum286.com
2026-01-11 22:30
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 22:30:55 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=202,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc7dc81b982897c-SIN alt-svc: h3=":443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-11 21:29
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 21:29:38 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=104,cfOrigin;dur=10 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gbb6xUyd6dCk2dDK7b0sBc%2BVO5l4agkfYxmIxtlHFyqOw6baYeyLGQgKRn9oBs8%2B8gDHFdMroCiB%2BE2Om1q%2Br0wZB2emr%2B2PLnKQ4Q%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC CF-RAY: 9bc782bc79c5434f-EWR alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · electric-dice-download.top
2026-01-11 18:15
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 18:15:04 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Frame-Options: DENY X-Content-Type-Options: nosniff Referrer-Policy: same-origin Cross-Origin-Opener-Policy: same-origin X-Served-By: electric-dice-download.top Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3lT2BJ905J25c2n4ek341X%2Flp4HU%2BMK9CqLz3Mh6pOOWlAKHCCn1LoH4q1BdEfpes8WUNaNAFSXPPhUMQ1uiEjOpHGkpLIBoq7cSOkrZ0SatXdlhMR29pPSV"}]} cf-cache-status: DYNAMIC vary: accept-encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=393 CF-RAY: 9bc665b9c89b1512-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · electric-dice-download.top
2026-01-11 18:15
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 18:15:03 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=87,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc665b79ac9d123-EWR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · electric-dice-download.top
2026-01-11 18:15
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 18:15:03 GMT Content-Length: 0 Connection: close Location: https://electric-dice-download.top/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5CHs83bvL8RL0XsGRaVr7PGnIQ7KP%2Fiv5qfqXPhVNyr031hyGES%2FTp9iKFHlVQOjZj9MSdEAYoHVfgUDAi2y7B22RYfaW9h%2B0pnwqXVEbInYOeK5%2BJ3hWUGr"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc665b6eb795d9c-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · deloreanlounge.com
2026-01-11 17:31
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 17:31:27 GMT Content-Length: 0 Connection: close Location: https://deloreanlounge.com/ X-Content-Type-Options: nosniff Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=D8s2UqyQoGipAB8qDGBKLPEwH%2B6zMzUJJXk1EUSUCAN89DT7%2FQwLcjBRTG5wOHtkUcXGMkFq53I5EfUDTYF1tHem2s1zQbFJR1Gl26lVly1oWg%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc625d9dfde14f9-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · deloreanlounge.com
2026-01-11 17:31
HTTP/1.1 522 <none> Date: Sun, 11 Jan 2026 17:31:48 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19614,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc625dfd982ac82-YYZ alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · deloreanlounge.com
2026-01-11 17:31
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 17:31:29 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close x-dns-prefetch-control: on x-redirect-by: WordPress location: https://www.deloreanlounge.com/ x-litespeed-cache-control: no-cache Cache-Control: no-cache, must-revalidate, max-age=0, no-store, private Server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Strict-Transport-Security: max-age=15552000; includeSubDomains; preload X-Content-Type-Options: nosniff Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=1294 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MdO%2BqHVisxAfMv9vlpssqmOYaC0INA%2FZ8HFBW0EAdHjqpQaTc%2B0LV27vGcQ7yXLa9K1cLrbArf1DF4i3chWPskl0VG%2BK8gcxExd7YNa86t%2B0iw%3D%3D"}]} CF-RAY: 9bc625de4b115fe4-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · 85ffb.com
2026-01-11 17:03
HTTP/1.1 404 Not Found Date: Sun, 11 Jan 2026 17:03:06 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=11,cfOrigin;dur=256 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vFctkzeG%2F%2B6o7vCIG63V4ibvkDkponGqZw9rGCSMgMLlRFMuGQ9Fzzl4ymeP2pZeCbI3uiigBmfcnfGYL9Egffa3Z4nFZy8CeA%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc5fc4f7e175577-YYZ alt-svc: h3=":443"; ma=86400 Page title: 404 - Ganhe R$ 5.000 Agora! 🎁 <!DOCTYPE html> <html lang="pt-BR"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>404 - Ganhe R$ 5.000 Agora! 🎁</title> <meta name="description" content="Cadastre-se em casino e ganhe até R$ 5.000 + 200 Rodadas Grátis. Pagamento instantâneo via PIX!"> <meta name="keywords" content="casino, cassino online, bônus, cadastro"> <link rel="canonical" href="https://{$domain}/999.html"> <link rel="icon" href="logo.png"> <!-- Fonts --> <link href="https://fonts.googleapis.com/css2?family=Inter:wght@600;700;800;900&display=swap" rel="stylesheet"> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: 'Inter', sans-serif; background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); min-height: 100vh; display: flex; align-items: center; justify-content: center; padding: 20px; position: relative; overflow-x: hidden; } /* Animated Background */ .bg-shapes { position: absolute; top: 0; left: 0; width: 100%; height: 100%; overflow: hidden; z-index: 0; } .shape { position: absolute; background: rgba(255, 255, 255, 0.1); border-radius: 50%; animation: float 15s ease-in-out infinite; } .shape:nth-child(1) { width: 300px; height: 300px; top: -150px; left: -150px; animation-delay: 0s; } .shape:nth-child(2) { width: 200px; height: 200px; bottom: -100px; right: -100px; animation-delay: 2s; } .shape:nth-child(3) { width: 150px; height: 150px; top: 50%; left: 80%; animation-delay: 4s; } @keyframes float { 0%, 100% { transform: translate(0, 0) rotate(0deg); } 50% { transform: translate(30px, 30px) rotate(180deg); } } /* Main Container */ .container { max-width: 600px; width: 100%; background: rgba(255, 255, 255, 0.98); border-radius: 30px; padding: 50px 40px; box-shadow: 0 30px 80px rgba(0, 0, 0, 0.3); text-align: center; position: relative; z-index: 1; animation: slideUp 0.6s ease-out; } @keyframes slideUp { from { opacity: 0; transform: translateY(50px); } to { opacity: 1; transform: translateY(0); } } /* Logo */ .logo { margin-bottom: 30px; } .logo img { height: 80px; width: auto; max-width: 200px; object-fit: contain; animation: pulse 2s ease-in-out infinite; } @keyframes pulse { 0%, 100% { transform: scale(1); } 50% { transform: scale(1.05); } } /* Badge */ .badge { display: inline-block; background: linear-gradient(135deg, #f59e0b, #ef4444); color: white; padding: 10px 25px; border-radius: 50px; font-weight: 800; font-size: 14px; margin-bottom: 20px; text-transform: uppercase; letter-spacing: 1px; box-shadow: 0 4px 15px rgba(245, 158, 11, 0.4); animation: bounce 2s ease-in-out infinite; } @keyframes bounce { 0%, 100% { transform: translateY(0);Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · 85ffb.com
2026-01-11 17:03
HTTP/1.1 404 Not Found Date: Sun, 11 Jan 2026 17:03:06 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=240 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=T1IyLNnMDRxrDLIFTJLfNLT69m3dhTOOcK29Zdb2dRZgSGYoEZ8MUWyfsfSTgMGucse86H%2BPp0dog%2BlSU5WWenvY5hWLolGfSA%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc5fc4fbfe46a5b-EWR alt-svc: h3=":443"; ma=86400 Page title: 404 - Ganhe R$ 5.000 Agora! 🎁 <!DOCTYPE html> <html lang="pt-BR"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>404 - Ganhe R$ 5.000 Agora! 🎁</title> <meta name="description" content="Cadastre-se em casino e ganhe até R$ 5.000 + 200 Rodadas Grátis. Pagamento instantâneo via PIX!"> <meta name="keywords" content="casino, cassino online, bônus, cadastro"> <link rel="canonical" href="https://{$domain}/999.html"> <link rel="icon" href="logo.png"> <!-- Fonts --> <link href="https://fonts.googleapis.com/css2?family=Inter:wght@600;700;800;900&display=swap" rel="stylesheet"> <style> * { margin: 0; padding: 0; box-sizing: border-box; } body { font-family: 'Inter', sans-serif; background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); min-height: 100vh; display: flex; align-items: center; justify-content: center; padding: 20px; position: relative; overflow-x: hidden; } /* Animated Background */ .bg-shapes { position: absolute; top: 0; left: 0; width: 100%; height: 100%; overflow: hidden; z-index: 0; } .shape { position: absolute; background: rgba(255, 255, 255, 0.1); border-radius: 50%; animation: float 15s ease-in-out infinite; } .shape:nth-child(1) { width: 300px; height: 300px; top: -150px; left: -150px; animation-delay: 0s; } .shape:nth-child(2) { width: 200px; height: 200px; bottom: -100px; right: -100px; animation-delay: 2s; } .shape:nth-child(3) { width: 150px; height: 150px; top: 50%; left: 80%; animation-delay: 4s; } @keyframes float { 0%, 100% { transform: translate(0, 0) rotate(0deg); } 50% { transform: translate(30px, 30px) rotate(180deg); } } /* Main Container */ .container { max-width: 600px; width: 100%; background: rgba(255, 255, 255, 0.98); border-radius: 30px; padding: 50px 40px; box-shadow: 0 30px 80px rgba(0, 0, 0, 0.3); text-align: center; position: relative; z-index: 1; animation: slideUp 0.6s ease-out; } @keyframes slideUp { from { opacity: 0; transform: translateY(50px); } to { opacity: 1; transform: translateY(0); } } /* Logo */ .logo { margin-bottom: 30px; } .logo img { height: 80px; width: auto; max-width: 200px; object-fit: contain; animation: pulse 2s ease-in-out infinite; } @keyframes pulse { 0%, 100% { transform: scale(1); } 50% { transform: scale(1.05); } } /* Badge */ .badge { display: inline-block; background: linear-gradient(135deg, #f59e0b, #ef4444); color: white; padding: 10px 25px; border-radius: 50px; font-weight: 800; font-size: 14px; margin-bottom: 20px; text-transform: uppercase; letter-spacing: 1px; box-shadow: 0 4px 15px rgba(245, 158, 11, 0.4); animation: bounce 2s ease-in-out infinite; } @keyframes bounce { 0%, 100% { transform: translateY(0);Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · 85ffb.com
2026-01-11 17:03
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 17:03:06 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=117,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc5fc4e9cd3005e-EWR alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mic-daycare.com
2026-01-11 16:50
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 16:50:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9bc5e9f0afb69913" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Strict-Transport-Security: max-age=15552000; preload Server: cloudflare CF-RAY: 9bc5e9f0afb69913-SJC alt-svc: h3=":443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,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");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: 'mic-daycare.com',cType: 'non-interactive',cRay: '9bc5e9f0afb69913',cH: 'X7AY2T_itw62sLgWPbJYlb9i716dW4vvhhUODhUyens-1768150233-1.2.1.1-vIOPEJDNXBamLEaD1jDrPeG.sQXahuzkSLXraJbyP9YFupImD0NwXeCLxYaBa7Om',cUPMDTk:"\/?__cf_chl_tk=gZTU.4RxtjHpHQO2E9iMzXyHBmqW.azE4szDRfqJT5I-1768150233-1.0.1.1-5m.CGKpOeNQ.LOhaguS1VqafQzImAvV3AFOhbcwU0l8",cFPWv: 'g',cITimeS: '1768150233',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=gZTU.4RxtjHpHQO2E9iMzXyHBmqW.azE4szDRfqJT5I-1768150233-1.0.1.1-5m.CGKpOeNQ.LOhaguS1VqafQzImAvV3AFOhbcwU0l8",md: 'xEq4R3ziMnMCBoR0pKchy5k.sgkdvk31Fyg3NJSPkag-1768150233-1.2.1.1-tUikIqL1KNTp_nCGYmTMtuSZzdqYswgSfNRMqEiEwNnLHpwmB3O.m95HBCRKWrN9FEJVybxMeSc4YkO8gJP_FLZaSYyVvkiQyqAm.Uwyb1TCw5uoR5E7OsOdl58RapR8lsm6jsG4MXjtVLbv2mH49G8P7fQ1M7WSwa4oYbaqo.XgYdWvkiPqZn4YN4e2mT24IZ4jM7ATG7dctYHOVKLx3L6aMTauwxxRNoOZx2vJuL..Xou7jPePDfChlGnxDnMGL28UMKC0KrjXKaJiVdgBOPpXxe.e1TIebM4e4zxLdk4XvNgFzhmhbR8vEUHHsEkUztp1RBFaBTWc2QDPtzgqQOUXY4QW5BHLnjUFf4jtR4dP7i_84VdoGtcfhG3ha0XRBmgRaTBHZy5btuKDyrH4PqJFV_Cgt7ZrGiYfzGCNj3j8m8FhAZPRe.4n4CpPLMJGEaeqd_8z7LpUdwBbSB9Ya6HZG.ub6TzILrmbvBt_WztgaS_5r_kpfQPF5gM5BkaPDeBEiQlYDSIcYvwzVICwriUbzaT5H.f5bFhH_tHYIMCFUQ4fAj7vXhBr5eGLoHNQe6T3ke_j9JdxFhUPqkAlgglJuGU7k.ij6bKDypyzj5niCuNpfAzsQb8VbpHtmxkNRbOynIYIJ0Pm8pGp1AUnt6vkLG4Nlz3AFXqXzh5HBPlcfkD5gtuiXTGfVl8Q_5F1tpMGWFnD03lcMl4SD51gUtR2BbCDWhAfsdzGa9I6dS1P72L4e7r5sJCVjtSO1yLIllEyb1auNewRoxHGHPQ3mT.oguzi1X9HpP1o6gXWq7Wl7o7bnVLkUH37Grzf6VPra_69qakZVvvhoOCptuMcW7dFlpXxNkEzfNazxzbOJtAk3Xgrpp5iYFd2ec59cDZAAMgoHBm9gdMbUVY24lsd0c_.Uo.2cMQnDshbBkzi_yUxILFUw1VVECcAN1zX7E5Q1fFrmGtWouysSQ6puR33.g',mdrd: 'QAzSc4xE3hbKsjljIhqgiA1Mp3r2rFw0aUmjkCYmUEM-1768150233-1.2.1.1-9yubfzAdoMU_5daJ7Br.l40_chWPbzG0QlKEJeVUt.sJ1TTUbOqaPorkzDda0iz2w4XVlV8ph5Rz1lYGKJMOdmjw1oMM3Fbd8Eguvg6b7K03ZyAm1uYP6_Qj.u4b3pvujcFLI.Io.fivaOyhpaSwko7z30Vz0Wni7H6l2rv.H3WB0IsUYTCWlyidwk.fzeZ.bUth5svCoIPC4k4g_Nap29U1wdbVuuLSRCbbzOnGVnaZyaCZbTrSdNPrbLqeIecvGovD9UxFQaaYMbnantGoD2wWyZorwilMwm8Y1eZ_GT0XWbgH3UB80VWOhvdwr5wza2NWrujlwfQtDpCeT4AT.5.UhFNfQx_rnKWo9u2pjL2p7m7maoC9gAC958ZoodEPm3g5xcGG7nF5DsG_qJCmPYRsUKv0i1rEh2ogUFound 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mic-daycare.com
2026-01-11 16:50
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 16:50:33 GMT Content-Type: text/html Content-Length: 167 Connection: close Cache-Control: max-age=3600 Expires: Sun, 11 Jan 2026 17:50:33 GMT Location: https://mic-daycare.com/ X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 9bc5e9f09abc9cb6-SIN alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>cloudflare</center> </body> </html>
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mic-daycare.com
2026-01-11 16:50
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 16:50:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cf-mitigated: challenge critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin server-timing: chlray;desc="9bc5e9f05e6bdc8c" x-content-type-options: nosniff x-frame-options: SAMEORIGIN Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Strict-Transport-Security: max-age=15552000; preload Server: cloudflare CF-RAY: 9bc5e9f05e6bdc8c-FRA alt-svc: h3=":8443"; ma=86400 Page title: Just a moment... <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><style>*{box-sizing:border-box;margin:0;padding:0}html{line-height:1.15;-webkit-text-size-adjust:100%;color:#313131;font-family:system-ui,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji"}body{display:flex;flex-direction:column;height:100vh;min-height:100vh}.main-content{margin:8rem auto;padding-left:1.5rem;max-width:60rem}@media (width <= 720px){.main-content{margin-top:4rem}}.h2{line-height:2.25rem;font-size:1.5rem;font-weight:500}@media (width <= 720px){.h2{line-height:1.5rem;font-size:1.25rem}}#challenge-error-text{background-image:url("data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHdpZHRoPSIzMiIgaGVpZ2h0PSIzMiIgZmlsbD0ibm9uZSI+PHBhdGggZmlsbD0iI0IyMEYwMyIgZD0iTTE2IDNhMTMgMTMgMCAxIDAgMTMgMTNBMTMuMDE1IDEzLjAxNSAwIDAgMCAxNiAzbTAgMjRhMTEgMTEgMCAxIDEgMTEtMTEgMTEuMDEgMTEuMDEgMCAwIDEtMTEgMTEiLz48cGF0aCBmaWxsPSIjQjIwRjAzIiBkPSJNMTcuMDM4IDE4LjYxNUgxNC44N0wxNC41NjMgOS41aDIuNzgzem0tMS4wODQgMS40MjdxLjY2IDAgMS4wNTcuMzg4LjQwNy4zODkuNDA3Ljk5NCAwIC41OTYtLjQwNy45ODQtLjM5Ny4zOS0xLjA1Ny4zODktLjY1IDAtMS4wNTYtLjM4OS0uMzk4LS4zODktLjM5OC0uOTg0IDAtLjU5Ny4zOTgtLjk4NS40MDYtLjM5NyAxLjA1Ni0uMzk3Ii8+PC9zdmc+");background-repeat:no-repeat;background-size:contain;padding-left:34px}@media (prefers-color-scheme: dark){body{background-color:#222;color:#d9d9d9}}</style><meta http-equiv="refresh" content="360"></head><body><div class="main-wrapper" role="main"><div class="main-content"><noscript><div class="h2"><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></noscript></div></div><script>(function(){window._cf_chl_opt = {cvId: '3',cZone: 'mic-daycare.com',cType: 'non-interactive',cRay: '9bc5e9f05e6bdc8c',cH: 'YK39d9l2E_kahVwpxJAvnobyusmlG..9Yj5_570SzoM-1768150233-1.2.1.1-Ly3LmvNGD.A_YdTCaLe9CDBUDCd5HVv6ztoySek1VIFD0KXhxylezMojLArrOdeO',cUPMDTk:"\/?__cf_chl_tk=PcTEBGAHNFieFckKUocupQq1RZkt_G5UKJFTdgz.hcs-1768150233-1.0.1.1-x7uy1Su_F5wY3obt0WQ3.LcxNjGsZKHT4KQdGXL8rPs",cFPWv: 'g',cITimeS: '1768150233',cTplC:0,cTplV:5,cTplB: '0',fa:"\/?__cf_chl_f_tk=PcTEBGAHNFieFckKUocupQq1RZkt_G5UKJFTdgz.hcs-1768150233-1.0.1.1-x7uy1Su_F5wY3obt0WQ3.LcxNjGsZKHT4KQdGXL8rPs",md: 'iKHjajplfA6rpRyvMbqNO4hCN0kug61__WarNyBvzX8-1768150233-1.2.1.1-rXRuEKjkyBl7oa_sT7RBZx00ILAPoODsihIa24_8UGnHIWCnqon4gKtUKfijwTMHYNQcj99C..drV4.0VpZ262qQ9iKUgphHeHyhTw1DmVXgO_JbY1ErOmZa5TwFBIFe.vXk6wun0GMpWDj38pp2zefR1nFowW2p2B6DNbNKhLxPy9f6dZ1d8FMM4OQ3DSuL0Ie5fl4Tu7gznOuYYQoGhTqrsE12B26AxauhDuGRGogzMMuzpdDDNFEoPW.20CpsmjpsWCWwIrbrlND.B5z22YmD_WCQsgWw.xnKRAvAEcQBc1A2VTRDaCf2c62DsO75r.DQ2XJgn0xjugY8NQK._Osd0IYiGulRdgMIg7ECZ4u_a0C3S9vrTH7ujyKaJJQBGZTcEh7qfaDs_cJ7z5XRGCTtTbli3o5rCQ4SnbzWEWSjmr9yuXj_pIUBlPT14Y6r.UdD2GBwrpj2yQL7FYzhO7mIr8uPLQfJyr0UyPlnLtG3kg1nwJ7pXVM.PpLEfoAOIYJO6._bpWJHT2732yqUxoRc44Qak7DRfxMBJ78hhW4xn_4zqop6lxN321_4aQWLZwtr55M3oiASJbH5ol4nEp2Iw.CCOMrihEn4cxWd12CkywF4GpYIY5rKVTwz.wsDAysmfhI5G5R5Nq38N4DE.0WlnTrs8UGum3CVNNXZzzcwmyLeWuGOHSqFqTU4tiIjgjdGnW8LE0QSIxrggm7GX6l6tG2uTwRZOCuNz64zJT5FdE0c_OkpWjtIGjDEZ3HEzeNpSpmhTaapr3dXqMIJRbdyhjCR5CpMmpkCv9N_3xKE.PmBMOFiBTTxyEDULFt.fd_4CcAw44XaQtJdhipRMrCty04Qw2R06OK68IaQgk0NR8Ek.W9OQtHFEwNgUxOcgZeTlxLUrB9Eye4kofpJgoDqdJjgHQO5cf.IEdbSOw_aylCOeUQFT9.5kVU2ixBNU5pLKrLUR0aQcBRP7yAfbw',mdrd: 'c8jKTjzHQy9qfTLw1Kb8lztziRYH06sdF4VDxZrFf70-1768150233-1.2.1.1-.PSqCwLi_VtE541em_e3vclRZDjSh9mhjeUkoZ3pCjA28zKBxNiixUfLLzrfPowxJZs6K3MAK.5byFGq6HGK0CNzlJxSAos81oluKn8QO8gQ9QRc0zHSPlo49OgbTnkiwVzRWTLdggdMsjvimRlY9NmdJPIEN5ZG77jKtU8hcXRN6aYG5fgcfZ3Px61uZeWA6y5Zwuf9QYYI1uP7NIsGRfFdGe8ipcqKRrCxkXg8QZseARf9jJ0BzqGEgp9cR874hWfvfsEJAcwoShF2E83nYJbj56MaoCzYodqPRcj6vt1XNVelLxQwYstEkdSXvwaV3H9v0GYXxIpFgbNwVS7w3gIjZFmNFN0GNP4tDFK1pQBOqODE5RQYv235JKJyVnMgx.O7L50Q5U2f.9FeltbErWw41ub8ZMeFNbG05Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · vpshosser.site
2026-01-11 16:31
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 16:31:07 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc5cd77c8f2d35d-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · vpshosser.site
2026-01-11 16:31
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 16:31:11 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Wed, 28 May 2025 17:16:49 GMT Accept-Ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dZdMvnlRsUUBRIenn14irDBODpYo6N014%2B8PJWOm5cJIJz3F1OvFQ29ITYm4BEccMG8uSe6tNfUVY5SLEBpSPhszxGttLrNKH3Z1k%2BN9"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc5cd7d5a48243f-SIN alt-svc: h3=":443"; ma=86400 Page title: Cloud Hosting Thailand - Cepat dan Andal <!DOCTYPE html> <html lang="id"> <head> <!-- Meta Pixel Code --> <script> !function(f,b,e,v,n,t,s) {if(f.fbq)return;n=f.fbq=function(){n.callMethod? n.callMethod.apply(n,arguments):n.queue.push(arguments)}; if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0'; n.queue=[];t=b.createElement(e);t.async=!0; t.src=v;s=b.getElementsByTagName(e)[0]; s.parentNode.insertBefore(t,s)}(window, document,'script', 'https://connect.facebook.net/en_US/fbevents.js'); fbq('init', '1364634764680141'); fbq('track', 'PageView'); </script> <noscript><img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1364634764680141&ev=PageView&noscript=1" /></noscript> <!-- End Meta Pixel Code --> <!-- Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=AW-17016481292"> </script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'AW-17016481292'); </script> <!-- Event snippet for Kunjungan halaman conversion page --> <script> gtag('event', 'conversion', { 'send_to': 'AW-17016481292/cqTUCKC46b0aEIzMi7I_', 'value': 1.0, 'currency': 'IDR' }); </script> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex, nofollow" /> <title>Cloud Hosting Thailand - Cepat dan Andal</title> <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;700&display=swap" rel="stylesheet"> <style> * { margin: 0; padding: 0; box-sizing: border-box; font-family: 'Inter', sans-serif; } body { background: linear-gradient(to right, #004e92, #000428); color: #fff; } header { text-align: center; padding: 3rem 1rem; background: rgba(255, 255, 255, 0.05); } header h1 { font-size: 2.5rem; } header p { margin-top: 0.5rem; font-size: 1.2rem; color: #a8d0ff; } .container { max-width: 960px; margin: auto; padding: 2rem 1rem; } .section { background: #fff; color: #222; border-radius: 12px; padding: 2rem; margin-bottom: 2rem; box-shadow: 0 6px 16px rgba(0, 0, 0, 0.15); } .section h2 { color: #004e92; margin-bottom: 1rem; } .section ul { list-style: disc; padding-left: 1.5rem; } .cta { text-align: center; margin-top: 2rem; } .cta a { background: #004e92; color: #fff; text-decoration: none; padding: 0.75rem 2rem; border-radius: 8px; font-weight: bold; transition: background 0.3s ease; } .cta a:hover { background: #00396d; } footer { text-align: center; padding: 1rem; font-size: 0.9rem; background: rgba(255, 255, 255, 0.05); color: #ccc; } /* Mobile overlay */ .mobile-only { display: none; } @media (max-width: 768px) { body > *:not(.mobile-only) { display: none; } .mobile-only { display: flex; flex-direction: column; align-items: center; justify-content: center; padding: 2rem; height: 100vh; background: #000; color: #fff; text-align: center; } .mobile-only img { max-width: 90%; height: auto; margin-bottom: 2rem; border-radius: 12px; } .mobile-only .buttons { width: 100%; max-width: 400px; display: flex; flex-direction: column; gap: 1rem; } .mobile-only .buttons a { background: #00b894; color: #fff; padding: 1rem; border-radius: 8px; text-decoration: none; font-weight: bold; transition: background 0.3s easeFound 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · charlotte3397moon.james-5334.workers.dev
2026-01-11 16:26
HTTP/1.1 500 Internal Server Error Date: Sun, 11 Jan 2026 16:26:45 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc5c712a9a04339-EWR alt-svc: h3=":8443"; ma=86400 error code: 1101
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · charlotte3397moon.james-5334.workers.dev
2026-01-11 16:26
HTTP/1.1 500 Internal Server Error Date: Sun, 11 Jan 2026 16:26:45 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc5c7141b05b911-EWR alt-svc: h3=":443"; ma=86400 error code: 1101
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · charlotte3397moon.james-5334.workers.dev
2026-01-11 16:26
HTTP/1.1 500 Internal Server Error Date: Sun, 11 Jan 2026 16:26:45 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 16 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc5c712a87e0cac-EWR alt-svc: h3=":443"; ma=86400 error code: 1101
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · obrabodaroleta.com
2026-01-11 14:51
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 14:51:21 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=43,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc53b52fe3aab3a-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · obrabodaroleta.com
2026-01-11 14:51
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 14:51:22 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://obrabodaroleta.com/wp-json/>; rel="https://api.w.org/", <https://obrabodaroleta.com/wp-json/wp/v2/pages/44>; rel="alternate"; title="JSON"; type="application/json", <https://obrabodaroleta.com/>; rel=shortlink Cache-Control: max-age=7200 expires: Sun, 11 Jan 2026 16:51:22 GMT vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rRXpZRSPqJXgSG2v2VE1QLwqRNG6HQ3mw4pTuEqmfdLu9yH53pycXbrTOnkl8vxKM54lUrVeAn1KrVOaSCqRWijoul7AWgd4YgafkRrEJ44B6w%3D%3D"}]} x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=3,cfOrigin;dur=313 CF-RAY: 9bc53b58fb00c0f6-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · obrabodaroleta.com
2026-01-11 14:51
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 14:51:21 GMT Content-Length: 0 Connection: close Location: https://obrabodaroleta.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PrtvEqMefHmwqapUueklgr0cPc%2BJzrXUnP63SlWmzaJSyT995WjMkYV9VBaZGNrk92XToO9%2BJeLH9gLgi0PBYQN090SocMnnNMrQf%2BlNokN9SQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=11,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bc53b52ccaab406-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · aazhu.com
2026-01-11 14:17
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 14:17:02 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Cache-Control: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4QhW%2ByA%2B8grfPmmypAGYNHl31FNgm4yu8vs%2FwYAxA97DN0kdy0Ez0fyfLnwlAhvTC9zChBsasWVrCLLZU51blHdiZ4d0V63R8Q%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc5090e7d3f50ff-AMS alt-svc: h3=":443"; ma=86400 Page title: OP网站防火墙 <!doctype html> <html> <head> <meta charset="utf-8"> <title>OP网站防火墙</title> <style> *{margin:0;padding:0;color:#444} body{font-size:14px;font-family:"宋体"} .main{width:600px;margin:10% auto;} .title{background: #20a53a;color: #fff;font-size: 16px;height: 40px;line-height: 40px;text-align: center;} .content{background-color:#f3f7f9; height:280px;border:1px dashed #c6d9b6;padding:20px} .t1{border-bottom: 1px dashed #c6d9b6;color: #ff4000;font-weight: bold; margin: 0 0 20px; padding-bottom: 18px;} .t2{margin-bottom:8px; font-weight:bold} ol{margin:0 0 20px 22px;padding:0;} ol li{line-height:30px} </style> </head> <body> <div class="main"> <div class="title">OP网站防火墙</div> <div class="content"> <p class="t1">您的请求带有不合法参数,已被网站管理员设置拦截!</p> <p class="t2">可能原因:</p> <ol> <li>您提交的内容包含危险的攻击请求</li> </ol> <p class="t2">如何解决:</p> <ol> <li>检查提交内容;</li> <li>如网站托管,请联系空间提供商;</li> <li>普通网站访客,请联系网站管理员;</li> </ol> </div> </div> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · aazhu.com
2026-01-11 14:17
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 14:17:02 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Cache-Control: no-cache Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0GlrRh1AAzP9%2FD%2Fnlg7g5kOlEII2tysArNWe0U9Pw%2BycHdknUvSnVovMwSxPkAP50wBEsKg7sUZdDUy2om%2FF%2F2EdBM9st4NfcQ%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc5090e4e773581-AMS alt-svc: h3=":443"; ma=86400 Page title: OP网站防火墙 <!doctype html> <html> <head> <meta charset="utf-8"> <title>OP网站防火墙</title> <style> *{margin:0;padding:0;color:#444} body{font-size:14px;font-family:"宋体"} .main{width:600px;margin:10% auto;} .title{background: #20a53a;color: #fff;font-size: 16px;height: 40px;line-height: 40px;text-align: center;} .content{background-color:#f3f7f9; height:280px;border:1px dashed #c6d9b6;padding:20px} .t1{border-bottom: 1px dashed #c6d9b6;color: #ff4000;font-weight: bold; margin: 0 0 20px; padding-bottom: 18px;} .t2{margin-bottom:8px; font-weight:bold} ol{margin:0 0 20px 22px;padding:0;} ol li{line-height:30px} </style> </head> <body> <div class="main"> <div class="title">OP网站防火墙</div> <div class="content"> <p class="t1">您的请求带有不合法参数,已被网站管理员设置拦截!</p> <p class="t2">可能原因:</p> <ol> <li>您提交的内容包含危险的攻击请求</li> </ol> <p class="t2">如何解决:</p> <ol> <li>检查提交内容;</li> <li>如网站托管,请联系空间提供商;</li> <li>普通网站访客,请联系网站管理员;</li> </ol> </div> </div> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · aazhu.com
2026-01-11 14:17
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 14:17:02 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc5090cd8f8e5e2-EWR alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · globalromancenet.biz
2026-01-11 13:01
HTTP/1.1 302 Found Date: Sun, 11 Jan 2026 13:01:36 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://9st.globalromancenet.biz/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=552 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BzeFQVtf%2FZzIWD%2BLlXWK6q1fdTZe2ssGC0vOrgR7%2BrDfy2%2BKRFkR5QpbQnmdFG8kI%2FWQookh%2F0shFf%2BNdV%2Fwk6WThmZiAxT%2F5pGTnadzWBSMiz8u"}]} CF-RAY: 9bc49a8cacdd40b1-BOM alt-svc: h3=":443"; ma=86400 Page title: 302 Found <html> <head><title>302 Found</title></head> <body> <center><h1>302 Found</h1></center> <hr><center>nginx/1.25.4</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"1a10420b33414b32958764d104fa0281","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · globalromancenet.biz
2026-01-11 13:01
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 13:01:35 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc49a8a49a1db9f-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · globalromancenet.biz
2026-01-11 13:01
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 13:01:35 GMT Content-Length: 0 Connection: close Location: https://globalromancenet.biz/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FANA3dv9uuUXMxXKM1xLgLYajP7CJJU0PakY5f8yrdMyHzm2Ey%2FyZgG42t05guNNHBnjmBqROWRcEdm0UNNdFMv9xdBZDIsyeOl4AgROnM0lUH%2BX"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc49a89cc9f9fbd-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · 669betai.com
2026-01-11 11:11
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 11:11:36 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=21,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc3f96ad834cf2b-SJC alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · 669betai.com
2026-01-11 11:11
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 11:11:36 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 06 Jan 2026 15:12:04 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=29,cfOrigin;dur=466 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6h41UGfVVkPlHxA%2FXNxM0vUNr7hlN4fv4LdHG5Hc5vqYgneDPuKDuCH%2BrjjqS3hg1UxtUJc21d2qoeWSyYqj6iT1lomQOfdXnTFVIA%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc3f96d098644c7-SIN alt-svc: h3=":443"; ma=86400 Page title: 669BET - Vitória Relâmpago no Cassino - 669BET.com <!DOCTYPE html> <html lang="pt-BR"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name="description" content="Para jogadores que buscam diversão sem fim, as máquinas caça-níqueis do 669BET Casino oferecem mais do que apenas prêmios; são uma verdadeira experiência sensorial, com o tilintar das moedas e o girar dos rolos criando uma atmosfera única. Aproveite o serviço e a segurança brasileiros e aproveite promoções generosas todos os dias. 3z.com"> <meta name="keywords" content="669BET,669BET.com"> <link rel="canonical" href="https://669betai.com"> <link rel="icon" href="static/picture/logo.png" type="image/png"> <meta property="og:image" content="https://669betai.com/static/picture/logo.png"> <title>669BET - Vitória Relâmpago no Cassino - 669BET.com</title> <link rel="stylesheet" href="static/css/index.css"> <link href="static/css/css2.css" rel="stylesheet"> <script type="application/ld+json"> { "@context": "https://schema.org", "@type": "WebSite", "name": "669BET Cassino Online", "url": "https://669betai.com", "description": "Para jogadores que buscam diversão sem fim, as máquinas caça-níqueis do 669BET Casino oferecem mais do que apenas prêmios; são uma verdadeira experiência sensorial, com o tilintar das moedas e o girar dos rolos criando uma atmosfera única. Aproveite o serviço e a segurança brasileiros e aproveite promoções generosas todos os dias. 3z.com", "logo": "https://669betai.com/static/picture/logo.png", "image": "https://669betai.com/static/picture/logo.png", "potentialAction": { "@type": "SearchAction", "target": "https://669betai.com/search?q={search_term_string}", "query-input": "required name=search_term_string" } } </script> <script type="text/javascript" src="static/js/nzsxoyts.js"></script><!-- qbzttyzlkm --> </head> <body> <!-- aubyckmvzfsh --> <script> window.addEventListener('DOMContentLoaded', function() { // Animação para elementos const animatedElements = document.querySelectorAll('.animate-in'); animatedElements.forEach((el, index) => { setTimeout(() => { el.classList.add('visible'); }, 100 * index); }); }); </script> <header class="main-header"> <div class="container" data-ffrr="ulbuii"> <div class="logo" data-kpat="xkzlog"> <a href=""> <img src="static/picture/logo2.png" alt="669BET cassino"> </a> </div> <nav class="main-nav"> <ul data-hrld="snaspn"> <li><a href="">Início</a></li> <li><a href="login.html">Login</a></li> <li data-agqu="ppfzfu"><a href="cassino.html" data-qroq="pronyf">cassino</a></li> <li><a href="slots.html">Slots</a></li> <li><a href="#promotions" data-alxs="midkfq">Promoções</a></li> <li><a href="#vip">VIP</a></li> <li><a href="#about" data-zfzc="rabjxq">Sobre</a></li> </ul> </nav> <div class="header-buttons"> <a href="https://8121688hhg.com/1235.html" class="btn btn-outline" rel="nofollow noopener " target="_blank">Entrar</a> <a href="https://8121688hhg.com/1235.html" class="btn btn-primary" rel="nofollow noopener " target="_blank" data-lfad="gipbba">Registrar</a> </div> <button class="mobile-menu-toggle"> <span></span> <span></span> <span></span> </button> </div> </header> <div class="mobile-menu" data-tqjv="xvsljw"> <div class="mobile-menu-header"> <img src="static/picture/logo.png" alt="669BET jogo" class="mobile-logo"> <button class="mobile-menu-close" data-qmor="rpiqhw">×</button> </div>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · 669betai.com
2026-01-11 11:11
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 11:11:36 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 06 Jan 2026 15:12:04 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=71 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8EAOLJCLeiJtJgSKPSsd1QUPaki7mSJAB6IDHDhUB9B8rrC9bRmRaCVfiOPruLECNsjJpIah%2BFDYRN4xsZig5aGXDbvJkGpjlHKSQw%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc3f96b7a151a68-EWR alt-svc: h3=":443"; ma=86400 Page title: 669BET - Vitória Relâmpago no Cassino - 669BET.com <!DOCTYPE html> <html lang="pt-BR"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name="description" content="Para jogadores que buscam diversão sem fim, as máquinas caça-níqueis do 669BET Casino oferecem mais do que apenas prêmios; são uma verdadeira experiência sensorial, com o tilintar das moedas e o girar dos rolos criando uma atmosfera única. Aproveite o serviço e a segurança brasileiros e aproveite promoções generosas todos os dias. 3z.com"> <meta name="keywords" content="669BET,669BET.com"> <link rel="canonical" href="https://669betai.com"> <link rel="icon" href="static/picture/logo.png" type="image/png"> <meta property="og:image" content="https://669betai.com/static/picture/logo.png"> <title>669BET - Vitória Relâmpago no Cassino - 669BET.com</title> <link rel="stylesheet" href="static/css/index.css"> <link href="static/css/css2.css" rel="stylesheet"> <script type="application/ld+json"> { "@context": "https://schema.org", "@type": "WebSite", "name": "669BET Cassino Online", "url": "https://669betai.com", "description": "Para jogadores que buscam diversão sem fim, as máquinas caça-níqueis do 669BET Casino oferecem mais do que apenas prêmios; são uma verdadeira experiência sensorial, com o tilintar das moedas e o girar dos rolos criando uma atmosfera única. Aproveite o serviço e a segurança brasileiros e aproveite promoções generosas todos os dias. 3z.com", "logo": "https://669betai.com/static/picture/logo.png", "image": "https://669betai.com/static/picture/logo.png", "potentialAction": { "@type": "SearchAction", "target": "https://669betai.com/search?q={search_term_string}", "query-input": "required name=search_term_string" } } </script> <script type="text/javascript" src="static/js/nzsxoyts.js"></script><!-- qbzttyzlkm --> </head> <body> <!-- aubyckmvzfsh --> <script> window.addEventListener('DOMContentLoaded', function() { // Animação para elementos const animatedElements = document.querySelectorAll('.animate-in'); animatedElements.forEach((el, index) => { setTimeout(() => { el.classList.add('visible'); }, 100 * index); }); }); </script> <header class="main-header"> <div class="container" data-ffrr="ulbuii"> <div class="logo" data-kpat="xkzlog"> <a href=""> <img src="static/picture/logo2.png" alt="669BET cassino"> </a> </div> <nav class="main-nav"> <ul data-hrld="snaspn"> <li><a href="">Início</a></li> <li><a href="login.html">Login</a></li> <li data-agqu="ppfzfu"><a href="cassino.html" data-qroq="pronyf">cassino</a></li> <li><a href="slots.html">Slots</a></li> <li><a href="#promotions" data-alxs="midkfq">Promoções</a></li> <li><a href="#vip">VIP</a></li> <li><a href="#about" data-zfzc="rabjxq">Sobre</a></li> </ul> </nav> <div class="header-buttons"> <a href="https://8121688hhg.com/1235.html" class="btn btn-outline" rel="nofollow noopener " target="_blank">Entrar</a> <a href="https://8121688hhg.com/1235.html" class="btn btn-primary" rel="nofollow noopener " target="_blank" data-lfad="gipbba">Registrar</a> </div> <button class="mobile-menu-toggle"> <span></span> <span></span> <span></span> </button> </div> </header> <div class="mobile-menu" data-tqjv="xvsljw"> <div class="mobile-menu-header"> <img src="static/picture/logo.png" alt="669BET jogo" class="mobile-logo"> <button class="mobile-menu-close" data-qmor="rpiqhw">×</button> </div>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · remembering-together.com
2026-01-11 08:29
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 08:29:51 GMT Content-Length: 0 Connection: close Location: https://morapinzonlab.medicine.wisc.edu/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MD8%2Bjm8UqI9LoBS%2FOWBmzBz532zNfQE82OBem1mLqYNh4O638UeOGRW3yCFakZJMjdOxUvMzfjikHHjfUOdspAvMSTqfseUFGXiSYF3bbvs0WeNfUpOZAw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc30c7cacb89867-EWR alt-svc: h3=":8443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · remembering-together.com
2026-01-11 08:29
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 08:29:51 GMT Content-Length: 0 Connection: close Location: https://morapinzonlab.medicine.wisc.edu/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=p3pyY5mTsXsZWCjaAnBpLIbaoM0p%2B7NpXmGhWzgF0J7VUiyOoLkGJidMaKDzxsCg2rXTeToRlQqv10bz5Y29EqPz696bvwSLSv3kDs%2F8sKkSWJvI60rxGw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc30c7c7b0a9cab-SIN alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · remembering-together.com
2026-01-11 08:29
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 08:29:51 GMT Content-Length: 0 Connection: close Location: https://morapinzonlab.medicine.wisc.edu/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YRUTTfsR%2BSBq11a79JNAae3KghLp1KQ402%2FMQHw%2BaVzJANs0%2BKfLy%2FMjK7Jgj1VDveLRz10X0OodSeIHnCNr%2FJLG6hw%2FZLtLn%2FWSMEIR0onpjwuvRDkK9Q%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc30c7bf886bd9c-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · geeqdata.info
2026-01-11 05:57
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 05:57:28 GMT Content-Length: 0 Connection: close Location: http://geeq.io Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wTGnlqg%2Fl8J0wuAZbkj8qWdeo2nMm0G8RgAzJE2MrlrV3SLV0fCNlQKOZ68kaQJF%2BhWnr5QWgj2LmKiRcpH%2BmLkMGDbegTpQ3gOeB2k%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc22d454f55b625-SJC alt-svc: h3=":8443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · geeqdata.info
2026-01-11 05:57
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 05:57:28 GMT Content-Length: 0 Connection: close Location: http://geeq.io Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Cv7bJ9ciTIs8cweQHWHq9WZBw8c5cBnQzohoBANtA3JHiTOxtKdg7yuqnO1LSNyVFIE3PY7PGGTMo%2BfgHVn8m%2F3A3qVz8sSAOb%2BA"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc22d45495ac688-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · geeqdata.info
2026-01-11 05:57
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 05:57:28 GMT Content-Length: 0 Connection: close Location: http://geeq.io Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=W0Ag6JFvoxfOJjpAmmOxfYMhdPetV9V4Z9MSgal%2B3ZDsMyigcT1oUpHCQ7lXePO4MOGOm3B%2FUd87kC6geXrWYSDhrqHgknjVDVp0"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc22d44ffe9ef4d-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · mail.globalideas.us
2026-01-11 05:48
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Last-Modified: Wed, 10 Jun 2020 20:36:51 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jhG%2Bhb7%2BlEN%2F%2BXVBQYDme2Prto5NAbIXMXiAs5pEMgn7jYkoTqR3sQt8NFyuB9vwUSrpsuhEaYKl8Pq0LVac4bAwQTFGBIqFjmYNP1IfNf97cIU%3D"}]} Vary: Accept-Encoding,User-Agent Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9bc220dbad888077-LHR alt-svc: h3=":443"; ma=86400 Page title: Shared IP <!doctype html> <html class="no-js" lang=""> <head> <meta charset="utf-8"> <meta http-equiv="x-ua-compatible" content="ie=edge"> <title>Shared IP</title> <meta name="description" content=""> <meta name="viewport" content="width=device-width, initial-scale=1"> <link href="https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap" rel="stylesheet"> <link rel="shortcut icon" href="data:image/svg+xml;base64,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" /> <style> * { box-sizing: border-box; margin: 0; } html { font-size: 10px; font-family: 'Open Sans', sans-serif; color: #1d2a3b; } .container { max-width: 960px; margin: 0 auto; } .container.card { margin-top: 12.3rem; background-color: #ffffff; border-radius: 10px; box-shadow: -5px -4px 47px 3px rgba(198, 198, 198, 0.3); text-align: center; padding: 3.6rem; /* padding-bottom: 3.6rem; */ } .title-main { font-size: 3.6rem; font-weight: 700; margin-top: 0; margin-bottom: 2.1rem; } .main-image svg { max-width: 50rem; margin-bottom: 2rem; } .subheading{ font-size: 1.6rem; font-weight: 600; margin-bottom: 3rem; } .card .text { font-size: 13px; letter-spacing: 0.26px; } footer { color: #b1b1b1; font-size: 12px; display: flex; justify-content: space-between; align-items: center; padding-top: 1.7rem; } footer .logo svg { width: 145px; padding-left: 11px; } footer .left-side { display: flex; align-items: center; } /* Medias */ @media screen and (max-width: 1024px){ .container {max-width: 90%;} @media screen and (max-width: 768px){ html {font-size: 7px;} .container { max-width: 90%;} .container.card {margin-top: 6rem;} .card .text { font-size: 1.6rem;} } @media screen and (max-width: 480px){ html {font-size: 5.7px;} .container {max-width: 95%;} .title-main {font-size: 6.6vw;} /* .container.card {margin-top: 2rem;} */ .subheading{font-size: 13px;} .card .text { font-size: 12px;} footer {flex-direction: column;} } } </style> </head> <body> <section id="default-card" class="default-card"> <div class="container card">Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mail.globalideas.us
2026-01-11 05:48
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc220db1a58ba87-LHR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · mail.globalideas.us
2026-01-11 05:48
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Last-Modified: Wed, 10 Jun 2020 20:36:51 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=DuDMhn3z%2FoJwXDNCPsBjx5mvOr9gP9pMd3hT14ItchSc8Mh7GfpnTg%2BB2rL4mEXpG%2B7Q%2Fy8AtlGTLKpW9mwHOsZv9K0hQP9Ju%2FW7meYL2qnixQ0%3D"}]} Vary: Accept-Encoding,User-Agent Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9bc220db9ec97199-LHR alt-svc: h3=":443"; ma=86400 Page title: Shared IP <!doctype html> <html class="no-js" lang=""> <head> <meta charset="utf-8"> <meta http-equiv="x-ua-compatible" content="ie=edge"> <title>Shared IP</title> <meta name="description" content=""> <meta name="viewport" content="width=device-width, initial-scale=1"> <link href="https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap" rel="stylesheet"> <link rel="shortcut icon" href="data:image/svg+xml;base64,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" /> <style> * { box-sizing: border-box; margin: 0; } html { font-size: 10px; font-family: 'Open Sans', sans-serif; color: #1d2a3b; } .container { max-width: 960px; margin: 0 auto; } .container.card { margin-top: 12.3rem; background-color: #ffffff; border-radius: 10px; box-shadow: -5px -4px 47px 3px rgba(198, 198, 198, 0.3); text-align: center; padding: 3.6rem; /* padding-bottom: 3.6rem; */ } .title-main { font-size: 3.6rem; font-weight: 700; margin-top: 0; margin-bottom: 2.1rem; } .main-image svg { max-width: 50rem; margin-bottom: 2rem; } .subheading{ font-size: 1.6rem; font-weight: 600; margin-bottom: 3rem; } .card .text { font-size: 13px; letter-spacing: 0.26px; } footer { color: #b1b1b1; font-size: 12px; display: flex; justify-content: space-between; align-items: center; padding-top: 1.7rem; } footer .logo svg { width: 145px; padding-left: 11px; } footer .left-side { display: flex; align-items: center; } /* Medias */ @media screen and (max-width: 1024px){ .container {max-width: 90%;} @media screen and (max-width: 768px){ html {font-size: 7px;} .container { max-width: 90%;} .container.card {margin-top: 6rem;} .card .text { font-size: 1.6rem;} } @media screen and (max-width: 480px){ html {font-size: 5.7px;} .container {max-width: 95%;} .title-main {font-size: 6.6vw;} /* .container.card {margin-top: 2rem;} */ .subheading{font-size: 13px;} .card .text { font-size: 12px;} footer {flex-direction: column;} } } </style> </head> <body> <section id="default-card" class="default-card"> <div class="container card">Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · smtp.globalideas.us
2026-01-11 05:48
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc220db1c09d3a0-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7uoC4UBhdmjbsViHU7Du1AAOvxgL3aSvLnZGgmni4D9R2DI1Z8I8Ov%2FMinsfbPyLSzw1L0WLUtHFqgXupLBPFJWVTEDrHZ1O8rSXw2LN1NKcDA%3D%3D"}]} CF-RAY: 9bc220dbf86ed2eb-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=raRGdiHiWIfOTxjRZI41xzlYpWCSGmWdC2%2FRgeyiyJIEXUuxxZ4vN3%2FBGcLguq1GV%2BTF%2Fz%2BkNFLqrlDB6WVRMjW86oJdkxf2%2BXEngvo%2BMDjDqA%3D%3D"}]} CF-RAY: 9bc220db9ccf18b7-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.globalideas.us
2026-01-11 05:48
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc220db1d69dc81-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · smtp.globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:49:00 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CcRZyQzNNTF5mpJkhAVQuFm2JZJMv9hxcw92I5QrjLUDZGDGjtbuZrNjnyRvIq9wn765eT3ghxaMQqkqLZ6jbbJZUI467JC7aIuyepYGXkgxJ6k%3D"}]} CF-RAY: 9bc220db9e16bbfd-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · pop.globalideas.us
2026-01-11 05:48
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Last-Modified: Wed, 10 Jun 2020 20:36:51 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=13,cfOrigin;dur=13 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0m4Id5rWyG3X8bblshU3fKuOuiLjH13XxTNzJ%2FLnvg7y%2FJulK67lOg%2FLypjgOZiZkrkGcW92EnCDpcp2gcCvo7LZ%2FpfvnHzSVfHm89A9oKaKIw%3D%3D"}]} Vary: Accept-Encoding,User-Agent Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9bc220d73926effa-EWR alt-svc: h3=":443"; ma=86400 Page title: Shared IP <!doctype html> <html class="no-js" lang=""> <head> <meta charset="utf-8"> <meta http-equiv="x-ua-compatible" content="ie=edge"> <title>Shared IP</title> <meta name="description" content=""> <meta name="viewport" content="width=device-width, initial-scale=1"> <link href="https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap" rel="stylesheet"> <link rel="shortcut icon" href="data:image/svg+xml;base64,PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz4KPCEtLSBHZW5lcmF0b3I6IEFkb2JlIElsbHVzdHJhdG9yIDIxLjAuMCwgU1ZHIEV4cG9ydCBQbHVnLUluIC4gU1ZHIFZlcnNpb246IDYuMDAgQnVpbGQgMCkgIC0tPgo8c3ZnIHZlcnNpb249IjEuMSIgaWQ9IkxheWVyXzEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgeG1sbnM6eGxpbms9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGxpbmsiIHg9IjBweCIgeT0iMHB4IgoJIHZpZXdCb3g9IjAgMCA4OCAxMDIuMiIgc3R5bGU9ImVuYWJsZS1iYWNrZ3JvdW5kOm5ldyAwIDAgODggMTAyLjI7IiB4bWw6c3BhY2U9InByZXNlcnZlIj4KPHN0eWxlIHR5cGU9InRleHQvY3NzIj4KCS5zdDB7ZmlsbDojMDY4MkI0O30KCS5zdDF7ZmlsbDojMzFCN0U5O30KCS5zdDJ7ZmlsbDpub25lO30KPC9zdHlsZT4KPGc+Cgk8Zz4KCQk8Zz4KCQkJPHBvbHlnb24gY2xhc3M9InN0MCIgcG9pbnRzPSI4OCw1Mi42IDg4LDUyLjYgMzguNCwzIDI0LjIsMTcuMiA1OS43LDUyLjYgMjQuMyw4OCAzOC40LDEwMi4yIAkJCSIvPgoJCTwvZz4KCQk8Zz4KCQkJPHBvbHlnb24gY2xhc3M9InN0MSIgcG9pbnRzPSI4NSw0OS42IDg1LDQ5LjYgMzUuNCwwIDIxLjIsMTQuMiA1Ni43LDQ5LjYgMjEuMyw4NSAzNS40LDk5LjIgCQkJIi8+CgkJPC9nPgoJPC9nPgoJPGxpbmUgY2xhc3M9InN0MiIgeDE9IjQwLjMiIHkxPSIxMDMuOCIgeDI9IjkwLjEiIHkyPSI1NC4yIi8+Cgk8Zz4KCQk8cG9seWxpbmUgY2xhc3M9InN0MCIgcG9pbnRzPSIxMC41LDc0LjQgMTQuMSw3OCA0Mi40LDQ5LjYgMzguNyw0NS44IAkJIi8+CgkJPHBvbHlsaW5lIGNsYXNzPSJzdDEiIHBvaW50cz0iMzguNyw0NS45IDE0LjIsMjEuMyAwLDM1LjQgMTQuMiw0OS42IDAsNjMuOCAxMC42LDc0LjQgCQkiLz4KCTwvZz4KPC9nPgo8L3N2Zz4K" /> <style> * { box-sizing: border-box; margin: 0; } html { font-size: 10px; font-family: 'Open Sans', sans-serif; color: #1d2a3b; } .container { max-width: 960px; margin: 0 auto; } .container.card { margin-top: 12.3rem; background-color: #ffffff; border-radius: 10px; box-shadow: -5px -4px 47px 3px rgba(198, 198, 198, 0.3); text-align: center; padding: 3.6rem; /* padding-bottom: 3.6rem; */ } .title-main { font-size: 3.6rem; font-weight: 700; margin-top: 0; margin-bottom: 2.1rem; } .main-image svg { max-width: 50rem; margin-bottom: 2rem; } .subheading{ font-size: 1.6rem; font-weight: 600; margin-bottom: 3rem; } .card .text { font-size: 13px; letter-spacing: 0.26px; } footer { color: #b1b1b1; font-size: 12px; display: flex; justify-content: space-between; align-items: center; padding-top: 1.7rem; } footer .logo svg { width: 145px; padding-left: 11px; } footer .left-side { display: flex; align-items: center; } /* Medias */ @media screen and (max-width: 1024px){ .container {max-width: 90%;} @media screen and (max-width: 768px){ html {font-size: 7px;} .container { max-width: 90%;} .container.card {margin-top: 6rem;} .card .text { font-size: 1.6rem;} } @media screen and (max-width: 480px){ html {font-size: 5.7px;} .container {max-width: 95%;} .title-main {font-size: 6.6vw;} /* .container.card {margin-top: 2rem;} */ .subheading{font-size: 13px;} .card .text { font-size: 12px;} footer {flex-direction: column;} } } </style> </head> <body> <section id="default-card" class="default-card"> <div class="container card">Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · smtp.globalideas.us
2026-01-11 05:48
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Last-Modified: Wed, 10 Jun 2020 20:36:51 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=u%2BBNQTsD%2FynHuFDdcic27D075qrMPU650X0c0GzezGMNLRUTW4KVWk7Lk0jcFidA1rm2iBnqTmqXoRfgYWVkbGpcaXVfqQpbaQVeSrO4g1FOc7Y%3D"}]} Vary: Accept-Encoding,User-Agent Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9bc220d7ac98d358-FRA alt-svc: h3=":443"; ma=86400 Page title: Shared IP <!doctype html> <html class="no-js" lang=""> <head> <meta charset="utf-8"> <meta http-equiv="x-ua-compatible" content="ie=edge"> <title>Shared IP</title> <meta name="description" content=""> <meta name="viewport" content="width=device-width, initial-scale=1"> <link href="https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap" rel="stylesheet"> <link rel="shortcut icon" href="data:image/svg+xml;base64,PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz4KPCEtLSBHZW5lcmF0b3I6IEFkb2JlIElsbHVzdHJhdG9yIDIxLjAuMCwgU1ZHIEV4cG9ydCBQbHVnLUluIC4gU1ZHIFZlcnNpb246IDYuMDAgQnVpbGQgMCkgIC0tPgo8c3ZnIHZlcnNpb249IjEuMSIgaWQ9IkxheWVyXzEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgeG1sbnM6eGxpbms9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGxpbmsiIHg9IjBweCIgeT0iMHB4IgoJIHZpZXdCb3g9IjAgMCA4OCAxMDIuMiIgc3R5bGU9ImVuYWJsZS1iYWNrZ3JvdW5kOm5ldyAwIDAgODggMTAyLjI7IiB4bWw6c3BhY2U9InByZXNlcnZlIj4KPHN0eWxlIHR5cGU9InRleHQvY3NzIj4KCS5zdDB7ZmlsbDojMDY4MkI0O30KCS5zdDF7ZmlsbDojMzFCN0U5O30KCS5zdDJ7ZmlsbDpub25lO30KPC9zdHlsZT4KPGc+Cgk8Zz4KCQk8Zz4KCQkJPHBvbHlnb24gY2xhc3M9InN0MCIgcG9pbnRzPSI4OCw1Mi42IDg4LDUyLjYgMzguNCwzIDI0LjIsMTcuMiA1OS43LDUyLjYgMjQuMyw4OCAzOC40LDEwMi4yIAkJCSIvPgoJCTwvZz4KCQk8Zz4KCQkJPHBvbHlnb24gY2xhc3M9InN0MSIgcG9pbnRzPSI4NSw0OS42IDg1LDQ5LjYgMzUuNCwwIDIxLjIsMTQuMiA1Ni43LDQ5LjYgMjEuMyw4NSAzNS40LDk5LjIgCQkJIi8+CgkJPC9nPgoJPC9nPgoJPGxpbmUgY2xhc3M9InN0MiIgeDE9IjQwLjMiIHkxPSIxMDMuOCIgeDI9IjkwLjEiIHkyPSI1NC4yIi8+Cgk8Zz4KCQk8cG9seWxpbmUgY2xhc3M9InN0MCIgcG9pbnRzPSIxMC41LDc0LjQgMTQuMSw3OCA0Mi40LDQ5LjYgMzguNyw0NS44IAkJIi8+CgkJPHBvbHlsaW5lIGNsYXNzPSJzdDEiIHBvaW50cz0iMzguNyw0NS45IDE0LjIsMjEuMyAwLDM1LjQgMTQuMiw0OS42IDAsNjMuOCAxMC42LDc0LjQgCQkiLz4KCTwvZz4KPC9nPgo8L3N2Zz4K" /> <style> * { box-sizing: border-box; margin: 0; } html { font-size: 10px; font-family: 'Open Sans', sans-serif; color: #1d2a3b; } .container { max-width: 960px; margin: 0 auto; } .container.card { margin-top: 12.3rem; background-color: #ffffff; border-radius: 10px; box-shadow: -5px -4px 47px 3px rgba(198, 198, 198, 0.3); text-align: center; padding: 3.6rem; /* padding-bottom: 3.6rem; */ } .title-main { font-size: 3.6rem; font-weight: 700; margin-top: 0; margin-bottom: 2.1rem; } .main-image svg { max-width: 50rem; margin-bottom: 2rem; } .subheading{ font-size: 1.6rem; font-weight: 600; margin-bottom: 3rem; } .card .text { font-size: 13px; letter-spacing: 0.26px; } footer { color: #b1b1b1; font-size: 12px; display: flex; justify-content: space-between; align-items: center; padding-top: 1.7rem; } footer .logo svg { width: 145px; padding-left: 11px; } footer .left-side { display: flex; align-items: center; } /* Medias */ @media screen and (max-width: 1024px){ .container {max-width: 90%;} @media screen and (max-width: 768px){ html {font-size: 7px;} .container { max-width: 90%;} .container.card {margin-top: 6rem;} .card .text { font-size: 1.6rem;} } @media screen and (max-width: 480px){ html {font-size: 5.7px;} .container {max-width: 95%;} .title-main {font-size: 6.6vw;} /* .container.card {margin-top: 2rem;} */ .subheading{font-size: 13px;} .card .text { font-size: 12px;} footer {flex-direction: column;} } } </style> </head> <body> <section id="default-card" class="default-card"> <div class="container card">Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · ftp.globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=7,cfOrigin;dur=148 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kwab%2Fhl%2FNE5XMjoF3RYQ8oVzR5j%2BxyRKgwVWRtYOp%2FMptOMCWlEHeFCiYBe6pW05o%2BMyy8d47pD2J0ytzGB%2FgWoTiSK5xYdLG6tke6xnqHQ%2FPA%3D%3D"}]} CF-RAY: 9bc220d70a4fa249-SJC alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"d9bbcf4a7be541988ee6cad05696bad3","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · ftp.globalideas.us
2026-01-11 05:48
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=259,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc220d7bb203dce-SIN alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · ftp.globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Hby6RUCbuZuc%2FSTOax7ul2UqVMMjniKSTdh7Wjn57bUDLYNzGlok%2FaGUq%2Flbo1D62IZ3wdIi9K%2BbnPtGPBWe6DWLBrUDhCnxcNUF5cVm22OQEQ%3D%3D"}]} CF-RAY: 9bc220d76fff974d-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · globalideas.us
2026-01-11 05:48
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc220d639f5f37d-LHR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cPQZF9joXaDiVYmY1oJ4XitmpqmdTQj4nWkOErQWo2CvGk5v96iYZuDQKxW8foGpLyRkkiM8e6OVdy6d4nLb%2B1FNJph2Jaja4BjFGyVy"}]} CF-RAY: 9bc220d6aa80372e-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · pop.globalideas.us
2026-01-11 05:48
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc220d638aa37cc-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · pop.globalideas.us
2026-01-11 05:48
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Last-Modified: Wed, 10 Jun 2020 20:36:51 GMT Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=yAZzAESJbsluXs%2B%2FjdISzQYIttEHFJwftWuORr7mR7EELHe%2FmfNnTfvH66uzaXaWA6afbPl4K8swZDqMj0TMvyfBJIaLsxFnzKj%2B4NFvevnzuA%3D%3D"}]} Vary: Accept-Encoding,User-Agent Server: cloudflare X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9bc220d6bfefbb8f-FRA alt-svc: h3=":443"; ma=86400 Page title: Shared IP <!doctype html> <html class="no-js" lang=""> <head> <meta charset="utf-8"> <meta http-equiv="x-ua-compatible" content="ie=edge"> <title>Shared IP</title> <meta name="description" content=""> <meta name="viewport" content="width=device-width, initial-scale=1"> <link href="https://fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap" rel="stylesheet"> <link rel="shortcut icon" href="data:image/svg+xml;base64,PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz4KPCEtLSBHZW5lcmF0b3I6IEFkb2JlIElsbHVzdHJhdG9yIDIxLjAuMCwgU1ZHIEV4cG9ydCBQbHVnLUluIC4gU1ZHIFZlcnNpb246IDYuMDAgQnVpbGQgMCkgIC0tPgo8c3ZnIHZlcnNpb249IjEuMSIgaWQ9IkxheWVyXzEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgeG1sbnM6eGxpbms9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGxpbmsiIHg9IjBweCIgeT0iMHB4IgoJIHZpZXdCb3g9IjAgMCA4OCAxMDIuMiIgc3R5bGU9ImVuYWJsZS1iYWNrZ3JvdW5kOm5ldyAwIDAgODggMTAyLjI7IiB4bWw6c3BhY2U9InByZXNlcnZlIj4KPHN0eWxlIHR5cGU9InRleHQvY3NzIj4KCS5zdDB7ZmlsbDojMDY4MkI0O30KCS5zdDF7ZmlsbDojMzFCN0U5O30KCS5zdDJ7ZmlsbDpub25lO30KPC9zdHlsZT4KPGc+Cgk8Zz4KCQk8Zz4KCQkJPHBvbHlnb24gY2xhc3M9InN0MCIgcG9pbnRzPSI4OCw1Mi42IDg4LDUyLjYgMzguNCwzIDI0LjIsMTcuMiA1OS43LDUyLjYgMjQuMyw4OCAzOC40LDEwMi4yIAkJCSIvPgoJCTwvZz4KCQk8Zz4KCQkJPHBvbHlnb24gY2xhc3M9InN0MSIgcG9pbnRzPSI4NSw0OS42IDg1LDQ5LjYgMzUuNCwwIDIxLjIsMTQuMiA1Ni43LDQ5LjYgMjEuMyw4NSAzNS40LDk5LjIgCQkJIi8+CgkJPC9nPgoJPC9nPgoJPGxpbmUgY2xhc3M9InN0MiIgeDE9IjQwLjMiIHkxPSIxMDMuOCIgeDI9IjkwLjEiIHkyPSI1NC4yIi8+Cgk8Zz4KCQk8cG9seWxpbmUgY2xhc3M9InN0MCIgcG9pbnRzPSIxMC41LDc0LjQgMTQuMSw3OCA0Mi40LDQ5LjYgMzguNyw0NS44IAkJIi8+CgkJPHBvbHlsaW5lIGNsYXNzPSJzdDEiIHBvaW50cz0iMzguNyw0NS45IDE0LjIsMjEuMyAwLDM1LjQgMTQuMiw0OS42IDAsNjMuOCAxMC42LDc0LjQgCQkiLz4KCTwvZz4KPC9nPgo8L3N2Zz4K" /> <style> * { box-sizing: border-box; margin: 0; } html { font-size: 10px; font-family: 'Open Sans', sans-serif; color: #1d2a3b; } .container { max-width: 960px; margin: 0 auto; } .container.card { margin-top: 12.3rem; background-color: #ffffff; border-radius: 10px; box-shadow: -5px -4px 47px 3px rgba(198, 198, 198, 0.3); text-align: center; padding: 3.6rem; /* padding-bottom: 3.6rem; */ } .title-main { font-size: 3.6rem; font-weight: 700; margin-top: 0; margin-bottom: 2.1rem; } .main-image svg { max-width: 50rem; margin-bottom: 2rem; } .subheading{ font-size: 1.6rem; font-weight: 600; margin-bottom: 3rem; } .card .text { font-size: 13px; letter-spacing: 0.26px; } footer { color: #b1b1b1; font-size: 12px; display: flex; justify-content: space-between; align-items: center; padding-top: 1.7rem; } footer .logo svg { width: 145px; padding-left: 11px; } footer .left-side { display: flex; align-items: center; } /* Medias */ @media screen and (max-width: 1024px){ .container {max-width: 90%;} @media screen and (max-width: 768px){ html {font-size: 7px;} .container { max-width: 90%;} .container.card {margin-top: 6rem;} .card .text { font-size: 1.6rem;} } @media screen and (max-width: 480px){ html {font-size: 5.7px;} .container {max-width: 95%;} .title-main {font-size: 6.6vw;} /* .container.card {margin-top: 2rem;} */ .subheading{font-size: 13px;} .card .text { font-size: 12px;} footer {flex-direction: column;} } } </style> </head> <body> <section id="default-card" class="default-card"> <div class="container card">Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · globalideas.us
2026-01-11 05:48
HTTP/1.1 403 Forbidden Date: Sun, 11 Jan 2026 05:48:59 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CqUvU7nrbBNbHyLvjk2xTChcFBqBpxj5SELlekC09M7M%2BvJhSNLzjRMe4%2BkykgUFHHI4pGNDp7xNayDtk7ZUygWRhhDskx1bWBntYU6R"}]} CF-RAY: 9bc220d6ace8d350-FRA alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> </body> </html>Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · fu9060.com
2026-01-11 04:46
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 04:46:40 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc1c5901c28f8c6-SIN alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · fu9060.com
2026-01-11 04:46
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 04:46:41 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 30 Dec 2025 09:05:17 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WncIQ6w2QjP8dyCQr1HonaetosrQDAkVclkG1cdVK%2BdQN7oJ1hnsEFCQjMZDBMaGJaiaDPQTbbkV9c%2F0GynN8N5e%2FLSz%2B1liRfk%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc1c592de0c3f0f-FRA alt-svc: h3=":443"; ma=86400 <!doctype html> <script> <!-- document.write(unescape("%3C%21doctype%20html%3E%0A%3Chtml%20lang%3D%22en%22%3E%0A%0A%3Chead%3E%0A%20%20%20%20%3Cmeta%20charset%3D%22utf-8%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22X-UA-Compatible%22%20content%3D%22IE%3Dedge%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22viewport%22%20content%3D%22width%3Ddevice-width%2Cinitial-scale%3D1%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22HandheldFriendly%22%20content%3D%22true%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22MobileOptimized%22%20content%3D%22width%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22cleartype%22%20content%3D%22on%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22theme-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-navbutton-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black-translucent%22%3E%0A%20%20%20%20%3Ctitle%3EK8%u51EF%u53D1%3C/title%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20type%3D%22image/x-icon%22%20href%3D%22favicon.ico%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20sizes%3D%22180x180%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-title%22%20content%3D%22K8%u51EF%u53D1%22/%3E%0A%20%20%20%20%3Clink%20rel%3D%22apple-touch-icon-precomposed%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-TileImage%22%20content%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%0A%20%20%20%20%3Cscript%20src%3D%22/data/links.js%22%3E%3C/script%3E%0A%20%20%20%20%3Clink%20href%3D%22/css/appag.css%22%20rel%3D%22stylesheet%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22stylesheet%22%20href%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css%22%20/%3E%0A%20%20%20%20%3Cscript%20src%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js%22%3E%3C/script%3E%0A%20%20%20%3Cstyle%3E%0A%20%20%20%20%20%20%20%20@media%28max-width%3A%20767px%29%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20.section-title%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20margin-bottom%3A10px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.game-card-wrapper%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding%3A4px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.featured-section%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding-top%3A%200px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%3C/style%3E%0A%3C/head%3E%0A%0A%3Cbody%3E%0A%20%20%20%20%3Cdiv%20id%3D%22app%22%3E%0A%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22home%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cheader%20data-v-0d1e5fd2%3D%22%22%20class%3D%22fixed-header%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22container%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Ca%20data-v-0d1e5fd2%3D%22%22%20href%3D%22/%22%20class%3D%22logo-link%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C%21--%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/header_logo.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E--%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/agk8_lg.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C/div%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3C/header%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20claFound 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · fu9060.com
2026-01-11 04:46
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 04:46:41 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Last-Modified: Tue, 30 Dec 2025 09:05:17 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9uwvrm%2F6NSOc7ZKJU382uQiFM0QTeAEkJ5aJzVQ3Mw1dWzl20kFNECfJyvVZ57dAvy5HU4AG%2FDmG7CSk%2Bx5GvBRSN4ppeCQuTQ8%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc1c592ceb1d9db-FRA alt-svc: h3=":443"; ma=86400 <!doctype html> <script> <!-- document.write(unescape("%3C%21doctype%20html%3E%0A%3Chtml%20lang%3D%22en%22%3E%0A%0A%3Chead%3E%0A%20%20%20%20%3Cmeta%20charset%3D%22utf-8%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22X-UA-Compatible%22%20content%3D%22IE%3Dedge%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22viewport%22%20content%3D%22width%3Ddevice-width%2Cinitial-scale%3D1%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22HandheldFriendly%22%20content%3D%22true%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22MobileOptimized%22%20content%3D%22width%22%3E%0A%20%20%20%20%3Cmeta%20http-equiv%3D%22cleartype%22%20content%3D%22on%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22theme-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-navbutton-color%22%20content%3D%22%238b5cf6%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black-translucent%22%3E%0A%20%20%20%20%3Ctitle%3EK8%u51EF%u53D1%3C/title%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20type%3D%22image/x-icon%22%20href%3D%22favicon.ico%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22icon%22%20sizes%3D%22180x180%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-capable%22%20content%3D%22yes%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-status-bar-style%22%20content%3D%22black%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22apple-mobile-web-app-title%22%20content%3D%22K8%u51EF%u53D1%22/%3E%0A%20%20%20%20%3Clink%20rel%3D%22apple-touch-icon-precomposed%22%20href%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%3Cmeta%20name%3D%22msapplication-TileImage%22%20content%3D%22/img/icon-180.png%22%3E%0A%20%20%20%20%0A%20%20%20%20%3Cscript%20src%3D%22/data/links.js%22%3E%3C/script%3E%0A%20%20%20%20%3Clink%20href%3D%22/css/appag.css%22%20rel%3D%22stylesheet%22%3E%0A%20%20%20%20%3Clink%20rel%3D%22stylesheet%22%20href%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css%22%20/%3E%0A%20%20%20%20%3Cscript%20src%3D%22https%3A//cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js%22%3E%3C/script%3E%0A%20%20%20%3Cstyle%3E%0A%20%20%20%20%20%20%20%20@media%28max-width%3A%20767px%29%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20.section-title%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20margin-bottom%3A10px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.game-card-wrapper%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding%3A4px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20.featured-section%5Bdata-v-0d1e5fd2%5D%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20padding-top%3A%200px%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%3C/style%3E%0A%3C/head%3E%0A%0A%3Cbody%3E%0A%20%20%20%20%3Cdiv%20id%3D%22app%22%3E%0A%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22home%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cheader%20data-v-0d1e5fd2%3D%22%22%20class%3D%22fixed-header%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20class%3D%22container%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Ca%20data-v-0d1e5fd2%3D%22%22%20href%3D%22/%22%20class%3D%22logo-link%22%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C%21--%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/header_logo.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E--%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3Cimg%20data-v-0d1e5fd2%3D%22%22%20src%3D%22/img/agk8_lg.png%22%20alt%3D%22Logo%22%20class%3D%22logo%22%3E%3C/a%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C/div%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3C/header%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%3Cdiv%20data-v-0d1e5fd2%3D%22%22%20claFound 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · despreviitor.ro
2026-01-11 02:42
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 02:42:37 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc10f5aeea1dcbe-FRA alt-svc: h3=":443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · despreviitor.ro
2026-01-11 02:42
HTTP/1.1 523 <none> Date: Sun, 11 Jan 2026 02:42:18 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc10f5aead12656-AMS alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · wccbet.vip
2026-01-11 02:14
HTTP/1.1 522 <none> Date: Sun, 11 Jan 2026 02:15:15 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc0e74b4cb196eb-AMS alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · wccbet.vip
2026-01-11 02:14
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 02:14:56 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NGsvL1djxZn5gpB6pvQzsUn5X4APbxqgNPeb2Hzf3qLtfq912TLcnwp19H7GFmxNVhiaZoM6S0vjz9rM8hz5HoELGdTRxprj1JA%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bc0e7470a902f2b-FRA alt-svc: h3=":443"; ma=86400 Page title: wcc bet - Descubra uma experiência de jogo inigualável com segurança máxima <!DOCTYPE html> <html lang="pt-BR"> <head> <title>wcc bet - Descubra uma experiência de jogo inigualável com segurança máxima</title> <meta name="description" content="No WCC Bet, garantimos que você tenha uma experiência de jogo divertida e segura, com tecnologia de ponta e suporte excepcional ao cliente."/> <meta charset="UTF-8" /> <meta name="format-detection" content="telephone=no" /> <meta name="keywords" content="wcc bet"> <link rel="stylesheet" href="css/style.base.css" /> <link rel="stylesheet" href="css/style.min.css" /> <link rel="shortcut icon" href="favicon.webp" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <!-- Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=G-N8BLWC8WVB"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'G-N8BLWC8WVB'); </script> </head> <body> <div class="wrapper"> <header class="header-1"> <div class="header-1__container"> <div class="header-1__body"> <a href="/" class="header-1__logo"> <picture> <source srcset="img/logo.webp" type="image/webp"> <img src="img/logo.png" alt="wcc bet"> </picture> </a> <div class="header-1__buttons"> <a href="/y2rjzjrjn.html" class="header-1__button button" rel="noindex nofollow">Registro</a> <a href="/y2rjzjrjn.html" class="header-1__button button" rel="noindex nofollow">Login</a> </div> <div class="header-1__menu"> <button class="header-1__menu-burger icon-menu"> <span></span> </button> <nav class="header-1__menu-nav"> <ul class="header-1__menu-list"> <li class="header-1__menu-item-logo"> <a href="/" class="menu__close"> <picture> <source srcset="img/logo.webp" type="image/webp"> <img src="img/logo.png" alt="wcc bet"> </picture> </a> </li> <li class="header-1__menu-item"> <a href="/" class="header-1__menu-link menu__close">wcc bet</a> </li> <li class="header-1__menu-item"> <a href="/sports.html" class="header-1__menu-link menu__close">Apostas Esportivas</a> </li> <li class="header-1__menu-item"> <a href="/promotions.html" class="header-1__menu-link menu__close">Promoções</a> </li> <li class="header-1__menu-item"> <a href="/poker.html" class="header-1__menu-link menu__close">Pôquer</a> </li> <li class="header-1__menu-item"> <a href="/racing.html" class="header-1__menu-link menu__close">Corridas</a> </li> <li class="header-1__menu-item"> <a href="/craps.html" class="header-1__menu-link menu__close">Craps</a> </li> <li class="header-1__menu-item"> <a href="/lottery.html" class="header-1__menu-link menu__close">Loteria</a> </li> <li class="header-1__menu-item"> <a href="/scratch.html" class="header-1__menu-link menu__cFound 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · wccbet.vip
2026-01-11 02:14
HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2026 02:14:55 GMT Content-Length: 0 Connection: close Location: https://wccbet.vip/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=vT2FHw1O0kXXBtrsPDUaFYoVZ4G6PIt1xR2PhAVbdcdeRzNItbpfZ3Pga2EU4t3kskDHMxqe0toGHrwUFgymH3NDVTF5fCrNFto%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bc0e7451f644daf-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · suffogamca.top
2026-01-11 01:03
HTTP/1.1 302 Found Date: Sun, 11 Jan 2026 01:03:46 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-store Location: https://gamesilo.today/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=syUgTwEESvisPERYUsvkCUq%2FXAXIXQl1nr9%2Bq0%2BwrD2raeLBu%2B7FZMIKcctJxq%2FtYWx3%2FsHZMs2%2BV9wLpt0C6dxmV%2B1gPboG8Cf6q3iE"}]} CF-RAY: 9bc07f0c09fedbb7-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · suffogamca.top
2026-01-11 01:03
HTTP/1.1 302 Found Date: Sun, 11 Jan 2026 01:03:46 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-store Location: https://gamesilo.today/ cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EPEmW9pso1dTemlGn5Wrx4FJL2CJWQMIda5X1Fw1F23PqTXExizJj2vh4nt%2FVbBeF5cvqUXsWXzuqP6SZZbpyNhGVqMJ%2F%2FNA%2BoMGYjgf"}]} CF-RAY: 9bc07f0b5e2f6626-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · suffogamca.top
2026-01-11 01:03
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 01:03:46 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc07f0add501e52-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · xzsoftpark.com
2026-01-11 00:10
HTTP/1.1 522 <none> Date: Sun, 11 Jan 2026 00:11:15 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19664,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc031a1ea203869-EWR alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · xzsoftpark.com
2026-01-11 00:10
HTTP/1.1 521 <none> Date: Sun, 11 Jan 2026 00:10:54 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bc0319c8d791e26-FRA alt-svc: h3=":443"; ma=86400 error code: 521
Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · xzsoftpark.com
2026-01-11 00:10
HTTP/1.1 200 OK Date: Sun, 11 Jan 2026 00:10:55 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} X-Cache-Status: HIT X-Cache-Key: http://xzsoftpark.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NKgBqp11Cge0HsJ1E%2BmJIfkil%2B5mXrAyUUAmtog4CRGMWEcX6jebdK8ruUJkwHTOhMozmK1I1B5DNWes61utvbiXU%2FHUn70s0ITC1trh"}]} cf-cache-status: DYNAMIC vary: accept-encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=11,cfOrigin;dur=565 CF-RAY: 9bc0319c2b97ade0-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-11 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · davapro.com
2026-01-10 22:59
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 22:59:47 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://giris.davapro.com/ cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=355 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5rKPZStw7Y1Kzwle%2FKGzgojzAhgCN0VYyFwwI2OtjC%2FtaN6NzePSdMwTP3K2j6%2FHCglmA5cpzRyVpEKc9ltwWiJlx0ZHnzikCVE2"}]} CF-RAY: 9bbfc96959baed35-SJC alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.18.0 (Ubuntu)</center> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"0b7df470139844cebf3a7b000ebb71cb","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · davapro.com
2026-01-10 22:59
HTTP/1.1 522 <none> Date: Sat, 10 Jan 2026 23:00:06 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19585,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbfc96c5d175577-YYZ alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · davapro.com
2026-01-10 22:59
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 22:59:46 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=yO%2B5xcfYyOpU9bZwoHMRgDErOHuiY5yV%2FKb2TbUjfXiq98KPV3md3EoxSJj6bcl7Jbm4DV455SL68ADdSkZT80YjDfCwroGig7ca"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9bbfc9660e6f79fb-FRA alt-svc: h3=":443"; ma=86400 Unknown Subdomain: davaproFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · z2yx.infs.top
2026-01-10 21:52
HTTP/1.1 526 <none> Date: Sat, 10 Jan 2026 21:52:39 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=127,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbf67141e0e43d4-EWR alt-svc: h3=":8443"; ma=86400 error code: 526
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · z2yx.infs.top
2026-01-10 21:52
HTTP/1.1 308 Permanent Redirect Date: Sat, 10 Jan 2026 21:52:39 GMT Content-Length: 0 Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://z2yx.infs.top/ Server: cloudflare cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=118 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IIVJCI%2BBhi40q%2F8j%2BCghzEOxXm%2BNRpemrHj%2BraF6xm5d1WVuzn6QD98VnW0Dp%2Brt4lqlUju6REIfQ7WdwkJgHQc71%2BOwkmhRgg5vvyo%3D"}]} CF-RAY: 9bbf67140b0e9cc1-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · z2yx.infs.top
2026-01-10 21:52
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 21:52:39 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jPca8LHhapCjYaMuMa%2F53Euj6n2c3ywN0nplxiK1y%2Fz6WV6bENkaHu6B9m4K2rdXgL1P%2FGoejoPnTS39akh5tGP7wG6%2FCM3NiRrFcHs%3D"}]} last-modified: Fri, 03 Dec 2021 07:30:33 GMT Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=5,cfOrigin;dur=11 CF-RAY: 9bbf6713ded89100-SJC alt-svc: h3=":443"; ma=86400 Page title: Hello,world! <!DOCTYPE html> <html> <head> <title>Hello,world!</title> </head> <body> <h1 style="font-family: sans-serif">Hello,world!</h1> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"4916756af5b64bbb8c75b600b2d012f3","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · scambora.com
2026-01-10 21:23
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 21:23:30 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding x-nextjs-cache: HIT x-nextjs-prerender: 1 x-nextjs-prerender: 1 x-nextjs-stale-time: 300 x-powered-by: Next.js Cache-Control: s-maxage=31536000 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8XWCvTDzn1TL1aeSw4TAnFTKbCbJo9MAHPfItz3Dz2osbLLjSlUQVtwRR%2B3Wx7m1qtkxA3t1D9xUm3HIApPR%2FNcrfadoki4K%2BAX7jQ%3D%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bbf3c6088be4d5c-FRA alt-svc: h3=":443"; ma=86400 Page title: Svadobné Fotky - Zdieľajte svoje spomienky <!DOCTYPE html><!--0obL8GwAsjKjp_gvUJnGh--><html lang="sk"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/4cf2300e9c8272f7-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" href="/_next/static/media/93f479601ee12b01-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="stylesheet" href="/_next/static/css/006a53160e0f5af0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-68ad05b70feaaa7e.js"/><script src="/_next/static/chunks/4bd1b696-2385f465b218746f.js" async=""></script><script src="/_next/static/chunks/964-95bcce2e45030b50.js" async=""></script><script src="/_next/static/chunks/main-app-261201ded548f614.js" async=""></script><script src="/_next/static/chunks/364-89bac24e7a230cd8.js" async=""></script><script src="/_next/static/chunks/app/page-b2a5d8cf487c5175.js" async=""></script><meta name="next-size-adjust" content=""/><title>Svadobné Fotky - Zdieľajte svoje spomienky</title><meta name="description" content="Nahrajte a zdieľajte svoje najkrajšie spomienky z našej svadby"/><link rel="icon" href="/favicon.ico" type="image/x-icon" sizes="16x16"/><script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" noModule=""></script></head><body class="__variable_188709 __variable_9a8899 antialiased"><div hidden=""><!--$--><!--/$--></div><div class="min-h-screen bg-background"><div class="container mx-auto px-4 py-8 max-w-6xl"><header class="text-center mb-10"><div class="flex justify-center items-center"><img alt="Okno" loading="lazy" width="40" height="40" decoding="async" data-nimg="1" class="mr-2 w-full max-w-xl " style="color:transparent" src="/full.svg"/></div><p class="text-xl text-muted-foreground mt-8 font-light">Zdieľajte svoje spomienky z našej svadby</p></header><section class="bg-white rounded-3xl p-8 mb-10 shadow-2xl"><h2 class="text-2xl font-semibold text-foreground text-center mb-8">Pridajte svoju fotku</h2><div class="flex flex-col sm:flex-row gap-4 justify-center mb-8"><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-green-600 hover:bg-green-700 h-auto text-white px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] cursor-pointer" data-slot="button">📁 Vybrať zo zariadenia<input type="file" accept="image/*" multiple="" class="hidden"/></label><label class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive shadow-xs has-[>svg]:px-3 bg-black hover:bg-black/90 text-white h-auto px-8 py-4 rounded-xl font-medium cursor-pointer transition-all duration-300 hover:scale-105 text-center min-w-[200px] sm:hidden cursor-pointer" data-slot="button">📷 Odfotiť (mobilná kamera)<input type="file" accept="image/*" capture="environment" class="hidden"/></label><button data-slot="button" class="items-center justify-center gap-2 whitespace-nowrap text-sm disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg:not([class*='size-'])]:size-4 shrink-0 [&_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-deFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · z1yx.infs.top
2026-01-10 19:16
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 19:16:45 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=so5bgPCg3sVNjEfDMEBpkVFPIlZfyKR%2Fwb9hLH1NZDAMuyfrhfpahr%2FF943UDzsb9vNBYcXO9Y2SfUNLxQl5uulaqdyOP6YY64G9OgQ%3D"}]} last-modified: Fri, 03 Dec 2021 17:00:52 GMT Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=706 CF-RAY: 9bbe82b599e0ff73-BOM alt-svc: h3=":443"; ma=86400 Page title: Hello,world! <!DOCTYPE html> <html> <head> <title>Hello,world!</title> </head> <body> <h1 style="font-family: sans-serif">Hello,world!</h1> <script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"4916756af5b64bbb8c75b600b2d012f3","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · z1yx.infs.top
2026-01-10 19:16
HTTP/1.1 308 Permanent Redirect Date: Sat, 10 Jan 2026 19:16:44 GMT Content-Length: 0 Connection: close Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Location: https://z1yx.infs.top/ Server: cloudflare cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=13,cfOrigin;dur=118 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zcI873%2F8OLoRmJ3tnc1lyRN7lOl9yOloLEETi5VvkRFgMER1QDEf9dUtxr4K0sxgm9wiUgu5WFUZe8TXtymF%2F%2BFiCrjuTuRNENS8sQ4%3D"}]} CF-RAY: 9bbe82b19d208f77-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · z1yx.infs.top
2026-01-10 19:16
HTTP/1.1 526 <none> Date: Sat, 10 Jan 2026 19:16:44 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbe82b24efbb92c-AMS alt-svc: h3=":8443"; ma=86400 error code: 526
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · ahoracomarca.com.ar
2026-01-10 19:12
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 19:12:09 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding X-Powered-By: MediosCMS Expires: s�b, 10 ene 2026 19:15:03 GMT Cache-Control: max-age=180, s-maxage=180, public Link: </static/css/t_aludra/wasat.css?v=25.2-beta5>; rel=preload; as=style, <https://fonts.googleapis.com/css?family=PT+Serif:400,700|Source+Sans+Pro:400,700&display=swap>; rel=preload; as=style; crossorigin, <https://ahoracomarca.com.ar/static/custom/logo-movil.png?t=2026-01-10+03%3A00%3A05.500668>; rel=preload; as=image; media="(max-width: 1024px)", <https://ahoracomarca.com.ar/static/custom/logo.png?t=2026-01-10+03%3A00%3A05.500668>; rel=preload; as=image; media="(min-width: 1024px)", </download/multimedia.normal.bde93c2c11c73214.bm9ybWFsLndlYnA%3D.webp>; rel=preload; as=image; imagesrcset="/download/multimedia.normal.bde93c2c11c73214.bm9ybWFsLndlYnA%3D.webp 1000w, /download/multimedia.grande.a28f5b985ab398ab.Z3JhbmRlLndlYnA%3D.webp 1389w, /download/multimedia.miniatura.89dcca35368d9fba.bWluaWF0dXJhLndlYnA%3D.webp 400w"; imagesizes="100vw" Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bnYS00XSTpONlyzWNgGznd4IKlY9Tqdg2nYgZHJnxaGOpoL53kWS9zCcgFtDty4DBX3U%2BWn11vsVn1gxny%2BAon2Qk8d%2BrzkLAk%2BhjTQ%2F3qHf6Xw%3D"}]} last-modified: Sat, 10 Jan 2026 19:12:03 GMT Age: 5 cf-cache-status: HIT Server-Timing: cfCacheStatus;desc="HIT" Server-Timing: cfEdge;dur=8,cfOrigin;dur=0 CF-RAY: 9bbe7bfb2a923f3b-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · ahoracomarca.com.ar
2026-01-10 19:12
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 19:12:09 GMT Content-Length: 0 Connection: close Location: https://ahoracomarca.com.ar/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=AMfCXS5niORJ60PmApi15LkIO4HjoWINNkLclmK2wh3%2FmqXSj8ANw3g9lyvc4Pdv3x2CsN%2FCATu8FuqoZZRyeXZx0Ayq1f6XXnWq8t8FR70hE1k%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=15,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bbe7bf9f80639dd-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · ahoracomarca.com.ar
2026-01-10 19:12
HTTP/1.1 523 <none> Date: Sat, 10 Jan 2026 19:12:09 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close set-cookie: cf_use_ob=0; Expires=Sat, 10 Jan 2026 19:12:39 GMT Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=59,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbe7bfa48f1aafe-YYZ alt-svc: h3=":8443"; ma=86400 error code: 523
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · whatssex-login.com
2026-01-10 18:37
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 18:38:02 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Tue, 30 Sep 2025 14:59:22 GMT Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=18,cfOrigin;dur=590 vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lfYswepYHjwPQcuvjSm6vN%2Bt6Y2Lyh7tNfBWFNPocfm4UdhDvmuFX1EYvwKJbxeSxBEOpIRtM%2BWY4vs3eycdVmLXow5jX8YJ2GWGf0ebdaBiMw%3D%3D"}]} Server: cloudflare cf-cache-status: DYNAMIC CF-RAY: 9bbe49fade69fcdf-SIN alt-svc: h3=":443"; ma=86400 Page title: WhatsSex Login | Hottest Adult Dating Platform <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta http-equiv="X-UA-Compatible" content="ie=edge" /> <title>WhatsSex Login | Hottest Adult Dating Platform</title> <meta name="description" content="Log in to WhatsSex – your #1 platform for casual dating, hot encounters, and discreet connections. Sign up for free now!"> <meta name="keywords" content="whatssex login, whatssex, whatssex app, whatssex apk, whatssex ghana, project qt whatssex, whatssex is back, whatssex south africa, whatssex test, adult dating, sex dating"> <link rel="icon" type="image/png" href="favico.png" /> <style> * { box-sizing: border-box; margin: 0; padding: 0; } body { font-family: 'Segoe UI', sans-serif; background: radial-gradient(circle at center, #1a1a1a 0%, #000 100%); color: #fff; text-align: center; padding: 20px; } .container { max-width: 600px; width: 100%; background: rgba(255, 255, 255, 0.05); border: 1px solid #444; border-radius: 16px; padding: 40px 30px; margin: 40px auto; box-shadow: 0 0 30px rgba(255, 0, 100, 0.3); } .logo img { width: 100px; height: auto; margin-bottom: 20px; } h1 { font-size: 32px; font-weight: 600; margin-bottom: 16px; } h2 { font-size: 22px; margin-bottom: 16px; font-weight: 500; } p { font-size: 16px; margin-bottom: 20px; line-height: 1.5; } .cta-button { background: linear-gradient(90deg, #e60073, #ff3399); color: #fff; border: none; border-radius: 30px; padding: 14px 36px; font-size: 18px; font-weight: bold; cursor: pointer; text-decoration: none; transition: background 0.3s ease; display: inline-block; margin-top: 10px; } .cta-button:hover { background: linear-gradient(90deg, #ff3399, #e60073); } .section { max-width: 900px; margin: 40px auto; text-align: left; background: rgba(255, 255, 255, 0.03); border: 1px solid #333; border-radius: 12px; padding: 30px; } .section h2 { margin-bottom: 12px; font-size: 20px; color: #ff3399; } ul { margin-left: 20px; margin-top: 10px; } ul li { margin-bottom: 8px; font-size: 15px; } footer { margin: 40px auto; font-size: 14px; color: #aaa; text-align: center; } @media (max-width: 480px) { h1 { font-size: 24px; } .cta-button { font-size: 16px; padding: 12px 24px; } } </style> </head> <body> <div class="container"> <div class="logo"> <a href="cut.php" rel="nofollow"> <img src="18.png" alt="WHATSSEX Logo" /> </a> </div> <h1>Welcome to WHATSSEX</h1> <h2>Please confirm your age</h2> <p>This site is for adults only. Are you 18 years or older?</p> <a class="cta-button" href="cut.php" rel="nofollow">YES, I am 18+</a> </div> <div class="section"> <h2>About WhatsSex</h2> <p>WhatsSex is back – the trusted adult dating app that brings real people together for hot encounters and casual fun. Whether you’re looking for discreet connections or exciting new flings, the WhatsSex app is designed to make your fantasies easier to explore. With the WhatsSex APK available worldwide, users from Ghana, South Africa, and beyond are already joining the community.</p> </div> <!-- Features Section --> <div class="section"> <h2>Why Choose WhatsSex?</h2> <ul> <li>Safe, secure, and anonymous connections.</li> <li>Easy-to-use WhatsSex app and APK downloads.</li> <li>Large, active community in countries like Ghana and South Africa.</li> <li>Fast signup – no complicated steps, just real fun.</li> <li>Exclusive features inspired by Project QT WhatsSex for playful inFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · cmdg.com.cn
2026-01-10 18:36
HTTP/1.1 403 Forbidden Date: Sat, 10 Jan 2026 18:36:40 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=1,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qshN%2BYWnK6%2FdCO3XeL4wrBeqe97HemG46wRHEqld9M5%2FSeWWi%2FgRpsTzLhSXj8sWD76cu8qJbdSyh%2FjW%2F%2BdNSNp2na68dFysJrbf"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbe48035913b341-SJC alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> cmdg.com.cn</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bbe48035913b341</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">146.190.63.48</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"claFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · kea27.at
2026-01-10 18:13
HTTP/1.1 521 <none> Date: Sat, 10 Jan 2026 18:13:37 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbe263a4a7acdc2-LHR alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · kea27.at
2026-01-10 18:13
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 18:13:36 GMT Content-Length: 0 Connection: close Location: https://kea27.at/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=AmxlG7tdjqxcXUbFURBSp1D%2BuUP5%2FeeDVW%2BZ8nM0TS5vQohjVs1WFyn52cl5K0WJYvFM5%2BoWejq1eQkBWS3ajCslAEFIT88m"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbe2639edf7dbb5-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · kea27.at
2026-01-10 18:13
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 18:13:37 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Access-Control-Allow-Origin: * X-Robots-Tag: noindex Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FdoxfcM7QSpLYL2IymjHRnQG0UHsJNNTS3RnsenPodjwvR9%2BCFpN3epnsrDE7Y0ORt6VCpUxb80EpT%2B8YmXw4zGcy8j2G5bW"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9bbe263a6ec19765-FRA alt-svc: h3=":443"; ma=86400 Access DeniedFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · hoteldejeunesse.com
2026-01-10 15:40
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 15:40:53 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close Server: cloudflare Location: https://www.numerosromanos.com.mx/traductor Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0cH29f17Rc3RFJsOkFQver1VIDkEy4B62LcO0QdksgjBNw%2F8We1kcCxxF1I6IRfPMuCKnRXvecYyXtNHJhV6Qn4Ap5VBbssKjwHVmfyDhrdLsLQ%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bbd4682fc6dd5f4-YYZ alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="https://www.numerosromanos.com.mx/traductor">here</a>.</p> </body></html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · www.hoteldejeunesse.com
2026-01-10 15:40
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 15:40:53 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close Server: cloudflare Location: https://www.numerosromanos.com.mx/traductor Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GOGqrb0%2Fw0yYhFgBsB%2B4G0CLoBypmFzoh5pImdDBsfByiVaRDrsYJXvrlVT8JGs2CfFGTLG%2FkTK1d5O4WtWe8%2B0YoB62b0DnNvRlPy9W64vhzDucVikj"}]} cf-cache-status: DYNAMIC CF-RAY: 9bbd468319e3a450-YYZ alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="https://www.numerosromanos.com.mx/traductor">here</a>.</p> </body></html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · hoteldejeunesse.com
2026-01-10 15:40
HTTP/1.1 522 <none> Date: Sat, 10 Jan 2026 15:41:14 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbd46891a39ce7e-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.hoteldejeunesse.com
2026-01-10 15:40
HTTP/1.1 521 <none> Date: Sat, 10 Jan 2026 15:40:53 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbd46821a19aae8-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · www.hoteldejeunesse.com
2026-01-10 15:40
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 15:40:53 GMT Content-Length: 0 Connection: close Location: https://www.hoteldejeunesse.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=L5H2YO%2BL6ZgeI7%2Bgs7I0uwJOhoQuZ0%2BuXSNl0MXD%2FR%2F8h%2BGo3dtqb5ldAS3hd8kB6ER4AA0Gk%2FNrcDUdXedkOp7smep6R%2FDyg%2FX3v9zU%2BLQwBKFCmX4F"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbd46814b7dde9a-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · hoteldejeunesse.com
2026-01-10 15:40
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 15:40:53 GMT Content-Length: 0 Connection: close Location: https://hoteldejeunesse.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xbLZ6B0c%2FXkE20%2F9z7qHqsfY2oVtMCYGGsf1PtIoDgQHtOKMFQglVI1Mntid2nXmH8Pm1MF05PlioGZC8Cceude%2BqCrtsSCf7JRufYczAsafSR0%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbd4681499b3615-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · jungletrims.co.uk
2026-01-10 15:11
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 15:11:11 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close cf-edge-cache: cache,platform=wordpress x-pingback: http://jungletrims.co.uk/xmlrpc.php permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") x-redirect-by: WordPress location: https://jungletrims.co.uk/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Wtqds2faSg%2FfxUffFLVm%2BVW5O8%2B8XTUGLsyjhX8I8kdPvGbHZIOfd4wws4svYdqwvU%2FU8XQpRxC%2B%2F2llO1HWpB1y5qUGbJyuQacrq%2FRagTp%2B"}]} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=15,cfOrigin;dur=378 CF-RAY: 9bbd1afd2f07281b-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · jungletrims.co.uk
2026-01-10 15:11
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 15:11:11 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close cf-edge-cache: cache,platform=wordpress x-pingback: https://jungletrims.co.uk/xmlrpc.php permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com") link: <https://jungletrims.co.uk/wp-json/>; rel="https://api.w.org/" link: <https://jungletrims.co.uk/wp-json/wp/v2/pages/1183>; rel="alternate"; title="JSON"; type="application/json" link: <https://jungletrims.co.uk/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jXzSzOWrKUoAcCo%2BvXUX7tEqBzFVAqLgB8nWXLAxoVfsdZJbjq%2BDCEMcQ6P8svmzPQwbOLDp3k1oAaBjwqrbA8rF7D7KvA5%2FXJsL4SmS4RJq"}]} vary: Accept-Encoding Server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9bbd1afdee56f3b8-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · jungletrims.co.uk
2026-01-10 15:11
HTTP/1.1 522 <none> Date: Sat, 10 Jan 2026 15:11:30 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbd1b0038ee65f6-AMS alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · lakeshorewoodsal-mc.com
2026-01-10 13:09
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 13:09:31 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sat, 10 Oct 2020 19:37:25 GMT accept-ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3iRwwJyIw61W1z6BRT7Bd%2BUIih3Lvvv2RdUrg7D5MZtKr%2FLKBHGuh1jaSuIqiK4xlraGPnWGYXhqW%2B5JRUORsnBtMm2zaA%2BNjH3zPAiRjHki89lm9XXq"}]} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=20,cfOrigin;dur=144 CF-RAY: 9bbc68c549236a5c-EWR alt-svc: h3=":443"; ma=86400 <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"5b52e17ee54d4caca94e616be05a08fb","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body></html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · lakeshorewoodsal-mc.com
2026-01-10 13:09
HTTP/1.1 522 <none> Date: Sat, 10 Jan 2026 13:09:51 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19321,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbc68ca8842efbd-SJC alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · lakeshorewoodsal-mc.com
2026-01-10 13:09
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 13:09:31 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sat, 10 Oct 2020 19:37:25 GMT accept-ranges: bytes Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} server: cloudflare x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rknjoK%2Fqs%2B7QduFCeCyTTrtcMj0B6iegFsRqcRO1RS7E9ufWRZ1hehLv4nygSt77CCTRmT9EITa9iHCpOPUfJi3JDCU5QjJFwAs6F0eEMutlDZ2o3MRW"}]} CF-RAY: 9bbc68c5ed249f82-AMS alt-svc: h3=":443"; ma=86400 <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body></body></html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · sonar-leakdetection.com
2026-01-10 13:06
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 13:06:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/7.0.31 Link: <https://sonar-leakdetection.com/wp-json/>; rel="https://api.w.org/", <https://sonar-leakdetection.com/wp-json/wp/v2/pages/2989>; rel="alternate"; type="application/json", <https://sonar-leakdetection.com/>; rel=shortlink X-Frame-Options: SAMEORIGIN X-Mod-Pagespeed: 1.13.35.2-0 Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=380 Cache-Control: max-age=0, no-cache, s-maxage=10 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ksfK6IqawN3bfEoKiwyAs3%2Bi6mdUR2tSL67x%2Fzpwyz34O9lbqY4JHK4VRmZmp1ndXmr7TEu3CELUFYjQ8xBPiavCN%2BvOy57Z%2BAoKZO58b3ImU3rGYa%2Fv"}]} cf-cache-status: DYNAMIC CF-RAY: 9bbc646a3cf8f82f-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · sonar-leakdetection.com
2026-01-10 13:06
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 13:06:32 GMT Content-Length: 0 Connection: close Location: https://sonar-leakdetection.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xl7h7DFpmLZ2Ln%2F3t6iV4G9DjPW2FfiMvGsELKg5O4LeW2TEjIRtDibyCC4eEwT2yAd%2BR8INqRfASuAExiUE2RDzAkrgK6PLtH2QSjWHmBqRQkEKzw%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=10,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bbc6465fdc5c332-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · sonar-leakdetection.com
2026-01-10 13:06
HTTP/1.1 522 <none> Date: Sat, 10 Jan 2026 13:06:52 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19612,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbc646bbbabcdf1-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · relmnetwork.com
2026-01-10 12:12
HTTP/1.1 403 Forbidden Date: Sat, 10 Jan 2026 12:12:46 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=84 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=a9JruFPu9RkL6TChWLiD%2FW7xJUvfhz2ll6uuBWL4jWAr67bQkmmAP3o0AZLViRfBZzmNDqk0KfPQ5Oygl0qnKSd1FkDAx2qGGtE3yhiiGQ%3D%3D"}]} CF-RAY: 9bbc15a39c8f9dab-YYZ alt-svc: h3=":443"; ma=86400 Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>openresty/1.27.1.1</center> <script>(function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'9bbc15a39c8f9dab',t:'MTc2ODA0NzE2Ng=='};var a=document.createElement('script');a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();</script><script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"21fd6bf7dec24b36b15705a6a4cb14dc","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script> </body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · relmnetwork.com
2026-01-10 12:12
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 12:12:46 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=6,cfOrigin;dur=63 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5PXeDAyVfGsCwoo%2F8VNDVcjjakHu%2BRzULRW0mCCgRwrl4atxiMVDtq%2F8fsK5T7BXqbQ8kcAiKnEOoAQHXeAY5X%2BvsadV%2FmWqSA95082MoQ%3D%3D"}]} CF-RAY: 9bbc15a4cfba424c-EWR alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · relmnetwork.com
2026-01-10 12:12
HTTP/1.1 522 <none> Date: Sat, 10 Jan 2026 12:13:06 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19263,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbc15a87ad4fdf0-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · ios-root.apiversionbak.workers.dev
2026-01-10 11:45
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 11:45:18 GMT Content-Type: text/html;charset=UTF-8 Content-Length: 157 Connection: close Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=LQOhdHolRcKuFo%2B95%2BiRHwvQJePF9ac53pJVFI2AnKPa%2Fr1dQfRjXGr4qQp2Hve%2B%2FBq6Tbw8%2BYYLUl2iwrEZ8auI0cUu71%2BF9M8VzjZvnAQ4OroziCuTy2N0J%2FGofrBrQg0%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbbed6d1acf9b8f-FRA alt-svc: h3=":443"; ma=86400 <!DOCTYPE html> <body> <h1>iOS platform is under maintenance, please consult online customer service</h1> </body>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · audition.ppacademy.co.uk
2026-01-10 11:03
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 11:03:30 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=N1%2FCFh5GrgJjwCOYDi2Wz9QA8RAqaO9Pk0NWhGrEEq20bUTl28v%2FG6cTeD%2FGm7BeR0dBGGhD8n29YmqARZ9v9y0A%2F7JdkDzaNyjAbK%2FcegYUIOe4JxvVsg%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Vary: Accept-Encoding Server: cloudflare cache-control: no-cache,no-store x-frame-options: SAMEORIGIN X-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC CF-RAY: 9bbbb0168f73d949-AMS alt-svc: h3=":443"; ma=86400 Page title: Bot Verification <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Bot Verification</title> <script> function onSubmit() { document.getElementById('lsrecaptcha-form').submit(); } var onloadCallback = function() { var cont = grecaptcha.render('recaptchadiv', { 'sitekey': '6LewU34UAAAAAHvXqFOcQlm8z1MP1xpGAZCYEeZY', 'callback': onSubmit, }); grecaptcha.execute(cont); }; </script> <style> body { height: 100%; } .panel { padding: 30px; max-width: 425px; margin: 10% auto; box-shadow: 0 0 2px 2px rgba(0, 0, 0, 0.2); } .title { font-size: 1.5em; font-weight: 100; margin-top: 10px; text-align: center; } .recaptcha-center { margin-top: 35px; margin-bottom: 20px; margin-left: 13%; margin-right: 13%; display: block; } </style> </head> <body> <div class="panel"> <h3 class="title">Verifying that you are not a robot...</h3> <form id="lsrecaptcha-form" method="POST" action="/.lsrecap/recaptcha?"> <div id="recaptchadiv" class="recaptcha-center"></div> </form> </div> <script src="https://www.recaptcha.net/recaptcha/api.js?onload=onloadCallback&render=explicit" async defer> </script> </body> </html>Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · nextmovefitness.lat
2026-01-10 10:36
HTTP/1.1 520 <none> Date: Sat, 10 Jan 2026 10:36:41 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbb88e57841cceb-YYZ alt-svc: h3=":443"; ma=86400 error code: 520
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · nextmovefitness.lat
2026-01-10 10:36
HTTP/1.1 520 <none> Date: Sat, 10 Jan 2026 10:36:41 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbb88e52c8446dc-EWR alt-svc: h3=":443"; ma=86400 error code: 520
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · nextmovefitness.lat
2026-01-10 10:36
HTTP/1.1 521 <none> Date: Sat, 10 Jan 2026 10:36:41 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bbb88e4f821dcc4-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · rhinsuranceagency.com
2026-01-10 09:57
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 09:57:56 GMT Content-Length: 0 Connection: close Location: http://acrisure.com/south Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=39bRxeayhFDmBWJWP9Hz%2FL%2BcG4qDDdHgp%2BXrzhsYFlPQDBYnVJSnKH%2BD6fETN8A27i044XulBWHUEIwTW1nl%2BKRUawij1zwebV0uhGJMlgrgObE%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbb50240b159b40-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · bad-boy96.biz
2026-01-10 09:21
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 09:21:24 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/5.6.40 Location: https://bad-boy96.biz/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9qXfeyfDT0oYn9%2B5Ji%2B%2BDX0G2ngXuX3Wrhto2M0VR1MB9xfsrN8dBlsVv1pQhHu%2BSjYtSBADk8kVLJcHKADWnxETODPwvowJGiPX10Q%3D"}]} cf-cache-status: DYNAMIC CF-RAY: 9bbb1a9eabc0dca1-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · kamagrajelturkiye.com
2026-01-10 08:25
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 08:25:40 GMT Content-Length: 0 Connection: close Location: https://f8betlv.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FLwfAwnFB52%2F6atSRTBVTydnlppxek39pQvTO1Cm9RDCnd6C5V3Ds6im6pOfajGxOVE%2Fvn7dljnoR11t80dgOro8QDcl8blX2CpCEu8LtzBZOnhUvA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbac8fa0b540c18-LHR alt-svc: h3=":8443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · kamagrajelturkiye.com
2026-01-10 08:25
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 08:25:40 GMT Content-Length: 0 Connection: close Location: https://f8betlv.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=m52qVCo8XrF5nqwF4kWJhMOW%2BfH7E9P3GqUxRZz67RPzf%2FAGZ57SmXLIubqUDVeY2cKr98vgRblRL1nIG6IVzow122o24%2BftnoVyodfX6AzJHZDGXQ%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=11,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bbac8fa09a4729e-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · kamagrajelturkiye.com
2026-01-10 08:25
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 08:25:40 GMT Content-Length: 0 Connection: close Location: https://f8betlv.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jvu3FnBCheI73KoR%2BJESe5x0U%2FVBHRJRs%2FvwA1zX1VELI5P7F4PlmisWkQmSuRYmYyQdlr9TRHZK9XRjN4okzqZQABW6bSJWiAtZDVEBPUkxKi0%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbac8f9c8526909-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · ganemos.ai
2026-01-10 08:25
HTTP/1.1 403 Forbidden Date: Sat, 10 Jan 2026 08:25:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=qGp5bwlJUbJDheLZ8aXjZx8JUb0HlyTFuE%2FGiyS%2F7FykwXI3oSTWR5bq5FeCOzbtJSZIDJ8GSIVaejW%2FN8KQy9dwH0Rzg3jZQQs%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbac8ac6d83906c-FRA alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> ganemos.ai</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bbac8ac6d83906c</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">46.101.111.185</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"claFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · ganemos.ai
2026-01-10 08:25
HTTP/1.1 403 Forbidden Date: Sat, 10 Jan 2026 08:25:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=16,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7IUz2a3ls03c6SOuZiZBgqjc5Ah2siXsjjx8wlkUejHOAu6OQAlRBGKSi52qzEg%2F71%2Bp17AIQfmmJyjPf1i5rYa8jqZmkoPfOg8%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbac8ac1d81fd08-SIN alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> ganemos.ai</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bbac8ac1d81fd08</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">68.183.180.73</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"clasFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · ganemos.ai
2026-01-10 08:25
HTTP/1.1 403 Forbidden Date: Sat, 10 Jan 2026 08:25:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=INl9IqZtobiblu1yqPElQccA9VhEXm4UsbYU9vUeOjsC0wGq4chCo%2BO%2B33sMNCe31R8lAru02nHUTcH7nk6E4dwXwIOcqySDLCs%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbac8abad67dcc4-FRA alt-svc: h3=":8443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> ganemos.ai</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bbac8abad67dcc4</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">164.90.228.79</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"clasFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · granat88bro.store
2026-01-10 08:02
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 08:02:34 GMT Content-Length: 0 Connection: close Location: https://pssijabar.org/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=r4laulB%2BAL0PaJaT2BbU5gJTRVGvsKKrpogApe0hbEAGOB0hq0DYvihp%2F4cPvRf1AXYyYSWV6s%2BtF2jT0iGiETTlQbuyGBpXFZWFt6QCGK2F"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bbaa725bbf7db9d-FRAFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · greece-play.site
2026-01-10 06:55
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 06:55:05 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: no-cache, no-store, must-revalidate Set-Cookie: piuidalcix3=019ba6af-ea43-779b-ae11-c0f8af646002; expires=Sun, 10-Jan-2027 06:55:05 GMT; path=/; samesite=Lax; httponly Set-Cookie: pcpnquh69u=white1; expires=Sun, 10-Jan-2027 06:55:05 GMT; path=/; samesite=Lax; httponly Set-Cookie: pwaidf8rmjd=EYJc; expires=Sun, 10-Jan-2027 06:55:05 GMT; path=/; samesite=Lax; httponly Set-Cookie: pwasimidsntuwk=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; samesite=Lax; httponly Set-Cookie: splitidqia06a=-1; expires=Sun, 10-Jan-2027 06:55:05 GMT; path=/; samesite=Lax; httponly Set-Cookie: fpvdateae8x5l=2026-01-10; expires=Sun, 10-Jan-2027 06:55:05 GMT; path=/; samesite=Lax; httponly Set-Cookie: sdataymtw49=qtUl66zrv8QL7PdO8XK8LHh1LRMPcNEog318mYm4wmk%3D; expires=Sun, 10-Jan-2027 06:55:05 GMT; path=/; samesite=Lax; httponly Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=372fTZNe5%2BOoc1U5YrXB4KCsBVEcgeovae3AbQSi846XoJ%2BtgoWHV1LrJqDDT7YEDtZ14hZ6l05fCv0tyLb8hoiPORb78scYsYQDNzWHeM0%3D"}]} cf-cache-status: DYNAMIC vary: accept-encoding CF-RAY: 9bba44491cec73a1-FRA alt-svc: h3=":443"; ma=86400 <!doctype html><html lang="en"><head><meta charset="utf-8"/><meta name="viewport" content="width=device-width,initial-scale=1"/><link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Roboto:300,400,500,700,900|Roboto+Slab:400,700"/><link href="https://fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp" rel="stylesheet"/><title></title><script>window.pageData={"url":"https://play.google.com/store/apps/details?id=com.nianticlabs.scaniverse&hl=en&gl=US","name":"Scaniverse | Free 3D scanner","icon":"https://play-lh.googleusercontent.com/BRRZhSPILkzJtCRFi3o0GWzyZQ4MfIqSYYGsnILvW_E1vkcs8LAXYKQYFSNJ2K1Ktg","version":"4.0.6","category":"PHOTOGRAPHY","contentRating":"Everyone","contentRatingIcon":"https://play-lh.googleusercontent.com/OBVqgRK7eerY0GPfK8AOzitu5oE9ecC6kG4kURTCb1K41gpqVsN0WjmJwJh-wX8vILzpcc1kYHt56aLN2g","author":"Niantic Spatial Inc","ratingValue":"3.4848484992980957","ratingCount":"192","firstReleaseTime":1715725670,"downloadCount":79549,"downloadStrShot":"50K+","contUrl":"https://nianticlabs.com","contEmail":"hi@scaniverse.com","contAddress":null,"desc":"Discover, capture, and share immersive 3D scenes from around the world with Niantic\u2019s Scaniverse. Free, fun, and easy to use.\n\nART, HISTORY, AND TRAVEL COME TO LIFE\nExperience the world beyond what a photo or video can capture. Explore iconic landmarks, stunning architecture, and hidden gems in rich 3D detail.\n\nEXPLORE PLACES YOU LOVE\u2013 OR DISCOVER NEW ONES\nStep into vivid 3D scenes of famous sites and local favorites. Retrace your steps or visit places you never imagined\u2014right from your phone.\n\nGET UP CLOSE TO ART & ARCHITECTURE\nSee every brushstroke, texture, and design up close. Whether it\u2019s a sculpture, a historic building, or a masterpiece, 3D brings every detail to life.\n\nCONNECT WITH FRIENDS & THE COMMUNITY\nFollow top scanners, get likes and reactions, and see trending 3D scenes in the discovery feed. Easily share your scans on Instagram, TikTok, and more.\n\nBUILD A GROWING 3D MAP TOGETHER\nEvery scan contributes to a shared 3D world, preserving places, moments, and perspectives that matter to people everywhere.\n\nFREE, FAST & FLEXIBLE\nScan in minutes and keep your 3D models private until you're ready to share. No internet needed for processing\u2013 everything happens on your phone.\n\nEXPORT & USE YOUR SCANS ANYWHERE\nDownload your scans in multiple 3D formats, create cinematic videos, or embed them online. Use them for creative projects, digital art, or personal archives.\n\nJOIN THE COMMUNITY\nJoin thousands of people capturing and sharing the world in 3D. Learn, explore, and connect at community.scaniverse.com.\n\nStart scanning and exploring in 3D today!\n\n\ud83d\udd17 Learn more: scaniverse.com\n\ud83d\udd17 Join the community: community.scaniverse.com\n\ud83d\udd17 Terms of use: scaniverse.com/terms\n\ud83d\udd17 Privacy policy: scaniverse.com/privacy","descShot":"Explore & capture 3D scans on a global map","cover":"https://play-lh.googleusercontent.com/FxKzgiYYxUw_iNnJC_LnASrGO6eGjXOWDjZ3A3eqhqoUm-254-ijYJetNRQcSM_k-bQ","policeUrl":"https://nianticlabs.com/privacy","videoYoutube":null,"videoYoutubeIcon":null,"videoUrl":null,"minSdk":24,"updateInfo":"Bug fixes and improvements.","lastUpdateTime":1744825195,"screens":["https://play-lh.googleusercontent.com/V-bPooFLL1A3LKDMJtchgU33NGoty6YndsddCLRecudXuFsfvBs0JhPRAol_n98IzQ","https://play-lh.googleusercontent.com/kGW208hqrB3ITMKbFBVEOVlpJn4Vxyvqo9l45--0THA5cPUTEQp4h1kdMQyiWsp4WfFV","https://play-lh.googleusercontent.com/qjM8IOdzy72SjgUSP1fdm1_SczP6TiGAJpVk6bPqllo_IhT5QDC9JKlBkLCR26MJew","https://play-lh.googleusercontent.com/XtmwJmhPJ46OuuJs4tu49ZgREgCOz2R5sUR7WEw3Y77vZseV21Cru-ZSYvp6EC3UkqVE","https://play-lh.googleusercontent.com/GhV116Ctub7aq7rKF0WY8BQWDb3h7WLLwIOSxKcSN2LccsUr7kUeMqhdTyGCDSymznE","https://play-lh.googleusercontent.com/81w6yWba0AvneIXdCYXgerHBwm-3JvqsLgMk1XaiKDUmohqfL14q9rAClM58rN8Ir5Y","https://play-lh.googleusercontent.com/r8Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · greece-play.site
2026-01-10 06:55
HTTP/1.1 521 <none> Date: Sat, 10 Jan 2026 06:55:04 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bba44442b84a253-YYZ alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · greece-play.site
2026-01-10 06:55
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 06:55:04 GMT Content-Length: 0 Connection: close Location: https://greece-play.site/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zL5TcnzwRceLY7GJbwZ3M4a63NpKK8xlI2UF9TbGiejRGVC1w%2BJfb4yKbbj6g33mCr763S0jvH3gUy3TbcHqs5kUeTVp4obfkKQFqhyf3OM%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bba44433b7e9f1c-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · krinn.in
2026-01-10 04:41
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · krinn.in
2026-01-10 04:41
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 04:41:46 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Cache-Control: no-cache, private Set-Cookie: XSRF-TOKEN=eyJpdiI6Ilg0OHZaaWxyZHA0bE1lY1NNTGU4V1E9PSIsInZhbHVlIjoiRElyQW1zUTJRdHVlSTI4eFEycjRqQUtiSlM0RDRNemJkL2ZxTk4zanNKZGd1TDUwWlowZ1RzWm1mOThZbEVyK25PU1NNTGovQXZNZ3ByNHl6U2pGQWRkTVJDSnBQMUdNazVoL3RKVnhqM2FjdWMrbzdTeHFTL3paQVhzVENhbC8iLCJtYWMiOiIwYzYzNDJiZGM5NGE3ZTcxY2IxMTU0NzBhZDQ1YTY2NGFkMTVjMDNmMDZiZjZjMzY5OTIzYTJmN2M3ODU2OThmIiwidGFnIjoiIn0%3D; expires=Sat, 10 Jan 2026 06:41:46 GMT; Max-Age=7200; path=/; secure; samesite=lax Set-Cookie: kr_inn_official_website_session=eyJpdiI6Im5sMXRMWGIvK3loc2xuRFM5Zk9RUXc9PSIsInZhbHVlIjoicXJ6dUxta3ZwODFpbDMwbW12R29YQzF2U3pxWmx0RE50b3B2c1NiU1JocUhvemVKM2RJREZJRXM1aG5FS3N0UmxhZXo1RitHUUl2OGk4M0lBajR3YVBWV1I0bjVRUnRCNkNHUGUyOVZhelg2TE9Mdk9RK0ltWitqOGtjWmdhT1giLCJtYWMiOiJiZjA5MDE3ODU0NGE2ZGYyYTU3Njc0ZGIzYmQ0YTlmODMzNjE2MGY3MDUzNTE2OWZhYzE0MTJiNGU5ZWEwMDhhIiwidGFnIjoiIn0%3D; expires=Sat, 10 Jan 2026 06:41:46 GMT; Max-Age=7200; path=/; httponly; samesite=lax Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=2240 Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=e9OWwIXvQijidLVEDmzG7u52dTBJbaiGzds7NqqTBTLHZyOeYutXUSLS%2FtVXs3%2BnefmMjT2EQKF%2FHxKnMrRz5ZQE4BTqBWwU"}]} cf-cache-status: DYNAMIC CF-RAY: 9bb980f1bf81bba4-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · doraemonxapk.net
2026-01-10 04:24
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 04:24:50 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close link: <https://doraemonxapk.net/wp-json/>; rel="https://api.w.org/" link: <https://doraemonxapk.net/wp-json/wp/v2/pages/29>; rel="alternate"; title="JSON"; type="application/json" link: <https://doraemonxapk.net/>; rel=shortlink Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=X7cEaKwyEsQZ4wpEbELVQB%2Fre7DSjpdo7wanBf51hZKT8fpF5nfXZFfvqECM%2Fd129qKa%2BTJJ9X483SzgW7zG8zizaqPs%2BKZLXlHXV5scco4%3D"}]} vary: Accept-Encoding alt-svc: h3=":443"; ma=86400 cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=10,cfOrigin;dur=1486 Server: cloudflare CF-RAY: 9bb968291ad4cefe-SJCFound 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · doraemonxapk.net
2026-01-10 04:24
HTTP/1.1 521 <none> Date: Sat, 10 Jan 2026 04:24:47 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bb968226d1973a1-FRA alt-svc: h3=":8443"; ma=86400 error code: 521
Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · doraemonxapk.net
2026-01-10 04:24
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 04:24:47 GMT Content-Length: 0 Connection: close Location: https://doraemonxapk.net/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6xuAmx%2Fh6IVuZtG12eswbxYJ5GCcwXQJjGHq7X42L3xly%2BPEt7t%2BpcKTu6t6DRxdOpfBwbLQ2wygrV6CPEmgtJV9W7XMYMwAu5BO3riLQ2g%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=13,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bb968228e8141e6-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · amielriss.co.il
2026-01-10 03:02
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 03:02:35 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 cf-edge-cache: no-cache cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=HGkGSlltfj2yisFa02Nz1MtPHCuDCqEzZKuETDQcUvDlrTLEjD1jIK6KBR1%2FOykD439ifH950yxvEUkd3krsP%2Fjp4Yu%2FOAW1IX%2FnrL5J8A%3D%3D"}]} CF-RAY: 9bb8efb88cbafd07-SIN alt-svc: h3=":443"; ma=86400 Page title: One moment, please...Loader <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf8"> <meta name="viewport" content="width=device-width,initial-scale=1.0"> <script> (function(){ setTimeout(function(){ window.location.reload(); }, 5000); }()) </script> <link rel="icon" href="data:,"> <title>One moment, please...</title> <style> .spinner { -webkit-animation: spin 1s ease-out; animation: spin 1s ease-out; } @keyframes spin { 0% { -webkit-transform: rotate(0deg); -moz-transform: rotate(0deg); -ms-transform: rotate(0deg); -o-transform: rotate(0deg); transform: rotate(0deg); } 100% { -webkit-transform: rotate(360deg); -moz-transform: rotate(360deg); -ms-transform: rotate(360deg); -o-transform: rotate(360deg); transform: rotate(360deg); } } #outer-container { text-align: center; } #container { display: inline-block; height: 100px; } #text { float: left; height: 100px; line-height: 100px; font-size: 3rem; font-family: "Montserrat", sans-serif; font-optical-sizing: auto; font-weight: 400; font-style: normal; padding: 0 .4em 0 .2em; letter-spacing: 0.06em; color: rgba(38, 122, 72, 0.86); } @media (min-height: 180px) { #outer-container { margin-top: 0; } } @media (min-height: 360px) { #outer-container { margin-top: 5%; } } @media (min-height: 540px) { #outer-container { margin-top: 10%; } } @media (min-height: 720px) { #outer-container { margin-top: 20%; } } @media (min-width: 1450px) { .throbber { width: 90px; height: 90px; float: left; padding: 5px 0 5px 5px; opacity: 0.86; } #container { display: inline-block; border: 3px solid rgb(38, 122, 72, 0.86); border-radius: 51px; height: 100px; } } </style> </head> <body> <div id="outer-container"> <div id="container"> <div class="throbber"> <svg class="spinner" width="90px" height="90px" viewBox="0 0 47 47" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> <title>Loader</title> <defs> <polygon id="path-1" points="0 0.375484146 0 15.7255695 15.7013244 15.7255695 15.7013244 0.375484146 0 0.375484146"></polygon> </defs> <g id="Page-1" stroke="none" stroke-width="1" fill="none" fill-rule="evenodd"> <g id="Logo" transform="translate(-5.000000, -2.000000)"> <g id="Group-2" transform="translate(5.000000, 2.000000)"> <path d="M22.6150244,4.52988293 C23.1538049,3.06256585 23.6031707,1.59582195 24.231939,0.158882927 C25.1902805,2.22459024 25.8190488,4.43989512 26.7768171,6.47579756 C29.1417195,7.40376098 31.7164024,7.7929439 34.1116829,8.69110244 C28.9623171,11.2663585 23.7229634,13.7510537 18.4836098,16.176139 C19.7709512,12.2545049 21.2382683,8.4217122 22.6150244,4.52988293 L22.6150244,4.52988293 Z" id="Fill-1" fill="#467C45"></path> <path d="M13.7718598,8.94461585 C16.1424939,7.68077439 18.4500793,6.28968902 20.8207134,5.02527439 C18.9240915,10.8412378 16.7747012,16.5614817 14.8465549,22.3774451 C12.7292622,18.3950549 10.895689,14.2544695 8.9044939,10.2090305 C8.27228659,8.85004268 7.5455061,7.55353049 7.00844512,6.16359146 C9.31545732,6.95342073 11.4648476,8.24935976 13.7718598,8.94461585" id="Fill-3" fill="#467C45"></path> <path d="M24.2134256,15.0745049 C29.4602305,12.4969561 34.7379866,9.91940732 40.0157427,7.4031878 C39.1565598,9.61276098 38.1747183,11.7300537 37.2232549,13.9086756 C38.4504134,16.2099561 39.9544134,18.388578 41.0898646,20.7511878 C35.4435598,18.9405415 29.8287793,17.0381878 24.2134256,15.0745049" id="Fill-5" fill="#467C45"></path> <g id="Group-9" transform=Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · nextco.solucionesqa.com
2026-01-10 02:08
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 02:08:47 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close last-modified: Sun, 11 May 2025 02:58:20 GMT Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=24,cfOrigin;dur=112 Cache-Control: max-age=7200 expires: Sat, 10 Jan 2026 04:08:47 GMT vary: Accept-Encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=h2bMhI2toDjwPW2q7s6XqKMbDeq67%2BbDeyFaoQFCxyb8QI98d5THuTTnfDvkUI%2FcIX0OS8B3mB%2FrliBNBl72vMu%2F%2BasteEJ38%2B8c9BAsGz5JKXVmXbJH"}]} x-endurance-cache-level: 2 x-nginx-cache: WordPress Server: cloudflare cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9bb8a0e79ee7a3f1-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · x2.pg.cloudns.nz
2026-01-10 01:57
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 01:57:25 GMT Content-Type: application/json;charset=utf-8 Content-Length: 1897 Connection: close Server-Timing: cfEdge;dur=14,cfOrigin;dur=0 Vary: accept-encoding Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=p95GDetBNjiIGmuxpn8uRibjvntJZx%2Fe7ubdoVsfcNGEUCVbbIF4JjF1PG8sO3PZNCxoR8SQ%2Fh5oeMOFCumxP%2B2Dte92zWPDNq%2F9XKW8M8I%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bb89043de7a939a-EWR alt-svc: h3=":443"; ma=86400 { "httpProtocol": "HTTP/1.1", "requestPriority": "", "edgeRequestKeepAliveStatus": 1, "requestHeaderNames": {}, "clientTcpRtt": 2, "colo": "EWR", "asn": 14061, "asOrganization": "DigitalOcean, LLC", "country": "US", "isEUCountry": false, "city": "North Bergen", "continent": "NA", "region": "New Jersey", "regionCode": "NJ", "timezone": "America/New_York", "longitude": "-74.01208", "latitude": "40.80427", "postalCode": "07047", "metroCode": "501", "tlsVersion": "TLSv1.3", "tlsCipher": "AEAD-AES128-GCM-SHA256", "tlsClientRandom": "dnG/vuxqqNT8eSoZlrQ/mhyVdH8ibXo4pz5/YsxYVLg=", "tlsClientCiphersSha1": "QrF6UadKW3vtNOqdNqbd4frxxxE=", "tlsClientExtensionsSha1": "VmypJ9I6O+wlbe1dI9qycuZ4Ywg=", "tlsClientExtensionsSha1Le": "i+zMiC3iuMzkwC9CUcQV4FcnRkg=", "tlsExportedAuthenticator": { "clientHandshake": "b0bda0a686381002ed04645ccaf675d092e106581b8819fb7c075c3fe8c54214", "serverHandshake": "e3b1f9d161f760769d2a756c2ec4aedc3090712a5857348feba791aa61b797bb", "clientFinished": "03ca8fbfbef2574eb3f84c625703157d6e633a1f30915f5f5470761a50d12046", "serverFinished": "33d61019de012cb686a50ef1f5d993ec22d50900056b1c610a5859679c5b82bb" }, "tlsClientHelloLength": "1499", "tlsClientAuth": { "certPresented": "0", "certVerified": "NONE", "certRevoked": "0", "certIssuerDN": "", "certSubjectDN": "", "certIssuerDNRFC2253": "", "certSubjectDNRFC2253": "", "certIssuerDNLegacy": "", "certSubjectDNLegacy": "", "certSerial": "", "certIssuerSerial": "", "certSKI": "", "certIssuerSKI": "", "certFingerprintSHA1": "", "certFingerprintSHA256": "", "certNotBefore": "", "certNotAfter": "" }, "verifiedBotCategory": "" }Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · ffece.com
2026-01-10 01:32
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 01:32:15 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare x-powered-by: PHP/8.0.30 x-redirect-by: WordPress location: https://www.ffece.com/ cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=13,cfOrigin;dur=322 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=nAakaPK%2F4JGihhC6I8RwvBltcC8L4cjgiUm1VxGsW%2BpOZHW369wXWaFZE6ozvidtMt5IV5pKXPkifeuXyYvOiQcGyRWc8aY%2BKA%3D%3D"}]} CF-RAY: 9bb86b641d7fc47c-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · estaantrag.org
2026-01-10 01:26
HTTP/1.1 301 Moved Permanently Date: Sat, 10 Jan 2026 01:26:29 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Vary: Accept-Encoding,Cookie,User-Agent Expires: Sat, 10 Jan 2026 02:26:29 GMT Cache-Control: max-age=3600 X-Redirect-By: WordPress cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7X4NaPkzZKslyntX8oH6tIBdEsK3MlwJLD%2FvzWhw642ow6%2BP23JD0NDu3P2HMcqottBoRro2AyZBd2MuGwX08uZoVkd6qFfvEkuhBRpt"}]} Location: https://www.estaantrag.org/ Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9bb862ef39e18e2b-AMS alt-svc: h3=":443"; ma=86400Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · neverknow.org
2026-01-10 01:19
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 01:19:16 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=kOaWmQUsMXrpsnTqYYOtfC6y3pafngN7ZWX%2BGhM62dX9qOwi2xm36Qrxpp7kaudTZiKJN3ZOI7%2F76x73qnUhnil8MKN1ef%2FOK4udTq4%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=QgBfPT06jQjERdyANpgQvzDMpKAnTb1NVrB7D9.enX8-1768007956-1.0.1.1-84XmWxQb3eUyVT5mvxD7zStfXiZJkYCbxiWfotXyLZP1JHlUue3hG8AmpjDdTpptpVSUjTAP3YxJ7xWhg1PLNXSdPAwEOGxnVWBTQ89CV8.f0Efgr_2uMOzO5Ld6EGKC; path=/; expires=Sat, 10-Jan-26 01:49:16 GMT; domain=.neverknow.org; HttpOnly; Secure; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 9bb8585efcb2dc56-FRA Page title: Cloudflare <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Cloudflare</title> <link rel="stylesheet" href="style.css" /> </head> <body> <main> <header> <h1><span id="domain-name"></span></h1> <h2> The owner of this domain hasn't put up a website yet. Try visiting again soon. This domain is registered using <a href="https://www.cloudflare.com/products/registrar/" target="_blank" >Cloudflare Registrar. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </h2> </header> <h3>Are you the domain owner?</h3> <section> <p> Log in to the Cloudflare Dashboard to <a href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/" target="_blank" >create a root domain record. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </p> </section> <h3>What is Cloudflare?</h3> <section> <p> Cloudflare is a global cloud provider designed to make everything you connect to the Internet secure, private, fast, and reliable. Our mission is to help build a better Internet. </p> </section> <section class="promotional-cards"> <a href="https://1.1.1.1/" target="_blank"> <section> <h2> Download 1.1.1.1 — the free app that makes your Internet safer. </h2> <p> Protect your traffic and speed up your connection on all your devices. </p> </section> </a> <a href="https://www.cloudflare.com/products/registrar/" target="_blank" > <section> <h2> Register your own domain name for the lowest cost, every time. </h2> <p> Cloudflare Registrar charges wholesale prices, without sneaky markups. </p> </section> </a> </section> <div class="animation_wrapper"> <div class="animation animation_center"></div> <div class="animation animation_left"></div> <div class="animation animation_right"></div> </div> </main> <footer> <div class="footer-border"> <div class="footer-left"> <svg width="80" height="2" fill="none" xmlns="http://www.w3.org/2000/svg" > <mask id="b" style="mask-type: alpha" maskUnits="userSpaceOnUse" x="0" y="0" width="80" height="2" > <path fill="Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · neverknow.org
2026-01-10 01:19
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 01:19:16 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Kp05MFnxH6KfqeZJundvZ5VCrPVJ%2B29Cnf6WejoA6uPYBwyjuv29PF3UL%2BJCZtIvivo2%2FxLBukjUkuAtgEEx7mqPfsJnBUFO%2Bq7yKos%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=sZVsoPRLY2uqfCQyc8Iek0469BiZP74bfwOR4Rdopjo-1768007956-1.0.1.1-4vIK3ALkkAyef7jNJPhl5BLhvkRoXS1GuDNKcglItTsobzV_ZIGbmRwBnTb5d3ViCTYKh4EnZ4w6O350w9Oc4T0nAnwWSJ3ACJVRmdPpfqL7rjYXgkBdnS.gRRu5nIfW; path=/; expires=Sat, 10-Jan-26 01:49:16 GMT; domain=.neverknow.org; HttpOnly Vary: Accept-Encoding Server: cloudflare CF-RAY: 9bb8585eaced35ec-FRA Page title: Cloudflare <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Cloudflare</title> <link rel="stylesheet" href="style.css" /> </head> <body> <main> <header> <h1><span id="domain-name"></span></h1> <h2> The owner of this domain hasn't put up a website yet. Try visiting again soon. This domain is registered using <a href="https://www.cloudflare.com/products/registrar/" target="_blank" >Cloudflare Registrar. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </h2> </header> <h3>Are you the domain owner?</h3> <section> <p> Log in to the Cloudflare Dashboard to <a href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/" target="_blank" >create a root domain record. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </p> </section> <h3>What is Cloudflare?</h3> <section> <p> Cloudflare is a global cloud provider designed to make everything you connect to the Internet secure, private, fast, and reliable. Our mission is to help build a better Internet. </p> </section> <section class="promotional-cards"> <a href="https://1.1.1.1/" target="_blank"> <section> <h2> Download 1.1.1.1 — the free app that makes your Internet safer. </h2> <p> Protect your traffic and speed up your connection on all your devices. </p> </section> </a> <a href="https://www.cloudflare.com/products/registrar/" target="_blank" > <section> <h2> Register your own domain name for the lowest cost, every time. </h2> <p> Cloudflare Registrar charges wholesale prices, without sneaky markups. </p> </section> </a> </section> <div class="animation_wrapper"> <div class="animation animation_center"></div> <div class="animation animation_left"></div> <div class="animation animation_right"></div> </div> </main> <footer> <div class="footer-border"> <div class="footer-left"> <svg width="80" height="2" fill="none" xmlns="http://www.w3.org/2000/svg" > <mask id="b" style="mask-type: alpha" maskUnits="userSpaceOnUse" x="0" y="0" width="80" height="2" > <path fill="Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · neverknow.org
2026-01-10 01:19
HTTP/1.1 200 OK Date: Sat, 10 Jan 2026 01:19:16 GMT Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked Connection: close Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PYvy7bPP7KmEj5Op3BFnuiShxe%2BeDvxM2RDSTom%2Fb4xrTWmPHdyyVjvZRg14yMzo6jNB39m9yuOPKdfnS7GIK0tqaYgnMkcLimA4Ats%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Set-Cookie: __cf_bm=nLlZlBAdxLCjRJ_w_yT3uS29Cx.mUcDFOYpQIIBSUoI-1768007956-1.0.1.1-FVuW4kPGVYwOowGITOCmCuISHnMaGqKdQdFz828DGQpHi8hwcW7KwulMxfaEjDCiQIT25l_JiDWm.S_4_Vx97l5Hib7O.YWMYzxTSfnA1NtG1Z3cZ1rEKTNp1fFjLqnP; path=/; expires=Sat, 10-Jan-26 01:49:16 GMT; domain=.neverknow.org; HttpOnly; Secure; SameSite=None Vary: Accept-Encoding Server: cloudflare CF-RAY: 9bb8585e99a3dbeb-FRA Page title: Cloudflare <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Cloudflare</title> <link rel="stylesheet" href="style.css" /> </head> <body> <main> <header> <h1><span id="domain-name"></span></h1> <h2> The owner of this domain hasn't put up a website yet. Try visiting again soon. This domain is registered using <a href="https://www.cloudflare.com/products/registrar/" target="_blank" >Cloudflare Registrar. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </h2> </header> <h3>Are you the domain owner?</h3> <section> <p> Log in to the Cloudflare Dashboard to <a href="https://developers.cloudflare.com/dns/manage-dns-records/how-to/create-root-domain/" target="_blank" >create a root domain record. <svg width="16" height="16" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg" > <path d="M9.99575 1.53249L10.0042 2.53249L12.783 2.50999L8.6465 6.64649L9.3535 7.35349L13.49 3.21699L13.4675 5.99574L14.4675 6.00424L14.5042 1.49574L9.99575 1.53249Z" fill="currentColor" /> <path d="M12 12H4V3.99999H8.5V2.99999H3.5L3 3.49999V12.5L3.5 13H12.5L13 12.5V7.49999H12V12Z" fill="currentColor" /> </svg> </a> </p> </section> <h3>What is Cloudflare?</h3> <section> <p> Cloudflare is a global cloud provider designed to make everything you connect to the Internet secure, private, fast, and reliable. Our mission is to help build a better Internet. </p> </section> <section class="promotional-cards"> <a href="https://1.1.1.1/" target="_blank"> <section> <h2> Download 1.1.1.1 — the free app that makes your Internet safer. </h2> <p> Protect your traffic and speed up your connection on all your devices. </p> </section> </a> <a href="https://www.cloudflare.com/products/registrar/" target="_blank" > <section> <h2> Register your own domain name for the lowest cost, every time. </h2> <p> Cloudflare Registrar charges wholesale prices, without sneaky markups. </p> </section> </a> </section> <div class="animation_wrapper"> <div class="animation animation_center"></div> <div class="animation animation_left"></div> <div class="animation animation_right"></div> </div> </main> <footer> <div class="footer-border"> <div class="footer-left"> <svg width="80" height="2" fill="none" xmlns="http://www.w3.org/2000/svg" > <mask id="b" style="mask-type: alpha" maskUnits="userSpaceOnUse" x="0" y="0" width="80" height="2" > <path fill="Found 2026-01-10 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · moved-abdominal.homes
2026-01-09 22:14
HTTP/1.1 301 Moved Permanently Date: Fri, 09 Jan 2026 22:14:21 GMT Content-Length: 0 Connection: close Location: https://moved-abdominal.homes/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=S05%2BOmNXXElPpxSZQ1X4b93vpooyjoOpEQkGa1FzYaVGSRbouqNTIBhrZ6N6W%2FsB3Jp90VYByPQu0EB%2FOS6WGRgba2mppEZTYVhu3SjL3l74RqIdFA%3D%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=10,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bb7498088f35e4b-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · bkgckrpts.com
2026-01-09 21:41
HTTP/1.1 403 Forbidden Date: Fri, 09 Jan 2026 21:41:16 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=2,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CAqIkn97HBx0yGH0owpsyPZTIj6SedOSQYLJBuisa56CNLjWip8OKvStFQY7SaSSzt8c1Mr1l0d2xfgvfVAxV0UMVIxC%2BxjS0gTeiD4%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bb7190c4e6fbee1-LHR alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> bkgckrpts.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bb7190c4e6fbee1</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">64.227.32.66</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&&"clFound 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · www.alpayantmen.net
2026-01-09 21:40
HTTP/1.1 522 <none> Date: Fri, 09 Jan 2026 21:40:57 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19704,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bb7181a6bf43a3b-BOM alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · cpanel.alpayantmen.net
2026-01-09 21:40
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 21:40:37 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=t6Jd841DgXHlNA4jZxHzmbkWbQ38mTpQeaSWfbVgwFuVJ1Ft8MTZWzh1DEcxN9AJJ9q3BTErBag70fmv%2F5a9RMNImJdLF735rHW8mB%2B5SRzz0YTbWtI%3D"}]} Vary: Accept-Encoding Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=12,cfOrigin;dur=196 cf-cache-status: DYNAMIC CF-RAY: 9bb718165b71b634-YYZ alt-svc: h3=":443"; ma=86400 <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title></title> <link href="/login/cwp_theme/original/css/bootstrap.min.css" rel="stylesheet"> <link rel="stylesheet" href="/login/cwp_theme/original/font-awesome/css/fontawesome-all.css"> <link href="/login/cwp_theme/original/css/plugins/iCheck/custom.css" rel="stylesheet"> <!-- Toastr style --> <link href="/login/cwp_theme/original/css/plugins/toastr/toastr.min.css" rel="stylesheet"> <!-- Gritter --> <link href="/login/cwp_theme/original/js/plugins/gritter/jquery.gritter.css" rel="stylesheet"> <link href="/login/cwp_theme/original/css/animate.css" rel="stylesheet"> <link href="/login/cwp_theme/original/css/style.css" rel="stylesheet"> <link rel="icon" href="/login/cwp_theme/original/img/ico/favicon.ico" type="image/png"> <style media="screen"> #btn_icon{ display: none; } body, html{ margin: 0px; padding: 0px; } .logged-message{ /* display: flex; height: 100vh; justify-content: center; align-items: center; flex-direction: column; */ display: flex; align-items: center; } .logged-message a{ margin-bottom: 2rem; } .logged-message img{ width: 35rem; } .logged-message-alert{ border-radius: 5px; color: #676a6c; display: flex; flex-direction: column; align-items: center; justify-content: center; padding: 20px; } .logged-message-alert .fa{ font-size: 6rem; } .logged-message-alert h5{ font-size: 2rem; } .logged-message-alert h2{ font-size: 2.5rem; font-weight: bold; } .logged-message-wrapper{ display: none; max-width: 800px; margin: 0 auto; padding: 100px 20px 20px 20px; } </style> </head> <body class="gray-bg"> <div class="loginColumns animated fadeInDown" id="login"> <div class="row"> <div class="col-md-6"> <div class="col-md-12 text-center" style="margin-top: -20px"> <img width="330px" src="/login/cwp_theme/original/img/custom/new_logo_small.png"> </div> <p style="margin-top: 45px"> </p> <p> </p> </div> <div class="col-md-6"> <div class="ibox-content" id="formlogin"> <form class="m-t" role="form" action="#" id="formloginon" method="post"> <div class="form-group"> <input type="text" name="username" max="16" id="username" class="form-control" placeholder="" required="" maxlength="16" autofocus> </div> <div class="form-group"> <input type="password" name="password" id="password" class="form-control" placeholder="" required=""> </div> <div class="form-group"> <div class="row"> <div class="col-lg-4" style="padding-top: 5px"></div> <div class="col-lg-8"> <select class="form-control" id="userLang"> <option value=""></option> <option value="ar"></option> <option value="bg"></option> <option value="cs"></option> <option value="da"></option> <option value="de"></option> <option value="el"></option> <option value="en"></option> <option value="es"></option> <option value="fa"></option>Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · cpanel.alpayantmen.net
2026-01-09 21:40
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 21:40:37 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9l%2BdrPVBQpg4hrVLpojvnWaaRaT4VJjdgnYq59KOmXe%2BHum3Sil%2Bm%2BLb%2BrquQEnhh2R5pD7d3i0gGp%2B73zVeR%2B%2FSibLzCsn2OsPuFaXO8R0Jniyb"}]} Vary: Accept-Encoding cf-cache-status: DYNAMIC CF-RAY: 9bb71814f86bede2-LHR alt-svc: h3=":443"; ma=86400 <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title></title> <link href="/login/cwp_theme/original/css/bootstrap.min.css" rel="stylesheet"> <link rel="stylesheet" href="/login/cwp_theme/original/font-awesome/css/fontawesome-all.css"> <link href="/login/cwp_theme/original/css/plugins/iCheck/custom.css" rel="stylesheet"> <!-- Toastr style --> <link href="/login/cwp_theme/original/css/plugins/toastr/toastr.min.css" rel="stylesheet"> <!-- Gritter --> <link href="/login/cwp_theme/original/js/plugins/gritter/jquery.gritter.css" rel="stylesheet"> <link href="/login/cwp_theme/original/css/animate.css" rel="stylesheet"> <link href="/login/cwp_theme/original/css/style.css" rel="stylesheet"> <link rel="icon" href="/login/cwp_theme/original/img/ico/favicon.ico" type="image/png"> <style media="screen"> #btn_icon{ display: none; } body, html{ margin: 0px; padding: 0px; } .logged-message{ /* display: flex; height: 100vh; justify-content: center; align-items: center; flex-direction: column; */ display: flex; align-items: center; } .logged-message a{ margin-bottom: 2rem; } .logged-message img{ width: 35rem; } .logged-message-alert{ border-radius: 5px; color: #676a6c; display: flex; flex-direction: column; align-items: center; justify-content: center; padding: 20px; } .logged-message-alert .fa{ font-size: 6rem; } .logged-message-alert h5{ font-size: 2rem; } .logged-message-alert h2{ font-size: 2.5rem; font-weight: bold; } .logged-message-wrapper{ display: none; max-width: 800px; margin: 0 auto; padding: 100px 20px 20px 20px; } </style> </head> <body class="gray-bg"> <div class="loginColumns animated fadeInDown" id="login"> <div class="row"> <div class="col-md-6"> <div class="col-md-12 text-center" style="margin-top: -20px"> <img width="330px" src="/login/cwp_theme/original/img/custom/new_logo_small.png"> </div> <p style="margin-top: 45px"> </p> <p> </p> </div> <div class="col-md-6"> <div class="ibox-content" id="formlogin"> <form class="m-t" role="form" action="#" id="formloginon" method="post"> <div class="form-group"> <input type="text" name="username" max="16" id="username" class="form-control" placeholder="" required="" maxlength="16" autofocus> </div> <div class="form-group"> <input type="password" name="password" id="password" class="form-control" placeholder="" required=""> </div> <div class="form-group"> <div class="row"> <div class="col-lg-4" style="padding-top: 5px"></div> <div class="col-lg-8"> <select class="form-control" id="userLang"> <option value=""></option> <option value="ar"></option> <option value="bg"></option> <option value="cs"></option> <option value="da"></option> <option value="de"></option> <option value="el"></option> <option value="en"></option> <option value="es"></option> <option value="fa"></option>Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:443 · ftp.alpayantmen.net
2026-01-09 21:40
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 21:40:37 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Vs2p0MHSVeP2u5jLVSKk3r8zCLMzG8YKosMrLdkxsenfGg0fb%2BNDNvmto%2B1tPWG5ybVL4r0IqxFIK5xV2DY8kUQrl6KmOey4Kh1%2BSC5Fk6ZXFcQ%3D"}]} Vary: Accept-Encoding Last-Modified: Thu, 03 Apr 2025 08:42:55 GMT X-Cache: HIT from Backend Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff cf-cache-status: DYNAMIC CF-RAY: 9bb71813be8de7ba-FRA alt-svc: h3=":443"; ma=86400 Page title: Hesabınız Başarıyla Oluşturuldu | Host İnternet ve Bilişim Hizmetleri <!DOCTYPE html> <html lang="tr"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Hesabınız Başarıyla Oluşturuldu | Host İnternet ve Bilişim Hizmetleri</title> <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet"> <style> body { background-color: #f4f7fc; font-family: Arial, sans-serif; } .container { max-width: 600px; margin-top: 100px; text-align: center; background: #ffffff; padding: 40px; border-radius: 10px; box-shadow: 0 4px 10px rgba(0,0,0,0.05); } .logo { max-width: 200px; margin-bottom: 20px; } .success-icon { font-size: 70px; color: #28a745; } .footer { margin-top: 20px; color: #777; font-size: 14px; } a.btn-primary { background-color: #007bff; border: none; } </style> </head> <body> <div class="container"> <img src="https://host.com.tr/logo.png" alt="Host İnternet Logo" class="logo"> <div class="success-icon">?</div> <h1 class="mt-3">Hesabınız Başarıyla Oluşturuldu!</h1> <p class="mt-3">Host İnternet ve İletişim Teknolojileri Ltd. Şti. ailesine hoş geldiniz. Hesabınız artık aktif ve hizmetlerimize erişebilirsiniz.</p> <a href="https://host.com.tr/giris-yap" class="btn btn-primary btn-lg mt-3">Müşteri Paneline Git</a> <div class="footer mt-4"> Herhangi bir sorunuz varsa lütfen <a href="/cdn-cgi/l/email-protection#b6d2d3c5c2d3ddf6ded9c5c298d5d9db98c2c4"><span class="__cf_email__" data-cfemail="1f7b7a6c6b7a745f77706c6b317c7072316b6d">[email protected]</span></a> adresinden bize ulaşın.<br> <strong>Host İnternet ve İletişim Teknolojileri Ltd. Şti.</strong><br> <small>host.com.tr</small> </div> </div> <script data-cfasync="false" src="/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js"></script></body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · mail.alpayantmen.net
2026-01-09 21:40
HTTP/1.1 522 <none> Date: Fri, 09 Jan 2026 21:40:57 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bb7181b2bb51c73-FRA alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · alpayantmen.net
2026-01-09 21:40
HTTP/1.1 301 Moved Permanently Date: Fri, 09 Jan 2026 21:40:37 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: close Server: cloudflare Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GK2SUh1jRJYNzHyDEnmjxIjSqGUDmUtv%2BXfcJxXA9X%2FGT3266PNnP6nDGFLDBvvi7UhcKsNeTjW4O2d6nvnpqZpFbfDyyY%2FtkGJU4mrZvA%3D%3D"}]} Location: https://alpayantmen.net/ X-Cache: HIT from Backend X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff cf-cache-status: DYNAMIC CF-RAY: 9bb71813fa490ea0-AMS alt-svc: h3=":443"; ma=86400 Page title: 301 Moved Permanently <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="https://alpayantmen.net/">here</a>.</p> </body></html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · pusatkoinwin.com
2026-01-09 16:43
HTTP/1.1 403 Forbidden Date: Fri, 09 Jan 2026 16:43:29 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=15552001; includeSubDomains X-Content-Type-Options: nosniff Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4ioUF3%2FNsbMCorDF%2BFfpIMfNFKuKKmNpRJQ%2BPYpxY5IjiCjpn8YaQkZUg%2FNb4JJnz%2F8U5z3qFmyG1hHb2vhN7afNFG1GpDnk69%2BptrZlkj4%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bb564d44eedd2f6-FRA alt-svc: h3=":8443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> pusatkoinwin.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bb564d44eedd2f6</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">46.101.111.185</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");bFound 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · pusatkoinwin.com
2026-01-09 16:43
HTTP/1.1 403 Forbidden Date: Fri, 09 Jan 2026 16:43:29 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JpFTix1qwjgIKJ1vd86esU8RYDd718EI7unTAq44KFs1W8yZW0nXVTyD2STH5rQ%2FDZ3gw6ZDN0sylScEdECIQ%2Fe9Ii4w9n7%2BN2hIdWLcwes%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server: cloudflare CF-RAY: 9bb564d36f76ac72-YYZ alt-svc: h3=":443"; ma=86400 Page title: Attention Required! | Cloudflare <!DOCTYPE html> <!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]--> <!--[if IE 7]> <html class="no-js ie7 oldie" lang="en-US"> <![endif]--> <!--[if IE 8]> <html class="no-js ie8 oldie" lang="en-US"> <![endif]--> <!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]--> <head> <title>Attention Required! | Cloudflare</title> <meta charset="UTF-8" /> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta http-equiv="X-UA-Compatible" content="IE=Edge" /> <meta name="robots" content="noindex, nofollow" /> <meta name="viewport" content="width=device-width,initial-scale=1" /> <link rel="stylesheet" id="cf_styles-css" href="/cdn-cgi/styles/cf.errors.css" /> <!--[if lt IE 9]><link rel="stylesheet" id='cf_styles-ie-css' href="/cdn-cgi/styles/cf.errors.ie.css" /><![endif]--> <style>body{margin:0;padding:0}</style> <!--[if gte IE 10]><!--> <script> if (!navigator.cookieEnabled) { window.addEventListener('DOMContentLoaded', function () { var cookieEl = document.getElementById('cookie-alert'); cookieEl.style.display = 'block'; }) } </script> <!--<![endif]--> </head> <body> <div id="cf-wrapper"> <div class="cf-alert cf-alert-error cf-cookie-error" id="cookie-alert" data-translate="enable_cookies">Please enable cookies.</div> <div id="cf-error-details" class="cf-error-details-wrapper"> <div class="cf-wrapper cf-header cf-error-overview"> <h1 data-translate="block_headline">Sorry, you have been blocked</h1> <h2 class="cf-subheadline"><span data-translate="unable_to_access">You are unable to access</span> pusatkoinwin.com</h2> </div><!-- /.header --> <div class="cf-section cf-highlight"> <div class="cf-wrapper"> <div class="cf-screenshot-container cf-screenshot-full"> <span class="cf-no-screenshot error"></span> </div> </div> </div><!-- /.captcha-container --> <div class="cf-section cf-wrapper"> <div class="cf-columns two"> <div class="cf-column"> <h2 data-translate="blocked_why_headline">Why have I been blocked?</h2> <p data-translate="blocked_why_detail">This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.</p> </div> <div class="cf-column"> <h2 data-translate="blocked_resolve_headline">What can I do to resolve this?</h2> <p data-translate="blocked_resolve_detail">You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.</p> </div> </div> </div><!-- /.section --> <div class="cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300"> <p class="text-13"> <span class="cf-footer-item sm:block sm:mb-1">Cloudflare Ray ID: <strong class="font-semibold">9bb564d36f76ac72</strong></span> <span class="cf-footer-separator sm:hidden">•</span> <span id="cf-footer-item-ip" class="cf-footer-item hidden sm:block sm:mb-1"> Your IP: <button type="button" id="cf-footer-ip-reveal" class="cf-footer-ip-reveal-btn">Click to reveal</button> <span class="hidden" id="cf-footer-ip">167.99.182.39</span> <span class="cf-footer-separator sm:hidden">•</span> </span> <span class="cf-footer-item sm:block sm:mb-1"><span>Performance & security by</span> <a rel="noopener noreferrer" href="https://www.cloudflare.com/5xx-error-landing" id="brand_link" target="_blank">Cloudflare</a></span> </p> <script>(function(){function d(){var b=a.getElementById("cf-footer-item-ip"),c=a.getElementById("cf-footer-ip-reveal");b&Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · 73x3.top
2026-01-09 14:30
HTTP/1.1 522 <none> Date: Fri, 09 Jan 2026 14:30:23 GMT Content-Type: text/plain; charset=UTF-8 Content-Length: 15 Connection: close Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Referrer-Policy: same-origin Server-Timing: cfEdge;dur=19280,cfOrigin;dur=0 X-Frame-Options: SAMEORIGIN Server: cloudflare CF-RAY: 9bb4a161cb9efe23-SIN alt-svc: h3=":8443"; ma=86400 error code: 522
Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:8443 · deepmarketio.com
2026-01-09 14:15
HTTP/1.1 301 Moved Permanently Date: Fri, 09 Jan 2026 14:15:25 GMT Content-Length: 0 Connection: close Location: https://gooptimedai.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FhVC4lIrAm5NhL3xbfhpQGUJRjAA%2BUYjh6dSU9M62SHJSWy5vcmyukPuNwnvffHRm%2BjJSlpNcmtjaHWXj6gQJ4okM0GxL6RHlZrGnZrLFwc%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=5,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bb48bee1a36440b-EWR alt-svc: h3=":8443"; ma=86400Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.46.114:80 · deepmarketio.com
2026-01-09 14:15
HTTP/1.1 301 Moved Permanently Date: Fri, 09 Jan 2026 14:15:25 GMT Content-Length: 0 Connection: close Location: https://gooptimedai.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ddLb%2BSHEswiX1M0RixbwKtHnMpxAEjKV7vGlgAOthb%2BvxXKrH6y586XZ6faVXtzFYZXmHtwMR6Cnxg9fgIQbY4flHJWQ2fTiXWfUZLt2qfY%3D"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfEdge;dur=10,cfOrigin;dur=0 Server: cloudflare CF-RAY: 9bb48bee19a78bf1-YYZ alt-svc: h3=":443"; ma=86400Found 2026-01-09 by HttpPluginCreate report
chik-road-be.online*.chik-road-be.online
sonamhomestayhanle.in*.sonamhomestayhanle.in
trackerad.com*.trackerad.com
danceanimated.shop*.danceanimated.shop
jktradisibet.today*.jktradisibet.today
vip-primeinsight.click*.vip-primeinsight.click
invitmu.com*.invitmu.com
dil-hope.com*.dil-hope.com
porno80.store*.porno80.store
atlanticpizzaauthentic.com*.atlanticpizzaauthentic.com
jirisafka.cz*.jirisafka.cz
scambora.com*.scambora.com
omm.co.com*.omm.co.com
gacor77.website*.gacor77.website
wenzizone.com*.wenzizone.com
wpthms.com*.wpthms.com
mp3indirdur.info*.mp3indirdur.info
plinkogame.pk*.plinkogame.pk
mssvc.com
yy544.com*.yy544.com
tabienforcash.com*.tabienforcash.com
vidstream.dev*.vidstream.dev
tryideajamteam.company*.tryideajamteam.company
telegram-premium-prize-drop.top*.telegram-premium-prize-drop.top
theppappointment.cfd*.theppappointment.cfd
www.bmi-calculator.co.uk
trvbet2.com*.trvbet2.com
jungletrims.co.uk*.jungletrims.co.uk
clubok.it.com*.clubok.it.com
gwln.org*.gwln.org
echochamber.cfd*.echochamber.cfd
rideourunable.blog
hermesbet.net*.hermesbet.net
presilience.info*.presilience.info
thebrigky12.co.uk*.thebrigky12.co.uk
oneonlinetoken.com*.oneonlinetoken.com
casinoneon54.com*.casinoneon54.com
desktoplesbians.net*.desktoplesbians.net
rudyah.com*.rudyah.com
smilesontrindledentalcare.net*.smilesontrindledentalcare.net
ppacademy.co.uk*.ppacademy.co.uk
walt-music.co.uk*.walt-music.co.uk
adverge.site*.adverge.site
trystrategicsite.com*.trystrategicsite.com
es-topplinko-x1000.site*.es-topplinko-x1000.site
jmma.cn*.jmma.cn
www.papilo99zeus.com
reahl.org*.reahl.org
myrtle-beach-roofing.com*.myrtle-beach-roofing.com
lacleducoachingholistique.fr*.lacleducoachingholistique.fr
havsgaardens.dk*.havsgaardens.dk
tiempomundo.es*.tiempomundo.es
sonar-leakdetection.com*.sonar-leakdetection.com
hobstowingsupplies.com*.hobstowingsupplies.com
papilo99zeus.com
soargrowplan.com*.soargrowplan.com
fu9060.com*.fu9060.com
2q591200.workers.dev*.2q591200.workers.dev
doraemonxapk.net*.doraemonxapk.net
globalideas.us*.globalideas.us
sgoc1.com*.sgoc1.com
www.silverandco.co.nz
pg.cloudns.nz*.pg.cloudns.nz
mariebacal.com*.mariebacal.com
cmdg.com.cn*.cmdg.com.cn
fdefgr.com*.fdefgr.com
metalicoolean.com*.metalicoolean.com
thunderrider498.shop*.thunderrider498.shop
casinoonlineitaly.com*.casinoonlineitaly.com
createonweb.com*.createonweb.com
mustangaanbiedingen.com*.mustangaanbiedingen.com
obrabodaroleta.com*.obrabodaroleta.com
ffece.com*.ffece.com
skylease.homes*.skylease.homes
walkinthepark.ie*.walkinthepark.ie
rubuaalkaram.com*.rubuaalkaram.com
solucionesqa.com*.solucionesqa.com
superwin365.bet*.superwin365.bet
lucaspires.com.br*.lucaspires.com.br
655336.cn*.655336.cn
modoguardian.cl*.modoguardian.cl
mabicyclette.ca
bestraingiftco.shop*.bestraingiftco.shop
biurowiec-archetura.pl*.biurowiec-archetura.pl
buscatufondo.com*.buscatufondo.com
opo.dk*.opo.dk
openiv.top
maritimepestcontrol.ca*.maritimepestcontrol.ca
computerize.eu.org*.computerize.eu.org
towncarseattle.com*.towncarseattle.com
shopsancap.com*.shopsancap.com
esenyamiss.com*.esenyamiss.com
predikto.pl
customvitaminbox.com*.customvitaminbox.com
www.unminifydev.com
zzz9.dpdns.org*.zzz9.dpdns.org
zzz9.dpdns.org
overinspect.com.br*.overinspect.com.br
rideourunable.blog
textlaneebookfilingportal.com*.textlaneebookfilingportal.com
aupoildange.com*.aupoildange.com
pacoteio.click*.pacoteio.click
trvbet2.com*.trvbet2.com
mythicmind.today*.mythicmind.today
myhobby.co.il*.myhobby.co.il
corporatear.info*.corporatear.info
486405578.xyz*.486405578.xyz
visitsutherland.org*.visitsutherland.org
wajibmaindijangkau.xyz*.wajibmaindijangkau.xyz
h-luckydoor.vip*.h-luckydoor.vip
digitalsixpenny.shop*.digitalsixpenny.shop
re-up.app*.re-up.app
lasvegaskangen.com*.lasvegaskangen.com
mecuv-lopu.site*.mecuv-lopu.site
reindeergames-themovie.com*.reindeergames-themovie.com
mengnan1944850.buzz*.mengnan1944850.buzz
modelsai.top*.modelsai.top
3hu8.cn*.3hu8.cn
laminaria.com.cn*.laminaria.com.cn
i0995.cn*.i0995.cn
greetkiosks.com*.greetkiosks.com
hellogenerator.co*.hellogenerator.co
techalliance.com.br*.techalliance.com.br
nhacai7ball.com*.nhacai7ball.com
javvajisconstructions.com*.javvajisconstructions.com
roomconf0818.world*.roomconf0818.world
nihon.sk*.nihon.sk
granat88bro.store
etw2023.org*.etw2023.org
kuponcum286.com*.kuponcum286.com
electric-dice-download.top*.electric-dice-download.top
deloreanlounge.com*.deloreanlounge.com
85ffb.com*.85ffb.com
mic-daycare.com
vpshosser.site*.vpshosser.site
james-5334.workers.dev*.james-5334.workers.dev
aazhu.com*.aazhu.com
globalromancenet.biz*.globalromancenet.biz
669betai.com*.669betai.com
remembering-together.com*.remembering-together.com
geeqdata.info*.geeqdata.info
globalideas.us*.globalideas.us
despreviitor.ro*.despreviitor.ro
wccbet.vip*.wccbet.vip
suffogamca.top*.suffogamca.top
xzsoftpark.com*.xzsoftpark.com
davapro.com*.davapro.com
infs.top*.infs.top
ahoracomarca.com.ar*.ahoracomarca.com.ar
whatssex-login.com*.whatssex-login.com
cmdg.com.cn*.cmdg.com.cn
kea27.at*.kea27.at
hoteldejeunesse.com*.hoteldejeunesse.com
lakeshorewoodsal-mc.com*.lakeshorewoodsal-mc.com
relmnetwork.com*.relmnetwork.com
nextmovefitness.lat*.nextmovefitness.lat
kamagrajelturkiye.com*.kamagrajelturkiye.com
ganemos.ai*.ganemos.ai
greece-play.site*.greece-play.site
krinn.in*.krinn.in
neverknow.org
bkgckrpts.com*.bkgckrpts.com
alpayantmen.net*.alpayantmen.net
pusatkoinwin.com*.pusatkoinwin.com
73x3.top*.73x3.top
deepmarketio.com*.deepmarketio.com
Domain summary
bayer-application.fi-careers.online 88 jktradisibet.today 20 wa0k.xyz 9 k0dy.xyz 4 mail.textlaneebookfilingportal.com 5 lotteryvn1m.gpkgaming.com 3 lotteryvn1web.gpkgaming.com 3 verlibebalolpou.gq 2 tranhusmee.tk 2 dogtredelingberdisp.cf 2 www.textlaneebookfilingportal.com 4 thyokranparvacouve.tk 2 squaroganpencountdi.tk 2 neyvielapstenwhitttrin.tk 2 havsgaardens.dk 3 catangrontoryptha.tk 2 sourbocortuinaso.ml 2 ticquibram.tk 2 theoheadfere.tk 2 nitkaraluboburn.ga 2 lemosimobiliaria.com.br 2 vioceco.tk 2 awimskilidez.gq 2 prodinraitharedes.tk 2 saitrouvbest.cf 2 litthopdentritafond.ml 2 trasdidetefearen.ga 2 masupa.tk 2 ciaresobudria.ga 2 hnmlfny.com 2 lorfuncpor.cf 1 eararsubxohighzal.tk 1 asitjemani.cf 1 kapuweporta.tk 1 setelodneu.tk 1 nickspirtemarste.ga 1 gnoseaserinnewhu.ga 1 ruxypm.xyz 1 plumelre.ml 1 sighsacylithymax.ml 1 emdasubfkosta.tk 1 ricacu.tk 1 zapadvesyscomtnea.ga 1 www.brunosleep.co.uk 1 alexaparjashand.tk 1 surppocakellca.gq 1 barwatchsisfbankbreakcie.cf 1 exhasolatet.ml 1 liorenithyabulda.ga 1 mangjudfevicmicir.cf 1 dromiptillantdentrect.tk 1 pracalboyqua.tk 1 enethpomta.tk 1 tripisreerbuckdi.tk 1 rticherquocep.tk 1 pierodesanctis.com 1 vabekingdawpo.tk 1 renryorowoopa.gq 1 lotteryvn1ad.gpkgaming.com 1 kaidogtketsvingregsimp.tk 1 www.lavinotheque.com.au 1 ylcdq.com 1 textlaneebookfilingportal.com 4 spicyvideos.ai 1 wajibmaindijangkau.xyz 2 aazhu.com 2 globalideas.us 5 sgoc1.com 2 www.silverandco.co.nz 0 x2.2q591200.workers.dev 2 c.pg.cloudns.nz 0 mariebacal.com 2 www.mariebacal.com 2 www.clubok.it.com 0 cmdg.com.cn 2 fdefgr.com 0 metalicoolean.com 2 thunderrider498.shop 5 www.casinoonlineitaly.com 0 elementor.createonweb.com 0 mustangaanbiedingen.com 2 www.mustangaanbiedingen.com 2 www.obrabodaroleta.com 0 ffece.com 1 estaantrag.org 1 skylease.homes 1 www.walkinthepark.ie 0 rubuaalkaram.com 0 walkinthepark.ie 0 seliware.net 0 thruelove.solucionesqa.com 0 superwin365.bet 2 lucaspires.com.br 2 en.arabdia.com 0 655336.cn 2 melilef-mingako.com 0 control.modoguardian.cl 1 mabicyclette.ca 3 bestraingiftco.shop 0 nextco.solucionesqa.com 4 biurowiec-archetura.pl 0 buscatufondo.com 2 opo.dk 2 openiv.top 2 maritimepestcontrol.ca 2 computerize.eu.org 1 towncarseattle.com 2 shopsancap.com 2 esenyamiss.com 2 predikto.pl 2 www.customvitaminbox.com 2 www.unminifydev.com 2 a.zzz9.dpdns.org 2 zzz9.dpdns.org 2 app.overinspect.com.br 2 auth.overinspect.com.br 2 overinspect.com.br 2 services.overinspect.com.br 2 insp.overinspect.com.br 2 www.overinspect.com.br 2 api.overinspect.com.br 2 obs.overinspect.com.br 2 otlp.overinspect.com.br 2 hobstowingsupplies.com 2 aupoildange.com 2 www.aupoildange.com 2 pacoteio.click 2 goochlanechurchofchrist.org 2 mythicmind.today 2 myhobby.co.il 2 corporatear.info 2 www.nextco.solucionesqa.com 2 486405578.xyz 2 visitsutherland.org 2 c.2q591200.workers.dev 2 h-luckydoor.vip 2 digitalsixpenny.shop 2 samoyapi.com 2 api.re-up.app 2 lasvegaskangen.com 2 mecuv-lopu.site 2 reindeergames-themovie.com 2 www.reindeergames-themovie.com 2 mengnan1944850.buzz 2 modelsai.top 2 3hu8.cn 2 laminaria.com.cn 2 i0995.cn 2 greetkiosks.com 2 n8n.hellogenerator.co 1 techalliance.com.br 2 nhacai7ball.com 2 javvajisconstructions.com 2 roomconf0818.world 2 nihon.sk 2 granat88bro.store 3 etw2023.org 2 www.felizganador.solucionesqa.com 2 felizganador.solucionesqa.com 2 kuponcum286.com 2 electric-dice-download.top 2 deloreanlounge.com 2 85ffb.com 2 mic-daycare.com 2 vpshosser.site 1 charlotte3397moon.james-5334.workers.dev 2 obrabodaroleta.com 2 doraemonxapk.net 3 globalromancenet.biz 2 669betai.com 2 remembering-together.com 2 geeqdata.info 2 mail.globalideas.us 2 smtp.globalideas.us 2 www.globalideas.us 2 pop.globalideas.us 2 ftp.globalideas.us 2 despreviitor.ro 1 wccbet.vip 2 suffogamca.top 2 xzsoftpark.com 2 davapro.com 2 z2yx.infs.top 2 z1yx.infs.top 2 ahoracomarca.com.ar 2 whatssex-login.com 0 kea27.at 2 hoteldejeunesse.com 2 www.hoteldejeunesse.com 2 lakeshorewoodsal-mc.com 2 relmnetwork.com 2 ios-root.apiversionbak.workers.dev 0 nextmovefitness.lat 2 rhinsuranceagency.com 0 bad-boy96.biz 0 kamagrajelturkiye.com 2 ganemos.ai 2 greece-play.site 2 krinn.in 1 amielriss.co.il 0 neverknow.org 2 moved-abdominal.homes 0 bkgckrpts.com 0 www.alpayantmen.net 0 cpanel.alpayantmen.net 1 ftp.alpayantmen.net 0 mail.alpayantmen.net 0 alpayantmen.net 0 pusatkoinwin.com 1 73x3.top 0 deepmarketio.com 1 fu9060.com 5 www.soargrowplan.com 2 papilo99zeus.com 2 www.hobstowingsupplies.com 2 sonar-leakdetection.com 3 tiempomundo.es 2 x2.pg.cloudns.nz 3 lacleducoachingholistique.fr 2 myrtle-beach-roofing.com 2 reahl.org 2 www.papilo99zeus.com 2 jmma.cn 5 es-topplinko-x1000.site 2 trystrategicsite.com 2 adverge.site 2 portal.ppacademy.co.uk 2 walt-music.co.uk 2 audition.ppacademy.co.uk 3 smilesontrindledentalcare.net 2 rudyah.com 2 desktoplesbians.net 2 casinoneon54.com 2 oneonlinetoken.com 2 thebrigky12.co.uk 2 presilience.info 2 hermesbet.net 3 rideourunable.blog 5 echochamber.cfd 2 gwln.org 2 clubok.it.com 1 jungletrims.co.uk 5 www.jungletrims.co.uk 2 trvbet2.com 5 www.bmi-calculator.co.uk 2 theppappointment.cfd 2 telegram-premium-prize-drop.top 2 tryideajamteam.company 2 vidstream.dev 2 tabienforcash.com 2 yy544.com 2 mssvc.com 2 plinkogame.pk 2 mp3indirdur.info 2 wpthms.com 2 wenzizone.com 2 gacor77.website 2 omm.co.com 2 scambora.com 6 jirisafka.cz 3 www.jirisafka.cz 3 atlanticpizzaauthentic.com 2 porno80.store 2 dil-hope.com 2 invitmu.com 2 vip-primeinsight.click 2 danceanimated.shop 2 trackerad.com 2 sonamhomestayhanle.in 2 chik-road-be.online 2