LeakIX - Host 104.21.46.151

Host 104.21.46.151

United States

CLOUDFLARENET

Software information

CloudPanel 2.5.3

tcp/8443

cloudflare

tcp/443 tcp/80 tcp/8443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: test.communicatea.com
Port: 443
URL: https://test.communicatea.com

First seen 2025-10-10 04:22
Last seen 2026-02-09 22:31
Open for 122 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6d
```
Found 1 files trough .DS_Store spidering:

/img
```
  Found on 2026-02-09 22:31
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: lcloud-za.app
Port: 80
URL: http://lcloud-za.app

First seen 2025-11-17 13:50
Last seen 2026-02-09 18:46
Open for 84 days

Severity: high
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7e65830ea7dd21fbef5119088360316c5

Found 128 files trough .DS_Store spidering:

/.well-known
/__MACOSX
/__MACOSX/prokit 2022$
/__MACOSX/prokit 2022$/default
/__MACOSX/prokit 2022$/default/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/ios-original
/__MACOSX/prokit 2022$/default/ios-original
/__MACOSX/prokit 2022$/default/ios-original/storage
/__MACOSX/prokit 2022$/default/ios-original/vendor
/__MACOSX/unknown
/__MACOSX/unknown/.well-known
/__MACOSX/unknown/__MACOSX
/__MACOSX/unknown/assets
/__MACOSX/unknown/css
/__MACOSX/unknown/firstPage
/__MACOSX/unknown/img
/__MACOSX/unknown/ios-original
/__MACOSX/unknown/ios-original/storage
/__MACOSX/unknown/ios-original/vendor
/__MACOSX/unknown/js
/__MACOSX/unknown/vendor
/assets
/assets/2025
/assets/2025/2.main.css
/assets/2025/2.main.js
/assets/2025/6.main.css
/assets/2025/6.main.js
/assets/2025/app-sk7.css
/assets/2025/app.js
/assets/2025/authService.latest.min.js
/assets/2025/button1.png
/assets/2025/button2.png
/assets/2025/common-header.js
/assets/2025/fonts
/assets/2025/format-phonenumber.js
/assets/2025/home-e18339bb86233274f6d5.js
/assets/2025/home-f1aa2eb555bb6614489a.css
/assets/2025/icloud-loginpage.zip
/assets/2025/index.html
/assets/2025/init-app.js
/assets/2025/initBootData.js
/assets/2025/initLocalizationStrings.js
/assets/2025/main.css
/assets/2025/main.js
/assets/2025/signin.html
/assets/2025/spinner.png
/assets/__MACOSX
/assets/appleid
/assets/applesupport
/assets/appletv
/assets/byteitune
/assets/f2025
/assets/faceid
/assets/favicon
/assets/favicon-32x32.png
/assets/find_blur
/assets/find_blur/Components
/assets/find_blur/Components/Fonts
/assets/find_blur/Components/Frames
/assets/find_blur/Components/Media
/assets/find_blur/Components/Scripts
/assets/find_blur/Components/Styles
/assets/find_blur/desktop.php
/assets/find_blur/index.php
/assets/find_blur/mobile.php
/assets/findmy2025
/assets/fmi
/assets/fmi_v3
/assets/icloud
/assets/icloud-photos
/assets/index.html
/assets/itunes
/assets/map
/assets/map_popup_v2
/assets/modal.css
/assets/new
/assets/newtools
/assets/newupdate
/assets/p0
/assets/pages
/assets/passcode
/assets/password
/assets/photos
/assets/photos.png
/assets/privacy-new
/assets/privacy-new/metricss
/assets/privacy-new/privacy
/assets/privacy-new/privacy/control
/assets/privacy-new/privacy/features
/assets/privacy-new/privacy/indexxxx.html
/assets/privacy-new/privacy/labels
/assets/privacy-new/v
/assets/privacy-new/v/privacy
/assets/privacy-new/v/privacy/labels
/assets/privacy-new/v/privacy/w
/assets/privacy-new/v/privacy/w/built
/assets/privacy-new/v/privacy/w/images
/assets/privacy-new/v/privacy/w/images/overview
/assets/reset_2025
/assets/robots.txt
/assets/signin
/assets/signin/images
/assets/signin/index.html
/assets/signin/robots.txt
/assets/sim_card
/assets/sim_card/alpha.php
/assets/sim_card/assets
/assets/sim_card/code.php
/assets/sim_card/desktop_alpha.php
/assets/sim_card/desktop_code.php
/assets/sim_card/desktop_signin.php
/assets/sim_card/favicon.ico
/assets/sim_card/index.html
/assets/sim_card/languages
/assets/sim_card/mobile_alpha.php
/assets/sim_card/mobile_code.php
/assets/sim_card/mobile_signin.php
/assets/sim_card/passcode_key
/assets/sim_card/script
/assets/sim_card/signin.php
/assets/system
/assets/system/icloud.com
/assets/unauthorised
/assets/vuejs.js
/build
/cgi-bin

Found on 2026-02-09 18:46

Severity: high
Fingerprint: 5f32cf5d6962f09c2f1697202f169720eb91b48d51634323c9cd5de90c7a86c2

Found 116 files trough .DS_Store spidering:

/.well-known
/__MACOSX
/__MACOSX/prokit 2022$
/__MACOSX/prokit 2022$/default
/__MACOSX/prokit 2022$/default/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/ios-original
/__MACOSX/prokit 2022$/default/ios-original
/__MACOSX/prokit 2022$/default/ios-original/storage
/__MACOSX/prokit 2022$/default/ios-original/vendor
/__MACOSX/unknown
/__MACOSX/unknown/.well-known
/__MACOSX/unknown/__MACOSX
/__MACOSX/unknown/assets
/__MACOSX/unknown/css
/__MACOSX/unknown/firstPage
/__MACOSX/unknown/img
/__MACOSX/unknown/ios-original
/__MACOSX/unknown/ios-original/storage
/__MACOSX/unknown/ios-original/vendor
/__MACOSX/unknown/js
/__MACOSX/unknown/vendor
/assets
/assets/2025
/assets/2025/2.main.css
/assets/2025/2.main.js
/assets/2025/6.main.css
/assets/2025/6.main.js
/assets/2025/app-sk7.css
/assets/2025/app.js
/assets/2025/authService.latest.min.js
/assets/2025/button1.png
/assets/2025/button2.png
/assets/2025/common-header.js
/assets/2025/fonts
/assets/2025/format-phonenumber.js
/assets/2025/home-e18339bb86233274f6d5.js
/assets/2025/home-f1aa2eb555bb6614489a.css
/assets/2025/icloud-loginpage.zip
/assets/2025/index.html
/assets/2025/init-app.js
/assets/2025/initBootData.js
/assets/2025/initLocalizationStrings.js
/assets/2025/main.css
/assets/2025/main.js
/assets/2025/signin.html
/assets/2025/spinner.png
/assets/__MACOSX
/assets/appleid
/assets/applesupport
/assets/appletv
/assets/byteitune
/assets/f2025
/assets/faceid
/assets/favicon
/assets/favicon-32x32.png
/assets/find_blur
/assets/find_blur/Components
/assets/find_blur/Components/Fonts
/assets/find_blur/Components/Frames
/assets/find_blur/Components/Media
/assets/find_blur/Components/Scripts
/assets/find_blur/Components/Styles
/assets/find_blur/desktop.php
/assets/find_blur/index.php
/assets/find_blur/mobile.php
/assets/findmy2025
/assets/fmi
/assets/fmi_v3
/assets/icloud
/assets/icloud-photos
/assets/index.html
/assets/itunes
/assets/map
/assets/map_popup_v2
/assets/modal.css
/assets/new
/assets/newtools
/assets/newupdate
/assets/p0
/assets/pages
/assets/passcode
/assets/password
/assets/photos
/assets/photos.png
/assets/privacy-new
/assets/privacy-new/metricss
/assets/privacy-new/privacy
/assets/privacy-new/privacy/control
/assets/privacy-new/privacy/features
/assets/privacy-new/privacy/indexxxx.html
/assets/privacy-new/privacy/labels
/assets/privacy-new/v
/assets/privacy-new/v/privacy
/assets/privacy-new/v/privacy/labels
/assets/privacy-new/v/privacy/w
/assets/privacy-new/v/privacy/w/built
/assets/privacy-new/v/privacy/w/images
/assets/reset_2025
/assets/robots.txt
/assets/signin
/assets/sim_card
/assets/system
/assets/unauthorised
/assets/vuejs.js
/build
/cgi-bin
/css
/cssee
/firstPage
/img
/includes
/js
/temp_videos
/vendor

Found on 2026-01-02 10:26

Severity: high
Fingerprint: 5f32cf5d6962f09c47a1e7ef47a1e7efef3527b245c2c876dfd251c07d815dfe

Found 120 files trough .DS_Store spidering:

/.well-known
/__MACOSX
/__MACOSX/prokit 2022$
/__MACOSX/prokit 2022$/default
/__MACOSX/prokit 2022$/default/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/ios-original
/__MACOSX/prokit 2022$/default/ios-original
/__MACOSX/prokit 2022$/default/ios-original/storage
/__MACOSX/prokit 2022$/default/ios-original/vendor
/__MACOSX/unknown
/__MACOSX/unknown/.well-known
/__MACOSX/unknown/__MACOSX
/__MACOSX/unknown/assets
/__MACOSX/unknown/css
/__MACOSX/unknown/firstPage
/__MACOSX/unknown/img
/__MACOSX/unknown/ios-original
/__MACOSX/unknown/ios-original/storage
/__MACOSX/unknown/ios-original/vendor
/__MACOSX/unknown/js
/__MACOSX/unknown/vendor
/assets
/assets/2025
/assets/2025/2.main.css
/assets/2025/2.main.js
/assets/2025/6.main.css
/assets/2025/6.main.js
/assets/2025/app-sk7.css
/assets/2025/app.js
/assets/2025/authService.latest.min.js
/assets/2025/button1.png
/assets/2025/button2.png
/assets/2025/common-header.js
/assets/2025/fonts
/assets/2025/format-phonenumber.js
/assets/2025/home-e18339bb86233274f6d5.js
/assets/2025/home-f1aa2eb555bb6614489a.css
/assets/2025/icloud-loginpage.zip
/assets/2025/index.html
/assets/2025/init-app.js
/assets/2025/initBootData.js
/assets/2025/initLocalizationStrings.js
/assets/2025/main.css
/assets/2025/main.js
/assets/2025/signin.html
/assets/2025/spinner.png
/assets/__MACOSX
/assets/appleid
/assets/applesupport
/assets/appletv
/assets/byteitune
/assets/f2025
/assets/faceid
/assets/favicon
/assets/favicon-32x32.png
/assets/find_blur
/assets/find_blur/Components
/assets/find_blur/Components/Fonts
/assets/find_blur/Components/Frames
/assets/find_blur/Components/Media
/assets/find_blur/Components/Scripts
/assets/find_blur/Components/Styles
/assets/find_blur/desktop.php
/assets/find_blur/index.php
/assets/find_blur/mobile.php
/assets/findmy2025
/assets/fmi
/assets/fmi_v3
/assets/icloud
/assets/icloud-photos
/assets/index.html
/assets/itunes
/assets/map
/assets/map_popup_v2
/assets/modal.css
/assets/new
/assets/newtools
/assets/newupdate
/assets/p0
/assets/pages
/assets/passcode
/assets/password
/assets/photos
/assets/photos.png
/assets/privacy-new
/assets/privacy-new/metricss
/assets/privacy-new/privacy
/assets/privacy-new/privacy/control
/assets/privacy-new/privacy/features
/assets/privacy-new/privacy/indexxxx.html
/assets/privacy-new/privacy/labels
/assets/privacy-new/v
/assets/privacy-new/v/privacy
/assets/privacy-new/v/privacy/labels
/assets/privacy-new/v/privacy/w
/assets/privacy-new/v/privacy/w/built
/assets/privacy-new/v/privacy/w/images
/assets/privacy-new/v/privacy/w/images/overview
/assets/reset_2025
/assets/robots.txt
/assets/signin
/assets/signin/images
/assets/signin/index.html
/assets/signin/robots.txt
/assets/sim_card
/assets/system
/assets/unauthorised
/assets/vuejs.js
/build
/cgi-bin
/css
/cssee
/firstPage
/img
/includes
/js
/temp_videos
/vendor

Found on 2026-01-02 10:26

Severity: high
Fingerprint: 5f32cf5d6962f09c88c2190688c21906ad1671138759a9f5e0870aa785687e0a

Found 107 files trough .DS_Store spidering:

/.well-known
/__MACOSX
/__MACOSX/prokit 2022$
/__MACOSX/prokit 2022$/default
/__MACOSX/prokit 2022$/default/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/ios-original
/__MACOSX/prokit 2022$/default/ios-original
/__MACOSX/prokit 2022$/default/ios-original/storage
/__MACOSX/prokit 2022$/default/ios-original/vendor
/__MACOSX/unknown
/__MACOSX/unknown/.well-known
/__MACOSX/unknown/__MACOSX
/__MACOSX/unknown/assets
/__MACOSX/unknown/css
/__MACOSX/unknown/firstPage
/__MACOSX/unknown/img
/__MACOSX/unknown/ios-original
/__MACOSX/unknown/ios-original/storage
/__MACOSX/unknown/ios-original/vendor
/__MACOSX/unknown/js
/__MACOSX/unknown/vendor
/assets
/assets/2025
/assets/2025/2.main.css
/assets/2025/2.main.js
/assets/2025/6.main.css
/assets/2025/6.main.js
/assets/2025/app-sk7.css
/assets/2025/app.js
/assets/2025/authService.latest.min.js
/assets/2025/button1.png
/assets/2025/button2.png
/assets/2025/common-header.js
/assets/2025/fonts
/assets/2025/format-phonenumber.js
/assets/2025/home-e18339bb86233274f6d5.js
/assets/2025/home-f1aa2eb555bb6614489a.css
/assets/2025/icloud-loginpage.zip
/assets/2025/index.html
/assets/2025/init-app.js
/assets/2025/initBootData.js
/assets/2025/initLocalizationStrings.js
/assets/2025/main.css
/assets/2025/main.js
/assets/2025/signin.html
/assets/2025/spinner.png
/assets/__MACOSX
/assets/appleid
/assets/applesupport
/assets/appletv
/assets/byteitune
/assets/f2025
/assets/faceid
/assets/favicon
/assets/favicon-32x32.png
/assets/find_blur
/assets/find_blur/Components
/assets/find_blur/Components/Fonts
/assets/find_blur/Components/Frames
/assets/find_blur/Components/Media
/assets/find_blur/Components/Scripts
/assets/find_blur/Components/Styles
/assets/find_blur/desktop.php
/assets/find_blur/index.php
/assets/find_blur/mobile.php
/assets/findmy2025
/assets/fmi
/assets/fmi_v3
/assets/icloud
/assets/icloud-photos
/assets/index.html
/assets/itunes
/assets/map
/assets/map_popup_v2
/assets/modal.css
/assets/new
/assets/newtools
/assets/newupdate
/assets/p0
/assets/pages
/assets/passcode
/assets/password
/assets/photos
/assets/photos.png
/assets/privacy-new
/assets/privacy-new/metricss
/assets/privacy-new/privacy
/assets/privacy-new/v
/assets/reset_2025
/assets/robots.txt
/assets/signin
/assets/sim_card
/assets/system
/assets/unauthorised
/assets/vuejs.js
/build
/cgi-bin
/css
/cssee
/firstPage
/img
/includes
/js
/temp_videos
/vendor

Found on 2025-12-18 15:19

Severity: medium
Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aa54fe848faf4ba3812e28172be90c8e96

Found 33 files trough .DS_Store spidering:

/.well-known
/__MACOSX
/__MACOSX/prokit 2022$
/__MACOSX/prokit 2022$/default
/__MACOSX/prokit 2022$/default/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/__MACOSX
/__MACOSX/prokit 2022$/default/__MACOSX/unknown/ios-original
/__MACOSX/prokit 2022$/default/ios-original
/__MACOSX/prokit 2022$/default/ios-original/storage
/__MACOSX/prokit 2022$/default/ios-original/vendor
/__MACOSX/unknown
/__MACOSX/unknown/.well-known
/__MACOSX/unknown/__MACOSX
/__MACOSX/unknown/assets
/__MACOSX/unknown/css
/__MACOSX/unknown/firstPage
/__MACOSX/unknown/img
/__MACOSX/unknown/ios-original
/__MACOSX/unknown/ios-original/storage
/__MACOSX/unknown/ios-original/vendor
/__MACOSX/unknown/js
/__MACOSX/unknown/vendor
/assets
/build
/cgi-bin
/css
/cssee
/firstPage
/img
/includes
/js
/vendor

Found on 2025-11-17 13:50

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: cherry-fiesta-casino.co.uk
Port: 443
URL: https://cherry-fiesta-casino.co.uk

First seen 2025-11-25 17:14
Last seen 2026-02-09 15:54
Open for 75 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf360982172def01376aadf9b7db7bf777
```
Found 25 files trough .DS_Store spidering:

/admin
/admin/img
/admin/js
/build
/build/admin
/build/frontend
/bundles
/css
/flags
/frontend
/frontend/img
/img
/media
/media/cache
/media/cache/game_1
/media/cache/game_1/uploads
/media/cache/game_1/uploads/media
/media/cache/game_1/uploads/media/games
/media/cache/pb_block_image
/media/cache/pb_image
/nav-icons
/pagebuilder
/svg
/uploads
/uploads/media
```
  Found on 2026-02-09 15:54
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7199298a6c1704fe65168e8a151abafd7a5
```
Found 16 files trough .DS_Store spidering:

/admin
/admin/img
/admin/js
/build
/build/admin
/build/frontend
/bundles
/css
/flags
/frontend
/img
/media
/nav-icons
/pagebuilder
/svg
/uploads
```
  Found on 2025-11-29 15:33
- Severity: low
  Fingerprint: 5f32cf5d6962f09c668fcbec668fcbec66dfde7000fc4d50b4e9070ab682e297
```
Found 17 files trough .DS_Store spidering:

/admin
/admin/img
/admin/js
/build
/build/admin
/build/frontend
/bundles
/css
/flags
/frontend
/frontend/img
/img
/media
/nav-icons
/pagebuilder
/svg
/uploads
```
  Found on 2025-11-29 15:33
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa54477071fe6f16bdf67fb21c206f5cd252aa
```
Found 18 files trough .DS_Store spidering:

/admin
/admin/img
/admin/js
/build
/build/admin
/build/frontend
/bundles
/css
/flags
/frontend
/frontend/img
/img
/media
/media/cache
/nav-icons
/pagebuilder
/svg
/uploads
```
  Found on 2025-11-25 17:14
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: zu57.com
Port: 80
URL: http://zu57.com

First seen 2025-11-07 15:45
Last seen 2026-02-09 06:31
Open for 93 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652211970aef
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = git@gitee.com:mbssss/configmap.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-02-09 06:31
  
  220 Bytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: ng303ku-top.xyz
Port: 443
URL: https://ng303ku-top.xyz

First seen 2024-12-09 04:34
Last seen 2026-02-01 20:06
Open for 419 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d2390bfcb64fa83bd52b177c53d3

Found 128 files trough .DS_Store spidering:

/assets
/assets/css
/assets/font
/assets/font-awesome-4.6.3
/assets/fonts
/assets/img
/assets/img/24d-dragontiger.jpg
/assets/img/aa
/assets/img/aaa
/assets/img/aab
/assets/img/aac
/assets/img/aad
/assets/img/aae
/assets/img/aaf
/assets/img/aag
/assets/img/aah
/assets/img/aai
/assets/img/aaj
/assets/img/aak
/assets/img/aal
/assets/img/aam
/assets/img/aan
/assets/img/aao
/assets/img/aap
/assets/img/aaq
/assets/img/aar
/assets/img/aas
/assets/img/aat
/assets/img/aau
/assets/img/aav
/assets/img/aaw
/assets/img/aax
/assets/img/aay
/assets/img/aaz
/assets/img/ab
/assets/img/aba
/assets/img/abb
/assets/img/abc
/assets/img/abd
/assets/img/abe
/assets/img/abf
/assets/img/abg
/assets/img/abh
/assets/img/abi
/assets/img/abj
/assets/img/abk
/assets/img/abl
/assets/img/abm
/assets/img/abn
/assets/img/abo
/assets/img/abp
/assets/img/abq
/assets/img/abr
/assets/img/abs
/assets/img/abt
/assets/img/abu
/assets/img/abv
/assets/img/abw
/assets/img/abx
/assets/img/aby
/assets/img/abz
/assets/img/ac
/assets/img/aca
/assets/img/acb
/assets/img/acc
/assets/img/accept-a.png
/assets/img/accept-b.png
/assets/img/accept-c.png
/assets/img/acd
/assets/img/ace
/assets/img/acf
/assets/img/acg
/assets/img/ach
/assets/img/aci
/assets/img/acj
/assets/img/ack
/assets/img/acl
/assets/img/acm
/assets/img/acn
/assets/img/aco
/assets/img/acp
/assets/img/acq
/assets/img/acr
/assets/img/acs
/assets/img/act
/assets/img/acu
/assets/img/acv
/assets/img/acw
/assets/img/acx
/assets/img/acy
/assets/img/acz
/assets/img/ad
/assets/img/ad.png
/assets/img/ada
/assets/img/adb
/assets/img/adc
/assets/img/add
/assets/img/ade
/assets/img/adf
/assets/img/adg
/assets/img/adi
/assets/img/adj
/assets/img/adk
/assets/img/adl
/assets/img/adm
/assets/img/adn
/assets/img/ado
/assets/img/adq
/assets/img/adr
/assets/img/ads
/assets/img/adt
/assets/img/adu
/assets/img/adv
/assets/img/adw
/assets/img/adx
/assets/img/ady
/assets/img/adz
/assets/img/ae
/assets/img/aea
/assets/img/aeb
/assets/img/aec
/assets/img/aed
/assets/img/aee
/assets/img/aef
/assets/img/aeg
/assets/img/aeh
/assets/img/aei
/assets/img/aej

Found on 2026-02-01 20:06

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: zu57.com
Port: 443
URL: https://zu57.com

First seen 2025-11-07 15:45
Last seen 2026-01-23 02:25
Open for 76 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652211970aef
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = git@gitee.com:mbssss/configmap.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2026-01-23 02:25
  
  220 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 188.114.97.3
Domain: www.melegend.io
Port: 443
URL: https://www.melegend.io

First seen 2025-10-04 04:32
Last seen 2026-01-16 11:29
Open for 104 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2bdc9aa32

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 16-Jan-2026 11:33:29 UTC
Restart Time: Friday, 16-Jan-2026 03:12:31 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  8 hours 20 minutes 57 seconds
Server load: 0.81 1.03 1.13
Total accesses: 317716 - Total Traffic: 659.9 MB - Total Duration: 89842198
CPU Usage: u258 s69.45 cu523.85 cs147.04 - 3.32% CPU load
10.6 requests/sec - 22.5 kB/second - 2177 B/request - 282.775 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 148 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
03037420no1yes00250001
13037421no0yes00250000
23037422no3yes00250021
33037504no0yes10240000
43037801no9yes10240071
53047065no1yes00250010
Sum6014 2014800103

________________________________________________________________
___________________W_____________________________________W______
______________________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-430374200/111/320_
10.2410701652300.00.210.60
20.89.212.133http/1.1ob1.howvps.com:443GET /file4.php HTTP/1.1

0-430374200/123/332_
10.3281688588700.00.250.45
104.194.153.222http/1.1888p.cn.com:443GET /dang-ky-888p/ HTTP/1.1

0-430374200/105/314_
10.291630660980.00.420.67
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/110/323_
10.231410614560.00.610.91
20.89.212.133http/1.1ob1.howvps.com:443GET /build.php HTTP/1.1

0-430374200/100/289_
10.287601827830.00.110.46
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/104/292_
10.2500662350.00.260.51
20.89.212.133http/1.1ob1.howvps.com:443GET /mari.php HTTP/1.1

0-430374200/122/318_
10.291610493180.00.430.69
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/103/294_
10.311120398840.00.110.42
195.178.110.132http/1.1indmediaservices.com:443GET / HTTP/1.1

0-430374200/89/289_
10.2710701221960.00.100.29
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/104/308_
10.261540576430.00.240.40
20.89.212.133http/1.1ob1.howvps.com:443GET /adminfuns.php HTTP/1.1

0-430374200/114/325_
10.301350588770.00.180.52
2002:334f:97d6::334f:97d6http/1.132winid.com:443GET / HTTP/1.1

0-430374200/104/312_
10.3350582290.00.360.74
167.172.158.128http/1.1ob1.howvps.com:443GET /.vscode/sftp.json HTTP/1.1

0-430374200/101/298_
10.291590870460.00.210.53
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/98/304_
10.2500642120.00.180.52
20.89.212.133http/1.1ob1.howvps.com:443GET /moon.php HTTP/1.1

0-430374200/103/318_
10.2916201363870.00.220.40
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/104/317_
10.301402532120.00.210.73
122.162.145.86http/1.1substantial-comma.sa.com:443GET /wp-content/fonts/dancing-script/If2cXTr6YS-zF4S-kcSWSVi_sx

0-430374200/111/294_
10.301460640240.00.240.43
195.178.110.132http/1.1go800s.com:443GET /backend/.env HTTP/1.1

0-430374200/94/280_
10.271300526370.00.070.45
12.23.251.107http/1.1ob1.howvps.com:443GET /wp-content/plugins/fix/up.php HTTP/1.1

0-430374200/107/311_
10.271350457460.00.350.63
2001:4978:1000:1299::11http/1.15.78.79.22:80HEAD / HTTP/1.1

0-430374200/116/296_
10.291600495720.00.160.41
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/102/302_
10.28760545590.00.160.47
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

0-430374200/114/315_
10.241350592740.00.250.54
20.89.212.133http/1.1ob1.howvps.com:443GET /css.php HTTP/1.1

0-430374200/105/309_
10.231400745730.00.110.42
20.89.212.133http/1.1ob1.howvps.com:443GET /buy.php HTTP/1.1

0-430374200/107/313_
10.261540546310.00.260.40
20.89.212.133http/1.1ob1.howvps.com:443GET /xmrlpc.php HTTP/1.1

0-430374200/105/294_
10.271300412770.00.450.60
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

1-430374210/198/749_
18.331601752940.00.291.43
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

1-430374210/185/745_
18.318021516330.00.501.25
122.162.145.86http/1.1substantial-comma.sa.com:443GET /wp-content/uploads/2025/10/kham-pha-thuong-hieu-go8-nha-ca

1-430374210/201/776_
18.317902106480.00.491.44
220.167.233.89http/1.1ob1.howvps.com:443GET /images/favicon.png HTTP/1.1

1-430374210/198/798_
18.33812228400.00.601.52
122.162.145.86http/1.1substantial-comma.sa.com:443GET /wp-content/uploads/2025/09/banner1-go8-1536x480.webp HTTP/

1-430374210/183/727_
18.30802282280.00.411.48
220.167.233.89http/1.1ob1.howvps.com:443GET /image/favicon.ico HTTP/1.1

1-430374210/189/754_
18.34658101514590.00.391.18
175.111.130.242http/1.1dwcklw.sa.com:443GET / HTTP/1.1

1-430374210/188/744_
18.336021406260.00.291.21
122.162.145.86http/1.1substantial-comma.sa.com:443GET /wp-content/uploads/2025/09/banner1-go8-1024x320.webp HTTP/

1-430374210/202/734_
18.27812221100.00.331.07
216.244.66.241http/1.1googleplay.cn.com:80GET /hot/hot_pictures_book_1_of_sexy_non_nude_not_uncensored_gi

1-430374210/207/766_
18.361202337510.00.501.48
167.172.158.128http/1.1ob1.howvps.com:443GET /v2/api-docs HTTP/1.1

1-430374210/208/785_
18.361401403350.00.591.28
167.172.158.128http/1.1ob1.howvps.com:443GET /swagger.json HTTP/1.1

1-430374210/181/706_
18.33801504690.00.340.97
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

1-430374210/200/753_
18.361302056970.00.321.05
2001:4978:1000:1299::11http/1.15.78.79.22:80HEAD / HTTP/1.1

1-430374210/191/755_
18.35214402028820.00.681.27
105.235.158.213http/1.1gonpbs.in.net:443GET /?p=383 HTTP/1.1

1-430374210/188/738_
18.238302190830.01.041.92
203.34.153.83http/1.1mnb2.sa.com:443POST /xmlrpc.php HTTP/1.1

1-430374210/203/764_
18.318001526510.00.221.33
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

1-430374210/198/751_
18.361301519170.00.721.61
149.56.150.118http/1.1ob1.howvps.com:443GET /robots.txt HTTP/1.1

1-430374210/182/731_
18.296012005540.00.431.10
2a01:4ff:1f0:c305::1http/1.1substantial-comma.sa.com:443POST /wp-cron.php?doing_wp_cron=1768563112.92241811752319335937

1-430374210/177/713_
18.30702543130.00.671.67
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

1-430374210/185/734_
18.361302362610.00.391.12
20.0.137.120http/1.1nn888.club:443GET /html-sitemap/ HTTP/1.1

1-430374210/200/781_
18.331602272560.00.421.14
51.68.111.213http/1.1fokking.net:443GET / HTTP/1.1

1-430374210/205/745_
18.288312854070.00.581.21
195.178.110.132http/1.1indmediaservices.com:443GET /admin/.env HTTP/1.1

Found on 2026-01-16 11:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c21b31f63b

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 09-Jan-2026 10:48:13 UTC
Restart Time: Friday, 09-Jan-2026 03:15:41 UTC
Parent Server Config. Generation: 6
Parent Server MPM Generation: 5
Server uptime:  7 hours 32 minutes 32 seconds
Server load: 3.74 2.87 2.33
Total accesses: 393035 - Total Traffic: 685.5 MB - Total Duration: 98744594
CPU Usage: u553.05 s156.43 cu307.81 cs89.42 - 4.08% CPU load
14.5 requests/sec - 25.9 kB/second - 1828 B/request - 251.236 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 147 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
02351304no2yes00250011
12351529no0yes20230000
22351628no21yes002500201
42351184no1yes00250010
52351185no6yes00250051
62351186no0yes10240000
Sum6030 3014700273

_________________________________________W__W___________________
___________.........................____________________________
__________________________________________W____.................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



</SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-523513040/1913/2042_
129.51005094840.03.453.68
157.245.113.227http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-523513040/1893/2043_
129.4805944774570.02.813.12
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1901/2023_
129.4516904327580.02.763.01
34.106.39.215http/1.1athletic.sa.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1922/2062_
129.4436806089950.04.134.44
34.106.39.215http/1.1athletic.sa.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1947/2083_
129.4557245584420.03.113.28
34.106.39.215http/1.1athletic.sa.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1923/2065_
129.40105321360.03.563.92
125.94.251.242http/1.1cerejacores.za.com:443POST /xmlrpc.php HTTP/1.1

0-523513040/1962/2097_
129.5117714653340.04.915.00
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1962/2096_
129.46404426590.03.193.47
188.166.108.93http/1.1cerejacores.za.com:80GET /api/swagger.json HTTP/1.1

0-523513040/1910/2047_
129.48004507680.03.063.29
2a03:2880:31ff:46::http/1.1ob1.howvps.com:443GET /wp-content/uploads/2022/03/Image-5-660x330.png HTTP/1.1

0-523513040/1891/2022_
129.47104904930.02.943.16
64.225.75.246http/1.1cerejacores.za.com:443GET /actuator/env HTTP/1.1

0-523513040/1917/2054_
129.47404407820.03.643.80
64.225.75.246http/1.1cerejacores.za.com:443GET /@vite/env HTTP/1.1

0-523513040/1912/2057_
129.50505174060.03.113.50
157.245.113.227http/1.1ob1.howvps.com:443GET /server HTTP/1.1

0-523513040/1973/2106_
129.4816084816060.04.034.21
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1934/2065_
129.47404522530.02.452.85
46.101.111.185http/1.1ob1.howvps.com:443GET /api/swagger.json HTTP/1.1

0-523513040/1922/2068_
129.23404487780.02.913.16
125.94.251.242http/1.1cerejacores.za.com:443POST /xmlrpc.php HTTP/1.1

0-523513040/1904/2043_
129.38404495220.02.362.79
125.94.251.242http/1.1cerejacores.za.com:443POST /xmlrpc.php HTTP/1.1

0-523513040/1893/2023_
129.5043634095090.03.133.34
36.111.32.235http/1.1888toe.com:443POST /xmlrpc.php HTTP/1.1

0-523513040/1963/2109_
129.44105145590.03.583.97
185.191.171.5http/1.1fortitudepress.uk.com:443GET /giay-phep-kinh-doanh/ HTTP/1.1

0-523513040/1966/2102_
129.5105364645040.02.823.15
101.109.41.163http/1.1uu88.photos:443POST //xmlrpc.php HTTP/1.1

0-523513040/1944/2091_
129.39504799370.03.293.58
125.94.251.242http/1.1cerejacores.za.com:443POST /xmlrpc.php HTTP/1.1

0-523513040/1906/2057_
129.5064565215730.03.283.53
103.131.71.127http/1.1cpwinr.ru.com:443GET /nap-tien-13win/ HTTP/1.1

0-523513040/1917/2051_
129.4813795669030.03.473.73
36.111.32.235http/1.1888toe.com:443POST /xmlrpc.php HTTP/1.1

0-523513040/1999/2130_
129.4816804381550.03.593.76
34.106.39.215http/1.1athletic.sa.com:443POST //xmlrpc.php HTTP/1.1

0-523513040/1890/2037_
129.51004915470.02.723.01
64.225.75.246http/1.1cerejacores.za.com:443GET /login.action HTTP/1.1

0-523513040/1911/2042_
129.40315327390.02.652.90
125.94.251.242http/1.1cerejacores.za.com:443POST /xmlrpc.php HTTP/1.1

1-523515290/270/539_
25.354101635590.00.370.94
2a01:4ff:1f0:c305::1http/1.1ftwpzp.uk.com:443POST /wp-cron.php?doing_wp_cron=1767955688.57985210418701171875

1-523515290/293/556_
25.30011593250.00.301.19
2a01:4ff:1f0:c305::1http/1.1athletic.sa.com:443POST /wp-cron.php?doing_wp_cron=1767955657.17202496528625488281

1-523515290/305/527_
25.350101192940.00.310.74
2a01:4ff:1f0:c305::1http/1.1go99-p.mcc.tf:443POST /wp-cron.php?doing_wp_cron=1767955692.29248404502868652343

1-523515290/278/554_
25.32325071636850.00.280.96
101.109.41.163http/1.1uu88.photos:443POST //xmlrpc.php HTTP/1.1

1-523515290/295/554_
25.33216111282100.00.451.01
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

1-523515290/305/565_
25.22701792510.00.420.93
45.173.197.134http/1.1ww8838.com:443GET /2010/07 HTTP/1.1

1-523515290/313/594_
25.33165851602060.00.531.50
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

1-523515290/318/577_
25.3506832088620.00.541.14
34.106.39.215http/1.1athletic.sa.com:443POST //xmlrpc.php HTTP/1.1

1-523515290/305/561_
25.32255151031320.00.480.88
101.109.41.163http/1.1uu88.photos:443POST //xmlrpc.php HTTP/1.1

1-523515290/296/539_
25.30165761069510.00.391.13
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

1-523515290/290/536_
25.341201235530.00.411.06
157.245.113.227http/1.1ob1.howvps.com:443GET /v2/api-docs HTTP/1.1

1-523515290/295/543_
25.241711712880.00.330.90
43.139.153.132http/1.1zmjn.uk.com:443POST /xmlrpc.php HTTP/1.1

1-523515290/321/571_
25.332201309020.00.290.85
43.139.153.132http/1.1zmjn.uk.com:443POST /xmlrpc.php HTTP/1.1

1-523515290/312/565_
25.2921141710620.00.460.93
103.196.9.90http/1.1aovitey38.sa.com:443GET / HTTP/1.1

1-523515290/295/575_
25.283001217360.00.490.84
43.139.153.132http/1.1zmjn.uk.com:443POST /xmlrpc.php HTTP/1.1

1-523515290/302/554_
25.232501034130.00.381.61
43.139.153.132http/1.1zmjn.uk.com:443POST /xmlrpc.php HTTP/1.1

1-523515291/292/562W
25.26001739530.00.571.21
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

1-523515290/281/534_
25.283011388290.00.480.72
43.139.153.132http/1.1zmjn.uk.com:443POST /xmlrpc.php HTTP/1.1

1-523515290/302/566_
25.32329701378670.00.450.88
34.16.197.222http/1.1yt4jklz.uk.com:443POST //xmlrpc.php HTTP/1.1

1-523515291/296/564W
25.32001869810.00.560.90
157.245.113.227http/1.1ob1.howvps.com:443GET /server-status HTTP/1.1

Found on 2026-01-09 10:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2f71a66af

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 02-Jan-2026 04:28:58 UTC
Restart Time: Friday, 02-Jan-2026 03:10:36 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 18 minutes 22 seconds
Server load: 3.17 2.87 2.64
Total accesses: 118702 - Total Traffic: 105.7 MB - Total Duration: 16589334
CPU Usage: u219.54 s55.41 cu0 cs0 - 5.85% CPU load
25.2 requests/sec - 23.0 kB/second - 933 B/request - 139.756 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 145 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
01548046no0yes00250000
11548049no58yes102400571
21548051no0yes00250000
31548161no19yes202300152
41559233no4yes00250031
51651575no41yes202300401
Sum60122 50145001155

________________________________________________W_______________
________________________W____R_______________________________W__
_________________W____..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-015480460/141/141_
10.52621287920.00.110.11
216.244.66.231http/1.123wim.us.com:80GET /manual/manual_iphone_4_espanol_gratis.pdf HTTP/1.1

0-015480460/148/148_
10.521200300500.00.090.09
34.185.172.254http/1.15.78.79.22:80POST / HTTP/1.1

0-015480460/141/141_
10.54801289370.00.070.07
216.244.66.231http/1.123wim.us.com:80GET /metal/metal_building_contracting_and_construction.pdf HTTP

0-015480460/143/143_
10.45850224100.00.080.08
159.89.194.176http/1.15.78.79.22:80GET /wp-content/postnews.php HTTP/1.1

0-015480460/148/148_
10.58902343040.00.140.14
216.244.66.231http/1.123wim.us.com:80GET /oh/oh_she_glows_table_of_content.pdf HTTP/1.1

0-015480460/143/143_
10.6153218230890.00.090.09
103.253.24.46http/1.1asozgt.sa.com:443POST //xmlrpc.php HTTP/1.1

0-015480460/143/143_
10.34991229420.00.170.17
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /go/go_math_florida_assessment_guide_grade_2.pdf HTTP/1.1

0-015480460/150/150_
10.51801353990.00.130.13
216.244.66.238http/1.1canalzjgew.ru.com:80GET /the/the_courthouses_of_maine.pdf HTTP/1.1

0-015480460/140/140_
10.561041235650.00.050.05
216.244.66.231http/1.123wim.us.com:80GET /new/new_york_post_sudoku_bk_3_the_official_utterly_addicti

0-015480460/135/135_
10.44851224540.00.190.19
216.244.66.238http/1.1canalzjgew.ru.com:80GET /sony/sony_str_da5300es_amplifier_receiver_service.pdf HTTP

0-015480460/147/147_
10.53850178640.00.080.08
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /logic/logic_soundlab_car_amplifier_owners_manual.pdf HTTP/

0-015480460/150/150_
10.57901252780.00.150.15
216.244.66.231http/1.123wim.us.com:80GET /oh/oh_my_dear_t_j_middleton.pdf HTTP/1.1

0-015480460/135/135_
10.43210217570.00.040.04
159.89.194.176http/1.15.78.79.22:80GET /wp-admin/txets.php HTTP/1.1

0-015480460/131/131_
10.47210185060.00.080.08
74.125.215.65http/1.1kfxjtg.za.com:443GET /wp-content/cache/min/1/wp-content/themes/flatsome/inc/exte

0-015480460/142/142_
10.59678286840.00.190.19
2a01:4ff:1f0:c305::1http/1.1tp8866.com:80POST /wp-cron.php?doing_wp_cron=1767328071.14685702323913574218

0-015480460/138/138_
10.43621217610.00.130.13
216.244.66.231http/1.123wim.us.com:80GET /islamische/islamische_und_konventionelle_finanzprodukte_im

0-015480460/146/146_
10.44990295470.00.100.10
159.89.194.176http/1.15.78.79.22:80GET /postnews.php HTTP/1.1

0-015480460/159/159_
10.54851307080.00.220.22
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /lost/lost_in_translation_misadventures_in_english_abroad.p

0-015480460/139/139_
10.48621461860.00.140.14
66.249.84.101http/1.1kfxjtg.za.com:443GET /wp-content/themes/flatsome/inc/extensions/flatsome-instant

0-015480460/140/140_
10.55531257960.00.070.07
216.244.66.231http/1.123wim.us.com:80GET /monthly/monthly_newsletter_templates_free.pdf HTTP/1.1

0-015480460/131/131_
10.59671211850.00.120.12
216.244.66.231http/1.123wim.us.com:80GET /persanlichkeitsrecht/persanlichkeitsrecht_und_meinungsfrei

0-015480460/147/147_
10.63261229390.00.080.08
216.244.66.231http/1.123wim.us.com:80GET /repair/repair_manual_haier_xqj100_96_washing_machine.pdf H

0-015480460/134/134_
10.42620281370.00.120.12
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /interior/interior_decorating_job_postings.pdf HTTP/1.1

0-015480460/134/134_
10.59851321590.00.070.07
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /miniatlas/miniatlas_de_lesiones_ms_frecuentes_en_el_deport

0-015480460/138/138_
10.531190246470.00.230.23
34.185.172.254http/1.15.78.79.22:80POST / HTTP/1.1

1-015480490/623/623_
35.1301739150.00.440.44
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /politics/politics_and_persuasion.pdf HTTP/1.1

1-015480490/583/583_
35.1401831190.00.300.30
216.244.66.231http/1.123wim.us.com:80GET /scream/scream_for_me_a_novel_of_the_night_hunter_knight_hu

1-015480490/574/574_
35.1400617910.00.390.39
156.146.56.136http/1.15.78.79.22:80GET /wp-includes/interactivity-api/interactivity-api-class.php 

1-015480490/610/610_
35.1301736050.00.390.39
216.244.66.231http/1.123wim.us.com:80GET /scottish/scottish_divisions_in_the_world_wars.pdf HTTP/1.1

1-015480490/587/587_
35.0800642640.00.350.35
134.209.151.8http/1.15.78.79.22:80GET /wp-includes/wlwmanifest.xml HTTP/1.1

1-015480490/629/629_
35.140204613040.00.660.66
103.253.24.46http/1.1asozgt.sa.com:443POST //xmlrpc.php HTTP/1.1

1-015480490/609/609_
35.13001181910.00.640.64
156.146.56.136http/1.15.78.79.22:80GET /wp-includes/PHPMailer/purna.php HTTP/1.1

1-015480490/616/616_
35.1100707880.00.590.59
156.146.56.136http/1.15.78.79.22:80GET /wp-includes/PHPMailer/index.php HTTP/1.1

1-015480490/611/611_
35.1501777830.00.570.57
216.244.66.231http/1.123wim.us.com:80GET /searching/searching_for_superman.pdf HTTP/1.1

1-015480490/607/607_
35.0900536540.00.770.77
134.209.151.8http/1.15.78.79.22:80GET /xmlrpc.php?rsd HTTP/1.1

1-015480490/599/599_
35.130634625060.00.540.54
45.149.173.209http/1.1pawneecity.us.com:443POST //xmlrpc.php HTTP/1.1

1-015480490/614/614_
35.140577742520.00.500.50
68.155.144.44http/1.1city-bags.ru.com:80GET /gifclass.php HTTP/1.1

1-015480490/584/584_
35.05001270220.00.390.39
206.189.2.13http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-015480490/606/606_
35.1101893480.00.600.60
216.244.66.231http/1.123wim.us.com:80GET /scientific/scientific_evidence_of_evolution_concept_map_an

1-015480490/572/572_
35.080697576010.00.620.62
68.155.144.44http/1.1city-bags.ru.com:80GET /files.php HTTP/1.1

1-015480490/606/606_
35.1501702470.00.470.47
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /polymers/polymers_from_the_inside_out_an_introduction_to_m

1-015480490/585/585_
35.1201568290.00.570.57
216.244.66.194http/1.1christian-breton-cosmetics.cn.cGET /polaroid/polaroid_service_manual.pdf HTTP/1.1

1-015480490/610/610_
35.1200917410.00.450.45
43.166.1.243http/1.11057.cn.com:8

Found on 2026-01-02 04:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c25b41e7ef

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 26-Dec-2025 16:20:45 UTC
Restart Time: Friday, 26-Dec-2025 03:40:38 UTC
Parent Server Config. Generation: 16
Parent Server MPM Generation: 15
Server uptime:  12 hours 40 minutes 7 seconds
Server load: 3.93 3.58 2.83
Total accesses: 748109 - Total Traffic: 1008.2 MB - Total Duration: 158993117
CPU Usage: u1305.03 s345.73 cu223.59 cs67.1 - 4.26% CPU load
16.4 requests/sec - 22.6 kB/second - 1413 B/request - 212.527 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 145 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
01618946no1yes00250000
11619036no3yes10240021
21618947no1yes00250000
31619004no15yes102400122
41619088no5yes00250030
51669224no14yes302200101
Sum6039 5014500274

________________________________________________W_______________
_____________W_______________________________________________W__
_______________W__W___..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1516189460/590/955_
45.666201983500.00.991.52
81.167.26.57http/1.1af88.com.de:443GET /robots.txt HTTP/1.1

0-1516189460/558/912_
45.665712684660.00.621.18
208.84.102.192http/1.1phantasmagoriaonline.com:80GET /wp-login.php HTTP/1.1

0-1516189460/563/905_
45.54316822057380.00.510.94
48.218.150.57http/1.1udyodiy.ru.com:443GET /ot.php HTTP/1.1

0-1516189460/571/939_
45.65744611749200.01.292.08
34.136.140.21http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-1516189460/574/913_
45.69655602214140.00.670.95
34.136.140.21http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-1516189460/583/940_
45.62576601973490.00.931.63
48.218.150.57http/1.1udyodiy.ru.com:443GET /gmo.php HTTP/1.1

0-1516189460/556/917_
45.64924272413090.00.791.36
14.236.184.11http/1.1kfxjtg.za.com:443GET /no-hu-888p/ HTTP/1.1

0-1516189460/557/905_
45.69654462441270.01.021.83
34.136.140.21http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-1516189460/583/946_
45.439424882041560.00.891.47
48.218.150.57http/1.1udyodiy.ru.com:443GET /e.php HTTP/1.1

0-1516189460/563/934_
45.70813850160.00.861.38
216.244.66.231http/1.123wim.us.com:80GET /2005/2005_2007_kawasaki_brute_force_750_4x4i_kvf_750_4x4_s

0-1516189460/561/929_
45.677912953140.00.701.16
216.244.66.231http/1.123wim.us.com:80GET /1999/1999_audi_a4_spark_plug_wire.pdf HTTP/1.1

0-1516189460/564/911_
45.696202408170.00.951.89
216.244.66.229http/1.15.78.79.22:80GET /robots.txt HTTP/1.1

0-1516189460/527/861_
45.57666702350880.00.550.90
48.218.150.57http/1.1udyodiy.ru.com:443GET /doc.php HTTP/1.1

0-1516189460/569/930_
45.68666392775760.00.691.26
34.136.140.21http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-1516189460/588/931_
45.55936071932850.00.901.34
48.218.150.57http/1.1udyodiy.ru.com:443GET /s.php HTTP/1.1

0-1516189460/568/928_
45.657401422850.00.791.43
216.244.66.231http/1.123wim.us.com:80GET /1000/1000_best_quick_and_easy_time_saving_strategies.pdf H

0-1516189460/567/914_
45.666201494650.01.582.26
103.187.168.73http/1.1esthe-hikaku.jpn.com:443POST /xmlrpc.php HTTP/1.1

0-1516189460/571/939_
45.63936622228520.00.881.29
216.73.216.146http/1.1888p.cn.com:443GET /robots.txt HTTP/1.1

0-1516189460/554/924_
45.5406141773700.00.461.17
48.218.150.57http/1.1udyodiy.ru.com:443GET /j.php HTTP/1.1

0-1516189460/579/938_
45.67313701859060.00.881.90
34.136.140.21http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-1516189460/574/944_
45.559201664370.00.841.35
216.244.66.239http/1.15.78.79.22:80GET /nl/ HTTP/1.1

0-1516189460/555/918_
45.7105401823520.00.791.42
34.41.31.158http/1.1especially.it.com:443POST //xmlrpc.php HTTP/1.1

0-1516189460/553/891_
45.59659321973460.00.871.27
48.218.150.57http/1.1udyodiy.ru.com:443GET /ay.php HTTP/1.1

0-1516189460/560/907_
45.686702074190.00.991.49
216.244.66.231http/1.123wim.us.com:80GET /2000/2000_volvo_s60_owners_manual_pdf.pdf HTTP/1.1

0-1516189460/552/893_
45.666502507700.00.691.44
103.187.168.73http/1.1esthe-hikaku.jpn.com:443POST /xmlrpc.php HTTP/1.1

1-1516190360/6465/7219_
391.51158515565990.08.219.69
74.225.182.62http/1.1aovitey38.sa.com:443GET /wp-user.php HTTP/1.1

1-1516190360/6297/7067_
391.530015550460.08.589.53
64.227.70.2http/1.15.78.79.22:80GET / HTTP/1.1

1-1516190360/6403/7127_
391.46658316429860.010.0410.93
34.41.31.158http/1.1especially.it.com:443POST //xmlrpc.php HTTP/1.1

1-1516190360/6239/6968_
391.35654117068210.08.099.44
74.225.182.62http/1.1aovitey38.sa.com:443GET /aa.php HTTP/1.1

1-1516190360/6211/6981_
391.506015457220.07.919.50
159.89.12.166http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-1516190360/6205/6929_
391.53061315834500.08.7810.61
34.41.31.158http/1.1especially.it.com:443POST //xmlrpc.php HTTP/1.1

1-1516190360/6289/7030_
391.42255616257870.010.4011.68
74.225.182.62http/1.1aovitey38.sa.com:443GET /api.php HTTP/1.1

1-1516190360/6287/7013_
391.45675616922210.08.8310.39
103.82.39.209http/1.1m2.888p.bid:443GET / HTTP/1.1

1-1516190360/6219/6951_
391.487016535460.09.229.95
43.159.143.190http/1.1crstiano.sa.com:80GET / HTTP/1.1

1-1516190360/6279/7013_
391.48052615875980.09.2210.82
74.225.182.62http/1.1aovitey38.sa.com:443GET /goods.php HTTP/1.1

1-1516190360/6236/7001_
391.470016889340.08.679.77
159.89.12.166http/1.1ob1.howvps.com:443GET /@vite/env HTTP/1.1

1-1516190360/6200/6958_
391.540015576850.08.499.55
159.89.12.166http/1.1ob1.howvps.com:443GET /_all_dbs HTTP/1.1

1-1516190360/6282/7021_
391.50662516390390.09.2311.39
74.225.182.62http/1.1aovitey38.sa.com:443GET /ioxi-o.php HTTP/1.1

1-1516190360/6302/7096_
391.46399915779810.08.8211.30
34.136.140.21http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-1516190360/6233/7000_
391.504015115960.08.8311.35
216.244.66.231http/1.15.78.79.22:80GET /gl/gfd/cratosslot-canli-bahis-sitesinden-hosgeldin-bonusu-

1-1516190360/6237/6955_
391.50452816145090.09.4310.82
74.225.182.62http/1.1aovitey38.sa.com:443GET /manager.php HTTP/1.1

1-1516190360/6258/6998_
391.381116011730.08.159.16
216.244.66.231http/1.123wim.us.com:80GET /2003/2003_saturn_l200_2_2_timing_marks_diagram.pdf HTTP/1.

1-1516190360/6268/7007_
391.46561415862730.07.718.81
74.225.182.62http/1.1aovitey38.sa.com:443GET /classwithtostring.php HTTP/1.1

1-1516190360/6276/7020_
391.471015452050.08.989.87
216.244.66.231http/1.15.78.79.22:80GET /category/liger-movie-download-in-hindi-filmyzilla/feed/ HT

1-1516190360/6263/7019_
391.47249817154760.08.519.42
34.136.140.21http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

1-15</

Found on 2025-12-26 16:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c205dd0aa8

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Wednesday, 24-Dec-2025 16:51:42 UTC
Restart Time: Wednesday, 24-Dec-2025 03:23:38 UTC
Parent Server Config. Generation: 15
Parent Server MPM Generation: 14
Server uptime:  13 hours 28 minutes 4 seconds
Server load: 1.18 0.95 1.36
Total accesses: 843532 - Total Traffic: 1.2 GB - Total Duration: 318309143
CPU Usage: u400.12 s108.67 cu1439.42 cs385.31 - 4.81% CPU load
17.4 requests/sec - 26.8 kB/second - 1576 B/request - 377.353 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 247 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
0440295no4yes00250030
1440211no0yes10240000
2443441no3yes20230030
3456782no0yes00250000
4440212no0yes00250000
6440213no0yes00250000
7463042no2yes00250011
8463074no1yes00250010
9463104no8yes00250071
11463161no0yes00250000
Sum10018 3024700152

__________________________R__________________________________W__
_W___________________________________________________________...
......................__________________________________________
__________________________________________________________......
..................._________________________....................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-144402950/549/1699_
39.40107403790.00.733.43
146.190.103.103http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-144402950/527/1721_
39.40106698000.00.522.61
85.203.21.2http/1.1ob1.howvps.com:443GET /function/function.php HTTP/1.1

0-144402950/520/1747_
39.38006844900.00.422.45
85.203.21.2http/1.1ob1.howvps.com:443GET /simple.php HTTP/1.1

0-144402950/529/1735_
39.41006880260.00.592.68
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-admin/css/ HTTP/1.1

0-144402950/542/1758_
39.39205725820.00.412.63
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-content/plugins/Iitespeed-cache/157.php HTTP/1.1

0-144402950/539/1735_
39.41006141650.00.732.89
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-includes/PHPMailer/ HTTP/1.1

0-144402950/550/1759_
39.40106414970.00.852.72
85.203.21.2http/1.1ob1.howvps.com:443GET /hplfuns.php HTTP/1.1

0-144402950/537/1798_
39.39206247700.00.443.12
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-admin/classwithtostring.php HTTP/1.1

0-144402950/516/1675_
39.4106507590390.00.602.93
41.73.194.134http/1.1tp8866.com:443POST /xmlrpc.php HTTP/1.1

0-144402950/523/1677_
39.41006071370.00.833.06
85.203.21.2http/1.1ob1.howvps.com:443GET /network_xo.php HTTP/1.1

0-144402950/543/1700_
39.37306668460.00.632.97
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-content/themes/news-portal/error.php HTTP/1.1

0-144402950/553/1707_
39.36306608970.00.472.34
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-includes/blocks/code/ HTTP/1.1

0-144402950/539/1721_
39.39207226490.00.522.59
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-content/plugins/revslider/includes/external/page/ HTTP/

0-144402950/541/1745_
39.39106413160.00.612.69
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-includes/IXR/ HTTP/1.1

0-144402950/555/1777_
39.39206606520.00.682.58
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-includes/fonts/ HTTP/1.1

0-144402950/521/1715_
39.39306825110.00.492.30
85.203.21.2http/1.1ob1.howvps.com:443GET /mah.php HTTP/1.1

0-144402950/549/1737_
39.42006891670.01.023.13
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-content/themes/theme-check/main.php HTTP/1.1

0-144402950/544/1723_
39.40106007180.00.462.48
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-content/wp-conflg.php HTTP/1.1

0-144402950/553/1779_
39.39306018800.00.793.12
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-includes/admin.php HTTP/1.1

0-144402950/550/1717_
39.39306388750.00.752.62
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-config-sample.php HTTP/1.1

0-144402950/547/1779_
39.39307494700.00.573.12
85.203.21.2http/1.1ob1.howvps.com:443GET /x.php HTTP/1.1

0-144402950/553/1728_
39.39307016640.00.662.97
157.230.19.140http/1.15.78.79.22:80GET /login.action HTTP/1.1

0-144402950/566/1772_
39.39205837450.00.462.86
85.203.21.2http/1.1ob1.howvps.com:443GET /buy.php HTTP/1.1

0-144402950/510/1735_
39.4112717005600.00.643.03
103.186.31.44http/1.1joo5.sa.com:443GET /ban-ca-doi-the-cao/ HTTP/1.1

0-144402950/523/1743_
39.41006930450.00.402.64
85.203.21.2http/1.1ob1.howvps.com:443GET /wp-content/222.php HTTP/1.1

1-144402110/1333/3807_
86.8398014442090.01.574.75
52.175.53.247http/1.15.78.79.22:80GET /cgi-bin/index.php HTTP/1.1

1-144402110/1333/3775R
86.8398013426450.01.294.20
141.101.76.192http/1.1kfxjtg.za.com:443

1-144402110/1336/3858_
86.8389014072380.01.486.14
52.175.53.247http/1.15.78.79.22:80GET /av.php HTTP/1.1

1-144402110/1308/3797_
86.8594012577270.01.465.98
52.175.53.247http/1.15.78.79.22:80GET /modules/mod_simplefileuploadv1.3/elements/index.php HTTP/1

1-144402110/1352/3813_
86.8398013939510.01.494.74
52.175.53.247http/1.15.78.79.22:80GET /chosen.php HTTP/1.1

1-144402110/1299/3789_
86.8496012948040.01.124.18
52.175.53.247http/1.15.78.79.22:80GET /info.php HTTP/1.1

1-144402110/1321/3856_
86.8398012907500.01.544.44
52.175.53.247http/1.15.78.79.22:80GET /cgi-bin/file.php HTTP/1.1

1-144402110/1282/3723_
86.8397014231630.01.264.42
52.175.53.247http/1.15.78.79.22:80GET /edit.php HTTP/1.1

1-144402110/1326/3813_
86.8398013423540.01.564.68
52.175.53.247http/1.15.78.79.22:80GET /bolt.php HTTP/1.1

1-144402110/1355/3794_
86.8497013065210.01.384.59
52.175.53.247http/1.15.78.79.22:80GET /files/ HTTP/1.1

1-144402110/1344/3820_
86.8496013287340.01.244.50
52.175.53.247http/1.15.78.79.22:80GET /goods.php HTTP/1.1

1-144402110/1319/3843_
86.8595014140620.01.484.79
52.175.53.247http/1.15.78.79.22:80GET /mah/function.php HTTP/1.1

1-144402110/1336/3810_
86.8389014846950.02.054.86
52.175.53.247http/1.15.78.79.22:80GET /autoload_classmap/function.php HTTP/1.1

1-144402110/1355/3812_
86.8595014460580.01.404.74
52.175.53.247http/1.15.78.79.22:80GET /manager.php HTTP/1.1

1-144402110/1318/3721_
86.8397014358150.01.464.14
52.175.53.247http/1.15.78.79.22:80GET /classwithtostring.php HTTP/1.1

1-144402110/1334/3824_
86.8397013372060.01.706.05
52.175.53.247http/1.15.78.79.22:80GET /elp.php HTTP/1.1

1-144402110/1301/3745_
86.8496013847530.01.615.01
52.175.53.247http/1.15.78.79.22:80GET /gg.php HTTP/1.1

1-144402110/1312/3804_
86.8496013132050.01.284.73
52.175.53.247http/1.15.78.79.22:80GET /ioxi-o.php HTTP/1.1

1-144402110/1322/3795_
86.8496013174250.01.

Found on 2025-12-24 16:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c20ff490db

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Monday, 22-Dec-2025 19:12:55 UTC
Restart Time: Monday, 22-Dec-2025 03:49:30 UTC
Parent Server Config. Generation: 11
Parent Server MPM Generation: 10
Server uptime:  15 hours 23 minutes 24 seconds
Server load: 1.93 2.27 2.35
Total accesses: 712871 - Total Traffic: 1.3 GB - Total Duration: 244119027
CPU Usage: u615.49 s172.79 cu951.94 cs273.44 - 3.63% CPU load
12.9 requests/sec - 24.0 kB/second - 1907 B/request - 342.445 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 245 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
03355915no0yes00250000
33356002no0yes00250000
53361462no5yes10240040
63383440no2yes10240011
73383469no0yes00250000
83383499no1yes00250010
93383560no13yes30220092
103383660no3yes00250030
113383688no0yes00250000
123383720no0yes00250000
Sum10024 5024500183

_________________________.......................................
..........._________________________.........................___
____W_____________________R_____________________________________
_________________________________W________W_____________W_______
________________________________________________________________
_____...........................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1033559150/214/883_
19.418603885690.00.3015.65
4.190.209.71http/1.1hg41.cn.com:80GET /wp-includes/upload.php HTTP/1.1

0-1033559150/218/933_
19.449103996300.00.491.81
74.7.243.209http/1.19wd16r.sa.com:443GET / HTTP/1.1

0-1033559150/191/878_
19.462903635670.00.221.31
15.164.165.115http/1.1ob1.howvps.com:443HEAD /apps HTTP/1.1

0-1033559150/195/876_
19.429904359070.00.201.53
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/sym.php HTTP/1.1

0-1033559150/204/934_
19.429813910120.00.502.56
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/sym403.php HTTP/1.1

0-1033559150/208/924_
19.449413819510.00.271.70
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/x.php HTTP/1.1

0-1033559150/216/937_
19.47003564460.00.521.85
51.68.111.238http/1.1fokking.net:443GET / HTTP/1.1

0-1033559150/228/925_
19.418613464250.00.392.12
4.190.209.71http/1.1hg41.cn.com:80GET /wp-includes/alfa123.php HTTP/1.1

0-1033559150/195/916_
19.439713048310.00.092.31
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/404.php HTTP/1.1

0-1033559150/227/921_
19.409312876240.00.242.47
4.190.209.71http/1.1hg41.cn.com:80GET /wp-includes/nasgor.php HTTP/1.1

0-1033559150/209/925_
19.449414099500.00.102.05
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/0.php HTTP/1.1

0-1033559150/209/906_
19.439503625290.00.202.29
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/xxx.php HTTP/1.1

0-1033559150/237/930_
19.422313389350.00.473.08
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/asdasd.php HTTP/1.1

0-1033559150/198/892_
19.462803075090.00.341.87
15.164.165.115http/1.1ob1.howvps.com:443HEAD /api/actions HTTP/1.1

0-1033559150/209/938_
19.439703183070.00.122.07
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/symlink.php HTTP/1.1

0-1033559150/217/942_
19.449403329170.00.281.77
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/ok.php HTTP/1.1

0-1033559150/193/913_
19.47103208400.00.231.71
51.68.111.238http/1.1fokking.net:443GET / HTTP/1.1

0-1033559150/200/898_
19.47203576770.00.102.09
51.68.111.238http/1.1fokking.net:443GET / HTTP/1.1

0-1033559150/201/908_
19.439613630660.00.241.66
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/403.php HTTP/1.1

0-1033559150/201/931_
19.412303470670.00.262.03
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/1234.php HTTP/1.1

0-1033559150/191/883_
19.429813058190.00.352.62
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/xl.php HTTP/1.1

0-1033559150/199/907_
19.439603892280.00.332.21
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/up.php HTTP/1.1

0-1033559150/208/926_
19.462804027340.00.442.62
15.164.165.115http/1.1ob1.howvps.com:443HEAD /_next/data HTTP/1.1

0-1033559150/217/910_
19.462904101350.00.302.41
15.164.165.115http/1.1ob1.howvps.com:443HEAD /api/action HTTP/1.1

0-1033559150/213/921_
19.439513143980.00.642.37
4.190.209.71http/1.1hg41.cn.com:80GET /wp-content/c99.php HTTP/1.1

1-10-0/0/1139.
0.001480204720190.00.001.72
208.112.26.138http/1.1vwin365.net:443GET /wp-login.php HTTP/1.1

1-10-0/0/1119.
0.001480224555420.00.002.24
18.215.77.19http/1.1co6.sa.com:443GET /wp-content/uploads/2024/12/anh-bia-nap-tien-ww88.jpg HTTP/

1-10-0/0/1089.
0.001480214812300.00.001.82
45.86.202.90http/1.1bourewis.jp.net:80GET /wp-content/uploads/2023/11/ HTTP/1.1

1-10-0/0/1153.
0.001480213631100.00.001.76
45.86.202.90http/1.1bourewis.jp.net:80GET /wp-includes/images/ HTTP/1.1

1-10-0/0/1129.
0.001480214903980.00.001.66
45.86.202.74http/1.1bourewis.jp.net:80GET /wp-content/ HTTP/1.1

1-10-0/0/1133.
0.0014802600574498030.00.001.76
62.60.131.73http/1.1menacetosociety.uk.net:443GET /~/.kube/config HTTP/1.1

1-10-0/0/1138.
0.001480204371450.00.002.23
167.172.158.128http/1.1ob1.howvps.com:443GET /info.php HTTP/1.1

1-10-0/0/1160.
0.00148025345649380.00.001.72
34.73.111.23http/1.1digitalsatyo.in.net:443POST //xmlrpc.php HTTP/1.1

1-10-0/0/1165.
0.0014802244795760.00.001.92
103.186.31.44http/1.1nn8818.com:443GET /html-sitemap/ HTTP/1.1

1-10-0/0/1157.
0.00148025143825790.00.002.39
35.184.6.236http/1.1dampak.za.com:443POST //xmlrpc.php HTTP/1.1

1-10-0/0/1130.
0.00148026584432230.00.002.25
35.184.6.236http/1.1dampak.za.com:443POST //xmlrpc.php HTTP/1.1

1-10-0/0/1134.
0.00148027483788340.00.001.70
34.73.111.23http/1.1digitalsatyo.in.net:443POST //xmlrpc.php HTTP/1.1

1-10-0/0/1167.
0.001480204805100.00.001.46
45.86.202.74http/1.1bourewis.jp.net:80GET /wp-admin/network/ HTTP/1.1

1-10-0/0/1132.
0.001480214576820.00.001.58
45.86.202.74http/1.1bourewis.jp.net:80GET /wp-includes/block-bindings/ HTTP/1.1

1-10-0/0/1115.
0.00148027473938130.00.001.95
34.138.88.169http/1.1digitalsatyo.in.net:443POST //xmlrpc.php HTTP/1.1

1-10-0/0/1143.
0.001480214216750.00.001.85
45.86.202.74http/1.1bourewis.jp.net:80GET /wp-includes/widgets/ HTTP/1.1

1-10-0/0/1136.
0.001480204197130.00.002.05
167.172.158.128http/1.1ob1.howvps.com:443GET /config.json HTTP/1.1

1-10-0/0/1103.
0.001480214260130.00.002.37
45.86.202.74http/1.1bourewis.jp.net:80GET /wp-admin/css/colors/sunrise/ HTTP/1.1

1-10-0/0/1169.
0.00148026794346790.00.002.61
34.138.88.169http/1.1digitalsatyo.in.net:443POST //xmlrpc.php HTTP/1.1<

Found on 2025-12-22 19:10

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c286012e0b

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Saturday, 20-Dec-2025 19:28:35 UTC
Restart Time: Saturday, 20-Dec-2025 03:12:38 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  16 hours 15 minutes 56 seconds
Server load: 3.15 3.05 2.79
Total accesses: 1069618 - Total Traffic: 1.5 GB - Total Duration: 818349570
CPU Usage: u622.24 s170.23 cu1634.97 cs431.94 - 4.88% CPU load
18.3 requests/sec - 27.5 kB/second - 1542 B/request - 765.086 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 245 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
12091569no0yes00250000
22095226no11yes30220090
32097334no2yes00250020
42091570no0yes00250000
52091571no8yes20230061
62097362no5yes00250050
72097395no0yes00250000
92097468no0yes00250000
122097567no0yes00250000
132097598no2yes00250020
Sum10028 5024500241

........................._________________________W_______W_____
__________W____________________________________________________W
____W___________________________________________________________
________........................._________________________......
............................................____________________
______________________________..................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-8-0/0/4876.
0.00197752936227716740.00.006.78
195.178.110.155http/1.133890.top:443GET /da-ga-3389/ HTTP/1.1

0-8-0/0/4856.
0.00197752218629466800.00.005.96
195.178.110.155http/1.133890.top:443GET /game-bai-3389/ HTTP/1.1

0-8-0/0/4780.
0.00197754500629248210.00.005.92
195.178.110.155http/1.133890.top:443GET /ban-ca-3389/ HTTP/1.1

0-8-0/0/4771.
0.0019775128028944670.00.004.84
172.71.102.225http/1.1

0-8-0/0/4844.
0.00197751490328104480.00.006.63
172.71.182.233http/1.1

0-8-0/0/4730.
0.001977569130335460.00.006.15
113.249.101.167http/1.1tv888.club:443POST /xmlrpc.php HTTP/1.1

0-8-0/0/4833.
0.00197752587828328880.00.005.27
195.178.110.155http/1.133890.top:443GET /gioi-thieu-3389/ HTTP/1.1

0-8-0/0/4821.
0.00197755329632690.00.007.22
172.70.46.54http/1.1

0-8-0/0/4927.
0.00197752391328474060.00.006.86
104.23.170.63http/1.1

0-8-0/0/4851.
0.0019775027899600.00.006.83
2a06:98c0:3600::103http/1.1ob1.howvps.com:443GET /wp-admin/setup-config.php HTTP/1.1

0-8-0/0/4830.
0.00197756006029251610.00.006.37
195.178.110.155http/1.133890.top:443GET /song-bai-3389/ HTTP/1.1

0-8-0/0/4776.
0.00197751151329503650.00.005.97
104.23.172.134http/1.1

0-8-0/0/4843.
0.001977549729474190.00.006.14
172.70.46.54http/1.1

0-8-0/0/4715.
0.00197754044029467120.00.006.48
195.178.110.155http/1.133890.top:443GET /ban-ca-3389/ HTTP/1.1

0-8-0/0/4829.
0.00197752015629992040.00.006.26
172.71.95.94http/1.1

0-8-0/0/4818.
0.0019775173827456620.00.005.72
172.70.46.55http/1.1

0-8-0/0/4808.
0.00197751849428724740.00.006.19
195.178.110.155http/1.133890.top:443GET /rut-tien-3389/ HTTP/1.1

0-8-0/0/4799.
0.00197752953530050660.00.006.40
195.178.110.155http/1.133890.top:443GET /no-hu-3389/ HTTP/1.1

0-8-0/0/4790.
0.00197751383429393240.00.005.78
104.23.166.92http/1.1

0-8-0/0/4812.
0.00197752893130123860.00.005.67
195.178.110.155http/1.133890.top:443GET /xo-so-3389/ HTTP/1.1

0-8-0/0/4795.
0.00197754113827983120.00.006.88
195.178.110.155http/1.133890.top:443GET /ban-ca-3389/ HTTP/1.1

0-8-0/0/4714.
0.0019775598729191300.00.005.84
172.70.46.55http/1.1

0-8-0/0/4788.
0.00197751978028605230.00.005.49
172.71.102.224http/1.1

0-8-0/0/4795.
0.00197752509130011340.00.005.95
195.178.110.155http/1.133890.top:443GET /gioi-thieu-3389/ HTTP/1.1

0-8-0/0/4774.
0.00197752862830553800.00.007.87
195.178.110.155http/1.133890.top:443GET /xo-so-3389/ HTTP/1.1

1-820915690/98/3044_
8.57463017254600.00.313.81
2a01:4f8:150:3492::2http/1.1sexywaysofreading.com:443GET /wp-content/uploads/2024/12/hoat-dong-thien-nguyen-88CLB-an

1-820915690/91/3099_
9.041195019119560.00.084.88
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

1-820915690/98/3015_
9.041232018264680.00.323.97
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-nam

1-820915690/84/3030_
8.97578018192740.00.114.01
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

1-820915690/101/3038_
8.9198915318276130.00.113.99
188.166.240.76http/1.1ghsm.in.net:443POST //xmlrpc.php HTTP/1.1

1-820915690/83/3026_
9.02471118733790.00.264.24
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/ban-ca-30-bet88-giai-tri-doc-da

1-820915690/98/3083_
9.16471102419698950.00.214.96
146.190.169.142http/1.1co6.sa.com:443POST //xmlrpc.php HTTP/1.1

1-820915690/98/3067_
8.991257018855720.00.814.81
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/keo-thom-la-gi-300x150.jpg HTTP

1-820915690/88/3018_
8.48578018270430.00.074.20
2a01:4f8:210:3401::2http/1.1sexywaysofreading.com:443GET /wp-content/uploads/2024/12/hoat-dong-thien-nguyen-88CLB-an

1-820915690/90/3116_
8.631057016323740.00.164.74
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xo-so-mien-bac-bet88-150x150.jp

1-820915690/88/3056_
9.031262015885090.00.215.36
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/04/doi-ngu-nhan-vien-24-7-tan-tam-

1-820915690/96/3033_
9.15583017371850.00.655.19
18.212.198.88http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-820915690/103/3019_
8.63989018937790.00.354.16
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

1-820915690/92/3055_
9.06115063518817580.00.104.13
45.130.81.78http/1.1substantial-comma.sa.com:443GET /backup/full_backup.zip HTTP/1.1

1-820915690/102/3045_
9.081062017931140.00.154.83
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/quyen-rieng-tu-bet88-vai-tro-30

1-820915690/95/2967_
9.1746866619868520.00.153.21
216.244.66.242http/1.1gdarst.sa.com:80GET /violence/violence_without_guilt_ethical_narratives_from_th

1-820915690/96/3059_
8.601227019382300.00.174.50
2a01:4f8:150:3492::2http/1.1sexywaysofreading.com:443GET /wp-content/uploads/2024/12/da-ga-thomo-280x280.jpg HTTP/1.

1-820915690/92/3018_
7.801057019169020.00.324.39
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

1-820915690/105/3070_
8.781189019123110.00.334.60
2a01:4f8:1

Found on 2025-12-20 19:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2eb3b9bf7

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 19-Dec-2025 02:06:13 UTC
Restart Time: Thursday, 18-Dec-2025 03:49:26 UTC
Parent Server Config. Generation: 13
Parent Server MPM Generation: 12
Server uptime:  22 hours 16 minutes 46 seconds
Server load: 2.43 1.98 1.62
Total accesses: 1102475 - Total Traffic: 1.9 GB - Total Duration: 354528911
CPU Usage: u2182.93 s581.72 cu386.07 cs102.9 - 4.06% CPU load
13.7 requests/sec - 25.2 kB/second - 1874 B/request - 321.575 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 170 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
0729599no1yes00250010
1729662no1yes00250000
2729598no0yes00250000
3729694no5yes10240040
4730708no0yes00250000
5730737no17yes402100141
6870596no3yes00250021
Sum7027 5017000212

________________________________________________________________
______________________W______________________________________W__
__W_____W____________W_________________________.................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-127295990/5282/5630_
377.999019294980.09.7510.51
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/includes/upl.php HTTP/1.1

0-127295990/5262/5629_
378.041018141060.09.019.27
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-includes/SimplePie/nav.php HTTP/1.1

0-127295990/5242/5597_
378.043020785210.08.619.63
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-content/languages/nav.php HTTP/1.1

0-127295990/5383/5726_
377.989019773990.07.918.88
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-xxx.php HTTP/1.1

0-127295990/5252/5609_
377.967019090070.08.358.85
52.230.92.201http/1.1botanicastyle.ru.com:80GET /index/indexx.php HTTP/1.1

0-127295990/5287/5644_
378.041017870680.08.699.64
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-includes/certificates/nav.php HTTP/1.1

0-127295990/5257/5596_
377.9810019974420.08.769.19
52.230.92.201http/1.1botanicastyle.ru.com:80GET /plugins/indexx.php HTTP/1.1

0-127295990/5270/5609_
378.042017622890.09.2110.35
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-content/languages/themes/nav.php HTTP/1.1

0-127295990/5317/5652_
377.999016809450.09.229.79
72.52.87.64http/1.1xn8848.com:443GET / HTTP/1.1

0-127295990/5296/5636_
378.045020493520.07.968.62
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-content/nav.php HTTP/1.1

0-127295990/5333/5683_
378.006018238270.08.038.59
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-includes/css/upl.php HTTP/1.1

0-127295990/5232/5590_
377.9710019098430.09.7410.34
52.230.92.201http/1.1botanicastyle.ru.com:80GET /mah/indexx.php HTTP/1.1

0-127295990/5254/5598_
378.044117351820.08.218.79
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-content/uploads/nav.php HTTP/1.1

0-127295990/5414/5751_
378.036018832330.09.609.96
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/network/nav.php HTTP/1.1

0-127295990/5321/5650_
377.997017880970.08.909.30
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/css/upl.php HTTP/1.1

0-127295990/5285/5627_
378.035017777930.09.199.97
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/user/nav.php HTTP/1.1

0-127295990/5363/5700_
378.039018375260.09.479.70
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/includes/nav.php HTTP/1.1

0-127295990/5278/5614_
378.043019716630.08.578.97
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-content/plugins/nav.php HTTP/1.1

0-127295990/5349/5701_
378.038018705620.08.589.20
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/js/widgets/nav.php HTTP/1.1

0-127295990/5352/5693_
378.006020248640.09.6110.07
206.189.95.232http/1.1ob1.howvps.com:443GET /swagger/v1/swagger.json HTTP/1.1

0-127295990/5238/5610_
377.9810021771180.08.308.91
52.230.92.201http/1.1botanicastyle.ru.com:80GET /client/sinchro-advisory/indexx.php HTTP/1.1

0-127295990/5324/5668_
378.037017696500.08.058.70
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/maint/nav.php HTTP/1.1

0-127295990/5318/5696_
378.037018119130.09.369.97
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/js/nav.php HTTP/1.1

0-127295990/5285/5612_
378.039019975300.09.6310.24
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-admin/images/nav.php HTTP/1.1

0-127295990/5225/5568_
378.040018943270.08.428.70
52.230.92.201http/1.1botanicastyle.ru.com:80GET /wp-includes/customize/nav.php HTTP/1.1

1-127296620/4472/5168_
332.84475316721070.07.729.17
103.82.132.136http/1.1m2.888p.bid:443GET / HTTP/1.1

1-127296620/4416/5103_
332.753010518513290.07.759.37
52.230.92.201http/1.1ckkmp.sa.com:443GET /159.php HTTP/1.1

1-127296620/4437/5145_
332.8315119440100.06.378.19
2a01:4ff:1f0:c305::1http/1.1achcilanty.ru.com:443POST /wp-cron.php?doing_wp_cron=1766109958.30198788642883300781

1-127296620/4482/5136_
332.641010717452500.06.478.03
52.230.92.201http/1.1ckkmp.sa.com:443GET /wp-admin/includes/wso.php HTTP/1.1

1-127296620/4428/5107_
332.8225116887290.07.369.15
206.189.95.232http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-127296620/4438/5085_
332.8218018199260.07.088.51
206.189.95.232http/1.1ob1.howvps.com:443GET /swagger/index.html HTTP/1.1

1-127296620/4585/5235_
332.8129017597420.06.688.25
107.189.18.48http/1.1888p.ru.com:443GET /tong-hop-bai-viet-888p/ HTTP/1.1

1-127296620/4539/5195_
332.853117901570.06.678.31
74.125.218.74http/1.1massmusings.com:80GET /feed/ HTTP/1.1

1-127296620/4539/5194_
332.64710418431410.07.589.27
52.230.92.201http/1.1ckkmp.sa.com:443GET /wp-admin/maint/wso.php HTTP/1.1

1-127296620/4517/5153_
332.753011216737590.07.359.19
52.230.92.201http/1.1ckkmp.sa.com:443GET /tesla1.php HTTP/1.1

1-127296620/4437/5099_
332.782412017545450.06.868.26
52.230.92.201http/1.1ckkmp.sa.com:443GET /index2.php HTTP/1.1

1-127296620/4420/5089_
332.78239518707410.06.918.35
52.230.92.201http/1.1ckkmp.sa.com:443GET /index3.php HTTP/1.1

1-127296620/4514/5179_
332.8132016833480.06.407.78
2804:7f0:90c3:eea8:9061:9f3d:c025:657bhttp/1.1ob1.howvps.com:443GET /category/uk/ HTTP/1.1

1-127296620/4527/5197_
332.781911217174730.07.209.25
52.230.92.201http/1.1ckkmp.sa.com:443GET /index4.php HTTP/1.1

1-127296620/4545/5199_
332.762911118145870.06.497.74
52.230.92.201http/1.1ckkmp.sa.com:443GET /hexor.php HTTP/1.1

1-127296620/4427/5095_
332.8412017530080.06.137.96
67.207.88.107http/1.1ob1.howvps.com:443GET /exploring-the-benefits-and-considerations-of-buying-shippi

1-127296620/4526/5180_
332.8222017199320.07.048.56
206.189.95.232http/1.1ob1.howvps.com:443POST /api HTTP/1.1

1-127296620/4566/5204_
332.762711318755930.07.338.74
52.230.92.201http/1.1ckkmp.sa.com:443GET /shellx.php HTTP/1.1

1-127296620/4449/5138_
332.75291191869

Found on 2025-12-19 02:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c297c9236b

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Tuesday, 16-Dec-2025 18:38:41 UTC
Restart Time: Tuesday, 16-Dec-2025 03:30:28 UTC
Parent Server Config. Generation: 13
Parent Server MPM Generation: 12
Server uptime:  15 hours 8 minutes 12 seconds
Server load: 1.11 1.14 1.53
Total accesses: 797426 - Total Traffic: 1.3 GB - Total Duration: 287547737
CPU Usage: u767.88 s236.36 cu1032.88 cs298.28 - 4.29% CPU load
14.6 requests/sec - 25.5 kB/second - 1783 B/request - 360.595 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 247 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
03733515no15yes202300131
13733516no0yes00250000
23733601no0yes00250000
33734684no0yes00250000
43733517no6yes10240060
53734723no0yes00250000
63740610no11yes002500101
73740638no0yes00250000
83740669no0yes00250000
93740704no0yes00250000
Sum10032 3024700292

__W___________________W_________________________________________
_______________________________________________W________________
________________________________________________________________
__________________________________________________________......
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1237335150/3386/4139_
230.721014133110.04.465.57
45.156.129.68http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-1237335150/3359/4115_
230.74059114075490.04.856.99
20.27.219.62http/1.1ghsm.in.net:443GET /an.php HTTP/1.1

0-12373351519/3342/4138W
230.660014142300.04.445.77
20.27.219.62http/1.1ghsm.in.net:443GET /blox.php HTTP/1.1

0-1237335150/3389/4170_
230.66376313920470.04.325.63
65.108.206.229http/1.1pg668.net:443GET /no-hu-pg66/ HTTP/1.1

0-1237335150/3355/4144_
230.702013511120.05.517.10
206.81.24.74http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

0-1237335150/3410/4174_
230.68065915084600.05.016.71
20.27.219.62http/1.1ghsm.in.net:443GET /gm.php HTTP/1.1

0-1237335150/3345/4142_
230.54063213562780.05.256.90
20.27.219.62http/1.1ghsm.in.net:443GET /lib.php HTTP/1.1

0-1237335150/3384/4135_
230.70258713390980.04.766.05
20.27.219.62http/1.1ghsm.in.net:443GET /autoload_classmap.php HTTP/1.1

0-1237335150/3358/4103_
230.56352814991440.04.176.12
20.27.219.62http/1.1ghsm.in.net:443GET /wsd.php HTTP/1.1

0-1237335150/3359/4108_
230.593114242070.04.405.56
113.23.81.23http/1.1m.23win-app.xyz:443GET /wp-content/uploads/2024/12/loi-khi-rut-tien-23win-300x150.

0-1237335150/3403/4158_
230.740014214500.05.426.38
104.161.37.241http/1.15.78.79.22:80GET /sendgrid/.env HTTP/1.1

0-1237335150/3325/4079_
230.581114009090.04.806.36
159.89.50.241http/1.1pv2002.org:80GET /honda/honda_civic_2004_owners_manual.pdf HTTP/1.1

0-1237335150/3328/4089_
230.70213714113210.04.205.58
216.244.66.242http/1.1gdarst.sa.com:80GET /male/male_and_female_leaders_in_small_work_groups_an_empir

0-1237335150/3342/4080_
230.730313099930.04.716.14
206.81.24.74http/1.1ob1.howvps.com:443GET /server-status HTTP/1.1

0-1237335150/3329/4096_
230.590114662740.04.466.01
216.244.66.232http/1.1codeverge.sa.com:80GET /robots.txt HTTP/1.1

0-1237335150/3352/4145_
230.712913553000.04.255.64
2a01:4ff:1f0:c305::1http/1.199winz.com:443POST /wp-cron.php?doing_wp_cron=1765910319.22332096099853515625

0-1237335150/3360/4127_
230.470014102290.04.945.95
206.81.24.74http/1.1ob1.howvps.com:443POST /graphql/api HTTP/1.1

0-1237335150/3327/4109_
230.702013598610.04.666.31
162.19.11.69http/1.1ob1.howvps.com:443GET /xmlrpc.php HTTP/1.1

0-1237335150/3284/4017_
230.54016714898160.05.196.70
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/rss/ HTTP/1.1

0-1237335150/3456/4239_
230.65072914172850.04.315.20
107.189.25.55http/1.1dutluc.sa.com:443GET /html-sitemap/ HTTP/1.1

0-1237335150/3379/4134_
230.692013588990.05.126.20
178.128.207.138http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

0-1237335150/3349/4091_
230.72165814017850.03.955.32
20.27.219.62http/1.1ghsm.in.net:443GET /abc.php HTTP/1.1

0-1237335151/3342/4092W
230.650013923140.04.496.04
216.244.66.242http/1.1gdarst.sa.com:80GET /matter/matter_special_grand_jury_investigation_alleged_wir

0-1237335150/3346/4096_
230.731013819420.04.365.85
178.128.207.138http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-1237335150/3385/4137_
230.682114227950.05.287.26
159.65.216.154http/1.1pv2002.org:80GET /credit/credit_card_number_for.pdf HTTP/1.1

1-1237335160/765/1933_
57.328486470520.01.333.25
2a01:4ff:1f0:c305::1http/1.1mti.za.com:443POST /wp-cron.php?doing_wp_cron=1765909327.39868998527526855468

1-1237335160/779/1963_
57.5912406817040.01.003.40
130.193.220.222http/1.1ob1.howvps.com:443GET /exploring-the-fyptt-tiktok-escort-phenomenon-how-social-me

1-1237335160/762/1944_
57.5611807182240.01.373.26
65.87.7.112http/1.1ob1.howvps.com:443HEAD / HTTP/1.1

1-1237335160/780/1938_
57.633826467670.01.543.93
216.244.66.242http/1.1gdarst.sa.com:80GET /g/g_protein_coupled_receptors_volume_521_trafficking_and_o

1-1237335160/784/1980_
57.573307087410.01.253.69
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-150x150.jpg HTT

1-1237335160/740/1937_
57.2816216563370.01.433.78
135.235.159.29http/1.1ww8838.com:443GET /k.php HTTP/1.1

1-1237335160/806/1933_
57.3612506945180.01.053.19
45.148.10.204http/1.1ob1.howvps.com:443GET /.env.development HTTP/1.1

1-1237335160/759/1941_
57.5215707744200.01.123.33
103.131.71.202http/1.1ob1.howvps.com:443GET /favicon.ico HTTP/1.1

1-1237335160/768/1974_
57.614226945200.01.423.27
113.23.81.23http/1.1m.23win-app.xyz:443GET /dang-ky-23win/ HTTP/1.1

1-1237335160/808/2016_
57.4315706874000.01.333.51
20.196.91.230http/1.15.78.79.22:80GET /api.php HTTP/1.1

1-1237335160/789/1976_
57.618916218960.01.362.93
64.227.26.139http/1.1pv2002.org:80GET /cured/cured_the_tale_of_two_imaginary_boys.pdf HTTP/1.1

1-1237335160/785/1942_
57.573616510130.01.433.37
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

1-1237335160/754/1917_
57.541255506718520.00.903.12
216.244.66.242http/1.1gdarst.sa.com:80GET /vipers/vipers_run_the_last_riders_2_jamie_begley.pdf HTTP/

1-1237335160/766/1934_
57.5716208033760.01.253.58
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

1-1237335160/774/1936_
57.591305958063730.00.792.88
216.244.66.242http/1.1gdarst.sa.com:80GET /yamaha/yamaha_waverunner_gp800r_manual_free_pdf.pdf HTTP/1

1-1237335160/783/1913_
57.2915706717180.01.373.64
135.235.159.29http/1.1ww8838.com:443GET /des.php HTTP/1.1

1-1237335160/805/1981_
57.2815716989230.01.043.50
135.235.159.29http/1.1

Found on 2025-12-16 18:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2c257f8e8

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Sunday, 14-Dec-2025 09:04:14 UTC
Restart Time: Sunday, 14-Dec-2025 03:22:30 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  5 hours 41 minutes 43 seconds
Server load: 3.00 3.24 3.22
Total accesses: 254005 - Total Traffic: 534.3 MB - Total Duration: 82912569
CPU Usage: u282.46 s79.62 cu315.65 cs86.25 - 3.73% CPU load
12.4 requests/sec - 26.7 kB/second - 2205 B/request - 326.421 ms/request
13 requests currently being processed, 0 workers gracefully restarting, 137 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
02453422no4yes00250021
12453423no1yes10240000
22453424no20yes601900142
32453508no0yes00250000
42455668no30yes302200222
52469874no5yes30220041
Sum6060 13013700426

_______________________________W____________________W_WR_W______
__R______W__________________________W____W___W__________________
_WR____________R______..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-224534220/615/737_
47.01613112498280.01.181.31
206.81.12.187http/1.1vii.za.com:443GET /_all_dbs HTTP/1.1

0-224534220/619/730_
46.99202324010.01.031.19
195.178.110.155http/1.15.78.79.22:80GET /dist/ HTTP/1.1

0-224534220/626/749_
46.91602809460.01.261.37
104.23.253.43http/1.1

0-224534220/625/743_
46.8875642424360.00.890.95
34.69.137.105http/1.1cqocxh.za.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/598/714_
46.88510022509980.01.111.34
206.189.153.179http/1.1scfoyt.za.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/666/804_
47.01502902520.00.911.20
164.92.244.132http/1.1ob1.howvps.com:443GET /.DS_Store HTTP/1.1

0-224534220/618/729_
46.89213152546770.00.930.98
104.248.190.80http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/610/718_
46.9835752506210.01.231.43
206.189.153.179http/1.1scfoyt.za.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/647/769_
47.01702677270.01.321.49
195.178.110.155http/1.15.78.79.22:80GET /vendor/stripe/ HTTP/1.1

0-224534220/629/748_
46.98502908520.01.401.58
51.68.107.144http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-224534220/636/751_
46.94502494550.01.211.49
27.50.29.178http/1.1gll5.sa.com:80GET /wp-content/fw.php HTTP/1.1

0-224534220/603/707_
46.89102623430.01.021.17
195.178.110.155http/1.15.78.79.22:80GET /routes/stripe.js HTTP/1.1

0-224534220/610/723_
47.0226372215900.01.001.26
159.89.132.199http/1.1vii.za.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/634/759_
47.03002095770.01.081.19
164.92.244.132http/1.1ob1.howvps.com:443GET /config.json HTTP/1.1

0-224534220/625/746_
46.98302530220.01.481.66
195.178.110.155http/1.1ob1.howvps.com:443GET /app.js HTTP/1.1

0-224534220/652/788_
47.0156642835670.00.961.37
34.74.251.22http/1.1cfkpuax.sa.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/612/736_
46.94813792293220.01.231.49
206.81.12.187http/1.1vii.za.com:443GET /v2/api-docs HTTP/1.1

0-224534220/624/734_
47.0015942569500.01.141.30
206.189.153.179http/1.1scfoyt.za.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/605/725_
46.93003271080.01.051.13
195.178.110.155http/1.15.78.79.22:80GET /Dockerfile HTTP/1.1

0-224534220/645/774_
46.90114232606750.01.181.42
34.74.251.22http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/648/760_
47.0075982663620.01.141.39
34.74.251.22http/1.1cfkpuax.sa.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/626/744_
46.9605962779630.00.791.00
34.74.251.22http/1.1cfkpuax.sa.com:443POST //xmlrpc.php HTTP/1.1

0-224534220/626/741_
47.03202608440.01.011.30
157.245.80.216http/1.1pv2002.org:80GET /lotus/lotus_elise_service_manual_repair_manual.pdf HTTP/1.

0-224534220/616/734_
47.01602222570.01.421.55
20.51.232.10http/1.1gneno.za.com:80GET / HTTP/1.1

0-224534220/614/737_
47.03213138970.01.051.12
104.248.122.202http/1.1pv2002.org:80GET /neon/neon_genesis_evangelion_3in1_tp_vol_03_c_1_0_1.pdf HT

1-224534230/143/445_
12.403457973740.00.110.67
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-includes/images/index.php HTTP/1.1

1-224534230/158/436_
12.3875641225160.00.360.77
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-conflg/function.php HTTP/1.1

1-224534230/135/436_
12.3944492287500.00.581.02
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-includes/PHPMailer/index.php HTTP/1.1

1-224534230/137/414_
12.34165521099500.00.110.52
20.196.91.230http/1.1bradescomarca.za.com:443GET /admin.php HTTP/1.1

1-224534230/145/450_
12.4305071394480.00.210.73
20.196.91.230http/1.1bradescomarca.za.com:443GET /404.php HTTP/1.1

1-224534230/128/425_
12.3955181183430.00.322.47
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-content/languages/index.php HTTP/1.1

1-2245342345/137/439W
12.34001708000.00.300.91
20.196.91.230http/1.1bradescomarca.za.com:443GET /akcc.php HTTP/1.1

1-224534230/138/436_
12.3794941294590.00.170.70
20.196.91.230http/1.1bradescomarca.za.com:443GET /mah/function.php HTTP/1.1

1-224534230/142/447_
12.35146341260760.00.261.00
20.196.91.230http/1.1bradescomarca.za.com:443GET /chosen.php HTTP/1.1

1-224534230/145/435_
12.42201456810.00.160.70
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-includes/js/dist/development HTTP/1.1

1-224534230/146/446_
12.35155242193030.00.140.55
20.196.91.230http/1.1bradescomarca.za.com:443GET /adminfuns.php HTTP/1.1

1-224534230/153/442_
12.42271385240.00.370.84
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-includes/js/dist/development/ HTTP/1.1

1-224534230/140/433_
12.36125131854580.01.532.14
20.196.91.230http/1.1bradescomarca.za.com:443GET /edit.php HTTP/1.1

1-224534230/140/436_
12.39531157680.00.290.68
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-content/languages/ HTTP/1.1

1-224534230/146/456_
12.2965551238910.00.280.82
20.196.91.230http/1.1bradescomarca.za.com:443GET /bless.php HTTP/1.1

1-224534230/148/442_
12.40431832270.00.290.72
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-includes/PHPMailer/ HTTP/1.1

1-224534230/154/438_
12.4314991908010.00.450.72
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-user.php HTTP/1.1

1-224534230/151/445_
12.3965221307280.00.170.73
20.196.91.230http/1.1bradescomarca.za.com:443GET /wp-content/admin.php HTTP/1.1

1-224534230/126/411_
12.386387839460.00.260.59
185.201.188.58http/1.1tv88y.net:443POST //xmlrpc.php HTTP/1.1

1-224534230/146/474_
12.37106111522630.00.230.71
20.196.91.230http/1.1bradescomarca.za.com:443GET /k.php HTTP/1.1

1-224534230/131/426_
12.3611510

Found on 2025-12-14 09:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c24f2830d4

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Saturday, 13-Dec-2025 15:02:37 UTC
Restart Time: Saturday, 13-Dec-2025 06:53:13 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  8 hours 9 minutes 24 seconds
Server load: 3.29 2.88 2.94
Total accesses: 352398 - Total Traffic: 957.6 MB - Total Duration: 388397482
CPU Usage: u752.42 s203.34 cu97.75 cs27.43 - 3.68% CPU load
12 requests/sec - 33.4 kB/second - 2849 B/request - 1102.16 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 146 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
01821953no10yes20230071
11822041no6yes10240051
21821951no0yes10240000
31824349no0yes00250000
41833522no0yes00250000
51821952no5yes00250041
Sum6021 4014600163

________________W_______W_____________________W____W____________
________________________________________________________________
______________________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-418219530/4295/4484_
313.871121744060.09.259.75
2a01:4ff:1f0:c305::1http/1.1888toe.com:443POST /wp-cron.php?doing_wp_cron=1765638151.46412491798400878906

0-418219530/4301/4494_
313.903311619206130.010.9611.67
45.90.60.115http/1.1ametist-parik.ru.com:443GET /zxDLJZ HTTP/1.1

0-418219530/4428/4609_
313.90362119733590.08.779.32
216.244.66.242http/1.1gdarst.sa.com:80GET /in/in_search_of_chin_identity_a_study_of_religion_politics

0-418219530/4315/4497_
313.734020179750.09.4310.51
66.249.77.224http/1.1ob1.howvps.com:443GET /sicbo-online/ HTTP/1.1

0-418219530/4381/4573_
313.831018229390.010.2110.62
146.190.63.248http/1.1ob1.howvps.com:443GET /@vite/env HTTP/1.1

0-418219530/4319/4511_
313.902018854430.010.0910.60
167.99.210.143http/1.15.78.79.22:80GET / HTTP/1.1

0-418219530/4335/4520_
313.890019342150.010.0210.49
146.190.63.248http/1.1ob1.howvps.com:443GET /about HTTP/1.1

0-418219530/4374/4569_
313.86052019103240.09.6610.56
216.244.66.242http/1.1gdarst.sa.com:80GET /if/if_anyone_thirsts_let_that_one_come_to_me_and_drink_the

0-418219530/4357/4545_
313.874223021327280.011.0711.74
34.75.209.160http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

0-418219530/4301/4476_
313.663021245670.010.1810.55
2a03:2880:24ff:73::http/1.1ob1.howvps.com:443GET /wp-content/uploads/2020/03/ZANGO.jpg HTTP/1.1

0-418219530/4392/4583_
313.912120907690.010.5710.92
198.199.123.58http/1.1pv2002.org:80GET /the/the_capital_budgeting_decision_ninth_edition_economic_

0-418219530/4384/4561_
313.89052520430000.011.2511.76
216.244.66.242http/1.1gdarst.sa.com:80GET /important/important_documents_on_security_and_diplomacy.pd

0-418219530/4310/4492_
313.662120129190.09.5810.04
146.190.63.248http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-418219530/4425/4619_
313.902018533260.09.289.70
64.227.70.2http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

0-418219530/4391/4586_
313.810174320449120.09.549.96
136.117.255.238http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

0-418219530/4466/4649_
313.92061819945880.09.6710.33
216.244.66.242http/1.1gdarst.sa.com:80GET /indian/indian_americas_unfinished_business_repo.pdf HTTP/1

0-418219534/4426/4635W
313.771020585930.09.5210.87
176.53.223.76http/1.1ametist-parik.ru.com:443GET /lander/sber/ HTTP/1.1

0-418219530/4389/4591_
313.89442017325440.010.7811.22
182.43.68.38http/1.1888toe.com:443POST /xmlrpc.php HTTP/1.1

0-418219530/4431/4627_
313.730019457490.010.1910.70
146.190.63.248http/1.1ob1.howvps.com:443GET /swagger/index.html HTTP/1.1

0-418219530/4411/4597_
313.87143219044800.09.419.91
182.43.68.38http/1.1888toe.com:443POST /xmlrpc.php HTTP/1.1

0-418219530/4403/4603_
313.920018281570.09.6410.21
64.227.70.2http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-418219530/4354/4543_
313.894018401700.09.8810.33
205.210.31.164http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-418219530/4313/4479_
313.880018625350.09.269.60
64.227.70.2http/1.1ob1.howvps.com:443GET /.vscode/sftp.json HTTP/1.1

0-418219530/4368/4543_
313.833020004230.010.4910.91
146.190.63.248http/1.1ob1.howvps.com:443GET /api/swagger.json HTTP/1.1

0-418219531/4316/4503W
313.850018152750.010.7211.21
136.117.255.238http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

1-418220410/4437/4467_
322.11649719671150.09.449.88
216.244.66.242http/1.1gdarst.sa.com:80GET /how/how_to_get_your_wife_in_the_mood_quick_and_easy_tips_f

1-418220410/4431/4460_
322.155019157370.010.7410.99
64.227.70.2http/1.1ob1.howvps.com:443GET /api/swagger.json HTTP/1.1

1-418220410/4446/4487_
322.141118688550.010.7110.93
176.53.220.1http/1.1ww8838.com:80GET /zxDLJZ HTTP/1.1

1-418220410/4463/4476_
322.183020041510.09.459.64
64.227.70.2http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-418220410/4470/4494_
322.192315620806860.023.8223.98
136.117.255.238http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

1-418220410/4394/4408_
322.135247018643420.010.6110.71
34.75.209.160http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

1-418220410/4411/4432_
322.081118548830.010.2910.54
176.53.217.174http/1.1ww8838.com:443GET /28kxhS HTTP/1.1

1-418220410/4442/4480_
322.166017894240.011.0611.27
64.227.70.2http/1.1ob1.howvps.com:443GET /server HTTP/1.1

1-418220410/4489/4500_
322.191320086780.010.7810.91
146.190.63.248http/1.1ob1.howvps.com:443GET /server-status HTTP/1.1

1-418220410/4390/4416_
322.192019800810.010.2210.49
64.227.70.2http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

1-418220410/4375/4396_
322.096173519794750.010.6010.85
34.75.209.160http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

1-418220410/4493/4528_
322.19037817892000.09.369.56
182.43.68.38http/1.1888toe.com:443POST /xmlrpc.php HTTP/1.1

1-418220410/4464/4482_
322.06654618579490.011.4511.62
216.244.66.242http/1.1gdarst.sa.com:80GET /honda/honda_fit_manuals_transmission_for_sale_philippines.

1-418220410/4391/4409_
322.116020311750.010.0710.36
146.190.63.248http/1.1ob1.howvps.com:443GET /v2/api-docs HTTP/1.1

1-418220410/4396/4410_
322.042201519922710.010.9011.04
136.117.255.238http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

1-418220410/4439/4456_
322.193020472750.010.4510.62
146.190.63.248http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

1-418220410/4509/4535_
322.200018291330.09.499.69
146.190.63.248http/1.1ob1.howvps.com:443GET /login.action HTTP/1.1

1-418220410/4445/4463_
322.185250818630420.011.1511.58
34.75.209.160http/1.1ametist-parik.ru.com:443POST //xmlrpc.php HTTP/1.1

1-418220410/4429/4450_
321.99537220146520.09.839.99
182.43.68.38http/1.1888toe.com:443POST /xmlrpc.php HTTP/1.1

Found on 2025-12-13 15:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2a20937f7

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Wednesday, 10-Dec-2025 06:43:40 UTC
Restart Time: Wednesday, 10-Dec-2025 03:08:46 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 hours 34 minutes 54 seconds
Server load: 5.82 6.43 5.78
Total accesses: 615764 - Total Traffic: 4.5 GB - Total Duration: 424495248
CPU Usage: u94.16 s24.75 cu1634.8 cs387.58 - 16.6% CPU load
47.8 requests/sec - 370.0 kB/second - 7.7 kB/request - 689.38 ms/request
13 requests currently being processed, 0 workers gracefully restarting, 237 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
04103320no4yes30220010
14104021no33yes402100301
44101359no35yes002500331
54103606no35yes102400321
64096386no6yes00250051
74102142no0yes00250000
94103662no0yes00250000
104103719no3yes10240020
134102580no37yes402100341
144102581no10yes00250071
Sum100163 130237001446

_____W_________WW________W_W________________RW____..............
....................................____________________________
___________________W____________________________________________
________........................._______________________________
_____W_____________.............................................
.....________W_______W_W___R___________________________.........
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-041033200/58/2089_
5.9106000610249960.00.4317.44
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/rss/ HTTP/1.1

0-041033200/68/2520_
5.879010063930.00.5321.50
104.23.175.203http/1.1

0-041033200/67/1794_
5.845011720470.00.6512.96
161.248.98.158http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/42/1722_
5.854511808200.00.4512.77
161.248.98.158http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/76/1735_
5.835011284990.00.5512.16
162.158.193.211http/1.1

0-041033208/70/1720W
5.890011685600.00.7512.77
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/ HTTP/1.1

0-041033200/72/2053_
5.854011337550.00.5316.75
161.248.98.158http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/66/2749_
5.89949660670.00.5625.16
183.81.64.120http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/65/1771_
5.836010797780.00.5812.04
172.71.82.124http/1.1

0-041033200/71/1696_
5.816011152400.00.6012.45
162.158.114.194http/1.1

0-041033200/69/1795_
5.879011225560.00.3813.27
104.23.175.203http/1.1

0-041033200/71/1741_
5.899411841840.00.5512.08
183.81.64.120http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/69/2046_
5.874011188570.00.5916.39
14.247.54.18http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/73/1938_
5.912011155030.00.4816.09
157.15.38.146http/1.1af88-app.usc.tf:443POST / HTTP/1.1

0-041033200/62/1858_
5.846110817030.00.4814.89
161.248.98.158http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033201/54/1688W
5.0059011391760.00.4012.12
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/rss/ HTTP/1.1

0-041033201/63/1706W
5.2144012057730.00.4012.43
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/rss/ HTTP/1.1

0-041033200/75/1769_
5.909411368860.00.5812.94
183.81.64.120http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/68/1737_
5.899011435360.00.5312.44
183.81.64.120http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/73/1722_
5.874011128750.00.5512.67
14.247.54.18http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/45/1725_
5.816011669860.00.4812.76
172.71.215.121http/1.1

0-041033200/43/1725_
5.913011775580.00.3611.69
113.187.23.55http/1.1af88-app.usc.tf:443POST / HTTP/1.1

0-041033200/66/2099_
5.846410867120.00.5518.70
161.248.98.158http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/65/2453_
5.874010511570.00.6421.04
14.247.54.18http/1.1af88-app.usc.tf:443GET / HTTP/1.1

0-041033200/62/2050_
5.884011040590.00.4216.08
14.247.54.18http/1.1af88-app.usc.tf:443GET / HTTP/1.1

1-041040211/10/1922W
1.060011603880.00.1712.57
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/ HTTP/1.1

1-041040210/10/1954_
1.072012123470.00.1713.76
157.15.38.146http/1.1af88-app.usc.tf:443GET / HTTP/1.1

1-041040211/9/2665W
1.07009751440.00.1024.48
146.190.63.48http/1.1ob1.howvps.com:443GET /server-status HTTP/1.1

1-041040210/7/1970_
0.792011355450.00.0713.84
117.7.197.3http/1.1af88-app.usc.tf:443POST / HTTP/1.1

1-041040210/14/2023_
1.11155410297310.00.1514.40
34.53.10.156http/1.1nn8818.com:443POST //xmlrpc.php HTTP/1.1

1-041040210/10/1897_
1.111012006140.00.0812.87
216.244.66.238http/1.1viptv19.ru.com:80GET /wp-content/uploads/2019/01/griyarenovasi.jpg HTTP/1.1

1-041040210/11/2453_
1.1206509883490.00.1220.36
34.44.184.175http/1.1wikimail.in.net:443POST //xmlrpc.php HTTP/1.1

1-041040210/9/1883_
1.012411737660.00.0512.01
113.187.23.55http/1.1af88-app.usc.tf:443GET / HTTP/1.1

1-041040210/7/1951_
1.01268512099860.00.1013.15
35.190.154.84http/1.1tv888.club:443POST //xmlrpc.php HTTP/1.1

1-041040210/10/1899_
1.012011456420.00.1513.70
113.187.23.55http/1.1af88-app.usc.tf:443GET / HTTP/1.1

1-041040210/9/1928_
1.09245712016710.00.1713.41
136.117.99.199http/1.1alookking.com:80POST /xmlrpc.php HTTP/1.1

1-041040210/11/1968_
1.032511453720.00.1513.97
157.15.38.146http/1.1af88-app.usc.tf:443POST / HTTP/1.1

1-041040210/9/1913_
1.012411969940.00.1012.47
113.187.23.55http/1.1af88-app.usc.tf:443POST / HTTP/1.1

1-041040210/8/1992_
1.012012421560.00.1513.84
113.187.23.55http/1.1af88-app.usc.tf:443GET / HTTP/1.1

1-041040210/9/2218_
1.061811606190.00.1515.36
157.15.38.146http/1.1af88-app.usc.tf:443GET / HTTP/1.1

1-041040210/8/1970_
1.07056011908500.00.1013.24
34.53.10.156http/1.1nn8818.com:443POST //xmlrpc.php HTTP/1.1

1-041040210/11/1923_
1.081411586430.00.1212.21
157.15.38.146http/1.1af88-app.usc.tf:443POST / HTTP/1.1

1-041040210/8/1884_
1.070411327880.00.1012.10
157.15.38.146http/1.1af88-app.usc.tf:443POST / HTTP/1.1

1-041040210/12/1954_
1.111111109350.00.1213.18
158.94.210.13http/1.1modern-group.jpn.com:443GET /wp-includes/blocks/audio/index.php HTTP/1.1

1-041040210/11/1931R
1.092511501790.00.1012.66
172.69.6.221http/1.1cqocxh.za.com:443

1-041040211/9/1892W
1.000011653600.00.1012.07
34.44.184.175

Found on 2025-12-10 06:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c22e27260f

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Monday, 08-Dec-2025 02:21:46 UTC
Restart Time: Sunday, 07-Dec-2025 03:50:33 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  22 hours 31 minutes 13 seconds
Server load: 4.36 3.96 3.80
Total accesses: 2885958 - Total Traffic: 2.5 GB - Total Duration: 1977814741
CPU Usage: u1372.51 s410.3 cu3885.5 cs797.55 - 7.98% CPU load
35.6 requests/sec - 32.7 kB/second - 940 B/request - 685.323 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 242 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
02196200no0yes00250000
12156465no2yes00250020
22156409no19yes202300152
52169139no15yes601900101
62169169no3yes00250021
82169259no0yes00250000
92169288no0yes00250000
102169320no0yes00250000
122196232no0yes00250000
152196291no0yes00250000
Sum10039 8024200294

________________________________________________________________
________WW_..................................................___
_________W_WW___W___RW_________________________.................
........________________________________________________________
___________________.........................____________________
_____.................................................._________
________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-821962000/18/10588_
6.0563052797450.00.1312.12
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/dieu-khoan-va-dieu-kien-bet88-k

0-821962000/13/9788_
6.43816054619320.00.1210.24
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-821962000/13/9716_
6.39676154792030.00.0410.19
165.227.84.167http/1.1pv2002.org:80GET /why/why_does_my_book_not_sell_20_simple_fixes_indie_publis

0-821962000/12/8632_
5.41341057530380.00.169.35
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

0-821962000/22/9873_
6.62346054016780.00.2411.05
40.77.167.7http/1.1ob1.howvps.com:443GET /tag/oldest-university-in-the-world/ HTTP/1.1

0-821962000/18/9044_
6.4980952255095530.00.169.95
142.93.212.73http/1.1tp8866.com:443POST //xmlrpc.php HTTP/1.1

0-821962000/18/8334_
6.44809159857820.00.159.68
159.89.86.229http/1.1pv2002.org:80GET /the/the_mixing_engineers_handbook_mix_pro_audio_series.pdf

0-821962000/15/8965_
6.47349053367350.00.1110.01
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/dang-ky-bet88-dang-nhap-768x384

0-821962000/20/10199_
6.49341055613120.00.3210.77
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/luat-da-ga-mien-bac-chien-ke.jp

0-821962000/22/8796_
6.50799057054590.00.1310.09
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

0-821962000/13/9874_
6.52737154406590.00.2011.11
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

0-821962000/22/8747_
5.77816054923460.00.479.89
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/so-mo-lo-de-bet88-150x150.jpg H

0-821962000/13/9874_
6.49632453507070.00.189.99
2a01:4ff:1f0:c305::1http/1.1sexywaysofreading.com:443POST /wp-cron.php?doing_wp_cron=1765159685.27881693840026855468

0-821962000/13/9740_
5.38794058481170.00.1410.57
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-choi-poker-bet88.jpg HTTP/

0-821962000/16/7915_
6.44793055033520.00.198.71
85.208.96.198http/1.1yachtcharter.uk.net:443GET /dang-ky-3win/ HTTP/1.1

0-821962000/17/10118_
6.69681455690460.00.0910.89
98.170.57.231http/1.1wikimail.in.net:443GET /html-sitemap/ HTTP/1.1

0-821962000/16/8782_
6.08732058278780.00.549.78
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-150x150.jpg HTT

0-821962000/17/8924_
6.52737056527290.00.169.72
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

0-821962000/19/8476_
6.24709053703450.00.3310.20
142.93.0.66http/1.1ob1.howvps.com:443GET /config.json HTTP/1.1

0-821962000/21/10761_
6.2073229850384810.00.3510.40
142.93.212.73http/1.1tp8866.com:443POST //xmlrpc.php HTTP/1.1

0-821962000/16/10085_
6.54681254366300.00.0310.67
216.244.66.230http/1.1ww8838.com:443GET /?main_page=product_reviews_write&products_id=4988&number_o

0-821962000/20/8183_
6.46732057886280.00.249.92
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/ban-ca-30-bet88-khuyen-mai-dac-

0-821962000/16/9374_
6.5271053052645360.00.409.45
142.93.212.73http/1.1tp8866.com:443POST //xmlrpc.php HTTP/1.1

0-821962000/17/8606_
6.47676152408360.00.119.14
2a01:4ff:1f0:c305::1http/1.133890.top:443POST /wp-cron.php?doing_wp_cron=1765159619.24185895919799804687

0-821962000/18/9345_
6.6134955054217070.00.149.70
212.50.191.121http/1.1hmps.in.net:443POST //xmlrpc.php HTTP/1.1

1-821564650/2313/9397_
172.262066211210.03.9612.88
37.27.51.139http/1.15.78.79.22:80GET /robots.txt HTTP/1.1

1-821564650/2346/10729_
172.127063205990.03.7512.60
139.59.132.8http/1.1ob1.howvps.com:443GET /swagger/v1/swagger.json HTTP/1.1

1-821564650/2327/9952_
172.24963062773660.02.6811.28
103.221.232.104http/1.1mti.za.com:443POST /xmlrpc.php HTTP/1.1

1-821564650/2342/11794_
172.207061927430.03.5712.55
114.119.129.4http/1.1cazcoin.io:443GET /case-studies-style5/ HTTP/1.1

1-821564650/2322/10319_
172.16968860694110.03.4711.38
34.132.158.80http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

1-821564650/2332/9346_
172.26555565493140.03.1810.21
212.50.191.121http/1.1hmps.in.net:443POST //xmlrpc.php HTTP/1.1

1-821564650/2359/10548_
172.2010064969370.03.2310.89
216.244.66.229http/1.15.78.79.22:80GET /category/fusfetisch-dating-bewertung/feed/ HTTP/1.1

1-821564650/2325/10820_
172.087061648850.03.1411.17
129.212.230.184http/1.15.78.79.22:80GET /index.php?3x=3x HTTP/1.1

1-821564650/2319/9264_
172.264163323540.03.4112.10
87.251.78.46http/1.1ww8838.com:443GET /i.php HTTP/1.1

1-821564650/2405/11159_
172.241041365680450.03.3713.05
136.119.219.67http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-821564650/2413/10092_
172.2010064460230.03.2711.54
129.212.230.184http/1.1ob1.howvps.com:443GET /wp-content/plugins/sid/sidwso.php HTTP/1.1

1-821564650/2332/10778_
172.16622663851480.03.0811.65
142.93.212.73http/1.1tp8848.com:80POST /xmlrpc.php HTTP/1.1

1-821564650/2341/10818_
172.231063074100.03.3711.24
157.245.204.205http/1.1ob1.howvps.com:443GET /swagger.json HTTP/1.1

1-821564650/2340/9162_
172.267164165610.03.8612.54
87.251.78.46http/1.1ww8838.com:443GET /php_info.php HTTP/1.1

1-821564650/2324/11121_
172.270062063430.03.4511.65
144.76.32.235http/1.15.78.79.22:80GET /robots.txt HTTP/1.1

1-821564650/2342/9546_
172.207163635140.03.4712.45
108.143.65.196http/1.1barnhomeusa.za.com:443GET /postnews.php HTTP/1.1

Found on 2025-12-08 02:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c285f22300

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 05-Dec-2025 03:51:08 UTC
Restart Time: Friday, 05-Dec-2025 03:14:27 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  36 minutes 41 seconds
Server load: 1.17 1.80 1.98
Total accesses: 29167 - Total Traffic: 46.0 MB - Total Duration: 6920578
CPU Usage: u73.26 s17.48 cu0 cs0 - 4.12% CPU load
13.3 requests/sec - 21.4 kB/second - 1653 B/request - 237.274 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 124 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
0440461no0yes00250000
1440464no0yes00250000
2440466no4yes00250031
3440582no4yes00250021
4450517no3yes10240021
Sum5011 101240073

________________________________________________________________
________________________________________W____________________...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-04404610/80/80_
6.3849227162310.00.130.13
62.60.130.210http/1.1vwin365.net:443GET /wp-admin/index.php HTTP/1.1

0-04404610/72/72_
6.3776206255600.00.020.02
62.60.130.210http/1.1vwin365.net:443GET /wp-admin/profile.php HTTP/1.1

0-04404610/84/84_
6.3776669258460.00.030.03
2405:4802:6f29:21d0:4a2:423d:b63d:4fchttp/1.1gxfzcwgo.sa.com:443GET /khuyen-mai-13win/ HTTP/1.1

0-04404610/78/78_
6.3677250213770.00.200.20
62.60.130.210http/1.1vwin365.net:443GET /wp-admin/index.php HTTP/1.1

0-04404610/78/78_
6.41761151570.00.150.15
2a01:4ff:1f0:c305::1http/1.1vwin365.net:443POST /wp-cron.php?doing_wp_cron=1764906591.86448192596435546875

0-04404610/77/77_
6.3592514180700.00.140.14
2405:4802:6f29:21d0:4a2:423d:b63d:4fchttp/1.1gxfzcwgo.sa.com:443GET /ceo-dang-quoc-tien/ HTTP/1.1

0-04404610/85/85_
6.3771223241980.00.160.16
62.60.130.210http/1.1vwin365.net:443GET /wp-admin/edit.php HTTP/1.1

0-04404610/76/76_
6.3992230144170.00.070.07
62.60.130.210http/1.1vwin365.net:443GET /wp-admin/profile.php HTTP/1.1

0-04404610/78/78_
6.40891263110.00.150.15
192.241.159.93http/1.1pv2002.org:80GET /letter/letter_sound_fluency_assessment.pdf HTTP/1.1

0-04404610/79/79_
6.34740176660.00.090.09
172.68.211.25http/1.1

0-04404610/80/80_
6.39921252810.00.140.14
167.172.140.60http/1.1pv2002.org:80GET /letter/letter_sound_fluency_assessment.pdf HTTP/1.1

0-04404610/87/87_
6.38920258210.00.120.12
62.60.130.210http/1.1vwin365.net:443GET /wp-login.php?redirect_to=https%3A%2F%2Fvwin365.net%2Fwp-ad

0-04404610/79/79_
6.34590151260.00.080.08
4.230.47.183http/1.15.78.79.22:80GET /shop/ HTTP/1.1

0-04404610/73/73_
6.4081767264760.00.120.12
136.243.220.209http/1.1profremont.ru.com:443GET /trang-mau/feed/ HTTP/1.1

0-04404610/80/80_
6.34710212050.00.110.11
4.230.47.183http/1.15.78.79.22:80GET /template/ HTTP/1.1

0-04404610/74/74_
6.41640170140.00.050.05
216.73.216.146http/1.1ob1.howvps.com:443GET /en/2021/07/25/lightweight-hair-beauty-salon-bejeweled-2-sl

0-04404610/80/80_
6.3849199188920.00.110.11
62.60.130.210http/1.1vwin365.net:443POST /wp-login.php HTTP/1.1

0-04404610/77/77_
6.36771109380.00.040.04
62.60.130.210http/1.1vwin365.net:443GET /wp-login.php?redirect_to=https%3A%2F%2Fvwin365.net%2Fwp-ad

0-04404610/81/81_
6.31840371400.00.070.07
62.60.130.210http/1.1vwin365.net:443GET /wp-login.php?redirect_to=https%3A%2F%2Fvwin365.net%2Fwp-ad

0-04404610/78/78_
6.417914141680.00.200.20
212.8.248.108http/1.1buitreo.sa.com:443GET / HTTP/1.1

0-04404610/76/76_
6.42540163980.00.060.06
186.22.225.77http/1.1ob1.howvps.com:443GET /author/ww8838/ HTTP/1.1

0-04404610/76/76_
6.37740144790.00.020.02
62.60.130.210http/1.1vwin365.net:443GET /wp-login.php?redirect_to=https%3A%2F%2Fvwin365.net%2Fwp-ad

0-04404610/88/88_
6.32840269610.00.150.15
4.230.47.183http/1.15.78.79.22:80GET /Public/ HTTP/1.1

0-04404610/77/77_
6.3859212184980.00.010.01
62.60.130.210http/1.1vwin365.net:443GET /wp-admin/plugins.php HTTP/1.1

0-04404610/79/79_
6.40820164770.00.090.09
136.243.228.194http/1.13win.za.com:443GET /trang-mau/feed/ HTTP/1.1

1-04404640/150/150_
11.85231272850.00.490.49
209.97.180.8http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-04404640/141/141_
11.758894351160.00.170.17
137.184.110.227http/1.1gdarst.sa.com:443GET /kenmore/kenmore_ultrasoft_800_manual.pdf HTTP/1.1

1-04404640/154/154_
11.70221274520.00.360.36
104.248.55.50http/1.123win68.com:443GET /kenmore/kenmore_ultrasoft_800_manual.pdf HTTP/1.1

1-04404640/131/131_
11.74100170550.00.190.19
107.178.110.130http/1.1rwinds.com:443GET /wp-login.php?action=register HTTP/1.1

1-04404640/127/127_
11.76221258730.00.150.15
4.230.47.183http/1.11705.cn.com:80GET /admin/uploads/images/ HTTP/1.1

1-04404640/159/159_
11.80180300870.00.130.13
17.241.227.41http/1.1ob1.howvps.com:443GET /ru/art/bahis-siteleri-guncel-giris-adresleri-nasil-ogrenil

1-04404640/139/139_
11.8519654339590.00.170.17
64.227.13.157http/1.1gdarst.sa.com:443GET /2004/2004_cyamaha_v_star_650_service_manual.pdf HTTP/1.1

1-04404640/152/152_
11.71221283460.00.170.17
4.230.47.183http/1.11705.cn.com:80GET /wp-includes/sitemaps/ HTTP/1.1

1-04404640/140/140_
11.70331262170.00.340.34
4.230.47.183http/1.11705.cn.com:80GET /wp-includes/sodium_compat/src/ HTTP/1.1

1-04404640/147/147_
11.8615366257290.00.290.29
146.190.69.139http/1.1gdarst.sa.com:443GET /2004/2004_cyamaha_v_star_650_service_manual.pdf HTTP/1.1

1-04404640/138/138_
11.86132249060.00.200.20
152.53.187.237http/1.1ww8838.com:443GET /tag/%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF-skype-%D9%86%D9%8

1-04404640/150/150_
11.82270266130.00.140.14
167.99.159.211http/1.1pv2002.org:80GET /2004/2004_cyamaha_v_star_650_service_manual.pdf HTTP/1.1

1-04404640/143/143_
11.83231480320530.00.110.11
167.99.159.211http/1.1gdarst.sa.com:443GET /2004/2004_cyamaha_v_star_650_service_manual.pdf HTTP/1.1

1-04404640/152/152_
11.85200391620.00.440.44
209.97.180.8http/1.1ob1.howvps.com:443POST /graphql/api HTTP/1.1

1-04404640/139/139_
11.82321226550.00.230.23
206.189.194.33http/1.1pv2002.org:80GET /highlander/highlander_2012_maintenance_schedule_user_manua

1-04404640/148/148_
11.70222381780.00.210.21
4.230.47.183http/1.11705.cn.com:80GET /wp-includes/php-compat/ HTTP/1.1

1-04404640/135/135_
11.82101255800.00.180.18
27.2.201.6http/1.1m.13win.be:443GET /wp-content/uploads/2025/12/meo-choi-tai-xiu-online-150x150

1-04404640/141/141_
11.7481299210.00.130.13
4.230.47.183http/1.11705.cn.com:80GET /admin/fckeditor/editor/filemanager/ HTTP/1.1

1-04404640/137/137_
11.82270236180.00.140.14
159.203.183.28http/1.1pv2002.org:80GET /highlander/highlander_2012_maintenance_schedule_user_manua

1-04404640/161/161_
11.7815404337630.00.320.32
195.178.110.158http/1.1gxfzcwgo.sa.com:44

Found on 2025-12-05 03:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c282c1bedc

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Tuesday, 02-Dec-2025 04:42:07 UTC
Restart Time: Tuesday, 02-Dec-2025 03:35:28 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 6 minutes 39 seconds
Server load: 1.14 1.49 1.55
Total accesses: 38426 - Total Traffic: 105.9 MB - Total Duration: 10397737
CPU Usage: u107.78 s26.19 cu0 cs0 - 3.35% CPU load
9.61 requests/sec - 27.1 kB/second - 2889 B/request - 270.591 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 146 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
02650624no0yes00250000
12650626no2yes00250020
22650628no1yes00250010
32650732no9yes10240081
42658704no33yes202300302
53047629no13yes102400111
Sum6058 4014600524

________________________________________________________________
_________________________W__________L__________R________________
__________W___________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-026506240/50/50_
5.29160171900.00.110.11
147.182.149.75http/1.15.78.79.22:80GET /api-docs/swagger.json HTTP/1.1

0-026506240/44/44_
5.1476551870.00.040.04
23.94.6.216http/1.1hmps.in.net:443GET /html-sitemap/ HTTP/1.1

0-026506240/48/48_
5.32510107840.00.030.03
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-026506240/47/47_
5.271060258160.00.040.04
172.69.224.148http/1.1

0-026506240/53/53_
5.28590103880.00.110.11
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/khuyen-mai-bet88-dieu-kien.jpg 

0-026506240/53/53_
5.29460252040.00.150.15
147.182.149.75http/1.15.78.79.22:80POST /api/gql HTTP/1.1

0-026506240/63/63_
5.231040231750.00.080.08
2402:9d80:223:19a9:a194:445d:ca47:becfhttp/1.1m.slot365kh.com:443GET /wp-content/themes/flatsome/inc/extensions/flatsome-instant

0-026506240/56/56_
5.34210337230.00.290.29
142.93.0.66http/1.15.78.79.22:80POST /api/gql HTTP/1.1

0-026506240/58/58_
5.32810143500.00.120.12
195.178.110.201http/1.1ob1.howvps.com:443GET /aws-config.js HTTP/1.1

0-026506240/49/49_
5.29460178270.00.140.14
147.182.149.75http/1.15.78.79.22:80GET /swagger/swagger-ui.html HTTP/1.1

0-026506240/56/56_
5.29460127410.00.130.13
147.182.149.75http/1.15.78.79.22:80POST /api/graphql HTTP/1.1

0-026506240/57/57_
5.2946047340.00.040.04
147.182.149.75http/1.15.78.79.22:80GET /webjars/swagger-ui/index.html HTTP/1.1

0-026506240/55/55_
5.32510146090.00.150.15
165.22.176.31http/1.15.78.79.22:80GET /wp-login.php HTTP/1.1

0-026506240/54/54_
5.3110934375720.00.130.13
87.250.224.74http/1.1alldown.ru.com:443GET /ovsnrowynd HTTP/1.1

0-026506240/50/50_
5.3322065730.00.290.29
142.93.0.66http/1.15.78.79.22:80POST /graphql HTTP/1.1

0-026506240/53/53_
5.32510152510.00.200.20
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

0-026506240/49/49_
5.2916047650.00.060.06
147.182.149.75http/1.15.78.79.22:80GET /swagger.json HTTP/1.1

0-026506240/59/59_
5.24590163310.00.260.26
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/rut-tien-bet88-300x150.jpg HTTP

0-026506240/54/54_
5.24104059570.00.070.07
2402:9d80:223:19a9:a194:445d:ca47:becfhttp/1.1m.slot365kh.com:443GET /wp-content/uploads/2025/09/2-300x300.webp HTTP/1.1

0-026506240/47/47_
5.27104148360.00.190.19
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-keo-bong-da-tai-bet88-1-768

0-026506240/58/58_
5.24104272210.00.270.27
2402:9d80:223:19a9:a194:445d:ca47:becfhttp/1.1m.slot365kh.com:443GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver

0-026506240/56/56_
5.2776061320.00.170.17
195.24.236.104http/1.1cbdoil.uk.com:443GET /hnhcezid.php?Fox=d3wL7 HTTP/1.1

0-026506240/53/53_
5.32640113670.00.150.15
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-choi-poker-bet88-768x384.j

0-026506240/49/49_
5.1146249394850.00.090.09
162.158.94.132http/1.1

0-026506240/54/54_
5.29460177050.00.120.12
138.199.35.10http/1.15.78.79.22:80GET / HTTP/1.1

1-026506260/111/111_
9.96251297220.00.470.47
206.189.2.13http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-026506260/113/113_
9.65800269070.00.240.24
172.71.151.211http/1.1

1-026506260/97/97_
9.6021343170.00.440.44
172.69.34.180http/1.1

1-026506260/108/108_
9.85610475540.00.160.16
172.71.95.97http/1.1

1-026506260/114/114_
9.967681185430.00.200.20
213.180.203.167http/1.1alldown.ru.com:443GET /wlidtsdsxo HTTP/1.1

1-026506260/117/117_
9.83600142970.00.130.13
143.110.213.72http/1.1ob1.howvps.com:443GET /s/031313e2135313e27363e2237313/_/;/META-INF/maven/com.atla

1-026506260/127/127_
9.9730244430.00.310.31
2600:1f14:804:fd01:2623:3ef:e773:6817http/1.1teampowerlevel.io:80GET /.well-known/acme-challenge/KxO_WOKd_QC8RWdDur6B-pjroQcWx4e

1-026506260/111/111_
9.7719084490.00.440.44
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/so-mo-lo-de-bet88-150x150.jpg H

1-026506260/124/124_
9.83600302240.00.450.45
143.110.213.72http/1.1ob1.howvps.com:443GET /.env HTTP/1.1

1-026506260/126/126_
9.76757196960.00.520.52
2a01:4ff:1f0:c305::1http/1.1ecosreda.ru.com:443POST /wp-cron.php?doing_wp_cron=1764650340.20935297012329101562

1-026506260/115/115_
9.84200157590.00.290.29
2406:da18:85:1400:3aed:e111:5bad:2a1dhttp/1.15.78.79.22:80GET /.well-known/acme-challenge/cnHemG6GmM86iMpZ20U1_67R6daQJuh

1-026506260/115/115_
9.95400356820.00.520.52
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/giay-phep-hoat-dong-bet88-cac-l

1-026506260/116/116_
9.9220288850.00.560.56
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-150x150.jpg HTT

1-026506260/127/127_
9.9740320810.00.320.32
206.189.2.13http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

1-026506260/103/103_
9.92801408040.00.470.47
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xep-hang-bai-poker-tay-bai.jpg 

1-026506260/115/115_
9.936612192250.00.330.33
142.147.109.234http/1.114leonbet.ru.com:443GET /html-sitemap/ HTTP/1.1

1-026506260/114/114_
9.82610224840.00.270.27
104.22.20.175http/1.1

1-026506260/110/110_
9.76759405930.00.300.30
2a01:4ff:1f0:c305::1http/1.1gdarst.sa.com:443POST /wp-cron.php?doing_wp_cron=1764650339.71243596076965332031

1-026506260/122/122_
9.9650160630.00.190.19
206.189.2.13http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-026506260/117/117_
9.61801450730.00.290.29
159.89.127.165http/1.1u

Found on 2025-12-02 04:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c290608dd2

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Tuesday, 02-Dec-2025 04:42:05 UTC
Restart Time: Tuesday, 02-Dec-2025 03:35:28 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 6 minutes 37 seconds
Server load: 1.07 1.48 1.54
Total accesses: 38396 - Total Traffic: 105.3 MB - Total Duration: 10396910
CPU Usage: u107.72 s26.17 cu0 cs0 - 3.35% CPU load
9.61 requests/sec - 27.0 kB/second - 2877 B/request - 270.781 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 148 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
02650624no0yes00250000
12650626no3yes00250021
22650628no1yes00250010
32650732no6yes10240051
42658704no18yes002500171
53047629no15yes102400131
Sum6043 2014800384

________________________________________________________________
______________W_________________________________________________
__________W___________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-026506240/50/50_
5.29140171900.00.110.11
147.182.149.75http/1.15.78.79.22:80GET /api-docs/swagger.json HTTP/1.1

0-026506240/44/44_
5.1474551870.00.040.04
23.94.6.216http/1.1hmps.in.net:443GET /html-sitemap/ HTTP/1.1

0-026506240/48/48_
5.32490107840.00.030.03
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-026506240/47/47_
5.271040258160.00.040.04
172.69.224.148http/1.1

0-026506240/53/53_
5.28570103880.00.110.11
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/khuyen-mai-bet88-dieu-kien.jpg 

0-026506240/53/53_
5.29440252040.00.150.15
147.182.149.75http/1.15.78.79.22:80POST /api/gql HTTP/1.1

0-026506240/63/63_
5.231020231750.00.080.08
2402:9d80:223:19a9:a194:445d:ca47:becfhttp/1.1m.slot365kh.com:443GET /wp-content/themes/flatsome/inc/extensions/flatsome-instant

0-026506240/56/56_
5.34190337230.00.290.29
142.93.0.66http/1.15.78.79.22:80POST /api/gql HTTP/1.1

0-026506240/58/58_
5.32790143500.00.120.12
195.178.110.201http/1.1ob1.howvps.com:443GET /aws-config.js HTTP/1.1

0-026506240/49/49_
5.29440178270.00.140.14
147.182.149.75http/1.15.78.79.22:80GET /swagger/swagger-ui.html HTTP/1.1

0-026506240/56/56_
5.29440127410.00.130.13
147.182.149.75http/1.15.78.79.22:80POST /api/graphql HTTP/1.1

0-026506240/57/57_
5.2944047340.00.040.04
147.182.149.75http/1.15.78.79.22:80GET /webjars/swagger-ui/index.html HTTP/1.1

0-026506240/55/55_
5.32490146090.00.150.15
165.22.176.31http/1.15.78.79.22:80GET /wp-login.php HTTP/1.1

0-026506240/54/54_
5.3110734375720.00.130.13
87.250.224.74http/1.1alldown.ru.com:443GET /ovsnrowynd HTTP/1.1

0-026506240/50/50_
5.3320065730.00.290.29
142.93.0.66http/1.15.78.79.22:80POST /graphql HTTP/1.1

0-026506240/53/53_
5.32490152510.00.200.20
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

0-026506240/49/49_
5.2914047650.00.060.06
147.182.149.75http/1.15.78.79.22:80GET /swagger.json HTTP/1.1

0-026506240/59/59_
5.24570163310.00.260.26
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/rut-tien-bet88-300x150.jpg HTTP

0-026506240/54/54_
5.24102059570.00.070.07
2402:9d80:223:19a9:a194:445d:ca47:becfhttp/1.1m.slot365kh.com:443GET /wp-content/uploads/2025/09/2-300x300.webp HTTP/1.1

0-026506240/47/47_
5.27102148360.00.190.19
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-keo-bong-da-tai-bet88-1-768

0-026506240/58/58_
5.24102272210.00.270.27
2402:9d80:223:19a9:a194:445d:ca47:becfhttp/1.1m.slot365kh.com:443GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver

0-026506240/56/56_
5.2774061320.00.170.17
195.24.236.104http/1.1cbdoil.uk.com:443GET /hnhcezid.php?Fox=d3wL7 HTTP/1.1

0-026506240/53/53_
5.32620113670.00.150.15
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-choi-poker-bet88-768x384.j

0-026506240/49/49_
5.1144249394850.00.090.09
162.158.94.132http/1.1

0-026506240/54/54_
5.29440177050.00.120.12
138.199.35.10http/1.15.78.79.22:80GET / HTTP/1.1

1-026506260/111/111_
9.96231297220.00.470.47
206.189.2.13http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-026506260/113/113_
9.65780269070.00.240.24
172.71.151.211http/1.1

1-026506260/97/97_
9.6001343170.00.440.44
172.69.34.180http/1.1

1-026506260/108/108_
9.85600475540.00.160.16
172.71.95.97http/1.1

1-026506260/114/114_
9.965681185430.00.200.20
213.180.203.167http/1.1alldown.ru.com:443GET /wlidtsdsxo HTTP/1.1

1-026506260/117/117_
9.83580142970.00.130.13
143.110.213.72http/1.1ob1.howvps.com:443GET /s/031313e2135313e27363e2237313/_/;/META-INF/maven/com.atla

1-026506260/127/127_
9.9710244430.00.310.31
2600:1f14:804:fd01:2623:3ef:e773:6817http/1.1teampowerlevel.io:80GET /.well-known/acme-challenge/KxO_WOKd_QC8RWdDur6B-pjroQcWx4e

1-026506260/111/111_
9.7718084490.00.440.44
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/so-mo-lo-de-bet88-150x150.jpg H

1-026506260/124/124_
9.83580302240.00.450.45
143.110.213.72http/1.1ob1.howvps.com:443GET /.env HTTP/1.1

1-026506260/126/126_
9.76737196960.00.520.52
2a01:4ff:1f0:c305::1http/1.1ecosreda.ru.com:443POST /wp-cron.php?doing_wp_cron=1764650340.20935297012329101562

1-026506260/115/115_
9.84180157590.00.290.29
2406:da18:85:1400:3aed:e111:5bad:2a1dhttp/1.15.78.79.22:80GET /.well-known/acme-challenge/cnHemG6GmM86iMpZ20U1_67R6daQJuh

1-026506260/115/115_
9.95380356820.00.520.52
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/giay-phep-hoat-dong-bet88-cac-l

1-026506260/116/116_
9.9200288850.00.560.56
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-150x150.jpg HTT

1-026506260/127/127_
9.9720320810.00.320.32
206.189.2.13http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

1-026506260/103/103_
9.92781408040.00.470.47
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xep-hang-bai-poker-tay-bai.jpg 

1-026506260/115/115_
9.936512192250.00.330.33
142.147.109.234http/1.114leonbet.ru.com:443GET /html-sitemap/ HTTP/1.1

1-026506260/114/114_
9.82600224840.00.270.27
104.22.20.175http/1.1

1-026506260/110/110_
9.76739405930.00.300.30
2a01:4ff:1f0:c305::1http/1.1gdarst.sa.com:443POST /wp-cron.php?doing_wp_cron=1764650339.71243596076965332031

1-026506260/122/122_
9.9630160630.00.190.19
206.189.2.13http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-026506260/117/117_
9.61781450730.00.290.29
159.89.127.165http/1.1u

Found on 2025-12-02 04:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2be08229f

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Sunday, 30-Nov-2025 11:17:55 UTC
Restart Time: Sunday, 30-Nov-2025 03:06:43 UTC
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  8 hours 11 minutes 12 seconds
Server load: 5.00 3.96 3.55
Total accesses: 434071 - Total Traffic: 720.6 MB - Total Duration: 144433576
CPU Usage: u405.13 s119.06 cu609.27 cs182.36 - 4.46% CPU load
14.7 requests/sec - 25.0 kB/second - 1740 B/request - 332.742 ms/request
9 requests currently being processed, 0 workers gracefully restarting, 116 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
01222968no0yes00250000
11222969no1yes00250000
21222971no18yes202300142
31223078no6yes10240051
41224019no11yes60190071
Sum5036 9011600264

_________________________________________________________W___W__
__________________________________W__W__W_______R___R__W_W___...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-712229680/231/1651_
21.76213355540030.00.372.95
159.203.135.193http/1.1mercadoramossales.sa.com:443POST //xmlrpc.php HTTP/1.1

0-712229680/258/1660_
21.72175815790310.00.442.46
146.190.222.199http/1.1googleplay.cn.com:443GET /unjumble/unjumble_my_jumbled_sentences.pdf HTTP/1.1

0-712229680/256/1686_
21.74306093980.00.793.05
95.174.29.115http/1.1fokking.net:443GET /xmlrpc.php HTTP/1.1

0-712229680/246/1686_
21.69313234940460.00.513.03
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-712229680/248/1737_
21.73113256135060.00.452.93
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-712229680/266/1713_
21.69359915341280.00.402.78
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

0-712229680/237/1710_
21.56321325561340.00.473.70
64.23.218.208http/1.1bet88lo.com:80POST /api/gql HTTP/1.1

0-712229680/245/1725_
21.771185466070.00.282.49
2a01:4ff:1f0:c305::1http/1.1maps-icloud.us.com:80POST /wp-cron.php?doing_wp_cron=1764501463.96328592300415039062

0-712229680/244/1650_
21.70213916617210.00.342.83
159.203.135.193http/1.1mercadoramossales.sa.com:443POST //xmlrpc.php HTTP/1.1

0-712229680/235/1746_
21.752315848240.00.693.24
142.93.253.145http/1.1pv2002.org:80GET /olympus/olympus_e_520_original_instruction_manual.pdf HTTP

0-712229680/244/1668_
21.70233875444120.00.753.22
183.131.196.149http/1.1stfsee.za.com:80POST /xmlrpc.php HTTP/1.1

0-712229680/221/1697_
21.693206142780.00.232.76
64.23.218.208http/1.1bet88lo.com:80POST /api/gql HTTP/1.1

0-712229680/252/1700_
21.731106088020.00.292.30
43.153.15.51http/1.113winner.com:80GET / HTTP/1.1

0-712229680/242/1681_
21.76176265971110.00.342.37
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

0-712229680/241/1691_
21.761614882710.00.453.69
146.190.220.26http/1.1pv2002.org:80GET /olympus/olympus_e_520_original_instruction_manual.pdf HTTP

0-712229680/249/1691_
21.752310315375100.00.232.79
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

0-712229680/233/1625_
21.6763435912590.00.372.49
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-712229680/235/1735_
21.5464025641370.00.483.14
183.131.196.149http/1.1stfsee.za.com:80POST /xmlrpc.php HTTP/1.1

0-712229680/241/1705_
21.7833455368840.00.302.85
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-712229680/239/1632_
21.58315876143210.00.592.92
182.43.76.198http/1.12022ketoopymoxyf.ru.com:443GET /?author=18 HTTP/1.1

0-712229680/246/1671_
21.64353196057430.00.543.07
159.203.135.193http/1.1mercadoramossales.sa.com:443POST //xmlrpc.php HTTP/1.1

0-712229680/271/1719_
21.7803245800540.00.343.10
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-712229680/238/1685_
21.65256415447160.00.543.25
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

0-712229680/255/1672_
21.762015851850.00.352.84
67.207.86.226http/1.1pv2002.org:80GET /olympus/olympus_e_520_original_instruction_manual.pdf HTTP

0-712229680/256/1702_
21.75257856487730.00.593.23
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/519/3042_
41.75609461110.01.186.04
67.205.133.88http/1.1ob1.howvps.com:443GET /being-familiar-with-pimple-will-cause-cure-along-with-elim

1-712229690/546/3098_
41.831438610033400.00.944.74
183.131.196.149http/1.1stfsee.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/526/3041_
41.82636810293540.00.725.42
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-712229690/491/3045_
41.84115819502440.00.504.96
66.56.86.5http/1.1maps-icloud.us.com:80GET / HTTP/1.1

1-712229690/506/3045_
41.79819862310.00.674.72
157.230.5.65http/1.123win68.com:443GET /marvel/marvel_masterworks_the_fantastic_four_volume_16.pdf

1-712229690/493/3080_
41.841009437280.00.725.80
107.152.46.79http/1.1pg668.net:443GET /game-bai-pg66/ HTTP/1.1

1-712229690/534/3163_
41.6694529977220.00.865.31
208.84.101.102http/1.1exclusive-message.sa.com:443POST //xmlrpc.php HTTP/1.1

1-712229690/521/3094_
41.7883539773760.00.724.83
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-712229690/545/3151_
41.7094369978580.01.074.99
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-712229690/515/3086_
41.82539610321560.00.914.33
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/507/3064_
41.80999648280.00.994.43
2a01:4ff:1f0:c305::1http/1.1001encipherment.sa.com:443POST /wp-cron.php?doing_wp_cron=1764501445.96575903892517089843

1-712229690/553/3124_
41.7063939908530.00.894.82
183.131.196.149http/1.1stfsee.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/539/3106_
41.85681210028710.00.925.67
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/537/3170_
41.8523609661670.00.604.59
143.198.223.145http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-712229690/545/3123_
41.8593899886540.00.684.87
183.131.196.149http/1.1stfsee.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/484/3070_
41.86138510017470.00.754.54
183.131.196.149http/1.1sugobw.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/510/3093_
41.8563959818770.00.684.99
183.131.196.149http/1.1stfsee.za.com:80POST /xmlrpc.php HTTP/1.1

1-712229690/515/3073_
41.86261210048180.00.714.73
66.56.86.248http/1.1maps-icloud.us.com:80GET /bak/archive.zip HTTP/1.1

1-712229690/499/3041_
41.8413010845550.00.744.65
61.47.43.124http/1.1ob1.howvps.com:443GET /website.bak HTTP/1.1

1-712229690/513/3067_
41.762010328020.00.965.07
172.68.50.63http/1.1

1-712229690/509/3106_
41.82640410487630.0

Found on 2025-11-30 11:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c27ab68bde

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 28-Nov-2025 03:33:59 UTC
Restart Time: Thursday, 27-Nov-2025 03:59:07 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  23 hours 34 minutes 52 seconds
Server load: 0.62 1.07 1.52
Total accesses: 992962 - Total Traffic: 1.9 GB - Total Duration: 309097701
CPU Usage: u1120.12 s318.99 cu1380.7 cs379.54 - 3.77% CPU load
11.7 requests/sec - 23.7 kB/second - 2077 B/request - 311.289 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 248 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
03000532no0yes00250000
33000616no0yes00250000
43000817no0yes00250000
53005184no0yes00250000
63064381no1yes00250010
73131286no0yes00250000
83131372no10yes002500100
93131404no8yes10240061
113131462no7yes10240061
123131492no0yes00250000
Sum10026 2024800232

_________________________.......................................
..........._____________________________________________________
________________________________________________________________
_______________________________________________W__________......
...................__W__________________________________________
_____...........................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2230005320/221/966_
26.955603379480.00.501.89
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xo-so-mien-bac-bet88-150x150.jp

0-2230005320/209/985_
27.246203797330.00.601.82
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

0-2230005320/216/980_
27.198202870990.00.542.31
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2230005320/217/973_
26.37925243479510.00.582.15
162.158.126.111http/1.1

0-2230005320/224/994_
27.229713861060.00.682.15
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-banner-768x240.webp HTTP/

0-2230005320/229/967_
27.228703693620.00.471.68
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

0-2230005320/217/963_
26.8322513827520.00.672.26
34.105.43.202http/1.1888tow.com:443GET /wp-content/uploads/2025/09/ban-ca.png HTTP/1.1

0-2230005320/231/959_
26.838212734210.00.741.89
34.105.43.202http/1.1888tow.com:443GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-se

0-2230005320/225/959_
26.938203174340.00.412.07
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-150x150.jpg HTT

0-2230005320/248/982_
27.225703639220.00.551.92
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

0-2230005320/204/928_
27.246603426430.00.532.30
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

0-2230005320/220/935_
26.428103793860.00.501.88
35.94.104.180http/1.1ob1.howvps.com:443GET /v1/.env HTTP/1.1

0-2230005320/239/985_
27.238703505650.00.481.98
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

0-2230005320/219/948_
26.938103501350.00.571.57
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/thuat-ngu-da-ga-bet88-ve-dat-cu

0-2230005320/241/967_
27.206812894020.00.561.72
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/so-mo-lo-de-bet88-150x150.jpg H

0-2230005320/228/999_
26.686803381580.00.593.18
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

0-2230005320/221/984_
27.198202987790.00.672.10
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/so-mo-lo-de-bet88-150x150.jpg H

0-2230005320/215/947_
26.959802676790.00.541.78
2a01:4f8:200:234d::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

0-2230005320/228/953_
27.228703996270.00.601.86
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/chien-thuat-ban-ca-bet88-ky-thu

0-2230005320/223/955_
26.428102533370.00.651.83
35.94.104.180http/1.1ob1.howvps.com:443GET /admin/.env HTTP/1.1

0-2230005320/216/953_
27.228702966400.00.432.08
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/truc-tiep-da-ga-thomo-bet88-150

0-2230005320/218/943_
27.228702948790.00.552.56
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xo-so-mien-bac-bet88-150x150.jp

0-2230005320/231/967_
27.237303375050.00.311.77
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2230005320/226/993_
26.669202955540.00.492.27
91.224.92.157http/1.1ob1.howvps.com:443GET /wp-admin/ HTTP/1.1

0-2230005320/218/956_
27.208103521190.00.482.05
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/keo-phat-goc-bet88-300x150.jpg 

1-22-0/0/9189.
0.00128486006127610830.00.0018.58
62.60.135.159http/1.1cftev.sa.com:443GET /var/run/secrets/kubernetes.io/serviceaccount/ca.crt HTTP/1

1-22-0/0/9180.
0.0012848128126763960.00.0035.91
172.71.183.41http/1.1

1-22-0/0/9294.
0.00128486002927370450.00.0018.86
62.60.135.159http/1.1cftev.sa.com:443GET /app/etc/config.php HTTP/1.1

1-22-0/0/9120.
0.00128486006128607170.00.0017.60
62.60.135.159http/1.1cftev.sa.com:443GET /*.sql HTTP/1.1

1-22-0/0/9122.
0.0012848129006180.00.0018.97
172.71.183.41http/1.1

1-22-0/0/9149.
0.00128486006128883840.00.0017.60
62.60.135.159http/1.1cftev.sa.com:443GET /.ssh/known_hosts HTTP/1.1

1-22-0/0/9083.
0.00128486163128975280.00.0018.80
62.60.135.159http/1.1cftev.sa.com:443GET /config/autoload/global.php HTTP/1.1

1-22-0/0/9041.
0.00128486000528763370.00.0017.52
172.71.183.42http/1.1

1-22-0/0/9262.
0.00128485689827660620.00.0018.42
172.71.183.41http/1.1

1-22-0/0/9125.
0.00128486006128711360.00.0019.38
172.71.183.42http/1.1

1-22-0/0/9129.
0.00128486006228745840.00.0017.54
62.60.135.159http/1.1cftev.sa.com:443GET /config/config.json HTTP/1.1

1-22-0/0/9107.
0.001284816783028538120.00.0019.58
62.60.135.159http/1.1cftev.sa.com:443GET /.env.sendgrid HTTP/1.1

1-22-0/0/9176.
0.00128486001427435080.00.0018.20
172.71.183.41http/1.1

1-22-0/0/9103.
0.00128486005028019250.00.0019.26
62.60.135.159http/1.1cftev.sa.com:443GET /phpversion.php HTTP/1.1

1-22-0/0/9246.
0.0012848726818760.00.0020.12
172.71.183.42http/1.1

1-22-0/0/9189.
0.00128486003426630590.00.0018.29
62.60.135.159http/1.1cftev.sa.com:443GET /config/autoload/local.php HTTP/1.1

1-22-0/0/9362.
0.0012848126940030.00.0019.60
172.71.183.41http/1.1

1-22-0/0/9220</

Found on 2025-11-28 03:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c27f040097

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Wednesday, 26-Nov-2025 10:33:56 UTC
Restart Time: Wednesday, 26-Nov-2025 03:36:26 UTC
Parent Server Config. Generation: 12
Parent Server MPM Generation: 11
Server uptime:  6 hours 57 minutes 30 seconds
Server load: 0.20 0.43 0.65
Total accesses: 305089 - Total Traffic: 568.2 MB - Total Duration: 633576868
CPU Usage: u205.48 s54.66 cu551.5 cs154.17 - 3.86% CPU load
12.2 requests/sec - 23.2 kB/second - 1952 B/request - 2076.7 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 147 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
02084036no1yes00250001
12084132no16yes102400141
22089980no23yes002500211
32091880no15yes202300131
62084035no1yes00250001
112084034no0yes00250000
Sum6056 3014700485

_________________________________________________W______________
________________________WW__________............................
......................_________________________.................
................................................................
..................._________________________....................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1120840360/366/893_
30.1211114664330.00.571.49
216.244.66.226http/1.1mortgageloans.uk.com:80GET /?main_page=tell_a_friend&products_id=14707 HTTP/1.1

0-1120840360/388/885_
30.2011015072490.00.672.35
146.190.140.214http/1.13-mobile.uk.com:443GET /wp-login.php HTTP/1.1

0-1120840360/400/870_
30.205114715990.01.011.60
20.0.137.120http/1.179kingsk.com:443GET /html-sitemap/ HTTP/1.1

0-1120840360/365/852_
30.0911115679930.00.911.52
172.71.124.110http/1.1

0-1120840360/368/859_
30.1418116467080.01.092.36
216.244.66.201http/1.1pubrutos.sa.com:80GET /iw/tyr/22bet-tv/ HTTP/1.1

0-1120840360/374/881_
30.1816015018870.01.052.25
181.214.89.103http/1.1456789.club:443GET /wp-login.php?action=register HTTP/1.1

0-1120840360/373/858_
30.1916542216818190.00.521.37
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /live-casino-bet88/ HTTP/1.1

0-1120840360/396/885_
30.1913715887830.00.941.69
2a01:4ff:1f0:c305::1http/1.1456789.club:443POST /wp-cron.php?doing_wp_cron=1764153222.79130506515502929687

0-1120840360/383/865_
30.1018014663370.00.701.65
216.244.66.201http/1.1pubrutos.sa.com:80GET /songs/keep-it-green/1971-vw-bus-wiring-diagram.html HTTP/1

0-1120840360/374/858_
30.0722015359200.00.691.72
34.38.72.9http/1.123win68.com:80GET /wp-includes/js/jquery/jquery.js HTTP/1.1

0-1120840360/386/852_
30.121197416796770.00.922.28
27.71.121.215http/1.113win.uss.tf:443GET /cach-tinh-giai-dac-biet-xo-so/ HTTP/1.1

0-1120840360/374/865_
30.096116173690.00.831.60
216.244.66.226http/1.1mortgageloans.uk.com:80GET /index.php?main_page=popup_image&pID=6908 HTTP/1.1

0-1120840360/367/870_
30.018114955780.00.741.55
216.244.66.226http/1.1mortgageloans.uk.com:80GET /?main_page=popup_image&pID=976 HTTP/1.1

0-1120840360/376/861_
30.19161417222310.00.671.43
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /live-casino-bet88/ HTTP/1.1

0-1120840360/381/858_
30.1611015427380.00.961.91
49.151.178.41http/1.1gze.cn.com:80GET /wp-json/wp/v2/posts HTTP/1.1

0-1120840360/392/880_
30.160014871360.01.181.93
18.217.56.132http/1.1ynkq.cn.com:443GET / HTTP/1.1

0-1120840360/389/864_
30.060115465650.00.941.60
216.244.66.226http/1.1mortgageloans.uk.com:80GET /index.php?main_page=popup_image&pID=2132 HTTP/1.1

0-1120840360/368/827_
30.026016012010.00.701.32
216.244.66.226http/1.1mortgageloans.uk.com:80GET /?main_page=tell_a_friend&products_id=1281 HTTP/1.1

0-1120840360/392/881_
30.1419116763540.00.752.79
216.244.66.226http/1.1mortgageloans.uk.com:80GET /index.php?main_page=tell_a_friend&products_id=16227 HTTP/1

0-1120840360/372/860_
30.0722015520310.00.591.06
103.131.71.24http/1.1dkelaiditis.gr.com:80GET /robots.txt HTTP/1.1

0-1120840360/366/845_
30.1681410016029920.00.651.63
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /ceo-tran-dang-khoa/ HTTP/1.1

0-1120840360/383/850_
30.0919117865810.00.521.35
216.244.66.226http/1.1mortgageloans.uk.com:80GET /index.php?main_page=popup_image&pID=7813 HTTP/1.1

0-1120840360/364/833_
30.17232015544450.00.581.28
74.50.107.125http/1.1hmps.in.net:443GET /casino-nn88/ HTTP/1.1

0-1120840360/382/861_
30.1323014830930.00.721.77
216.244.66.226http/1.1mortgageloans.uk.com:80GET /index.php?main_page=tell_a_friend&products_id=11893 HTTP/1

0-1120840360/384/889_
30.0223115051850.01.332.41
216.244.66.226http/1.1mortgageloans.uk.com:80GET /index.php?main_page=popup_image&pID=10078 HTTP/1.1

1-1120841320/1299/1629_
91.660017157120.03.283.79
46.101.1.225http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

1-1120841320/1306/1625_
91.650018211360.03.274.01
192.159.99.170http/1.15.78.79.22:80GET /wp-admin/setup-config.php HTTP/1.1

1-1120841320/1329/1600_
91.651017133650.02.352.66
46.101.1.225http/1.1ob1.howvps.com:443GET /.vscode/sftp.json HTTP/1.1

1-1120841320/1347/1651_
91.641017141420.02.923.25
46.101.1.225http/1.1ob1.howvps.com:443GET /actuator/env HTTP/1.1

1-1120841320/1266/1579_
91.422017669610.03.463.74
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xo-so-mien-bac-bet88-150x150.jp

1-1120841320/1305/1602_
91.650017480180.02.943.39
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

1-1120841320/1276/1581_
91.59225816830210.03.293.53
43.157.67.70http/1.1alookking.com:443GET / HTTP/1.1

1-1120841320/1288/1628_
91.641017742260.02.733.29
46.101.1.225http/1.1ob1.howvps.com:443GET /@vite/env HTTP/1.1

1-1120841320/1289/1592_
91.650017393190.02.633.27
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/ban-ca-tay-du-ky-bet88-che-do-c

1-1120841320/1344/1653_
91.651018163660.02.883.42
52.156.23.50http/1.1ww8838.com:443GET /wp-admin/admin-ajax.php HTTP/1.1

1-1120841320/1303/1642_
91.641116575380.02.643.05
216.244.66.201http/1.123win68.com:443GET /history/history_of_the_great_civil_war_1642_1649_volume_3.

1-1120841320/1324/1662_
91.650117228210.02.873.33
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/ban-ca-tay-du-ky-bet88-chon-muc

1-1120841320/1307/1615_
91.602118926110.02.573.32
216.244.66.201http/1.123win68.com:443GET /global/global_pressure_and_the_political_state_new_zealand

1-1120841320/1303/1633_
91.592116909980.02.312.86
216.244.66.236http/1.1tetshikshak.in.net:80GET /index.php?main_page=popup_image&pID=3316 HTTP/1.1

1-1120841320/1301/1578_
91.561116978130.02.292.63
216.244.66.236http/1.1tetshikshak.in.net:80GET /index.php?main_page=popup_image&pID=2148 HTTP/1.1

1-1120841320/1299/1572_
91.602117071030.02.983.26
216.244.66.236http/1.1tetshikshak.in.net:80GET /index.php?main_page=popup_image&pID=4462 HTTP/1.1

1-1120841320/1338/1640_
91.611017793640.02.072.56
46.101.1.225http/1.1ob1.howvps.com:443POST /api/gql HTTP/1.1

1-1120841320/1312/1624_
91.602018707870.02.633.18
52.156.23.50http/1.1ww8838.com:443

Found on 2025-11-26 10:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c27c9ba91f

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Monday, 24-Nov-2025 06:07:30 UTC
Restart Time: Monday, 24-Nov-2025 05:16:43 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  50 minutes 46 seconds
Server load: 3.23 2.59 2.02
Total accesses: 135875 - Total Traffic: 1.5 GB - Total Duration: 265687581
CPU Usage: u114.66 s20.47 cu307.19 cs63.62 - 16.6% CPU load
44.6 requests/sec - 505.0 kB/second - 11.3 kB/request - 1955.38 ms/request
10 requests currently being processed, 0 workers gracefully restarting, 240 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
118207no52yes102400501
214656no57yes002500561
318450no70yes302200691
418018no68no402100661
617989no68yes002500623
718352no48yes002500462
818526no68no202300661
914781no33yes002500330
1017243no42yes002500348
1516134no57yes002500552
Sum100563 1002400053720

........................._______________W_______________________
_____________W___________R________R_________________WW_W___W_...
......................__________________________________________
_________________W_________W____________________________________
___________________.............................................
......................................................._________
________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2-0/0/695.
0.00141587844780.00.006.21
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /huong-dan-bet88/ HTTP/1.1

0-2-0/0/710.
0.0014106826740.00.006.67
172.69.121.143http/1.1

0-2-0/0/721.
0.001407005930.00.005.92
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/735.
0.00141876996400.00.006.49
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /huong-dan-bet88/ HTTP/1.1

0-2-0/0/721.
0.001407101750.00.006.36
172.69.121.142http/1.1

0-2-0/0/685.
0.001407167030.00.006.32
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/724.
0.001407208990.00.005.95
172.69.121.143http/1.1

0-2-0/0/731.
0.001457251410.00.006.58
27.76.81.126http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/694.
0.001407209460.00.005.80
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/716.
0.001407146110.00.005.83
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/724.
0.001444436901890.00.006.43
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /dang-nhap-bet88/ HTTP/1.1

0-2-0/0/716.
0.001486971530.00.006.23
27.76.81.126http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/651.
0.00141596978330.00.006.07
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /huong-dan-bet88/ HTTP/1.1

0-2-0/0/708.
0.001407274840.00.005.60
172.69.121.143http/1.1

0-2-0/0/728.
0.0014107395520.00.006.36
1.52.186.162http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/686.
0.001407307450.00.006.33
172.69.120.142http/1.1

0-2-0/0/718.
0.001407091290.00.006.66
172.69.120.143http/1.1

0-2-0/0/692.
0.001407112550.00.006.25
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/736.
0.001407073920.00.006.32
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/716.
0.001407127570.00.005.76
172.69.121.142http/1.1

0-2-0/0/741.
0.001467143200.00.006.01
1.52.186.162http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/679.
0.00141979174440.00.008.04
2a01:4ff:1f0:c305::1http/1.1bet88lo.com:443GET /huong-dan-bet88/ HTTP/1.1

0-2-0/0/720.
0.001407307260.00.006.14
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

0-2-0/0/709.
0.001407094560.00.006.17
172.69.121.143http/1.1

0-2-0/0/701.
0.001406845460.00.005.77
103.199.32.11http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/70/429_
5.85106631020.00.554.27
58.186.108.110http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/77/453_
5.89006709280.00.704.19
113.164.181.129http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/69/437_
5.84106757390.00.624.12
2001:ee0:4d61:5609:2d66:ed0e:b6f9:474ehttp/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/74/460_
5.86166812220.00.784.65
160.191.240.86http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/67/426_
5.89006762320.00.684.19
113.164.181.129http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/69/452_
5.88176708640.00.663.97
160.191.240.86http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/71/448_
5.89006691180.00.804.80
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/72/419_
5.81106680440.00.894.05
14.190.21.171http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/67/444_
5.89006884290.00.794.31
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/78/447_
5.89006674360.00.684.27
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/73/422_
5.89166789710.00.684.21
2001:ee0:4d61:5609:2d66:ed0e:b6f9:474ehttp/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/70/421_
5.90006638260.00.804.07
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/72/433_
5.85106827240.00.513.93
160.191.240.86http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/74/434_
5.86166736550.00.764.27
160.191.240.86http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/79/440_
5.88116612190.00.935.06
216.244.66.196http/1.1allforoutfitideas.uk.com:443GET /convenience/convenience_store_training_manual.pdf HTTP/1.1

1-2182079/71/422W
5.81106745840.00.733.99
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /wp-json/wp/v2/posts/197/ HTTP/1.1

1-2182070/69/449_
5.89006649920.00.494.28
183.80.6.155http/1.1af88.usc.tf:443GET /__prrw7/?acq=6673vimk HTTP/1.1

1-2182070/58/432_
5.90006921550.00.364.38
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/69/444_
5.83011006665800.00.774.68
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /wp-json/wp/v2/category/blog-ca-cuoc/ HTTP/1.1

1-2182070/80/448_
5.90006624690.00.694.08
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/80/443_
5.84006617900.00.744.29
58.186.108.110http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/77/432_
5.89006646230.00.873.91
113.177.97.179http/1.1af88.usc.tf:443GET / HTTP/1.1

1-2182070/73/443_
5.89006

Found on 2025-11-24 06:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c27f039e2d

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Saturday, 22-Nov-2025 04:22:10 UTC
Restart Time: Saturday, 22-Nov-2025 03:15:29 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 6 minutes 41 seconds
Server load: 1.40 1.53 1.48
Total accesses: 39961 - Total Traffic: 90.2 MB - Total Duration: 16565371
CPU Usage: u92.04 s25.33 cu0 cs0 - 2.93% CPU load
9.99 requests/sec - 23.1 kB/second - 2365 B/request - 414.538 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 172 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
0353763no0yes00250000
1353766no0yes00250000
2353768no0yes00250000
3353879no22yes102400202
4362956no19yes102400162
5365685no4yes00250031
6367593no8yes10240071
Sum7053 3017200466

________________________________________________________________
____________________R_____________________W_____________________
_______________________________________W_______.................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-03537630/41/41_
3.751150155080.00.060.06
2a01:4f8:210:3401::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-150x150.jpg HTT

0-03537630/46/46_
3.7820055993190.00.040.04
152.136.30.16http/1.1gioactish.jp.net:443GET /xmlrpc.php HTTP/1.1

0-03537630/40/40_
3.89204062720.00.010.01
216.244.66.198http/1.15.78.79.22:80GET /takeuchi/takeuchi_tl120_crawler_loader_workshop_service_re

0-03537630/44/44_
3.84200056060.00.040.04
216.244.66.198http/1.15.78.79.22:80GET /new/new_holland_210_loader_manual.pdf HTTP/1.1

0-03537630/44/44_
3.91120149560.00.090.09
66.249.92.165http/1.1owvq9.sa.com:443GET /apple-app-site-association HTTP/1.1

0-03537630/36/36_
3.591941132830.00.040.04
2a01:4ff:1f0:c305::1http/1.1tetshikshak.in.net:443POST /wp-cron.php?doing_wp_cron=1763784217.05132603645324707031

0-03537630/43/43_
3.843640261540.00.120.12
2405:4802:9601:db00:7e82:517a:9f53:6d9ahttp/1.113win.usc.tf:443GET / HTTP/1.1

0-03537630/39/39_
3.711330405590.00.040.04
2a01:4f8:200:234d::2http/1.1sexywaysofreading.com:443GET /wp-content/uploads/2024/12/da-ga-thomo-280x280.jpg HTTP/1.

0-03537630/49/49_
3.882050256260.00.030.03
216.244.66.198http/1.15.78.79.22:80GET /strategies/strategies_against_violence_design_for_nonviole

0-03537630/40/40_
3.91138056550.00.250.25
2a01:4ff:1f0:c305::1http/1.132windy.com:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

0-03537630/37/37_
3.59200161030.00.040.04
216.244.66.230http/1.123wim.cn.com:80GET /hyundai/hyundai_crawler_excavator_r160lc_9_r180lc_9_servic

0-03537630/45/45_
3.75184080070.00.100.10
208.109.32.191http/1.15.78.79.22:80POST /xmlrpc.php HTTP/1.1

0-03537630/39/39_
3.89189845760.00.030.03
2a01:4ff:1f0:c305::1http/1.199winz.com:443POST /wp-cron.php?doing_wp_cron=1763785141.34295892715454101562

0-03537630/45/45_
3.73200044370.00.100.10
2a01:4f8:210:3401::2http/1.1sexywaysofreading.com:443GET /wp-content/uploads/2024/12/88clb-nang-cap-phan-mem-280x280

0-03537630/35/35_
3.54194017690.00.180.18
52.167.144.171http/1.1ob1.howvps.com:443GET /DCJ-3BTIG-C1LIAM-1K7GBI-1/c.aspx HTTP/1.1

0-03537630/44/44_
3.732000142270.00.120.12
2a01:4f8:210:3401::2http/1.1sexywaysofreading.com:443GET /wp-content/uploads/2024/12/hoat-dong-thien-nguyen-88CLB-an

0-03537630/39/39_
3.7211561087790.00.070.07
43.166.239.145http/1.178win.ooo:443GET /wp-json/ HTTP/1.1

0-03537630/42/42_
3.87133064560.00.070.07
2a01:4f8:150:3492::2http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

0-03537630/44/44_
3.892050151000.00.020.02
216.244.66.198http/1.15.78.79.22:80GET /summary/summary_of_grit_by_angela_duckworth_includes_key_t

0-03537630/41/41_
3.7018415149150.00.140.14
1.165.71.227http/1.1hmps.in.net:443GET / HTTP/1.1

0-03537630/45/45_
3.89199072460.00.100.10
216.244.66.198http/1.15.78.79.22:80GET /the/the_user_illusion_cutting_consciousness_down_to_size_t

0-03537630/43/43_
3.882050111910.00.010.01
198.235.24.2http/1.1the360studio.in:443GET / HTTP/1.1

0-03537630/42/42_
3.9241050810.00.050.05
64.90.38.74http/1.15.78.79.22:80POST /xmlrpc.php HTTP/1.1

0-03537630/43/43_
3.7636043400.00.130.13
185.229.227.2http/1.113winner.com:443GET /wp-json/wp/v2/usErs HTTP/1.1

0-03537630/39/39_
3.84200435121220.00.010.01
45.80.158.122http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

1-03537660/118/118_
9.38681165850.00.140.14
85.208.98.20http/1.1estudenaepcar.za.com:443GET /2024/08/23/cevrimici-poker-ve-slotlar-neden-casino-dunyasi

1-03537660/103/103_
9.39650511150.00.230.23
103.112.98.196http/1.15.78.79.22:80GET /back/login/login_cl.asp HTTP/1.1

1-03537660/112/112_
9.32600604940.00.080.08
216.244.66.198http/1.15.78.79.22:80GET /mastering/mastering_the_challenges_of_change_strategies_fo

1-03537660/109/109_
9.40220256680.00.400.40
216.244.66.198http/1.15.78.79.22:80GET /illustrated/illustrated_encyclopedia_of_human_histology.pd

1-03537660/100/100_
8.971201613930.00.190.19
20.122.25.162http/1.1attic.us.com:80GET /akc.php HTTP/1.1

1-03537660/103/103_
9.381251534160.00.270.27
216.244.66.246http/1.1estudenaepcar.za.com:443GET /beadwork/beadwork_techniques_of_the_native_americans.pdf H

1-03537660/118/118_
9.311300574890.00.160.16
216.244.66.198http/1.15.78.79.22:80GET /zappe/zappe_la_guerre_1914_1918_la_premiere_des_guerres.pd

1-03537660/114/114_
8.981090211360.00.240.24
20.122.25.162http/1.1attic.us.com:80GET /berax.php HTTP/1.1

1-03537660/119/119_
9.311300342160.00.330.33
216.244.66.198http/1.15.78.79.22:80GET /vintage/vintage_food_posters_2016_broschrenkalender_kunst_

1-03537660/102/102_
9.3263718563550.00.130.13
77.24.94.97http/1.1medicalforte.ru.com:443POST /xmlrpc.php HTTP/1.1

1-03537660/119/119_
9.331330229560.00.030.03
216.244.66.198http/1.15.78.79.22:80GET /camus/camus_and_sarte.pdf HTTP/1.1

1-03537660/115/115_
9.32630631340.00.170.17
216.244.66.198http/1.15.78.79.22:80GET /louisiana/louisiana_law_of_obligations_a_methodological_co

1-03537660/104/104_
9.35580674110.00.270.27
216.244.66.198http/1.15.78.79.22:80GET /ayurvedic/ayurvedic_pharmacopoeial_plant_drugs_expanded_th

1-03537660/112/112_
9.40200444220.00.180.18
216.244.66.198http/1.15.78.79.22:80GET /ire/ire_ere_ure_words_ebooks_pdf_free_download.pdf HTTP/1.

1-03537660/118/118_
9.351717597490.00.230.23
103.131.71.82http/1.1kolovak.za.com:443GET / HTTP/1.1

1-03537660/105/105_
9.39630738250.00.160.16
216.244.66.198http/1.15.78.79.22:80GET /edmunds/edmunds_toyota_4_runner_manuals.pdf HTTP/1.1

1-03537660/112/112_
9.381140220570.00.200.20
216.244.66.246http/1.1estudenaepcar.za.com:443GET /mitsubishi/mitsubishi_magna_verada_1991_to_1996_workshop_m

1-03537660/113/113_
9.241090458410.00.320.32
216.244.66.198http/1.15.78.79.22:80GET /americ

Found on 2025-11-22 04:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2528d11e9

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Sunday, 16-Nov-2025 13:29:58 UTC
Restart Time: Sunday, 16-Nov-2025 06:10:11 UTC
Parent Server Config. Generation: 17
Parent Server MPM Generation: 16
Server uptime:  7 hours 19 minutes 47 seconds
Server load: 3.10 1.89 1.61
Total accesses: 881590 - Total Traffic: 1.9 GB - Total Duration: 314088844
CPU Usage: u59.21 s16.89 cu1765.71 cs504.34 - 8.89% CPU load
33.4 requests/sec - 76.1 kB/second - 2331 B/request - 356.275 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 146 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
01276240no0yes00250000
11275401no6yes00250060
21275402no1yes00250001
31275485no21yes402100152
41276269no7yes00250061
61275400no2yes00250011
Sum6037 4014600285

________________________________________________________________
___________________________WW_W__W___________________________...
......................_________________________.................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1612762400/46/4897_
3.507811841240.00.1010.23
2a01:4ff:1f0:c305::1http/1.1botanicastyle.ru.com:443POST /wp-cron.php?doing_wp_cron=1763299766.25882911682128906250

0-1612762400/47/4894_
3.560012803340.00.079.00
216.244.66.197http/1.15.78.79.22:80GET /tag/maytag-refrigerator-repair-los-angeles/ HTTP/1.1

0-1612762400/44/4906_
3.522471510740880.00.159.16
35.196.126.105http/1.1formapay.ru.com:443POST //xmlrpc.php HTTP/1.1

0-1612762400/39/4912_
3.3611010295160.00.1010.28
167.172.232.142http/1.15.78.79.22:80GET /v2/api-docs HTTP/1.1

0-1612762400/44/4879_
3.421748011278540.00.059.23
35.196.126.105http/1.1tp8848.com:80POST /xmlrpc.php HTTP/1.1

0-1612762400/44/4862_
3.361135810446410.00.039.48
159.65.216.62http/1.1games-cracked-download-free.za.GET /journal/journal_of_chemical_society.pdf HTTP/1.1

0-1612762400/43/4866_
3.563111866160.00.099.87
216.244.66.194http/1.1aczpl.uk.com:443GET /ccnp/ccnp_routing_studyguide.pdf HTTP/1.1

0-1612762400/49/4845_
3.491713311884150.00.2210.18
38.54.112.211http/1.111uu.in.net:80POST /xmlrpc.php HTTP/1.1

0-1612762400/39/4876_
3.4131112558930.00.099.03
216.244.66.194http/1.1aczpl.uk.com:443GET /audi/audi_a3_2008_specs.pdf HTTP/1.1

0-1612762400/46/4990_
3.532234710209600.00.209.02
159.89.95.98http/1.1games-cracked-download-free.za.GET /energy/energy_transport_the_environment_addressing_the_sus

0-1612762400/49/4805_
3.4731012141840.00.239.45
54.39.203.158http/1.1ob1.howvps.com:443GET /khuyen-mai-lc88/ HTTP/1.1

0-1612762400/39/4736_
3.397110685620.00.128.43
216.244.66.194http/1.1aczpl.uk.com:443GET /audi/audi_200_turbo_manual_ru.pdf HTTP/1.1

0-1612762400/36/4898_
3.522590211579420.00.048.80
208.68.39.214http/1.1games-cracked-download-free.za.GET /energy/energy_transport_the_environment_addressing_the_sus

0-1612762400/36/4763_
3.3819111713450.00.048.74
216.244.66.229http/1.1pv2002.org:443GET /form/form_illusion_myth_prints_drawings_of.pdf HTTP/1.1

0-1612762400/44/4930_
3.37271279893160.00.029.96
38.54.112.211http/1.111uu.in.net:80POST /xmlrpc.php HTTP/1.1

0-1612762400/39/4881_
3.482513911655570.00.018.81
38.54.112.211http/1.111uu.in.net:80POST /xmlrpc.php HTTP/1.1

0-1612762400/42/4853_
3.512843810697450.00.039.11
68.183.96.27http/1.1games-cracked-download-free.za.GET /energy/energy_transport_the_environment_addressing_the_sus

0-1612762400/38/4873_
3.4525110870240.00.118.64
216.244.66.229http/1.1pv2002.org:443GET /free/free_rein_to_kill_euthanasia_in_america_paperback_200

0-1612762400/40/4852_
3.503018640460.00.229.91
216.244.66.229http/1.1pv2002.org:443GET /from/from_judaism_to_christianity_gospel_wo.pdf HTTP/1.1

0-1612762400/45/4857_
3.5413111449560.00.1024.18
216.244.66.194http/1.1aczpl.uk.com:443GET /casey/casey_at_the_bat_poem.pdf HTTP/1.1

0-1612762400/37/4878_
3.531954011654030.00.019.32
35.243.142.238http/1.1789win1.college:443POST //xmlrpc.php HTTP/1.1

0-1612762400/44/4908_
3.482761310467010.00.059.56
35.243.142.238http/1.1789win1.college:443POST //xmlrpc.php HTTP/1.1

0-1612762400/49/4888_
3.503154911724870.00.029.13
35.243.142.238http/1.1789win1.college:443POST //xmlrpc.php HTTP/1.1

0-1612762400/37/4895_
3.5416411751380.00.0910.46
2405:4802:652e:5ed0:2852:60a8:dbb3:b175http/1.1af88.good.tf:443GET / HTTP/1.1

0-1612762400/45/4855_
3.1324111086070.00.218.74
216.244.66.194http/1.1aczpl.uk.com:443GET /rum/rum_and_reggae.pdf HTTP/1.1

1-1612754010/97/3921_
7.492110138540.00.227.89
216.244.66.229http/1.1pv2002.org:443GET /free/free_online_mitsubishi_repair_manual.pdf HTTP/1.1

1-1612754010/97/3968_
7.83313211595960.00.207.50
38.54.112.211http/1.111uu.in.net:80POST /xmlrpc.php HTTP/1.1

1-1612754010/119/4016_
7.85456710444390.00.147.25
35.196.126.105http/1.1formapay.ru.com:443POST //xmlrpc.php HTTP/1.1

1-1612754010/118/3959_
7.833010736540.00.207.04
157.245.36.108http/1.1ob1.howvps.com:443POST /graphql HTTP/1.1

1-1612754010/113/3897_
7.802011041260.00.379.29
197.3.142.6http/1.1ob1.howvps.com:443GET /the-exhilaration-of-football-betting/ HTTP/1.1

1-1612754010/107/3948_
7.57394911317990.00.287.74
35.196.126.105http/1.1formapay.ru.com:443GET //?author=1 HTTP/1.1

1-1612754010/112/3958_
7.881011019110.00.287.88
45.148.10.160http/1.1ob1.howvps.com:443GET /public/.env HTTP/1.1

1-1612754010/107/3824_
7.742112293260.00.188.61
216.244.66.194http/1.1aczpl.uk.com:443GET /carrier/carrier_air_v_manual.pdf HTTP/1.1

1-1612754010/106/3941_
7.854111913880.00.347.50
216.244.66.229http/1.1pv2002.org:443GET /garuda/garuda_puranam_part_9_in_telugu.pdf HTTP/1.1

1-1612754010/102/3944_
7.824105810501220.00.427.39
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/ HTTP/1.1

1-1612754010/110/3992_
7.85437210553560.00.147.91
165.227.195.114http/1.1games-cracked-download-free.za.GET /troy/troy_bilt_horse_repair_manual.pdf HTTP/1.1

1-1612754010/108/3951_
7.792110572730.00.276.95
143.244.165.196http/1.1pv2002.org:80GET /evangelicalism/evangelicalism_and_masculinityfaith_and_gen

1-1612754010/111/3861_
7.71353711408790.00.356.48
35.243.142.238http/1.1789win1.college:443POST //xmlrpc.php HTTP/1.1

1-1612754010/98/3928_
7.872010579990.00.196.81
157.245.36.108http/1.1ob1.howvps.com:443GET /api/swagger.json HTTP/1.1

1-1612754010/105/3829_
7.67454811727300.00.197.09
35.243.142.238http/1.1789win1.college:443POST //xmlrpc.php HTTP/1.1

1-1612754010/120/4033_
7.63208240810.00.329.12
216.244.66.194http/1.1aczpl.uk.com:443GET /bmw/bmw_k100_service_manual.pdf HTTP/1.1

1-1612754010/106/3873_
7.87276411189210.00.238.84
35.196.126.105http/1.1formapay.ru.com:443POST //xmlrpc.php HTTP/1.1

1-1612754010/101/3848_
7.872111641130.00.227.43
216.244.66.194http/1.1aczpl.uk.com:443GET /cell/cell_concept_map_worksheet.pdf HTTP/1.1

1-1612754010/100/3930_
7.654010661460.0

Found on 2025-11-16 13:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2e34adbc9

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Friday, 14-Nov-2025 18:03:16 UTC
Restart Time: Friday, 14-Nov-2025 14:56:03 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 hours 7 minutes 12 seconds
Server load: 0.77 0.89 0.92
Total accesses: 1797094 - Total Traffic: 4.3 GB - Total Duration: 22885039
CPU Usage: u134.33 s34.53 cu2727.65 cs780.56 - 32.7% CPU load
160 requests/sec - 404.2 kB/second - 2586 B/request - 12.7345 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 248 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
034775no14yes102400122
233083no30yes102400291
534862no0yes00250000
833248no1yes00250001
931688no2yes00250020
1034514no0yes00250000
1134569no0yes00250000
1233012no1yes00250001
1332607no4yes00250031
1434570no7yes00250061
Sum10059 2024800527

____W____________________.........................______________
R__________..................................................___
______________________..........................................
........________________________________________________________
________________________________________________________________
_______________________________________________________.........
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0347750/309/5169_
25.15101095080.00.9115.24
157.245.113.227http/1.1ob1.howvps.com:443GET /swagger.json HTTP/1.1

0-0347750/348/4864_
25.24013851880.00.9116.59
146.70.179.22http/1.1m360.in.net:443GET / HTTP/1.1

0-0347750/316/5204_
25.3104981870.01.1517.40
171.236.186.132http/1.1af88.good.tf:443GET / HTTP/1.1

0-0347750/337/5058_
25.21111012140.01.4517.30
216.244.66.240http/1.1demorecharge.in.net:80GET /gajanana/gajanana_tryambaka_madakholakara_bharatiya_sahity

0-03477511/321/5040W
25.29001329230.00.5017.69
167.99.181.249http/1.1ob1.howvps.com:443GET /server-status HTTP/1.1

0-0347750/315/4792_
25.27161059500.00.7915.57
171.236.185.113http/1.1af88.good.tf:443GET / HTTP/1.1

0-0347750/329/4949_
25.31051717290.01.1216.92
171.236.186.132http/1.1af88.good.tf:443GET / HTTP/1.1

0-0347750/317/5017_
25.30001140210.00.8217.17
167.99.181.249http/1.1ob1.howvps.com:443GET /@vite/env HTTP/1.1

0-0347750/345/5360_
25.22001206560.00.5516.63
170.106.179.68http/1.1toopler34.in.net:80GET / HTTP/1.1

0-0347750/338/4808_
25.28001151210.01.2216.03
167.99.181.249http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-0347750/323/4815_
25.300551444690.00.9116.14
136.112.218.236http/1.1sexywaysofreading.com:443POST //xmlrpc.php HTTP/1.1

0-0347750/315/4935_
25.31001067370.00.8717.79
2001:41d0:303:de4::1http/1.15.78.79.22:80GET /?phpinfo=1 HTTP/1.1

0-0347750/319/4956_
25.3200975510.01.0616.31
167.99.181.249http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0347750/323/5061_
25.2011724630.00.7914.94
146.190.72.223http/1.1pv2002.org:80GET /clanship/clanship_commerce_and_the_house_of_stuart_1603_17

0-0347750/318/5287_
25.31001290090.02.3217.81
167.99.181.249http/1.1ob1.howvps.com:443GET /server HTTP/1.1

0-0347750/316/5041_
25.21001078180.01.3917.26
157.245.113.227http/1.1ob1.howvps.com:443GET /telescope/requests HTTP/1.1

0-0347750/338/5190_
25.28001182110.00.9317.27
167.99.181.249http/1.1ob1.howvps.com:443GET /swagger/swagger-ui.html HTTP/1.1

0-0347750/320/4966_
25.2100825790.00.6117.04
157.245.113.227http/1.1ob1.howvps.com:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

0-0347750/290/4926_
25.22001430040.00.8316.78
209.38.248.17http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0347750/330/4863_
25.30052896690.00.6616.97
136.112.218.236http/1.1sexywaysofreading.com:443POST //xmlrpc.php HTTP/1.1

0-0347750/327/5021_
25.29011008210.00.9917.12
216.244.66.240http/1.1demorecharge.in.net:80GET /hernia/hernia_anatomy_etiology_symptoms_2nd_edition.pdf HT

0-0347750/301/5136_
25.30001010180.00.9518.42
167.99.181.249http/1.1ob1.howvps.com:443GET /actuator/env HTTP/1.1

0-0347750/311/4864_
25.25041190150.00.7417.29
171.236.186.132http/1.1af88.good.tf:443GET / HTTP/1.1

0-0347750/326/5478_
25.32001243640.01.0615.12
167.99.181.249http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

0-0347750/333/5097_
25.26041458250.01.1817.67
171.236.186.132http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4137.
0.0021140229670.00.008.88
172.70.143.212http/1.1

1-0-0/0/4266.
0.0021144421870.00.008.94
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4378.
0.0021144424580.00.008.93
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/3989.
0.0021140219720.00.007.42
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4085.
0.0021143848810.00.009.02
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4163.
0.0021140511970.00.009.41
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4578.
0.0021140381110.00.009.01
172.70.143.212http/1.1

1-0-0/0/4429.
0.0021140433720.00.009.40
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4529.
0.0021145268720.00.009.45
171.224.202.30http/1.1gll5.sa.com:443GET / HTTP/1.1

1-0-0/0/4166.
0.0021140454910.00.009.52
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4058.
0.0021145222020.00.009.50
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4356.
0.0021140474130.00.008.12
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4275.
0.0021146353620.00.008.69
171.224.202.30http/1.1gll5.sa.com:443GET / HTTP/1.1

1-0-0/0/4428.
0.0021140416840.00.009.82
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4494.
0.0021144420090.00.009.70
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4400.
0.0021145461680.00.009.09
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4432.
0.0021141555140.00.008.61
172.70.143.212http/1.1

1-0-0/0/4426.
0.0021141510470.00.008.99
216.244.66.240http/1.1demorecharge.in.net:80GET /lentil/lentil_loaf_recipe_whole_foods.pdf HTTP/1.1

1-0-0/0/4329.
0.00211422524150.00.009.45
45.156.128.77http/1.19paralitica.ru.com:443GET / HTTP/1.1

1-0-0/0/4306.
0.0021140656720.00.008.12
116.97.59.228http/1.1af88.good.tf:443GET / HTTP/1.1

1-0-0/0/4026.
0.0021140

Found on 2025-11-14 18:03

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2da6931f7

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.65 (Unix) OpenSSL/1.1.1k  
Server MPM: event
Server Built: Aug  2 2025 16:11:58

Current Time: Wednesday, 12-Nov-2025 17:45:19 UTC
Restart Time: Wednesday, 12-Nov-2025 16:16:27 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  1 hour 28 minutes 51 seconds
Server load: 2.57 1.95 1.80
Total accesses: 1822623 - Total Traffic: 8.4 GB - Total Duration: 12607299
CPU Usage: u447.39 s82.62 cu3242.2 cs587.35 - 81.8% CPU load
342 requests/sec - 1.6 MB/second - 4946 B/request - 6.91712 ms/request
9 requests currently being processed, 0 workers gracefully restarting, 241 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewait-iowritingkeep-aliveclosing
03906353no72no302200682
13903165no66yes502000631
23904347no70yes002500691
33904750no65yes102400612
43906745no49yes002500481
53907066no12yes002500120
63906382no3yes00250030
73903674no44yes002500440
83906437no9yes00250090
103904835no61yes002500601
Sum100451 90241004378

_R___W_______W___________R___________R______RRR_________________
__________________W_____________________________________________
________________________________________________________________
_________________________________.........................______
___________________.............................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-239063530/1024/4494_
39.7400255540.02.4021.07
113.189.193.20http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1015/4733R
39.7200306990.03.0925.41
172.68.164.86http/1.1gll5.sa.com:443

0-239063530/1012/4656_
39.7600378270.03.0225.64
14.174.230.30http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1020/4517_
39.7608324970.03.3423.66
2001:ee0:47e4:d702:b9ec:36b5:3d9:ad69http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1013/4689_
39.7600277810.02.3024.20
2001:ee0:429d:9c4a:7961:b78f:ef9d:663bhttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063533/974/4547W
39.6300277120.02.6723.79
2a01:4ff:1f0:c305::1http/1.1shauncanon.com:443GET /feed/ HTTP/1.1

0-239063530/1021/4518_
39.7500414390.02.6522.51
14.186.172.27http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1009/4590_
39.7400197620.02.6021.46
14.191.50.146http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1000/4472_
39.7300288110.02.9522.16
2001:ee0:4f3a:df0d:c94f:d933:256b:110fhttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1023/4637_
39.6700367410.02.9624.30
2001:ee0:4f3d:ad47:75d5:ebbe:b14d:d83ehttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1022/4689_
39.7406203590.02.5123.64
2001:ee0:5383:722f:b165:a99a:e5:56eahttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/942/4549_
39.7600471860.02.1123.24
2001:ee0:5502:704c:a48d:780b:9a7d:c307http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1033/4786_
39.7600161120.02.7625.29
2001:ee0:4f3c:cfce:dd58:84e0:9ad5:97b8http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1015/4623_
39.7600254540.02.7123.22
14.174.230.30http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1022/4608_
39.7400432010.02.0421.45
2001:ee0:4f36:5c4f:5d75:ff49:b029:c6dhttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1022/4578_
39.7300592660.02.5324.19
58.186.88.210http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1003/4620_
39.7300161750.02.6122.47
2001:ee0:4f3a:df0d:c94f:d933:256b:110fhttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1008/4610_
39.7600410770.02.6822.20
2001:ee0:4f3c:cfce:dd58:84e0:9ad5:97b8http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1026/4480_
39.7400277750.02.4823.18
14.191.50.146http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1020/4574_
39.7400350950.02.7823.39
2001:ee0:49d3:bf5b:6c8f:beef:e156:ca1bhttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1022/4590_
39.7500419210.02.5523.12
2001:ee0:5541:57ee:a853:8dc0:2631:9f18http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1021/4596_
39.7400235530.02.6423.81
14.174.230.30http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1020/4763_
39.7400202000.02.5425.07
2001:ee0:4f71:95e9:bc09:ea1b:49b4:b3d7http/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1010/4489_
39.6900181390.02.4421.89
2001:ee0:4f3a:df0d:c94f:d933:256b:110fhttp/1.1gll5.sa.com:443GET / HTTP/1.1

0-239063530/1011/4301_
39.7400357540.03.0523.56
2001:ee0:429d:9c4a:7961:b78f:ef9d:663bhttp/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1698/5928R
97.6900210560.07.7829.39
172.68.164.87http/1.1gll5.sa.com:443

1-239031650/1727/5869_
97.7100310390.06.9925.37
2001:ee0:4f39:81b1:38f3:c36c:4d31:154http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1708/5800_
97.7100244360.07.3925.28
2001:ee0:4f71:95e9:bc09:ea1b:49b4:b3d7http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1714/5763_
97.7100350220.06.8125.85
113.169.197.196http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1731/5895_
97.7500256620.07.9426.88
14.191.138.194http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1715/5799_
97.7200420620.06.9525.37
2001:ee0:45d4:1df4:a1ec:9f03:f5a4:2a9fhttp/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1733/5861_
97.7200194630.08.2129.53
2001:ee0:4f3a:df0d:c94f:d933:256b:110fhttp/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1720/5818_
97.7400195460.07.2825.44
2001:ee0:4f3b:6065:3c5f:1320:bd6d:a8f8http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1719/5660_
97.7201219670.07.9226.57
113.169.197.196http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1705/5659_
97.7402568330.06.6725.71
216.244.66.229http/1.1pv2002.org:443GET /handbook/handbook_of_conflict_analysis_and_resolution.pdf 

1-239031650/1712/5756_
97.7100178360.06.9824.51
2001:ee0:4790:7aba:1ce8:7e72:b3f4:6e2http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1735/5922_
97.6500384100.06.7226.37
172.71.214.26http/1.1

1-239031650/1700/5805R
97.6900132230.07.4627.00
172.68.164.86http/1.1gll5.sa.com:443

1-239031650/1713/5917_
97.7402341740.06.5725.96
161.35.48.220http/1.1pv2002.org:80GET /the/the_foundation_of_the_national_gallery_of_ireland.pdf 

1-239031650/1703/5837_
97.7100344140.07.0426.90
2001:ee0:42cb:3e2b:acae:b165:af22:a59http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1719/5478_
97.7200348450.06.6424.28
2001:ee0:5387:f629:6cd6:709c:548d:dec4http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1728/5723_
97.7400380360.07.7926.37
2001:ee0:49d3:bf5b:6c8f:beef:e156:ca1bhttp/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1737/5775_
97.7400253140.07.5026.41
2001:ee0:4f3b:6065:3c5f:1320:bd6d:a8f8http/1.1gll5.sa.com:443GET / HTTP/1.1

1-239031650/1691/5826_
97.6800610700.07.5727.87
2001:ee0:451c:8494:a00b:c142:2fbe:5972

Found on 2025-11-12 17:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2ee74f12f

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Monday, 10-Nov-2025 22:36:30 UTC
Restart Time: Monday, 10-Nov-2025 06:28:38 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  16 hours 7 minutes 51 seconds
Server load: 2.03 1.68 1.89
Total accesses: 854069 - Total Traffic: 1.7 GB - Total Duration: 372558483
CPU Usage: u816.98 s242.27 cu1209.71 cs349.54 - 4.51% CPU load
14.7 requests/sec - 30.2 kB/second - 2104 B/request - 436.216 ms/request
8 requests currently being processed, 0 workers gracefully restarting, 217 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
02580322no0yes0025000
12580323no0yes0025000
22583008no7yes2023051
32580324no0yes0025000
42580406no3yes1024021
52587812no18yes40210110
62587864no1yes0025010
72587895no2yes0025011
82587947no6yes1024050
Sum9037 802170253

________________________________________________________________
__W____W__________________________________W__________________W__
____W___W______W________________________________________________
____________________W____________...............................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-825803220/110/667_
12.8336205744770.00.221.33
172.70.111.174http/1.1getfreenetflixaccount.com:443POST /wp-login.php HTTP/1.1

0-825803220/116/667_
12.5951506153650.00.211.48
172.70.111.174http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/97/674_
12.1333705007770.00.341.47
172.70.254.217http/1.1trevorblackman.io:80GET / HTTP/1.1

0-825803220/104/712_
12.7752115027440.00.291.17
172.71.151.27http/1.1cannibusinessnews.com:443GET /wp-login.php?action=register HTTP/1.1

0-825803220/111/705_
12.833575965604910.00.201.92
172.70.46.221http/1.1good88268.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/120/696_
12.8334215240470.00.300.93
172.68.22.11http/1.1pv2002.org:443GET /pathways/pathways_to_bliss_mythology_and_personal_transfor

0-825803220/107/665_
12.708004957750.00.411.89
172.71.144.140http/1.1paranjape-thane.in.net:80GET /wp-admin/setup-config.php HTTP/1.1

0-825803220/115/677_
12.5233715322640.00.231.31
172.69.120.130http/1.1m.ww8838-trangchu.com:443GET /wp-content/uploads/2024/12/BANNER_WW88_03-1536x360.webp HT

0-825803220/104/703_
12.592604905070.00.291.61
104.23.187.183http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/99/678_
12.5968905587540.00.211.98
104.23.187.183http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/103/709_
12.8336104424900.00.171.20
172.70.111.174http/1.1getfreenetflixaccount.com:443POST /wp-login.php HTTP/1.1

0-825803220/104/706_
12.7752015882190.00.241.44
172.71.151.27http/1.1cannibusinessnews.com:443GET /restructured-and-recapitalized-retailer-medmen-looks-to-le

0-825803220/113/698_
12.898515739170.00.201.51
172.71.151.106http/1.1pv2002.org:443GET /wood/wood_harvesting_with_hand_tools_an_illustrated_traini

0-825803220/99/674_
12.5035605196390.00.191.36
172.70.92.252http/1.1ob1.howvps.com:443GET /video/girl-orgasms-outside-VEiM.html HTTP/1.1

0-825803220/107/719_
12.578004979590.00.201.44
162.158.41.90http/1.1ob1.howvps.com:443GET /tags/Free-Nude-Liseli-Kizlar-Sinifta-Aciyor HTTP/1.1

0-825803220/105/664_
12.712515266360.00.151.62
162.158.41.90http/1.1demorecharge.in.net:80GET /ugg-josette-boots-1003174-c-44_71/ugg-women-josette-boots-

0-825803220/104/676_
12.6135605000080.00.461.46
104.23.253.29http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/112/740_
12.4568904999830.00.321.20
111.90.150.108http/1.1ob1.howvps.com:443GET /ca/tyr/romabet-giris/ HTTP/1.0

0-825803220/98/686_
12.653374025296490.00.081.27
172.69.95.173http/1.178win.ooo:443GET /config.json HTTP/1.1

0-825803220/110/698_
12.90317445780290.00.111.48
108.162.249.48http/1.1bioprost-pe4.sa.com:443GET /no-hu-pg66/feed/ HTTP/1.1

0-825803220/99/714_
12.7269414760590.00.191.04
162.158.41.90http/1.1demorecharge.in.net:80GET /vn/trang-chu/58-sla-09.html HTTP/1.1

0-825803220/104/661_
12.8334215448010.00.091.27
172.70.214.195http/1.1pokerdomino168.com:443GET /wp-content/plugins/about.php HTTP/1.1

0-825803220/124/711_
12.533375025471570.00.301.35
172.71.99.57http/1.199winz.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/109/669_
12.6135605851590.00.551.32
104.23.253.29http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

0-825803220/100/671_
11.9751505314990.00.281.79
104.23.239.28http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

1-825803230/234/1390_
22.2514317332530.00.292.84
104.23.160.196http/1.199winz.com:443POST /wp-cron.php?doing_wp_cron=1762813439.50141000747680664062

1-825803230/206/1390_
22.481651997887500.00.483.39
104.23.170.173http/1.1mantra.us.com:443POST //xmlrpc.php HTTP/1.1

1-825803230/199/1391_
22.1313108829340.00.572.83
104.23.190.254http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

1-825803230/221/1368_
22.1214307322280.00.363.03
104.23.191.2http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

1-825803230/224/1420_
22.1216506955330.00.723.05
104.23.191.2http/1.1getfreenetflixaccount.com:443POST /xmlrpc.php HTTP/1.1

1-825803230/217/1410_
22.323518190790.00.422.93
172.68.22.81http/1.1pv2002.org:443GET /frozen/frozen_dreams_psychodynamic_dimensions_of_infertili

1-825803230/212/1382_
22.51442057102420.00.582.72
104.23.170.173http/1.1mantra.us.com:443POST //xmlrpc.php HTTP/1.1

1-825803230/218/1405_
22.284518267480.00.402.94
162.158.41.54http/1.1pv2002.org:443GET /dynamics/dynamics_of_the_party_system_alignment_and_realig

1-825803230/218/1419_
22.515008138240.00.342.42
162.158.163.2http/1.15.78.79.22:80GET /wp-admin/install.php HTTP/1.1

1-825803230/226/1383_
22.17276127646650.00.732.65
172.68.175.64http/1.14x4.za.com:443POST /wp-cron.php?doing_wp_cron=1762813048.96381688117980957031

1-825803230/214/1354_
22.111794807779990.00.482.31
172.71.99.57http/1.199winz.com:443POST /xmlrpc.php HTTP/1.1

1-825803230/223/1403_
21.8517907879540.00.332.55
172.68.164.6http/1.1456789.club:443GET /wp-content/plugins/easy-table-of-contents/assets/css/scree

1-825803230/209/1407_
22.4913618361910.00.392.98
172.68.23.136http/1.1pv2002.org:443GET /the/the_theory_of_environmental_policy_the_theory_of_envir

1-825803230/220/1368_
22.30444607507710.00.772.88
104.23.172.50http/1.1mantra.us.com:443POST //xmlrpc.php HTTP/1.1

1-825803230/218/1370_
22.332744497430630.00.532.45
104.23.170.44http/1.199winz.com:443POST /xmlrpc.php HTTP/1.1

1-825803230/223/1441_
21.9927607370090.00.364.36
162.158.110.142http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

1-825803230/214/1388_
22.524017788820.00.282.34
162.158.41.253http/1.1pv2002.org:443GET /restoring/restoring_quality_health_care_a_six_point_plan_f

1-825803230/238/1384

Found on 2025-11-10 22:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c26854bec1

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Saturday, 08-Nov-2025 17:03:32 UTC
Restart Time: Saturday, 08-Nov-2025 03:49:36 UTC
Parent Server Config. Generation: 26
Parent Server MPM Generation: 25
Server uptime:  13 hours 13 minutes 56 seconds
Server load: 0.68 0.89 1.30
Total accesses: 662455 - Total Traffic: 1.3 GB - Total Duration: 250865900
CPU Usage: u286.42 s83.54 cu1379.74 cs383.51 - 4.48% CPU load
13.9 requests/sec - 29.4 kB/second - 2164 B/request - 378.691 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 248 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
01361943no0yes0025000
11362029no0yes0025000
21361944no1yes0025001
31361945no2yes0025011
41364003no0yes0025000
51367959no15yes10240131
61367995no6yes1024051
71368026no5yes0025041
81368056no0yes0025000
101368112no1yes0025001
Sum10030 202480236

________________________________________________________________
________________________________________________________________
_____W______________________________R___________________________
_________________________________.........................______
___________________.............................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2513619430/83/963_
8.10331780434748120.00.232.13
172.71.98.249http/1.1sexywaysofreading.com:443GET /.env.production.local HTTP/1.1

0-2513619430/93/962_
8.40170304016470.00.141.68
172.70.240.71http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2513619430/105/1003_
8.6129405504340.00.301.98
172.71.144.143http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-bat-lo-kep-dua-vao-dau-cam

0-2513619430/86/949_
8.4251604026660.00.151.98
104.23.239.28http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

0-2513619430/88/984_
8.1929305200400.00.251.78
172.70.247.223http/1.1alookking.com:443GET /wp-content/uploads/2025/01/logo.webp HTTP/1.1

0-2513619430/83/950_
8.5629404047230.00.081.71
172.70.240.70http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2513619430/88/1003_
8.73128715315130.00.352.09
162.158.41.72http/1.1pv2002.org:443GET /time/time_and_chance_henry_ii_eleanor_of_aquitaine_book_2.

0-2513619430/84/942_
8.9129913254560.00.091.82
172.68.23.158http/1.1188v.uss.tf:443GET /wp-content/themes/flatsome/inc/extensions/flatsome-live-se

0-2513619430/98/939_
8.9033613777210.00.171.66
172.71.151.168http/1.1estoreadmin.uk.com:443GET /cancer/cancer_symptom_management_breanne_lechner.pdf HTTP/

0-2513619430/78/961_
8.5933104542580.00.162.35
172.70.240.71http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2513619430/73/959_
8.37128213192340.00.352.44
162.158.86.106http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/keo-thom-nhan-biet.jpg HTTP/1.1

0-2513619430/77/919_
8.9033614229850.00.172.16
172.71.150.138http/1.1estoreadmin.uk.com:443GET /calculus/calculus_a_first_course_solutions_manual_mcgraw.p

0-2513619430/91/974_
8.36140003271280.00.182.01
172.70.243.43http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/choi-co-trach-nhiem-bet88-yeu-c

0-2513619430/86/930_
8.893574263903780.00.251.64
162.158.42.4http/1.1demorecharge.in.net:80GET /service/service_dog_certificate_template_texas.pdf HTTP/1.

0-2513619430/94/982_
8.5433104352990.00.151.96
172.70.240.71http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2513619430/79/955_
8.9229813926510.00.202.12
172.68.22.61http/1.1188v.uss.tf:443GET /wp-content/fonts/bai-jamjuree/LDIqapSCOBt_aeQQ7ftydoa05efe

0-2513619430/79/934_
8.711400754629110.00.361.98
104.23.170.36http/1.1j88com.best:80POST /xmlrpc.php HTTP/1.1

0-2513619430/76/920_
8.3851603940760.00.331.97
172.68.192.171http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xo-so-mien-bac-bet88-150x150.jp

0-2513619430/82/958_
8.5935203525870.01.863.86
162.158.110.143http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

0-2513619430/95/958_
8.3833104643570.00.142.43
162.158.110.143http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/lo-de-bac-nho-bet88-150x150.jpg

0-2513619430/81/947_
8.0635203892380.00.221.85
172.71.99.98http/1.1

0-2513619430/85/932_
8.6629313536060.00.351.99
108.162.246.61http/1.1estoreadmin.uk.com:443GET /the/the_poetic_canvas.pdf HTTP/1.1

0-2513619430/83/920_
8.42128204624630.00.632.45
172.70.240.70http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/trang-da-ga-uy-tin-bet88-150x15

0-2513619430/87/917_
8.86521233694350.00.221.81
162.158.179.108http/1.1phonereview.sa.com:443GET /sexy-truc-tuyen/ HTTP/1.1

0-2513619430/93/964_
8.56170304015810.00.161.32
172.68.192.170http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/xo-so-mien-bac-bet88-150x150.jp

1-2513620290/371/2787_
34.115804108842940.00.886.09
172.68.211.57http/1.1clomipramine.us.com:80GET /wp-content/uploads/2023/08/logo-gold.png HTTP/1.1

1-2513620290/403/2866_
33.8912309195400.01.026.74
104.23.239.29http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

1-2513620290/370/2813_
34.3714709496270.01.295.37
172.71.194.14http/1.1ob1.howvps.com:443POST /xmlrpc.php HTTP/1.1

1-2513620290/401/2748_
33.99147728959130.01.126.32
104.23.166.13http/1.1j88com.best:80POST /xmlrpc.php HTTP/1.1

1-2513620290/387/2773_
34.3615219126220.01.216.56
108.162.245.161http/1.1pv2002.org:443GET /world/world_cruising_routes_7th_edition_1000_sailing_route

1-2513620290/378/2793_
34.1435918837530.01.104.76
172.71.146.23http/1.1pv2002.org:443GET /adult/adult_coloring_journalcodependents_of_sex_addicts_an

1-2513620290/379/2815_
34.2846508988380.00.734.68
172.70.47.163http/1.118wincom.app:443GET /wp-admin/user/index.php HTTP/1.1

1-2513620290/398/2772_
33.881422889711500.00.755.56
172.71.99.96http/1.1clomipramine.us.com:80POST /xmlrpc.php HTTP/1.1

1-2513620290/356/2803_
34.351691659375120.00.855.49
162.158.193.37http/1.1owvq9.sa.com:443POST //xmlrpc.php HTTP/1.1

1-2513620290/363/2791_
34.1430519991230.00.896.30
172.71.146.127http/1.1estoreadmin.uk.com:443GET /compair/compair_6000n_broomwade_manual.pdf HTTP/1.1

1-2513620290/378/2800_
33.9346009429270.01.025.77
172.71.148.144http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/dang-nhap-bet88-truy-cap-trang-

1-2513620290/385/2867_
33.8714719550680.01.166.25
172.71.99.61http/1.1ww8838.com:80POST /xmlrpc.php HTTP/1.1

1-2513620290/385/2794_
33.9365908994870.01.055.97
172.71.164.59http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/soi-cau-qua-tram-bet88-150x150.

1-2513620290/381/2802_
33.84659110829090.01.015.84
172.71.99.61http/1.1ww8838.com:80POST /xmlrpc.php HTTP/1.1

1-2513620290/396/2837_
34.12460110043130.01.305.85
172.68.22.141http/1.1estoreadmin.uk.com:443GET /bmw/bmw_r80gs_and_bmw_r100r_service_manual.pdf HTTP/1.1

1-2513620290/364/2747_
33.9916918503550.00.985.75
172.71.147.34http/1.1estoreadmin.uk.com:443

Found on 2025-11-08 16:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2803ec005

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Thursday, 06-Nov-2025 22:16:03 UTC
Restart Time: Thursday, 06-Nov-2025 03:30:26 UTC
Parent Server Config. Generation: 6
Parent Server MPM Generation: 5
Server uptime:  18 hours 45 minutes 37 seconds
Server load: 4.05 2.85 2.51
Total accesses: 979124 - Total Traffic: 1.6 GB - Total Duration: 448341089
CPU Usage: u1236.67 s377.63 cu1103.42 cs329.12 - 4.51% CPU load
14.5 requests/sec - 24.4 kB/second - 1722 B/request - 457.9 ms/request
11 requests currently being processed, 0 workers gracefully restarting, 214 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0186009no33yes60190262
1185418no0yes0025000
2185353no29yes00250281
3185354no7yes1024041
4185447no0yes0025000
5186037no27yes30220231
6186066no0yes0025000
7186098no1yes1024010
8186128no6yes0025042
Sum90103 1102140867

____R_WW_R__________R_R_________________________________________
___________________________________W____________________________
___R__W_______W_______________________________________________W_
_________________________________...............................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-51860090/6770/7204_
489.260023670670.08.499.12
172.71.210.127http/1.1ob1.howvps.com:443GET /member/js/lang_zh_CN.js HTTP/1.1

0-51860090/6713/7149_
489.200022975760.010.3611.12
172.69.138.218http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-51860090/6672/7089_
489.270023761710.09.4310.32
162.158.178.49http/1.1ob1.howvps.com:443GET /assets/app-manifest.json HTTP/1.1

0-51860090/6775/7196_
489.280126173640.08.859.89
162.158.41.197http/1.1gnzcy.uk.com:443GET /eu/mbj/bahis-sitelerinde-kimler-para-kazanabiliyor/ HTTP/1

0-51860090/6810/7238R
489.111025310080.08.709.61
172.68.22.108http/1.1music-gossip.in.net:80GET /towns/towns_and_temples_along_the_mississippi.pdf HTTP/1.1

0-51860090/6689/7112_
489.2402025667790.09.7410.94
172.71.151.101http/1.1j88com.college:443GET / HTTP/1.1

0-51860095/6713/7159W
488.8912025267510.09.7010.87
172.68.175.111http/1.1bet88lo.com:443GET /cac-loai-keo-bong-da/ HTTP/1.1

0-51860092/6816/7255W
488.6021024107430.09.4410.55
104.23.160.172http/1.1shauncanon.com:443GET /khuyen-mai-789win/ HTTP/1.1

0-51860090/6674/7085_
489.230025542390.08.359.20
172.68.225.149http/1.1ob1.howvps.com:443GET /api/system/notice/find HTTP/1.1

0-51860090/6649/7098R
489.231126774250.08.669.58
162.158.108.96http/1.15fk.cn.com:443

0-51860090/6725/7151_
489.230024557900.09.7810.60
172.68.225.149http/1.1ob1.howvps.com:443GET /iexchange/webtrader/ HTTP/1.1

0-51860090/6618/7106_
489.270123701800.09.6810.89
172.68.23.102http/1.1pv2002.org:443GET /pediatric/pediatric_molecular_pathology_quantitation_and_a

0-51860090/6836/7277_
489.25030524438980.09.6410.82
172.70.142.229http/1.15fk.cn.com:443POST //xmlrpc.php HTTP/1.1

0-51860090/6572/7006_
489.270024405550.010.1311.62
172.71.214.175http/1.1krishipay.in.net:80GET /robots.txt HTTP/1.1

0-51860090/6674/7106_
489.280024424300.010.2411.34
162.158.178.49http/1.1ob1.howvps.com:443GET /index.php/api/index/info HTTP/1.1

0-51860090/6693/7128_
489.250024462510.09.2910.26
172.71.210.28http/1.1ob1.howvps.com:443GET /static/home/css/css.css HTTP/1.1

0-51860090/6807/7255_
489.270023447880.09.0710.15
162.158.114.31http/1.1ob1.howvps.com:443GET /wx/static/css/style.css HTTP/1.1

0-51860090/6712/7157_
489.230025270810.08.9810.19
172.71.214.225http/1.1ob1.howvps.com:443GET /dock/system/config/get HTTP/1.1

0-51860090/6769/7229_
489.27034822986380.09.8011.26
162.158.108.96http/1.15fk.cn.com:443POST //xmlrpc.php HTTP/1.1

0-51860090/6625/7042_
489.200024928120.07.899.20
162.158.193.194http/1.1ob1.howvps.com:443GET /Content/favicon.ico HTTP/1.1

0-51860090/6717/7159R
489.231023486900.010.4511.44
162.158.178.49http/1.1ob1.howvps.com:443GET /facebook/facebook.html HTTP/1.1

0-51860090/6715/7149_
489.260125669050.08.279.18
172.71.191.129http/1.1beforeyouwerefunny.com:80GET /haikh.php HTTP/1.1

0-51860090/6661/7092R
489.250024994740.09.2210.32
162.158.179.209http/1.1ob1.howvps.com:443GET /Public/css/errorCss.css HTTP/1.1

0-51860090/6755/7216_
489.270022976610.08.409.64
162.158.178.49http/1.1ob1.howvps.com:443GET /public/api/index/config HTTP/1.1

0-51860090/6706/7164_
489.260024855480.010.8211.83
172.71.215.41http/1.1ob1.howvps.com:443GET /static/data/configjs.js HTTP/1.1

1-51854180/125/3611_
17.2214129645980.00.334.29
172.68.23.207http/1.1music-gossip.in.net:80GET /small/small_pieces_spectacular_quilts_patterns.pdf HTTP/1.

1-51854180/122/3665_
17.0558127369320.00.585.35
172.68.22.129http/1.1pv2002.org:443GET /the/the_wild_boys_a_book_of_the_dead_burroughs_william_s.p

1-51854180/111/3596_
16.5633828771830.00.236.90
172.68.174.233http/1.1yapinswebs.gb.net:443POST /wp-cron.php?doing_wp_cron=1762464475.59455895423889160156

1-51854180/125/3635_
17.08331028017330.00.095.40
162.158.230.123http/1.15.78.79.22:80GET /build/js/bundle.js HTTP/1.1

1-51854180/112/3580_
17.139657429187910.00.195.13
172.68.34.94http/1.1bbl555.com:443POST /wp-login.php HTTP/1.1

1-51854180/127/3612_
17.28266128685390.00.205.14
172.71.150.143http/1.1music-gossip.in.net:80GET /nokia/nokia_n81_user_guide.pdf HTTP/1.1

1-51854180/111/3621_
17.27332110227167220.00.154.10
172.70.93.34http/1.15fk.cn.com:443POST //xmlrpc.php HTTP/1.1

1-51854180/120/3591_
17.2732870326940920.00.275.55
172.70.93.34http/1.15fk.cn.com:443POST //xmlrpc.php HTTP/1.1

1-51854180/115/3680_
16.89143137329725350.00.275.79
104.23.187.45http/1.1demorecharge.in.net:443GET /the/the_pure_new_wool_designer_knit_wear_collection.pdf HT

1-51854180/123/3668_
17.11143127649650.00.337.38
172.71.151.236http/1.1pv2002.org:443GET /cartier/cartier_w7100016_watches_owners_manual.pdf HTTP/1.

1-51854180/102/3627_
16.6226116627804280.00.164.71
172.71.148.48http/1.1yachtcharter.uk.net:443GET /public/.env HTTP/1.1

1-51854180/121/3675_
17.08512126377350.00.134.78
172.71.150.250http/1.1pv2002.org:443GET /virtual/virtual_teams_virtual_teams.pdf HTTP/1.1

1-51854180/123/3595_
16.8014128647820.00.205.49
162.158.42.57http/1.1pv2002.org:443GET /essential/essential_readings_in_comparative_politics_chapt

1-51854180/140/3742_
17.3719027015480.00.365.39
172.68.194.177http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/cach-choi-poker-bet88-meo-choi.

1-51854180/119/3713_
17.3563127044830.00.315.11
172.68.23.122http/1.1music-gossip.in.net:80GET /new/new_studies_in_weak_arithmetics.pdf HTTP/1.1

1-51854180/112/3626_
17.2441446929027600.00.355.32
172.70.208.25http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

1-51854180/122/3671_
16.70414127100820.00.235.29
162.158.41.244http/1.1pv2002.org:443GET /canon/canon_irc3880_system_software_bundle.pdf HTTP/1.1

1-51854180/112/3732_
16.85327315

Found on 2025-11-06 22:08

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c257a27f31

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Tuesday, 04-Nov-2025 22:15:13 UTC
Restart Time: Tuesday, 04-Nov-2025 03:16:23 UTC
Parent Server Config. Generation: 24
Parent Server MPM Generation: 23
Server uptime:  18 hours 58 minutes 50 seconds
Server load: 1.21 1.26 1.14
Total accesses: 879917 - Total Traffic: 1.7 GB - Total Duration: 301198019
CPU Usage: u724.47 s204.82 cu1401.09 cs413.46 - 4.02% CPU load
12.9 requests/sec - 25.5 kB/second - 2027 B/request - 342.303 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 147 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
03308174no7yes1024070
13308860no11yes0025091
23308085no3yes0025030
33308140no1yes0025010
43332142no11yes2023091
53308084no1yes0025010
Sum6034 301470302

__________________W_____________________________________________
____________________________________W_________W_________________
______________________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2333081740/3976/7001_
288.31219523920670.08.4815.23
172.68.175.93http/1.1shauncanon.com:443GET /wp-json/wp/v2/pages/111/ HTTP/1.1

0-2333081740/3968/6967_
288.263124945030.06.4912.13
104.23.209.98http/1.1convertzen.io:443GET /fr/javascript-deobfuscator HTTP/1.1

0-2333081740/3946/6943_
288.411123590480.06.8713.20
162.158.42.88http/1.1pv2002.org:443GET /polaris/polaris_atv_sportsman_500_1996_repair_service_manu

0-2333081740/3900/6820_
288.402023529240.06.9812.79
172.68.195.219http/1.1ob1.howvps.com:443GET /swagger/v1/swagger.json HTTP/1.1

0-2333081740/3986/7033_
288.423022297400.07.1212.88
172.71.111.75http/1.1boarded.us.com:80GET /lv.php HTTP/1.1

0-2333081740/4009/7032_
288.31310424049540.06.8812.53
172.68.175.93http/1.1shauncanon.com:443GET /tai-app-789win/feed/ HTTP/1.1

0-2333081740/3961/7017_
288.35317622607500.07.3913.09
172.70.176.44http/1.15ng.cn.com:443POST //xmlrpc.php HTTP/1.1

0-2333081740/3933/6982_
288.263022988420.06.5812.11
172.71.111.75http/1.1boarded.us.com:80GET /we.php HTTP/1.1

0-2333081740/4007/6989_
288.372022788580.07.2212.69
172.71.148.91http/1.1ob1.howvps.com:443GET /swagger/swagger-ui.html HTTP/1.1

0-2333081740/4012/6999_
288.38246523743370.07.4713.02
104.23.160.241http/1.1shauncanon.com:443GET /feed/ HTTP/1.1

0-2333081740/4003/7036_
288.331023816510.05.8111.70
172.71.148.112http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/dang-ky-bet88-luu-y.jpg HTTP/1.

0-2333081740/3941/6911_
288.430123549250.06.7211.79
172.71.111.75http/1.1boarded.us.com:80GET /222.php HTTP/1.1

0-2333081740/3965/6929_
288.363024878820.06.9512.70
172.71.111.75http/1.1boarded.us.com:80GET /444.php HTTP/1.1

0-2333081740/4024/6994_
288.402023493690.07.5213.97
172.71.111.75http/1.1boarded.us.com:80GET /cfile.php HTTP/1.1

0-2333081740/3995/6961_
288.423024139880.07.3614.72
172.68.195.219http/1.1ob1.howvps.com:443GET /actuator/env HTTP/1.1

0-2333081740/3993/6940_
288.40248222446300.06.8913.27
104.23.160.241http/1.1shauncanon.com:443GET /feed/atom/ HTTP/1.1

0-2333081740/3983/6993_
288.37284923897560.06.6011.88
172.68.175.93http/1.1shauncanon.com:443GET /feed/ HTTP/1.1

0-2333081740/4001/6985_
288.392022098340.07.2313.03
172.68.195.219http/1.1ob1.howvps.com:443GET /webjars/swagger-ui/index.html HTTP/1.1

0-2333081744/3944/6891W
288.420023084430.06.3611.19
104.23.160.241http/1.1shauncanon.com:443GET /lien-he-789win/ HTTP/1.1

0-2333081740/3996/6961_
288.431023030310.06.5813.01
172.71.148.91http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

0-2333081740/4035/7001_
288.432023517630.08.5815.02
172.71.111.75http/1.1boarded.us.com:80GET /goat.php HTTP/1.1

0-2333081740/4009/7012_
288.363023529290.06.9012.30
172.71.164.214http/1.1ob1.howvps.com:443GET /swagger/index.html HTTP/1.1

0-2333081740/3916/6906_
288.433124263060.07.4013.89
172.68.22.50http/1.1pv2002.org:443GET /polaris/polaris_centurion_indy_1981_factory_service_repair

0-2333081740/4020/6976_
288.372023892160.06.1411.97
172.71.111.75http/1.1boarded.us.com:80GET /a2.php HTTP/1.1

0-2333081740/3948/6926_
288.312022573910.07.1013.29
172.71.111.75http/1.1boarded.us.com:80GET /hexx.php HTTP/1.1

1-2333088600/3865/10294_
278.440034504330.07.0218.72
172.71.126.214http/1.15.78.79.22:80GET /xo-so-bet88/ HTTP/1.1

1-2333088600/3790/10249_
278.373134382920.07.1619.64
172.68.22.228http/1.1pv2002.org:443GET /polaris/polaris_atv_magnum_6x6_1996_1997_workshop_service_

1-2333088600/3895/10426_
278.413034674650.06.3018.30
162.158.110.35http/1.1ob1.howvps.com:443GET /@vite/env HTTP/1.1

1-2333088600/3842/10302_
278.421033269430.06.1118.20
104.23.239.29http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

1-2333088600/3825/10252_
278.431033598720.08.1523.41
162.158.110.35http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

1-2333088600/3804/10216_
278.421034063090.07.5521.79
172.70.248.81http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/giay-phep-hoat-dong-bet88-dam-b

1-2333088600/3881/10405_
278.41477931150720.06.5918.80
172.70.174.40http/1.1ngrq.uk.com:443GET / HTTP/1.1

1-2333088600/3778/10292_
278.431031162420.07.5818.41
172.71.144.128http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/giay-phep-hoat-dong-bet88-kho-g

1-2333088600/3929/10362_
278.41016831868210.06.0318.77
172.70.176.45http/1.15ng.cn.com:443POST //xmlrpc.php HTTP/1.1

1-2333088600/3823/10244_
278.303133708320.05.7518.61
172.71.232.157http/1.1ww8838.com:443GET /tag/%D9%86%D9%82%D8%B4%D9%87-%D8%A8%D8%B1%D8%A7%DB%8C-%D8%

1-2333088600/3879/10372_
278.42257032458100.06.1619.96
172.71.111.140http/1.1shadowgamer.in.net:443GET /lv.php HTTP/1.1

1-2333088600/3794/10368_
278.41454233789210.06.7320.34
172.71.111.140http/1.1shadowgamer.in.net:443GET /cfile.php HTTP/1.1

1-2333088600/3865/10382_
278.431035058330.06.7419.58
172.68.193.172http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/giay-phep-hoat-dong-bet88-cac-l

1-2333088600/3878/10285_
278.372034121020.06.5919.29
162.158.110.35http/1.1ob1.howvps.com:443POST /api HTTP/1.1

1-2333088600/3870/10382_
278.44061033501940.06.2918.62
172.71.111.140http/1.1shadowgamer.in.net:443GET /222.php HTTP/1.1

1-2333088600/3819/10350_
278.431033592580.07.9621.00
172.71.172.157http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/giay-phep-hoat-dong-bet88-cac-l

1-2333088600/3871/10335_
278.431034883490.07.5120.62
104.23.239.28http/1.1bet88lo.com:443GET /wp-content/uploads/2025/01/bet88-e1737690195585.webp HTTP/

1-2333088600/3889/10374_
278.431133824590.07.7720.53
172.71.150.129http/1.1pv2002.org:443GET /popular/popular_names_of_u_s_government_reports_a_catalog_

1-2333088600/3808/10255_
278.33350334282500.08.3620.67
172.71.111.140http/1.1shadowgamer.in.net:443GET /fe5.php HTTP/1.1

Found on 2025-11-04 22:08

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c200c82f58

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Monday, 03-Nov-2025 06:13:12 UTC
Restart Time: Monday, 03-Nov-2025 03:51:23 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  2 hours 21 minutes 48 seconds
Server load: 2.25 1.68 1.57
Total accesses: 102076 - Total Traffic: 267.9 MB - Total Duration: 27643507
CPU Usage: u69.7 s17.59 cu181.11 cs58.41 - 3.84% CPU load
12 requests/sec - 32.2 kB/second - 2751 B/request - 270.813 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 122 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
02643537no14yes00250112
12641855no0yes0025000
22641856no5yes1024041
32641857no5yes0025041
42641941no15yes20230131
Sum5039 301220325

_______________________________________________________W________
___________________________________________________W____R____...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-426435370/250/279_
21.6720602400.01.241.30
172.70.178.23http/1.1krishipay.in.net:443GET /uono/2025-10-online-solitaire-19428t47.shtml HTTP/1.1

0-426435370/242/271_
21.7103433547560.00.480.54
104.23.175.194http/1.1pawneecity.us.com:443GET / HTTP/1.1

0-426435370/257/291_
21.54211214750.00.500.57
172.71.82.135http/1.1

0-426435370/273/301_
21.6711670410.00.510.55
172.68.23.100http/1.1estoreadmin.uk.com:443GET /what/what_is_the_area_of_circumference.pdf HTTP/1.1

0-426435370/258/285_
21.7020503890.00.770.79
172.71.144.104http/1.1ob1.howvps.com:443GET /v3/api-docs HTTP/1.1

0-426435370/253/289_
21.650587852020.00.440.49
172.71.1.150http/1.1sportworldwide.in.net:443GET /matkas/starry-ore-clash-of-clans-apk-79743t49.pdf HTTP/1.1

0-426435370/256/288_
21.7311587550.00.610.66
162.158.41.197http/1.1gnzcy.uk.com:443GET /?main_page=product_reviews_write&products_id=4311&number_o

0-426435370/268/295_
21.692438786860.00.660.70
162.158.90.100http/1.1365ok365.net:443POST //xmlrpc.php HTTP/1.1

0-426435370/236/266_
21.650438613520.00.550.61
162.158.90.101http/1.1365ok365.net:443POST //xmlrpc.php HTTP/1.1

0-426435370/235/267_
21.68201188820.00.360.54
172.71.148.90http/1.1ob1.howvps.com:443GET /webjars/swagger-ui/index.html HTTP/1.1

0-426435370/254/290_
21.7102823948780.00.800.83
172.71.82.135http/1.1pawneecity.us.com:443GET /chinh-sach-bao-mat/ HTTP/1.1

0-426435370/248/273_
21.642525740170.00.850.88
172.69.11.43http/1.1shauncanon.com:443POST /xmlrpc.php HTTP/1.1

0-426435370/251/286_
21.6010983840.00.420.53
172.70.240.4http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-426435370/272/308_
21.69111055500.01.071.17
162.158.41.54http/1.1music-gossip.in.net:80GET /canon/canon_2520_copier_manual.pdf HTTP/1.1

0-426435370/252/283_
21.73101115470.00.831.04
172.70.240.4http/1.1ob1.howvps.com:443GET /server HTTP/1.1

0-426435370/257/289_
21.56211120390.00.510.54
172.68.22.215http/1.1gnzcy.uk.com:443GET /?main_page=product_reviews_write&products_id=2095&number_o

0-426435370/260/288_
21.71027351134590.00.540.56
172.71.82.135http/1.1pawneecity.us.com:443GET /chinh-sach-bao-mat/ HTTP/1.1

0-426435370/255/290_
21.7221867160.00.851.00
172.68.22.74http/1.1music-gossip.in.net:80GET /city/city_lights_a_street_life.pdf HTTP/1.1

0-426435370/250/282_
21.671438726370.00.971.13
162.158.90.100http/1.1365ok365.net:443POST //xmlrpc.php HTTP/1.1

0-426435370/263/295_
21.6521942890.00.450.49
172.71.150.56http/1.1estoreadmin.uk.com:443GET /weg/weg_mit_den_irischen_m_nchen.pdf HTTP/1.1

0-426435370/252/278_
21.7311776920.00.850.88
162.158.42.161http/1.1estoreadmin.uk.com:443GET /zastava/zastava_cars_user_guide.pdf HTTP/1.1

0-426435370/256/282_
21.701506590850.00.620.72
162.158.90.101http/1.1365ok365.net:443POST //xmlrpc.php HTTP/1.1

0-426435370/236/264_
21.6225669300.00.550.58
104.23.166.52http/1.1viscosities.eu.com:443GET /wp-includes/block-patterns/ HTTP/1.1

0-426435370/273/302_
21.6810938330.00.370.41
162.158.86.76http/1.1ob1.howvps.com:443GET /swagger.json HTTP/1.1

0-426435370/259/291_
21.740411425870.00.400.47
162.158.90.101http/1.1365ok365.net:443POST //xmlrpc.php HTTP/1.1

1-426418550/49/635_
4.642712228490.00.061.80
172.69.89.184http/1.1persiagsm.com:443GET //zwso.php HTTP/1.1

1-426418550/45/576_
4.642811673010.00.091.02
172.69.89.184http/1.1persiagsm.com:443GET /wp-admin/admin-ajax.php HTTP/1.1

1-426418550/50/589_
4.70141131885490.00.111.34
104.23.166.53http/1.1viscosities.eu.com:443GET /wp-includes/block-patterns/index.php HTTP/1.1

1-426418550/55/594_
4.673411966130.00.061.42
172.69.89.184http/1.1persiagsm.com:443GET /files.php HTTP/1.1

1-426418550/57/610_
4.691971423800.00.131.96
104.23.166.53http/1.1viscosities.eu.com:443GET /wp-includes/Text/Diff/Renderer/ HTTP/1.1

1-426418550/49/566_
4.632811887080.00.091.69
162.158.41.233http/1.1music-gossip.in.net:80GET /volvo/volvo_sn_300000_a40f_articulated_hauler_service_and_

1-426418550/49/600_
4.72311957450.00.251.56
172.68.22.244http/1.1pv2002.org:443GET /robert/robert_emmet_compact_irish_history_s.pdf HTTP/1.1

1-426418550/51/578_
4.66612385210.00.151.31
172.69.89.184http/1.1persiagsm.com:443GET /shlo.php HTTP/1.1

1-426418550/48/571_
4.642811822000.00.231.69
172.69.89.184http/1.1persiagsm.com:443GET /zoo.php HTTP/1.1

1-426418550/52/604_
4.71312055620.00.031.96
172.71.146.58http/1.1estoreadmin.uk.com:443GET /yamaha/yamaha_vx_15_owners_manual.pdf HTTP/1.1

1-426418550/51/610_
4.65911994560.00.422.28
172.69.89.184http/1.1persiagsm.com:443GET /bolt.php HTTP/1.1

1-426418550/59/590_
4.673311826790.00.061.22
104.23.160.226http/1.1scotlants.jp.net:443POST /wp-cron.php?doing_wp_cron=1762150358.64376401901245117187

1-426418550/53/585_
4.701101698490.00.041.63
172.70.127.149http/1.15.78.79.22:80GET /test.php HTTP/1.1

1-426418550/43/606_
4.673511794110.00.021.57
172.69.89.184http/1.1persiagsm.com:443GET /wp-content/plugins/index.php HTTP/1.1

1-426418550/53/594_
4.71311667510.00.151.33
172.68.22.214http/1.1gnzcy.uk.com:443GET /?main_page=product_reviews_write&products_id=3196&number_o

1-426418550/45/577_
4.673511286880.00.211.72
172.69.89.184http/1.1persiagsm.com:443GET /wp-content/index.php HTTP/1.1

1-426418550/50/580_
4.66611927690.00.041.94
172.69.89.184http/1.1persiagsm.com:443GET /133.php HTTP/1.1

1-426418550/50/581_
4.683311757200.00.011.43
172.69.89.184http/1.1persiagsm.com:443GET /wp-editor.php HTTP/1.1

1-426418550/48/589_
4.673311847400.00.081.38
172.71.147.171http/1.1estoreadmin.uk.com:443GET /swot/swot_analysis_for_teambuilding.pdf HTTP/1.1

1-426418550/45/588_
4.65901257450.00.082.27
172.69.89.184http/1.1persiagsm.com:443GET /wp-content/plugins/hellopress/wp_mna.php HTTP/1.1

1-4264185

Found on 2025-11-03 06:06

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c29bbe5e50

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Saturday, 01-Nov-2025 17:57:08 UTC
Restart Time: Saturday, 01-Nov-2025 09:33:51 UTC
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  8 hours 23 minutes 16 seconds
Server load: 0.55 0.76 1.03
Total accesses: 355447 - Total Traffic: 871.1 MB - Total Duration: 101477495
CPU Usage: u258.14 s74.61 cu643.37 cs181.78 - 3.83% CPU load
11.8 requests/sec - 29.5 kB/second - 2569 B/request - 285.493 ms/request
1 requests currently being processed, 0 workers gracefully restarting, 149 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
01611596no0yes0025000
11611597no2yes0025020
21611598no1yes0025010
31611680no4yes0025031
41611976no6yes0025051
51622186no1yes1024010
Sum6014 101490122

________________________________________________________________
________________________________________________________________
_W____________________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-616115960/152/1106_
13.091243773396570.00.242.98
172.70.251.225http/1.1music-gossip.in.net:443GET /poker-23win/ HTTP/1.1

0-616115960/137/1077_
12.992003220180.00.224.05
104.23.198.116http/1.1a13.cn.com:443POST /xmlrpc.php HTTP/1.1

0-616115960/154/1088_
12.9920133586690.00.252.50
172.71.183.73http/1.1shubhamtourandtravels.in.net:44GET /dang-ky-888p/ HTTP/1.1

0-616115960/152/1057_
13.121432763481670.00.142.14
104.23.166.105http/1.1music-gossip.in.net:443GET /wp-json/wp/v2/pages/2 HTTP/1.1

0-616115960/146/1061_
12.991645533091620.00.252.28
172.71.183.73http/1.1shubhamtourandtravels.in.net:44POST /xmlrpc.php HTTP/1.1

0-616115960/135/1098_
12.97119223450180.00.122.37
162.158.79.212http/1.1piski.in.net:443GET /the-thao-888p/ HTTP/1.1

0-616115960/148/1088_
13.151248043661300.00.312.31
172.68.70.222http/1.1viscosities.eu.com:443POST /xmlrpc.php HTTP/1.1

0-616115960/146/1077_
13.1115603321720.00.122.86
172.69.11.181http/1.133890.top:443GET /wp-login.php HTTP/1.1

0-616115960/144/1087_
13.1711883304090.00.202.58
172.71.182.158http/1.1tp8848.com:443GET / HTTP/1.1

0-616115960/158/1119_
13.1412493387600.00.422.60
104.23.160.227http/1.1viscosities.eu.com:443POST /wp-cron.php?doing_wp_cron=1762019703.34744310379028320312

0-616115960/149/1057_
13.1313303646880.00.412.17
172.71.95.101http/1.1pg668.net:443GET /song-bai-pg66/ HTTP/1.1

0-616115960/149/1083_
12.8412793085950.00.242.68
172.68.175.66http/1.1789win1.college:443POST /wp-cron.php?doing_wp_cron=1762019280.74967002868652343750

0-616115960/142/1053_
12.985603755540.00.232.65
104.23.166.181http/1.1888p.cn.com:443GET /dang-ky-888p/ HTTP/1.1

0-616115960/159/1077_
13.061512733042100.00.332.42
172.71.98.104http/1.1music-gossip.in.net:443GET /dang-nhap-23win/ HTTP/1.1

0-616115960/142/1015_
13.021282322985640.00.302.23
172.71.194.136http/1.1music-gossip.in.net:443GET /microsoft-click-to-run-la-gi/imager_31_1114_700.jpg HTTP/1

0-616115960/157/1054_
13.162503629690.00.252.39
162.158.162.95http/1.1ob1.howvps.com:443GET /black-weave-curly-hairstyles/black-weave-curly-hairstyles-

0-616115960/157/1048_
12.9511912938800.00.472.90
162.158.108.79http/1.1ww8838.com:443GET /p/romance-novel-beautiful-roses-briefing.html HTTP/1.1

0-616115960/151/1056_
13.121391903645620.00.232.34
104.23.166.105http/1.1music-gossip.in.net:443GET /xo-so-23win HTTP/1.1

0-616115960/147/1088_
13.156102757620.00.272.53
104.23.195.31http/1.1365ok365.net:443GET /wp-login.php HTTP/1.1

0-616115960/136/1060_
13.0813313421190.00.142.91
172.71.190.220http/1.1hjwitteveen.com:443GET /upload/image/3.jpg HTTP/1.1

0-616115960/124/1035_
13.131382713388900.00.372.85
104.23.166.105http/1.1music-gossip.in.net:443GET /xo-so-23win/ HTTP/1.1

0-616115960/138/1018_
13.0813303281410.00.201.77
172.68.10.89http/1.15.78.79.22:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

0-616115960/156/1088_
13.10567912944050.00.272.57
172.70.39.168http/1.1scotlants.jp.net:443GET /wp-content/uploads/2018/06/eBay-Coupons.jpg HTTP/1.1

0-616115960/145/1036_
12.9916402941790.00.302.31
162.158.163.210http/1.1365ok365.net:443GET /wp-login.php HTTP/1.1

0-616115960/143/1085_
13.061514503128480.00.182.68
172.71.98.104http/1.1music-gossip.in.net:443GET /dieu-kien-va-dieu-khoan-23win HTTP/1.1

1-616115970/245/1380_
22.08433533612900.00.303.64
141.101.105.88http/1.1music-gossip.in.net:443GET /lien-he-23win/ HTTP/1.1

1-616115970/229/1398_
22.195133832310.00.504.92
162.158.193.121http/1.1grummemisy.ru.com:443GET /no-hu-lc88/ HTTP/1.1

1-616115970/271/1439_
22.18604197720.00.563.47
172.69.86.80http/1.1ob1.howvps.com:443GET /swagger/index.html HTTP/1.1

1-616115970/248/1380_
22.18803621150.00.513.73
172.69.86.80http/1.1ob1.howvps.com:443POST /api HTTP/1.1

1-616115970/255/1413_
22.044303861550.00.604.13
172.70.240.29http/1.1ob1.howvps.com:443GET /wp-login.php HTTP/1.1

1-616115970/235/1374_
22.14103773901060.00.743.42
172.70.206.109http/1.18kbet43.com:443GET /static/images/nopic.png HTTP/1.1

1-616115970/248/1408_
22.154304350420.00.623.16
154.18.187.209http/1.1af88-u.uss.tf:443GET /wp-content/uploads/2025/10/12a.jpg HTTP/1.0

1-616115970/233/1358_
22.123705091540.00.753.58
172.71.135.93http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-616115970/236/1410_
22.164314331560.00.424.27
154.18.187.209http/1.1af88-u.uss.tf:443GET /wp-content/fonts/roboto/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3

1-616115970/248/1354_
22.094204940520.00.493.53
172.71.150.99http/1.15.78.79.22:80GET /robots.txt HTTP/1.1

1-616115970/248/1375_
22.16425573819120.00.413.51
108.162.227.61http/1.1shauncanon.com:443GET /series/bible-black-only-subbed?bimber_random_post=true HTT

1-616115970/231/1395_
22.18902899930.00.423.52
172.69.86.80http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-616115970/245/1424_
22.164324208670.00.683.77
154.18.187.209http/1.1af88-u.uss.tf:443GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver

1-616115970/252/1360_
22.12427504076380.00.803.68
104.23.172.91http/1.1789win1.college:443POST /xmlrpc.php HTTP/1.1

1-616115970/249/1389_
22.154304017340.00.433.06
154.18.187.209http/1.1af88-u.uss.tf:443GET /wp-content/themes/flatsome/inc/integrations/wp-rocket/flat

1-616115970/263/1413_
22.114304760120.00.654.01
172.69.114.66http/1.1ob1.howvps.com:443POST /xmlrpc.php HTTP/1.1

1-616115970/248/1396_
22.09914086220.00.383.38
172.70.135.206http/1.1hjwitteveen.com:443GET /upload/image/1.jpg HTTP/1.1

1-616115970/245/1362_
21.974314367100.00.432.93
172.68.174.192http/1.1scotlants.jp.net:443POST /wp-cron.php?doing_wp_cron=1762019499.74599909782409667968

1-616115970/246/1368_
22.181514431680.00.462.97
172.69.121.135http/1.1metalarts.in.net:443GET /wp-content/themes/flatsome/assets/js/chunk.tooltips.js?ver

1-61611597

Found on 2025-11-01 17:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2101d0aa3

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Tuesday, 28-Oct-2025 20:15:46 UTC
Restart Time: Tuesday, 28-Oct-2025 03:38:35 UTC
Parent Server Config. Generation: 21
Parent Server MPM Generation: 20
Server uptime:  16 hours 37 minutes 10 seconds
Server load: 1.53 2.52 2.74
Total accesses: 832974 - Total Traffic: 1.9 GB - Total Duration: 234812493
CPU Usage: u727.13 s231.94 cu1113.4 cs342.11 - 4.04% CPU load
13.9 requests/sec - 32.9 kB/second - 2421 B/request - 281.897 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 144 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
03568320no2yes0025020
13568402no9yes0025072
23568318no0yes0025000
33568431no12yes4021091
43568319no0yes2023000
53590538no9yes0025081
Sum6032 601440264

________________________________________________________________
_______________W____R__W_________W_________________R_W__________
______________________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2035683200/1467/3261_
106.0516949923080.03.387.12
172.71.124.94http/1.1dmsolutions.in.net:443GET / HTTP/1.1

0-2035683200/1446/3238_
106.04231710416240.04.358.91
172.71.82.44http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1483/3239_
105.901437911585760.03.196.62
162.158.42.48http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1462/3240_
105.988111517400.03.027.72
172.64.200.166http/1.1xcasinoclub.ru.com:443GET /wp-login.php HTTP/1.1

0-2035683200/1454/3235_
106.048111483140.03.407.84
172.68.174.237http/1.123wim.cn.com:80GET /story/story_of_new_zealand.pdf HTTP/1.1

0-2035683200/1430/3205_
105.9717010376170.03.167.37
87.121.84.17http/1.15.78.79.22:80GET / HTTP/1.1

0-2035683200/1471/3227_
105.901441010487780.03.427.78
162.158.170.54http/1.1akixebonuf.in.net:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1468/3262_
105.941453010756340.03.126.58
154.18.187.209http/1.1af88-u.uss.tf:443GET / HTTP/1.0

0-2035683200/1458/3249_
106.0014110184110.03.306.83
172.68.22.19http/1.123wim.cn.com:80GET /speak/speak_novel_test_with_answers.pdf HTTP/1.1

0-2035683200/1494/3252_
106.0213010497850.03.607.71
172.68.50.109http/1.1ob1.howvps.com:443GET /pms HTTP/1.1

0-2035683200/1473/3289_
106.04886210180160.03.427.39
162.158.42.48http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1493/3250_
106.048110886320.04.528.10
141.101.76.77http/1.1ww8838.com:443GET / HTTP/1.1

0-2035683200/1508/3319_
105.91836510519780.03.096.91
172.71.82.44http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1458/3230_
106.013110762580.03.096.86
172.68.174.212http/1.1u888com.blog:80POST /wp-cron.php?doing_wp_cron=1761682524.16556596755981445312

0-2035683200/1483/3253_
106.001773611035790.03.106.65
172.71.124.182http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1486/3259_
106.01347211459460.03.408.12
172.71.103.118http/1.1taxie.us:443POST /xmlrpc.php HTTP/1.1

0-2035683200/1493/3271_
105.941474110540340.03.517.47
172.71.124.182http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1438/3179_
106.00219749650.03.227.63
172.68.22.169http/1.123wim.cn.com:80GET /sony/sony_user_manual_camera.pdf HTTP/1.1

0-2035683200/1510/3300_
105.99830711750030.03.706.77
162.158.42.47http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1483/3231_
106.051010012610.03.227.56
162.158.41.205http/1.123wim.cn.com:80GET /subtraction/subtraction_fraction_word_problems.pdf HTTP/1.

0-2035683200/1484/3258_
105.74841910450130.02.906.61
162.158.170.55http/1.1akixebonuf.in.net:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1474/3243_
106.04893711062530.03.767.78
172.71.124.182http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1503/3301_
106.012110342120.03.217.10
172.71.146.146http/1.123wim.cn.com:80GET /srimad/srimad_bhagavatam_canto_7_pt_2.pdf HTTP/1.1

0-2035683200/1441/3211_
106.001432510245660.02.837.21
172.71.82.44http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

0-2035683200/1465/3248_
105.973110767920.03.347.29
172.68.23.183http/1.1pv2002.org:443GET /orvis/orvis_clog_owners_manual.pdf HTTP/1.1

1-2035684020/3357/6565_
230.02145120610570.07.8216.03
162.158.170.54http/1.1akixebonuf.in.net:443POST //xmlrpc.php HTTP/1.1

1-2035684020/3347/6526_
230.05156120703840.07.8215.83
172.71.146.254http/1.1music-gossip.in.net:80GET /computer/computer_networks_lab_manuals_vtu.pdf HTTP/1.1

1-2035684020/3346/6445_
230.051120693860.07.3115.95
172.68.174.88http/1.1akixebonuf.in.net:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

1-2035684020/3376/6601_
230.030120944270.07.9916.30
162.158.42.151http/1.1pv2002.org:443GET /painted/painted_horse_the_saddle_club_75.pdf HTTP/1.1

1-2035684020/3392/6557_
230.04330620313640.09.2116.27
172.71.82.45http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

1-2035684020/3342/6596_
230.051119915600.07.9316.01
172.68.174.88http/1.1akixebonuf.in.net:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

1-2035684020/3302/6417_
230.030120114880.07.7915.81
172.68.23.168http/1.123wim.cn.com:80GET /study/study_guide_for_nj_police_sgt_test.pdf HTTP/1.1

1-2035684020/3302/6489_
230.06034120046550.08.4717.68
172.71.82.44http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

1-2035684020/3329/6514_
230.030019237260.07.6515.32
162.158.163.86http/1.1ob1.howvps.com:443GET /ro/tyr/donovan-fixed-bahis HTTP/1.1

1-2035684020/3360/6498_
230.03430819991960.07.3514.90
172.71.82.44http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

1-2035684020/3351/6515_
230.043120266070.07.6316.65
172.68.174.88http/1.1akixebonuf.in.net:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

1-2035684020/3321/6496_
230.03048320043750.07.0415.00
162.158.42.47http/1.133890.top:443POST //xmlrpc.php HTTP/1.1

1-2035684020/3354/6560_
230.04273020160100.07.7916.85
172.68.174.213http/1.1u888com.blog:80GET /?elementor_library=home8-footer-json HTTP/1.1

1-2035684020/3353/6489_
230.06057620491440.06.7314.32
154.18.187.209http/1.1af88-u.uss.tf:443GET / HTTP/1.0

1-2035684020/3372/6595_
229.993118899660.07.6414.98
108.162.246.198http/1.123wim.cn.com:80GET /stephen/stephen_king_list_for_7th_graders.pdf HTTP/1.1

1-2035684020/3290/6471_
229.87351721245630.06.9715.11
172.68.151.69http/1.1cokkings.com:443GET /?p=57 HTTP/1.1

1-2035684020/3409/6580_
229.95034020675120.06.9114.52
172.71.82.45http/1.1fenomenowz.za.com:443POST //xmlrpc.php HTTP/1.1

1-2035684020/3303/6498_
229.933020113140.06.4414.66
108.162.246.187http/1.1deltadentalmi.us.com:80GET /wp-content/uploads/2018/08/CBD-OIL-1-1024x512.png HTTP/1.1

1-2035684020/3342/6493_
230.060120883150.08.0217.28
172.68.174.88http/1.1akixebonuf.in.net:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

Found on 2025-10-28 20:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c209021257

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Sunday, 26-Oct-2025 19:21:02 UTC
Restart Time: Sunday, 26-Oct-2025 14:04:59 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 hours 16 minutes 2 seconds
Server load: 1.90 2.02 1.98
Total accesses: 227246 - Total Traffic: 445.2 MB - Total Duration: 219326281
CPU Usage: u342.01 s118.26 cu165.12 cs54.27 - 3.58% CPU load
12 requests/sec - 24.0 kB/second - 2054 B/request - 965.149 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 246 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
02459623no5yes1024031
12430719no0yes0025000
22430720no3yes0025030
32430805no0yes0025000
42459661no8yes2023061
72438604no7yes0025041
92438680no0yes0025000
122438773no3yes1024020
132438801no0yes0025000
152459859no0yes0025000
Sum10026 402460183

_______________W________________________________________________
_______________________________________W_________W___________...
..............................................._________________
________........................._________________________......
............................................___W________________
______________________________........................._________
________________
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-024596230/839/907_
52.26006400870.01.171.23
172.69.17.106http/1.1ob1.howvps.com:443GET /goods.php HTTP/1.1

0-024596230/876/940_
52.26005951780.01.551.99
172.69.17.106http/1.1ob1.howvps.com:443GET /flower.php HTTP/1.1

0-024596230/863/940_
52.27005796940.01.321.46
172.69.17.106http/1.1ob1.howvps.com:443GET /w.php HTTP/1.1

0-024596230/846/912_
52.25106937050.01.231.38
172.69.17.106http/1.1ob1.howvps.com:443GET /admin.php HTTP/1.1

0-024596230/835/901_
52.2606435872230.01.381.44
172.71.103.143http/1.1789win1.college:443POST /xmlrpc.php HTTP/1.1

0-024596230/846/921_
52.26005945550.01.511.55
172.69.17.106http/1.1ob1.howvps.com:443GET /ioxi-o.php HTTP/1.1

0-024596230/867/935_
52.2515025500800.01.021.21
172.71.95.45http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-024596230/841/912_
52.27006053620.01.311.45
172.69.17.106http/1.1ob1.howvps.com:443GET /moon.php HTTP/1.1

0-024596230/851/914_
52.26005997680.01.321.43
172.69.17.106http/1.1ob1.howvps.com:443GET /classwithtostring.php HTTP/1.1

0-024596230/848/912_
52.24005753710.01.151.38
172.69.17.106http/1.1ob1.howvps.com:443GET /wp-admin/tinyfilemanager.php HTTP/1.1

0-024596230/845/918_
52.21006512380.01.782.10
172.69.17.106http/1.1ob1.howvps.com:443GET /wp-content/asasx.php HTTP/1.1

0-024596230/929/997_
52.2705376066540.01.551.97
162.158.106.91http/1.13wine.top:80GET / HTTP/1.1

0-024596230/841/915_
52.26006245730.01.321.48
172.69.17.106http/1.1ob1.howvps.com:443GET /code.php HTTP/1.1

0-024596230/829/890_
52.26106236750.01.361.53
172.69.17.106http/1.1ob1.howvps.com:443GET /chosen.php HTTP/1.1

0-024596230/853/922_
52.2106106708610.01.261.31
172.71.95.45http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-024596234/845/921W
52.24005882160.01.321.54
162.158.94.234http/1.1ob1.howvps.com:443GET /server-status HTTP/1.1

0-024596230/872/947_
52.26106895770.01.171.32
172.69.17.106http/1.1ob1.howvps.com:443GET /alfa.php HTTP/1.1

0-024596230/863/936_
52.26005959310.01.491.54
172.69.17.106http/1.1ob1.howvps.com:443GET /edit.php HTTP/1.1

0-024596230/836/916_
52.23106503000.01.151.31
172.69.17.106http/1.1ob1.howvps.com:443GET /wp-admin/ioxi-o.php HTTP/1.1

0-024596230/858/935_
52.26005580290.00.981.52
172.69.17.106http/1.1ob1.howvps.com:443GET /file.php HTTP/1.1

0-024596230/853/917_
52.2317086992270.00.971.10
172.71.95.46http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-024596230/827/891_
52.24006404430.01.171.24
172.69.17.106http/1.1ob1.howvps.com:443GET /aa.php HTTP/1.1

0-024596230/839/900_
52.27005811490.01.481.65
172.69.17.106http/1.1ob1.howvps.com:443GET /wp-admin/css/colors/blue/index.php HTTP/1.1

0-024596230/868/931_
52.23106161070.00.941.15
172.69.17.106http/1.1ob1.howvps.com:443GET /wp-admin/ova.php HTTP/1.1

0-024596230/820/893_
52.25106232080.01.171.33
172.69.17.106http/1.1ob1.howvps.com:443GET /about.php HTTP/1.1

1-024307190/204/204_
17.572703581770.00.440.44
172.68.174.88http/1.1akixebonuf.in.net:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

1-024307190/182/182_
17.58146363206970.00.290.29
172.71.111.22http/1.1dkelaiditis.gr.com:443GET /CLA.php HTTP/1.1

1-024307190/198/198_
17.573018863016830.00.470.47
172.71.144.109http/1.1789win1.college:443POST /xmlrpc.php HTTP/1.1

1-024307190/175/175_
17.30551563564300.00.490.49
172.68.175.93http/1.1shauncanon.com:443GET /feed/rss/ HTTP/1.1

1-024307190/182/182_
17.582103350770.00.350.35
162.158.88.20http/1.1ob1.howvps.com:443GET /robots.txt HTTP/1.1

1-024307190/199/199_
17.5546154231470.00.300.30
172.71.95.45http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

1-024307190/213/213_
17.58217533192960.00.450.45
162.158.87.72http/1.1agykontroll.uk.com:443POST /xmlrpc.php HTTP/1.1

1-024307190/183/183_
17.59138604548530.00.220.22
172.71.111.22http/1.1dkelaiditis.gr.com:443GET /aa.php HTTP/1.1

1-024307190/192/192_
17.54165894149490.00.400.40
172.71.122.104http/1.1ecosphere.us.com:443POST //xmlrpc.php HTTP/1.1

1-024307190/182/182_
17.522213240800.00.340.34
172.68.175.65http/1.1789win1.college:443POST /wp-cron.php?doing_wp_cron=1761506339.82626700401306152343

1-024307190/186/186_
17.522282821020.00.400.40
172.68.174.182http/1.1xtrpjc.uk.com:443POST /wp-cron.php?doing_wp_cron=1761506340.53638696670532226562

1-024307190/206/206_
17.441602828770.00.430.43
162.158.179.116http/1.1ob1.howvps.com:443POST /xmlrpc.php HTTP/1.1

1-024307190/194/194_
17.53205983450100.00.360.36
172.71.103.144http/1.1789win1.college:443POST /xmlrpc.php HTTP/1.1

1-024307190/178/178_
17.564582846640.00.390.39
104.23.160.57http/1.1dkelaiditis.gr.com:443POST /wp-cron.php?doing_wp_cron=1761506416.95267200469970703125

1-024307190/194/194_
17.6195853522570.00.290.29
172.71.111.22http/1.1dkelaiditis.gr.com:443GET /aa.php HTTP/1.1

1-024307190/180/180_
17.61106103360850.00.180.18
172.71.111.22http/1.1dkelaiditis.gr.com:443GET /nc4.php HTTP/1.1

1-024307190/193/193_
17.4945254124360.00.410.41
172.71.95.46http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

1-024307190/166/166_
17.414013243220.00.260.26
104.23.211.173http/1.13279.cn.com:443GET /robots.txt HTTP/1.1

1-024307190/207/207_
17.442102807100.00.560.56
172.71.146.156http/1.1pv2002.org:443GET /pick/pick_a_god_a

Found on 2025-10-26 19:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2c31f77e2

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Saturday, 25-Oct-2025 06:42:46 UTC
Restart Time: Saturday, 25-Oct-2025 03:40:25 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  3 hours 2 minutes 20 seconds
Server load: 0.89 1.10 1.24
Total accesses: 117076 - Total Traffic: 283.1 MB - Total Duration: 27288128
CPU Usage: u29.63 s9.63 cu256.85 cs81.41 - 3.45% CPU load
10.7 requests/sec - 26.5 kB/second - 2535 B/request - 233.08 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 120 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
01737575no0yes0025000
11737577no9yes0025081
21737576no4yes1024021
31737659no3yes0025030
41738572no30yes40210251
Sum5046 501200383

______________________________________________________W_________
__________________________________________W___________R_W_W__...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-817375750/19/206_
1.63140294690.00.000.09
172.69.214.165http/1.15.78.79.22:80GET /new/.env HTTP/1.1

0-817375750/16/214_
1.74140381220.00.020.19
162.158.41.94http/1.1iforgot-icloud.us.com:80GET /walking/walking_dead_1_robert_kirkman.pdf HTTP/1.1

0-817375750/16/212_
1.74180325310.00.000.24
172.71.146.122http/1.1iforgot-icloud.us.com:80GET /ven/ven_se_mi_luzlas_escrituras_privadas_de_la_santa_de_ca

0-817375750/14/210_
1.55141490270.00.000.48
108.162.245.82http/1.1iforgot-icloud.us.com:80GET /unit/unit_2_study_guide_biology.pdf HTTP/1.1

0-817375750/18/218_
1.60147347260.00.250.51
104.23.160.60http/1.100062.cn.com:443POST /wp-cron.php?doing_wp_cron=1761374438.27570390701293945312

0-817375750/24/223_
1.70140416780.00.070.28
162.158.42.211http/1.1way2b.uk.com:80GET /mt/tyr/mars-tv-bahis/ HTTP/1.1

0-817375750/20/221_
1.7540438800.00.030.32
172.69.130.207http/1.15.78.79.22:80GET /laravel/info.php HTTP/1.1

0-817375750/22/213_
1.73191543720.00.010.34
172.71.147.75http/1.1iforgot-icloud.us.com:80GET /valentine/valentine_s_desserts_from_chocolatebakery_com.pd

0-817375750/17/204_
1.70141421500.00.020.24
172.71.151.91http/1.1iforgot-icloud.us.com:80GET /tcp/tcp_ip_protocol_suite_4th_solution_manuals.pdf HTTP/1.

0-817375750/14/203_
1.73191358860.00.000.54
108.162.245.90http/1.1iforgot-icloud.us.com:80GET /vaal/vaal_university_of_technology_residential_form.pdf HT

0-817375750/16/216_
1.6714606399660.00.040.44
162.158.90.245http/1.1xxqm.uk.com:443POST //xmlrpc.php HTTP/1.1

0-817375750/14/213_
1.70141288050.00.010.71
162.158.41.83http/1.1iforgot-icloud.us.com:80GET /service/service_manual_for_volvo_ec_160.pdf HTTP/1.1

0-817375750/17/211_
1.751421340230.01.411.86
104.23.170.110http/1.1music-gossip.in.net:443GET /.env HTTP/1.1

0-817375750/14/204_
1.67131699420.00.000.35
162.158.42.140http/1.1iforgot-icloud.us.com:80GET /pacing/pacing_guide_for_common_core_missouri.pdf HTTP/1.1

0-817375750/17/214_
1.7319378514270.00.010.12
172.69.74.209http/1.1music-gossip.in.net:443GET /xmlrpc.php HTTP/1.1

0-817375750/18/203_
1.6822530452570.00.040.42
162.158.90.244http/1.1xxqm.uk.com:443POST //xmlrpc.php HTTP/1.1

0-817375750/17/200_
1.58131405320.00.010.37
172.71.146.156http/1.1iforgot-icloud.us.com:80GET /clayworks/clayworks_in_art_therapyplying_the_sacred_circle

0-817375750/22/213_
1.72136353540.00.030.21
104.23.211.210http/1.151ylc.cn.com:443GET /xo-so-nn88/ HTTP/1.1

0-817375750/19/210_
1.7291387140.00.060.37
172.71.151.226http/1.1iforgot-icloud.us.com:80GET /the/the_way_of_jesus_to_repair_and_renew_the_world.pdf HTT

0-817375750/17/214_
1.7419501395280.00.020.44
172.69.166.97http/1.13wine.top:80GET / HTTP/1.1

0-817375750/14/200_
1.55141478270.00.060.57
172.71.150.101http/1.1iforgot-icloud.us.com:80GET /university/university_of_southern_california_ranking_compu

0-817375750/11/204_
1.54141641230.00.070.42
172.68.164.166http/1.12edg.us.com:443GET /wp-content/uploads/2025/10/gioi-thieu-ve-san-choi-truc-tuy

0-817375750/22/209_
1.7241380440.00.000.24
172.69.130.207http/1.1

0-817375750/16/205_
1.74199327060.00.010.08
104.23.160.191http/1.1dmsolutions.in.net:443POST /wp-cron.php?doing_wp_cron=1761374547.12126302719116210937

0-817375750/13/204_
1.6591369770.00.000.52
172.71.147.91http/1.1iforgot-icloud.us.com:80GET /motor/motor_car_parts_functions.pdf HTTP/1.1

1-817375770/71/537_
5.33001965040.00.181.27
172.68.23.187http/1.1iforgot-icloud.us.com:80GET /un/un_masked_memoirs_guerrilla_girl.pdf HTTP/1.1

1-817375770/72/511_
5.32111024830.00.121.14
172.71.151.113http/1.1iforgot-icloud.us.com:80GET /umap/umap_modules_1980_tools_for_teaching.pdf HTTP/1.1

1-817375770/67/506_
5.42201620720.00.231.19
104.23.168.71http/1.1ob1.howvps.com:443GET /api/swagger.json HTTP/1.1

1-817375770/54/500_
5.41511466410.00.171.27
172.68.23.220http/1.1iforgot-icloud.us.com:80GET /yard/yard_garden_owners_manual_your_complete_guide_to_the_

1-817375770/72/492_
5.37081781890.00.032.69
104.23.160.251http/1.1wiretap.us.com:443POST /wp-cron.php?doing_wp_cron=1761374548.20243692398071289062

1-817375770/72/509_
5.38311783260.00.231.62
172.68.23.193http/1.1iforgot-icloud.us.com:80GET /welcome/welcome_to_a_reformed_church_guide_for_pilgrims_ki

1-817375770/64/485_
5.39011679490.00.180.89
172.71.151.97http/1.1iforgot-icloud.us.com:80GET /yamaha/yamaha_yfm660_2001_2006_full_service_repair_manual.

1-817375770/67/505_
5.35211200300.00.130.62
172.71.159.20http/1.1iforgot-icloud.us.com:443POST /xmlrpc.php HTTP/1.1

1-817375770/73/492_
5.40511516410.00.181.10
172.68.22.170http/1.1iforgot-icloud.us.com:80GET /yamaha/yamaha_yz450f_full_service_repair_2004.pdf HTTP/1.1

1-817375770/59/496_
5.3211999750.00.130.67
172.71.150.241http/1.1iforgot-icloud.us.com:80GET /ultrasonic/ultrasonic_cleaning_services_business_special.p

1-817375770/72/492_
5.40511648620.00.260.87
172.71.95.98http/1.1aczpl.uk.com:80GET / HTTP/1.1

1-817375770/70/479_
5.42111034270.00.190.90
172.68.22.92http/1.1iforgot-icloud.us.com:80GET /bone/bone_and_joint_trauma_diagnosis_of_x_ray_spectra_auth

1-817375770/69/485_
5.41411156600.00.201.06
172.71.150.67http/1.1iforgot-icloud.us.com:80GET /your/your_cat_simple_new_secrets_to_a_longer_stronger_life

1-817375770/65/472_
5.3308841537000.00.111.38
172.68.245.197http/1.1tp8866.com:443GET /dai-ly-tp88/ HTTP/1.1

1-817375770/75/494_
5.36211315470.00.191.06
172.71.151.193http/1.1iforgot-icloud.us.com:80GET /vegetable/vegetable_gardening_for_beginners.pdf HTTP/1.1

1-817375770/59/487_
5.39011557150.00.161.37
172.71.150.115http/1.1iforgot-icloud.us.com:80GET /yamaha/yamaha_200_hpdi_repair_manual.pdf HTTP/1.1

1-817375770/65/480_
5.38311012880.00.311.03
172.71.151.185http/1.1iforgot-icloud.us.com:80GET /week/week_by_week_math_essentials_grade_6_answer_key.pdf H

1-817375770/59/498_
5.42101005790.00.050.84
108.162.241.209http/1.1ob1.howvps.com:443GET /xxx/video/old-men-tube-gay/ HTTP/1.1

1-817375770/74/495_
5.41411295970.00.341.35
</

Found on 2025-10-25 06:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2d302f761

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Thursday, 23-Oct-2025 11:29:25 UTC
Restart Time: Thursday, 23-Oct-2025 03:33:34 UTC
Parent Server Config. Generation: 36
Parent Server MPM Generation: 35
Server uptime:  7 hours 55 minutes 51 seconds
Server load: 0.61 1.33 1.68
Total accesses: 369079 - Total Traffic: 767.3 MB - Total Duration: 143792006
CPU Usage: u549.2 s177.17 cu321.94 cs123.03 - 4.1% CPU load
12.9 requests/sec - 27.5 kB/second - 2179 B/request - 389.597 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 245 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
1610788no14yes1024091
2610873no8yes2023051
3611629no0yes0025000
5610789no8yes0025071
6633876no13yes20230111
7633908no0yes0025000
8633938no0yes0025000
9633968no0yes0025000
10633996no0yes0025000
12634063no1yes0025001
Sum10044 502450325

........................._____________W__________________W______
_W__________________________________.........................___
______________________W________________R________________________
________________________________________________________________
___________________.........................____________________
_____...........................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-35-0/0/971.
0.009607600484414420.00.003.35
172.70.111.152http/1.1

0-35-0/0/925.
0.00960704043510.00.001.57
162.158.155.11http/1.1

0-35-0/0/965.
0.009607600073598910.00.002.43
172.71.203.61http/1.1

0-35-0/0/943.
0.009607600314022570.00.001.79
172.70.115.20http/1.1

0-35-0/0/968.
0.00960703642240.00.001.69
162.158.154.218http/1.1

0-35-0/0/944.
0.009607413384354750.00.002.42
104.23.253.76http/1.1

0-35-0/0/985.
0.00960713063410.00.002.85
172.70.115.19http/1.1

0-35-0/0/980.
0.009607600603462350.00.001.49
104.23.187.89http/1.1

0-35-0/0/937.
0.0096075633205120.00.001.60
104.23.190.93http/1.1

0-35-0/0/959.
0.0096076273208790.00.001.61
104.23.187.89http/1.1

0-35-0/0/993.
0.009607657343391420.00.001.63
104.23.187.89http/1.1rwinds.com:443GET /.env.example HTTP/1.1

0-35-0/0/973.
0.009607629613362400.00.001.97
172.70.115.19http/1.1rwinds.com:443GET /.bzr/branch HTTP/1.1

0-35-0/0/952.
0.009607695244195850.00.002.06
104.23.190.93http/1.1rwinds.com:443GET /database/aws_keys.sql HTTP/1.1

0-35-0/0/940.
0.009607720904248060.00.002.15
172.71.203.61http/1.1rwinds.com:443GET /database/credentials.sql HTTP/1.1

0-35-0/0/954.
0.00960713529370.00.001.94
172.70.110.21http/1.1

0-35-0/0/968.
0.0096076003899700.00.001.82
162.158.159.122http/1.1

0-35-0/0/968.
0.009607739003959750.00.001.67
162.158.155.11http/1.1rwinds.com:443GET /db/keys.sql HTTP/1.1

0-35-0/0/940.
0.009607742734574600.00.002.11
172.70.111.152http/1.1rwinds.com:443GET /server/.env HTTP/1.1

0-35-0/0/971.
0.009607636553900540.00.001.86
162.158.159.122http/1.1rwinds.com:443GET /.git/index HTTP/1.1

0-35-0/0/927.
0.009607680594373010.00.001.70
162.158.154.218http/1.1rwinds.com:443GET /.git/logs/refs/heads/master HTTP/1.1

0-35-0/0/952.
0.009607982455427490.00.002.57
104.23.253.76http/1.1rwinds.com:443GET /pinfo.php HTTP/1.1

0-35-0/0/974.
0.009607600603411510.00.001.85
162.158.159.121http/1.1

0-35-0/0/971.
0.009607673534124780.00.002.85
172.70.115.20http/1.1rwinds.com:443GET /.env.staging HTTP/1.1

0-35-0/0/952.
0.0096071013634488050.00.001.60
104.23.187.89http/1.1rwinds.com:443GET /time.php HTTP/1.1

0-35-0/0/938.
0.009607697403919790.00.001.58
162.158.159.121http/1.1rwinds.com:443GET /.git/packed-refs HTTP/1.1

1-356107880/1710/2706_
123.224010696950.03.284.87
172.69.109.227http/1.1ob1.howvps.com:443GET /robots.txt HTTP/1.1

1-356107880/1696/2698_
123.19189786210.02.914.37
104.23.160.124http/1.1j88com.best:443POST /wp-cron.php?doing_wp_cron=1761218954.79651308059692382812

1-356107880/1691/2712_
123.26026499582920.03.185.57
172.64.217.135http/1.1xxqm.uk.com:443GET /wp-includes/customize/index.php HTTP/1.1

1-356107880/1672/2700_
123.242110119460.03.625.36
172.70.248.9http/1.179kingsk.com:443GET /robots.txt HTTP/1.1

1-356107880/1714/2739_
123.280309147130.03.565.57
172.68.245.205http/1.1exptrack.in.net:443GET /xo-so-tu-chon/ HTTP/1.1

1-356107880/1706/2674_
123.27009781250.03.355.04
172.68.164.78http/1.1ob1.howvps.com:443GET /wp-content/themes/travelscape/json.php HTTP/1.1

1-356107880/1703/2722_
123.2431399331900.03.755.48
162.158.41.133http/1.1iforgot-icloud.us.com:80GET /omega/omega_the_girl_in_the_box_book_five.pdf HTTP/1.1

1-356107880/1663/2673_
123.10329807910.03.555.25
172.71.218.48http/1.1toto.uk.com:443GET /wp-content/uploads/2025/10/quy-trinh-xin-cap-giay-phep-kin

1-356107880/1676/2700_
123.270149277450.03.645.14
172.71.148.83http/1.1hg41.cn.com:443GET / HTTP/1.1

1-356107880/1710/2700_
123.242010156430.02.944.86
162.158.108.80http/1.1ob1.howvps.com:443GET /actuator/env HTTP/1.1

1-356107880/1740/2705_
123.17219878720.03.085.07
162.158.42.145http/1.1pv2002.org:443GET /hafler/hafler_owners_manual.pdf HTTP/1.1

1-356107880/1680/2699_
123.252010158640.03.675.04
172.69.7.219http/1.1ob1.howvps.com:443GET /xxx/video/black-cuckold/ HTTP/1.1

1-356107880/1736/2725_
123.2611679912900.03.415.19
172.68.22.52http/1.1iforgot-icloud.us.com:80GET /peugeot/peugeot_sv_125_service_manual.pdf HTTP/1.1

1-3561078848/1673/2683W
123.21309603250.02.854.85
162.158.106.90http/1.1xxqm.uk.com:443GET /wp-includes/fonts/iq.php HTTP/1.1

1-356107880/1652/2665_
123.26109657270.03.114.84
172.70.38.25http/1.1finwest.cn.com:443GET /robots.txt HTTP/1.1

1-356107880/1680/2673_
123.233011507440.03.655.47
162.158.88.51http/1.1gneno.za.com:80GET /wp-includes/default.php HTTP/1.1

1-356107880/1720/2714_
123.23427759703540.03.264.88
172.64.217.135http/1.1xxqm.uk.com:443GET /wp-includes/css/index.php HTTP/1.1

1-356107880/1724/2711_
123.2602099998360.03.445.50
162.158.42.34http/1.1iforgot-icloud.us.com:80GET /round/round_up_6_answer_keys.pdf HTTP/1.1

1-356107880/1725/2764_
123.2616009697430.03.264.90
172.71.164.202http/1.1hg41.cn.com:443GET /robots.txt HTTP/1.1

1-356107880/1667/2675_
123.23329429732160.03.876.02
162.158.106.90http/1.1xxqm.uk.com:443GET /wp-includes/css/wp-login.php HTTP/1.1

1-356107880/1706/2703_
123.09399686070.05.136.54
172.68.174.144http/1.1

Found on 2025-10-23 11:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2d24a271f

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Tuesday, 21-Oct-2025 13:25:33 UTC
Restart Time: Tuesday, 21-Oct-2025 03:41:31 UTC
Parent Server Config. Generation: 15
Parent Server MPM Generation: 14
Server uptime:  9 hours 44 minutes 1 second
Server load: 3.44 1.99 1.76
Total accesses: 473942 - Total Traffic: 858.0 MB - Total Duration: 170458940
CPU Usage: u137.16 s41.95 cu912.42 cs291.2 - 3.95% CPU load
13.5 requests/sec - 25.1 kB/second - 1898 B/request - 359.662 ms/request
4 requests currently being processed, 0 workers gracefully restarting, 146 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
03714936no3yes0025021
13715381no6yes0025051
23714938no18yes10240161
33714937no7yes2023061
43715022no0yes0025000
53715411no27yes10240261
Sum6061 401460555

________________________________________________________W_______
____________________________W_W_________________________________
_____________________W..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1437149360/43/490_
3.93302515590.00.060.92
172.69.22.60http/1.1getfittrack.io:443GET / HTTP/1.1

0-1437149360/40/466_
3.822701610670.00.261.39
162.158.217.83http/1.15.78.79.22:80GET / HTTP/1.1

0-1437149360/42/472_
3.91276092257900.00.190.77
172.69.17.130http/1.1bhardwajassociates.in.net:443POST //xmlrpc.php HTTP/1.1

0-1437149360/44/479_
3.60002059930.00.100.71
104.23.160.87http/1.1babel.us.com:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

0-1437149360/43/465_
3.782912009740.00.090.71
172.68.22.81http/1.1googleplay.cn.com:80GET /ppc/ppc_acer_acer_c500_download.pdf HTTP/1.1

0-1437149360/43/472_
3.872911409110.00.160.78
108.162.245.179http/1.1googleplay.cn.com:80GET /a/a_patients_guide_to_liposuction_how_to_make_an_informed_

0-1437149360/41/442_
3.77361821185790.00.030.53
172.70.127.93http/1.1bet88lo.com:80POST /xmlrpc.php HTTP/1.1

0-1437149360/43/462_
3.84361732018900.00.160.80
172.70.127.94http/1.1bet88lo.com:80POST /xmlrpc.php HTTP/1.1

0-1437149360/43/475_
3.89366342100740.00.020.54
172.69.17.130http/1.1bhardwajassociates.in.net:443POST //xmlrpc.php HTTP/1.1

0-1437149360/39/462_
3.893412125640.00.080.99
172.68.174.53http/1.1borger.us.com:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

0-1437149360/38/450_
3.93212186130.00.050.60
172.71.146.45http/1.1googleplay.cn.com:80GET /abstracts/abstracts_of_the_international_workshop_on_groun

0-1437149360/45/472_
3.752912460910.00.040.79
172.71.150.99http/1.1acfs.eu.com:80GET /robots.txt HTTP/1.1

0-1437149360/36/436_
3.7214322140750.00.010.63
172.71.172.134http/1.1rwinds.com:443POST /xmlrpc.php HTTP/1.1

0-1437149360/41/481_
3.893612737300.00.060.77
172.71.150.80http/1.1googleplay.cn.com:80GET /handbook/handbook_architecture_construction_dimitris_kotta

0-1437149360/38/432_
3.9268782623390.00.911.44
104.23.221.60http/1.1hg41.cn.com:443GET /wp-json/wp/v2/pages/2 HTTP/1.1

0-1437149360/46/465_
3.893492923210.00.100.65
172.68.174.53http/1.1borger.us.com:443POST /wp-cron.php?doing_wp_cron=1761053098.66408610343933105468

0-1437149360/35/455_
3.79361811736890.00.010.64
172.70.127.93http/1.1bet88lo.com:80POST /xmlrpc.php HTTP/1.1

0-1437149360/37/457_
3.873111994030.00.030.61
172.71.147.37http/1.1googleplay.cn.com:80GET /service/service_jeep_grand_cherokee_zj.pdf HTTP/1.1

0-1437149360/37/441_
3.87312512148640.00.020.63
162.158.42.196http/1.1iforgot-icloud.us.com:80GET /call/call_signlightninginside_the_rowdy_world_and_risky_mi

0-1437149360/34/462_
3.893601669890.00.010.75
162.158.42.226http/1.1googleplay.cn.com:80GET /grade/grade_11_economics_memorandum_december_2014.pdf HTTP

0-1437149360/43/472_
3.893402252460.00.030.85
172.70.233.20http/1.1getfittrack.io:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

0-1437149360/46/474_
3.9196921376260.00.030.58
104.23.221.60http/1.1hg41.cn.com:443GET /wp-json/oembed/1.0/embed?url=https%3A%2F%2Fhg41.cn.com%2F 

0-1437149360/48/437_
3.873111663560.00.180.93
162.158.42.96http/1.1googleplay.cn.com:80GET /vivitar/vivitar_28mm_f2_service_notesuser.pdf HTTP/1.1

0-1437149360/38/458_
3.87296252645370.00.120.65
104.23.199.37http/1.1batesfootwear.cn.com:443POST /xmlrpc.php HTTP/1.1

0-1437149360/43/452_
3.573102458190.00.100.98
172.71.164.154http/1.15.78.79.22:80GET /wp-includes/certificates/wp-login.php HTTP/1.1

1-1437153810/155/2326_
12.1621637254560.00.283.66
172.70.127.94http/1.1bet88lo.com:80POST /xmlrpc.php HTTP/1.1

1-1437153810/151/2331_
11.93008292030.00.263.44
162.158.106.138http/1.1ob1.howvps.com:443GET /addictive-casino-departs-some-sort-of-travel-about-destruc

1-1437153810/149/2288_
12.21207984430.00.284.45
172.71.223.200http/1.15.78.79.22:80GET / HTTP/1.1

1-1437153810/162/2377_
12.0505568731310.00.564.38
104.23.221.61http/1.1hg41.cn.com:443GET /ho-tro-khach-hang-79king/ HTTP/1.1

1-1437153810/164/2296_
12.22107949730.00.224.27
162.158.42.141http/1.1googleplay.cn.com:80GET /families/families_under_the_flag_a_review_of_military_fami

1-1437153810/148/2303_
12.16018411450.00.393.63
172.71.146.127http/1.1googleplay.cn.com:80GET /informal/informal_fund_transfer_systems_an_analysis_of_the

1-1437153810/162/2281_
12.15217361230.00.283.53
172.71.147.90http/1.1googleplay.cn.com:80GET /voice/voice_of_my_beloved_the_song_of_songs_in_western_med

1-1437153810/160/2326_
12.1832579522300.01.955.02
108.162.245.64http/1.1iforgot-icloud.us.com:80GET /essential/essential_lines_style_miles_davis.pdf HTTP/1.1

1-1437153810/145/2307_
12.0536998523670.00.365.97
108.162.245.29http/1.1iforgot-icloud.us.com:80GET /chapter/chapter_11_the_control_of_gene_expression_packet_a

1-1437153810/156/2321_
12.2302637670470.00.404.01
108.162.246.42http/1.1iforgot-icloud.us.com:80GET /flying/flying_high_in_travel_a_complete_guide_to_careers_i

1-1437153810/155/2291_
12.18318568780.00.253.52
172.68.22.2http/1.1googleplay.cn.com:80GET /headlong/headlong_into_darkness.pdf HTTP/1.1

1-1437153810/164/2327_
12.20118455890.00.233.82
162.158.41.85http/1.1cloud4tech.in.net:443GET /images/pro/cheap--Nike-Cortez-wholesale,wholesale-cheap--N

1-1437153810/142/2285_
12.16318841590.01.365.14
162.158.41.38http/1.1googleplay.cn.com:80GET /viscosity-la-gi/ HTTP/1.1

1-1437153810/154/2359_
12.15118971290.00.354.32
108.162.246.28http/1.1googleplay.cn.com:80GET /discovering/discovering_our_past_a_history_of_the_united_s

1-1437153810/162/2284_
12.2136419325550.00.274.40
172.69.17.131http/1.1bhardwajassociates.in.net:443POST //xmlrpc.php HTTP/1.1

1-1437153810/155/2401_
12.2132437475000.00.634.44
172.71.146.176http/1.1iforgot-icloud.us.com:80GET /first/first_language_lessons_for_the_welltrained_mind_leve

1-1437153810/157/2296_
12.2121788717970.00.153.38
172.70.127.94http/1.1bet88lo.com:80POST /xmlrpc.php HTTP/1.1

1-1437153810/168/2295_
12.19318646210.00.185.93
172.68.22.134http/1.1googleplay.cn.com:80GET /lg/lg_cosmos_vn250_user_manual.pdf HTTP/1.1

1

Found on 2025-10-21 13:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2367d89b7

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Sunday, 19-Oct-2025 15:49:30 UTC
Restart Time: Sunday, 19-Oct-2025 03:12:22 UTC
Parent Server Config. Generation: 15
Parent Server MPM Generation: 14
Server uptime:  12 hours 37 minutes 8 seconds
Server load: 0.54 1.24 1.76
Total accesses: 486426 - Total Traffic: 1018.3 MB - Total Duration: 225909145
CPU Usage: u261.12 s86.38 cu827.16 cs266.92 - 3.17% CPU load
10.7 requests/sec - 23.0 kB/second - 2195 B/request - 464.427 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 244 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
02602927no7yes1024041
12604335no1yes0025001
22602928no10yes1024091
32602929no3yes1024001
42603015no0yes0025000
52612309no0yes0025000
62614707no28yes30220232
72614738no0yes0025000
82614769no0yes0025000
92614799no0yes0025000
Sum10049 602440366

_________________W______________________________________________
____W___________________W_______________________________________
_________________________WW______________W______________________
__________________________________________________________......
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1426029270/222/1593_
19.08386470800.00.293.05
104.23.160.6http/1.1taxie.us:443POST /wp-cron.php?doing_wp_cron=1760888967.07681798934936523437

0-1426029270/234/1579_
19.05606262190.00.342.86
172.71.164.214http/1.1ob1.howvps.com:443GET /v2/api-docs HTTP/1.1

0-1426029270/221/1555_
19.051006142770.00.343.43
172.71.164.214http/1.1ob1.howvps.com:443POST /api/graphql HTTP/1.1

0-1426029270/204/1562_
19.07305605080.00.302.73
172.71.154.134http/1.1ob1.howvps.com:443GET / HTTP/1.1

0-1426029270/224/1555_
19.07365821230.00.204.19
104.23.209.142http/1.1456789.club:443GET /wp-content/cache/background-css/1/456789.club/wp-content/c

0-1426029270/211/1555_
18.95415411950.00.303.46
172.68.22.207http/1.1googleplay.cn.com:80GET /vinyl/vinyl_a_material_for_the_future_regional_technical_c

0-1426029270/226/1571_
19.0651906344080.00.153.10
172.71.119.56http/1.1bhardwajassociates.in.net:443GET /tag/%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF-%D9%86%D8%B1%D9%8

0-1426029270/233/1548_
19.08106538450.00.343.65
104.23.239.89http/1.1ob1.howvps.com:443GET /about HTTP/1.1

0-1426029270/237/1582_
18.94021506340020.00.493.83
104.23.160.59http/1.1shauncanon.com:443GET /feed/rdf/ HTTP/1.1

0-1426029270/213/1547_
19.03015997060.00.202.81
108.162.246.167http/1.1googleplay.cn.com:80GET /anti/anti_siphon_vacuum_breaker_outdoor_faucet_upc.pdf HTT

0-1426029270/222/1597_
19.065106070470.00.443.20
172.68.238.97http/1.13wine.top:443GET / HTTP/1.1

0-1426029270/223/1552_
19.09007297390.00.723.22
172.71.130.8http/1.1ww8838.com:443GET /tag/%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF-%D9%86%D8%B1%D9%8

0-1426029270/219/1527_
18.9214965671820.00.313.14
162.158.216.208http/1.1wayanadtunnelroad.in.net:80POST /xmlrpc.php HTTP/1.1

0-1426029270/223/1520_
19.04005542210.00.233.59
104.23.239.97http/1.1xnxxxnx.in.net:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

0-1426029270/224/1547_
19.05905744190.00.463.46
162.158.108.169http/1.1adventure-racing.uk.net:443GET /da-ga-pg66/ HTTP/1.1

0-1426029270/233/1625_
18.97005376290.00.352.85
172.71.95.45http/1.1livecricgram.in.net:443GET /wp-login.php HTTP/1.1

0-1426029270/232/1591_
19.051315565850.00.453.42
172.68.174.97http/1.1bhardwajassociates.in.net:443POST /wp-cron.php?doing_wp_cron=1760888956.75389909744262695312

0-1426029271/228/1578W
19.01006837430.00.302.84
104.23.160.118http/1.1shauncanon.com:443GET /soi-keo-bong-da-hom-nay/feed/ HTTP/1.1

0-1426029270/231/1578_
18.981415835570.00.264.23
162.158.41.135http/1.1googleplay.cn.com:80GET /2015/2015_chevy_malibu_maxx_ls_owners_manual.pdf HTTP/1.1

0-1426029270/216/1542_
18.911006823900.00.512.99
162.158.186.220http/1.15.78.79.22:80GET /wp-content/ HTTP/1.1

0-1426029270/237/1581_
18.91906016260.00.894.57
162.158.186.220http/1.15.78.79.22:80GET /wp-admin/css/colors/sunrise/ HTTP/1.1

0-1426029270/236/1529_
19.01115312530.00.292.64
104.23.225.52http/1.1persiagsm.com:443GET /tag/%D8%AF%D8%A7%D9%86%D9%84%D9%88%D8%AF-%D9%86%D8%B1%D9%8

0-1426029270/234/1621_
19.02485431070.00.263.40
104.23.160.188http/1.13wine.top:443POST /wp-cron.php?doing_wp_cron=1760888943.09308505058288574218

0-1426029270/212/1538_
18.91805564830.00.122.78
162.158.186.220http/1.15.78.79.22:80GET /wp-content/plugins/ioxi/ioxi/ HTTP/1.1

0-1426029270/216/1532_
18.99817049840.00.313.59
172.71.99.83http/1.123wim.us.com:443GET /wp-login.php HTTP/1.1

1-1426043350/1317/4067_
89.683322321961290.02.869.55
162.158.42.34http/1.1iforgot-icloud.us.com:80GET /disability/disability_book_publishers.pdf HTTP/1.1

1-1426043350/1292/4037_
89.75762521672010.02.338.50
172.71.148.83http/1.1hg41.cn.com:443GET /wordpress/wp-admin/setup-config.php HTTP/1.1

1-1426043350/1257/3954_
89.8138121247280.01.877.51
172.71.151.15http/1.1googleplay.cn.com:80GET /87/87_buick_grand_national_service_manuals.pdf HTTP/1.1

1-1426043350/1283/4062_
89.773825721484290.01.367.24
172.71.146.159http/1.1iforgot-icloud.us.com:80GET /opel/opel_kadett_d_service_manual.pdf HTTP/1.1

1-1426043350/1243/3928_
89.810021319600.01.969.04
172.71.130.29http/1.1go99com.biz:443GET /wp-login.php HTTP/1.1

1-1426043350/1259/3944_
89.7412023723180.02.188.67
172.71.151.229http/1.15.78.79.22:80GET /?main_page=FILENAME_TELL_A_FRIEND&products_id=758 HTTP/1.1

1-1426043350/1247/4035_
89.83191423157230.02.328.89
172.68.159.41http/1.1hg41.cn.com:443GET / HTTP/1.1

1-1426043350/1318/4056_
89.8317121749880.01.958.40
162.158.42.102http/1.1googleplay.cn.com:80GET /apartment/apartment_buildings_for_sale_mn.pdf HTTP/1.1

1-1426043350/1269/3956_
89.5612121992270.01.666.55
172.71.151.147http/1.1googleplay.cn.com:80GET /tauntons/tauntons_complete_illustrated_guide_to_routers.pd

1-1426043350/1269/4045_
89.8417122141820.02.689.85
172.71.151.165http/1.1googleplay.cn.com:80GET /art/art_on_the_edge_and_over_searching_for_art_apos_s_mean

1-1426043350/1310/4029_
89.7338021178220.01.607.37
172.68.22.223http/1.1googleplay.cn.com:80GET /workshop/workshop_manual_mitsubishi_l300_4g63.pdf HTTP/1.1

1-1426043350/1323/4096_
89.8318221266980.02.017.40
172.71.151.80http/1.1googleplay.cn.com:80GET /antwoorden/antwoorden_nieuw_nederlands_3_havo_taal.pdf HTT

1-1426043350/1250/3916_
89.831822921599460.01.657.93
104.23.209.123http/1.1bhardwajassociates.in.net:443GET /https:/gfdtop.cn.com/dat-cuoc-ww88/ HTTP/1.1

1-1426043350/1268/3983_
89.783337122671560.02.408.58
172.71.151.37http/1.1iforgot-icloud.us.com:80GET /otto/otto_of_the_silver_hand.pdf HTTP/1.1

1-1426043350/1276/3936_
89.7813121115160.01.588.27
172.71.127.46http/1.1modelspalnay.gb.net:443POST /xmlrpc.php HTTP/1.1

1-1426043350/1276/3994_
89.810020131080.02.277.69
172.71.130.29http/1.1go99com.biz:443POST /wp-login.php HTTP/1.1

1-1426043350/1248/4

Found on 2025-10-19 15:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2f6d6f018

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Friday, 17-Oct-2025 08:21:23 UTC
Restart Time: Friday, 17-Oct-2025 03:13:27 UTC
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  5 hours 7 minutes 56 seconds
Server load: 1.09 1.17 1.29
Total accesses: 199029 - Total Traffic: 465.8 MB - Total Duration: 63844313
CPU Usage: u117.98 s36.99 cu323.32 cs113.84 - 3.2% CPU load
10.8 requests/sec - 25.8 kB/second - 2454 B/request - 320.779 ms/request
6 requests currently being processed, 0 workers gracefully restarting, 119 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
01418763no0yes0025000
11418764no1yes0025001
21418765no1yes1024000
31418849no8yes2023052
41422638no8yes3022061
Sum5018 601190114

____________________________________________________________R___
_____________________________WW______________W____W_______W__...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-614187630/75/316_
7.612501652200.00.081.27
172.71.183.213http/1.15.78.79.22:80GET /site/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/88/343_
7.602701365420.00.361.05
172.71.183.213http/1.15.78.79.22:80GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/92/368_
7.6244231411400.00.431.76
172.71.8.83http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/89/345_
7.582512008020.00.111.25
172.71.147.160http/1.123wim.cn.com:80GET /destined/destined_for_an_early_grave_pdf.pdf HTTP/1.1

0-614187630/83/334_
7.491902196450.00.080.82
104.23.160.33http/1.1xnxxxnx.in.net:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

0-614187630/78/338_
7.602701394850.00.171.60
172.71.183.213http/1.15.78.79.22:80GET /2020/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/87/345_
7.54251371808140.00.221.35
162.158.94.125http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/94/346_
7.612601031930.00.180.89
172.71.183.213http/1.15.78.79.22:80GET /2021/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/89/348_
7.60252301577580.00.060.62
162.158.94.124http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/83/329_
7.612601013380.00.080.68
172.71.183.213http/1.15.78.79.22:80GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/84/338_
7.602802024730.00.060.75
172.71.183.213http/1.15.78.79.22:80GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/87/356_
7.612501171990.00.321.14
172.71.183.213http/1.15.78.79.22:80GET /test/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/87/341_
7.6342161512250.00.041.23
162.158.94.124http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/91/356_
7.612601263440.00.481.28
172.71.183.213http/1.15.78.79.22:80GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/86/343_
7.57261532115910.00.060.89
162.158.94.125http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/100/370_
7.60301413310.00.221.10
172.71.183.213http/1.15.78.79.22:80GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/93/348_
7.4920101150070.00.160.95
104.23.160.33http/1.1xnxxxnx.in.net:443POST /wp-cron.php?doing_wp_cron=1760689169.63434696197509765625

0-614187630/84/350_
7.63301786180.00.100.82
162.158.193.112http/1.15.78.79.22:80GET /robots.txt HTTP/1.1

0-614187630/96/377_
7.6332811008320.00.300.96
172.71.8.82http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/93/345_
7.532601301770.00.121.03
172.68.23.19http/1.1ob1.howvps.com:443GET /sr/tyr/restbet-bahis-limani/ HTTP/1.1

0-614187630/90/354_
7.612501677440.00.120.66
172.71.183.213http/1.15.78.79.22:80GET /cms/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/82/347_
7.60401654440.00.921.65
172.71.183.213http/1.15.78.79.22:80GET /wp-includes/ID3/license.txt HTTP/1.1

0-614187630/87/351_
7.60252501165510.00.351.63
172.70.46.73http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-614187630/83/324_
7.612601589900.00.301.25
172.71.183.213http/1.15.78.79.22:80GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1

0-614187630/85/363_
7.60301099530.00.211.06
172.71.183.213http/1.15.78.79.22:80GET /web/wp-includes/wlwmanifest.xml HTTP/1.1

1-614187640/216/1467_
15.56015863330.00.493.93
172.68.23.133http/1.123wim.cn.com:80GET /cpt/cpt_2017_express_reference_cards.pdf HTTP/1.1

1-614187640/201/1460_
15.7401505035470.00.553.34
162.158.94.124http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/211/1445_
15.59205262330.00.593.35
172.70.43.43http/1.1ob1.howvps.com:443GET /blog-ca-cuoc/ HTTP/1.1

1-614187640/209/1437_
15.71606019850.00.383.59
172.71.147.57http/1.1ob1.howvps.com:443GET /homepage-tech/page/118/ HTTP/1.1

1-614187640/213/1495_
15.6701596203910.00.593.16
172.71.8.82http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/202/1457_
15.7402735742890.00.153.61
172.71.8.83http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/199/1499_
15.60105184020.00.323.00
172.71.146.77http/1.1ob1.howvps.com:443GET /th/tyr/atlas-bet-giris/ HTTP/1.1

1-614187640/190/1458_
15.71715811120.00.303.13
172.68.22.183http/1.123wim.cn.com:80GET /dog/dog_vaccination_record_form_user_manual.pdf HTTP/1.1

1-614187640/214/1515_
15.4975435094330.00.573.29
162.158.41.150http/1.1u888com.blog:80GET /product-category/speaker/?add_to_wishlist=643&_wpnonce=13c

1-614187640/198/1456_
15.70145081970.00.382.40
172.71.198.108http/1.1natsume.jp.net:80GET /wp-admin/css/ HTTP/1.1

1-614187640/188/1443_
15.70015213750.00.283.13
172.71.151.93http/1.123wim.cn.com:80GET /dodge/dodge_charger_manuals_conversion_kit.pdf HTTP/1.1

1-614187640/193/1459_
15.6022695173120.00.642.94
172.70.46.72http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/190/1412_
15.73505849450.00.583.23
172.71.23.67http/1.1ob1.howvps.com:443GET /wp-content/uploads/2021/01/Elisabeth-Ventura-tornou-se-noi

1-614187640/195/1425_
15.70105516500.00.474.46
172.70.80.238http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-614187640/191/1434_
15.7311644645540.00.293.13
172.71.8.83http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/195/1423_
15.6292455559280.00.343.07
172.71.8.82http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/181/1415_
15.621005701710.00.493.79
108.162.245.35http/1.1cheap-jerseys.in.net:443GET /tag/qqdewa/feed/ HTTP/1.1

1-614187640/202/1455_
15.7001705606640.00.382.88
162.158.94.124http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/1.1

1-614187640/199/1434_
15.67706721510.00.494.07
172.70.34.42http/1.15.78.79.22:80GET / HTTP/1.1

1-614187640/204/1460_
15.7252855426220.00.563.36
172.71.8.82http/1.1iforgot-icloud.us.com:443POST //xmlrpc.php HTTP/

Found on 2025-10-17 08:15

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c21b10fa45

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Wednesday, 15-Oct-2025 07:49:56 UTC
Restart Time: Wednesday, 15-Oct-2025 03:28:22 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  4 hours 21 minutes 33 seconds
Server load: 2.89 2.45 2.12
Total accesses: 207868 - Total Traffic: 398.0 MB - Total Duration: 67862425
CPU Usage: u111.66 s36.62 cu356.62 cs120.85 - 3.99% CPU load
13.2 requests/sec - 26.0 kB/second - 2007 B/request - 326.469 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 245 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0285459no8yes0025062
1285460no0yes0025000
2285543no0yes0025000
3286422no4yes0025031
4287617no0yes0025000
5285461no0yes0025000
6287831no7yes2023060
7287859no14yes30220121
8287891no0yes0025000
9287921no0yes0025000
Sum10033 502450274

________________________________________________________________
________________________________________________________________
________________________W____W__________________W______W________
_____W____________________________________________________......
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-42854590/271/365_
19.55501212750.00.450.52
162.158.42.207http/1.15.78.79.22:80GET /uk/tyr/bahis-turkiye-eksi/ HTTP/1.1

0-42854590/284/379_
19.65101222800.00.780.98
172.71.241.91http/1.1ob1.howvps.com:443GET /api/swagger.json HTTP/1.1

0-42854590/277/377_
19.6420890950.00.340.47
162.158.41.90http/1.15.78.79.22:80GET /category/tu-jhoothi-main-makkaar-movie-download/feed/ HTTP

0-42854590/286/388_
19.65001332830.00.410.52
172.71.241.91http/1.1ob1.howvps.com:443GET /about HTTP/1.1

0-42854590/294/394_
19.62201338090.00.540.71
108.162.245.49http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/nissan-electrical-wi

0-42854590/266/350_
19.47201239450.00.580.88
104.23.170.45http/1.1ob1.howvps.com:443GET //2018/wp-includes/wlwmanifest.xml HTTP/1.1

0-42854590/264/366_
19.65101197700.00.490.78
172.71.147.61http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/saturn-electrical-sc

0-42854590/275/371_
19.63401536010.00.550.65
108.162.245.49http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/portable-generator-w

0-42854590/273/377_
19.65011931126760.00.940.99
172.71.23.183http/1.1u888com.blog:443POST //xmlrpc.php HTTP/1.1

0-42854590/270/369_
19.634699925650.00.380.58
172.71.134.87http/1.1r1technologies.in.net:443POST //xmlrpc.php HTTP/1.1

0-42854590/284/371_
19.5721419881720.00.330.54
172.71.23.183http/1.1u888com.blog:443POST //xmlrpc.php HTTP/1.1

0-42854590/274/378_
19.64101017910.00.690.97
172.71.147.160http/1.15.78.79.22:80GET /images/cl160309/Best%20Seller/CL-00067_7629.jpg HTTP/1.1

0-42854590/274/374_
19.59401551110.00.300.42
162.158.41.90http/1.15.78.79.22:80GET /category/flingster-dating-2/feed/ HTTP/1.1

0-42854590/274/366_
19.6420995720.00.320.65
162.158.41.90http/1.15.78.79.22:80GET /category/tamilrockers-tamil-movies-download-2022/feed/ HTT

0-42854590/285/365_
19.6330856100.00.500.61
162.158.41.177http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/privacy-29d4a3892c99

0-42854590/280/372_
19.61101078600.00.340.50
162.158.41.90http/1.15.78.79.22:80GET /category/interceptor-360p-download/feed/ HTTP/1.1

0-42854590/284/371_
19.58091144060.00.540.61
104.23.160.44http/1.1goldcoin.in.net:443POST /wp-cron.php?doing_wp_cron=1760514584.05623507499694824218

0-42854590/272/367_
19.6515441084100.00.480.57
172.71.134.87http/1.1r1technologies.in.net:443POST //xmlrpc.php HTTP/1.1

0-42854590/265/368_
19.62501186110.00.200.39
162.158.41.90http/1.15.78.79.22:80GET /category/liger-movie-download-in-hindi-filmymeet/feed/ HTT

0-42854590/290/382_
19.61101459740.00.270.57
172.70.246.107http/1.1ob1.howvps.com:443GET /.git/config HTTP/1.1

0-42854590/286/370_
19.54101270880.01.111.50
108.162.245.49http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/2vtled-wiring-6f12ba

0-42854590/280/366_
19.6210851720.00.600.88
172.70.246.107http/1.1ob1.howvps.com:443GET /info.php HTTP/1.1

0-42854590/288/390_
19.65001058970.00.860.94
172.71.241.91http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-42854590/276/374_
19.64201275670.00.430.65
162.158.41.177http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/pt-cruiser-fuses-dia

0-42854590/286/385_
19.6504721121330.00.610.67
172.70.179.142http/1.1googleplay.cn.com:443GET /loudness-la-gi/%7B%7Burl%7D%7D HTTP/1.1

1-42854600/86/1701_
6.9348804103290.00.243.27
172.70.248.125http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/thuat-ngu-poker-qua-trinh-choi-

1-42854600/95/1723_
6.992152524333760.00.143.07
104.23.172.110http/1.1julie.sa.com:443POST //xmlrpc.php HTTP/1.1

1-42854600/96/1661_
6.663714184258970.00.044.08
104.23.166.134http/1.1clomipramine.us.com:443POST //xmlrpc.php HTTP/1.1

1-42854600/92/1667_
6.653712014057020.00.343.15
104.23.160.58http/1.1shauncanon.com:443GET / HTTP/1.1

1-42854600/94/1707_
6.972511394364440.00.173.71
104.23.172.110http/1.1julie.sa.com:443POST //xmlrpc.php HTTP/1.1

1-42854600/93/1634_
6.9171704474810.00.142.80
104.23.166.132http/1.1trevorblackman.io:443POST /xmlrpc.php HTTP/1.1

1-42854600/89/1632_
6.4981104077020.00.083.11
172.71.147.25http/1.15.78.79.22:80GET /how-to-win-today-on-carbon-poker/ HTTP/1.1

1-42854600/96/1683_
6.9537604218850.00.122.43
172.71.150.169http/1.15.78.79.22:80GET /fa/tyr/euro-lig-bahis/ HTTP/1.1

1-42854600/84/1675_
6.5065504256590.00.133.08
172.71.150.174http/1.15.78.79.22:80GET /jryh/news/2016/0412/322522.html HTTP/1.1

1-42854600/93/1634_
6.507171854240230.00.062.92
162.158.108.20http/1.1zgnd.uk.com:443POST //xmlrpc.php HTTP/1.1

1-42854600/86/1698_
6.736555324133180.00.123.14
172.71.31.219http/1.1apenet.uk.net:443POST //xmlrpc.php HTTP/1.1

1-42854600/93/1653_
6.4748304075270.00.325.97
172.71.148.106http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/so-mo-lo-de-bet88-150x150.jpg H

1-42854600/88/1639_
6.8721514522060.00.113.52
162.158.174.11http/1.1convertzen.io:443GET /assets/img/preview-image.jpg HTTP/1.1

1-42854600/92/1659_
6.4281104118150.00.272.79
108.162.246.124http/1.15.78.79.22:80GET /image/who-i-am/gfci-switch-combo-wiring-diagram.html HTTP/

1-42854600/83/1638_
6.832695494017930.00.052.87
172.71.127.116http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-42854600/82/1622_
6.892404652010.00.042.06
162.158.174.11http/1.1convertzen.io:443GET /assets/img/preview-image.jpg HTTP/1.1

1-42854600/93/1682_
6.482702254398190.00.133.59
162.158.108.21http/1.1zgnd.uk.com:443POST //xmlrpc.php HTTP/1.1

1-42854600/92/1644_
7.032457241

Found on 2025-10-15 07:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2a6b96628

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Monday, 13-Oct-2025 11:14:55 UTC
Restart Time: Monday, 13-Oct-2025 03:40:26 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  7 hours 34 minutes 28 seconds
Server load: 1.44 1.53 1.67
Total accesses: 360789 - Total Traffic: 656.5 MB - Total Duration: 177368328
CPU Usage: u437.41 s151.58 cu303.91 cs103.98 - 3.66% CPU load
13.2 requests/sec - 24.7 kB/second - 1907 B/request - 491.612 ms/request
3 requests currently being processed, 0 workers gracefully restarting, 147 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
03413234no0yes0025000
13413236no0yes0025000
23413324no9yes2023071
33415220no5yes0025031
43413237no0yes1024000
53422957no4yes0025040
Sum6018 301470142

_________________________________________________________WW_____
___________________________________________________R____________
______________________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-434132340/181/383_
16.2612101234520.00.290.49
172.69.224.221http/1.1apoline.uk.com:80POST /xmlrpc.php HTTP/1.1

0-434132340/186/382_
16.1512701932870.00.410.69
172.68.201.141http/1.1win678.com.de:443GET /wp-includes/js/dist/is-shallow-equal.min.js?ver=e0f9f1d78d

0-434132340/169/362_
16.1719201375500.00.300.49
172.71.247.33http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/casino-bet88.webp HTTP/1.1

0-434132340/185/387_
16.27254411907670.00.460.75
162.158.167.224http/1.1sign-cloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-434132340/182/361_
16.3012671430520.00.400.58
104.23.160.170http/1.1batesfootwear.cn.com:443POST /wp-cron.php?doing_wp_cron=1760353968.48477005958557128906

0-434132340/179/366_
16.281885931592670.00.170.64
162.158.23.106http/1.1bet88lo.com:443POST /xmlrpc.php HTTP/1.1

0-434132340/176/368_
16.291362401191430.00.200.33
162.158.167.183http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

0-434132340/172/365_
16.31300955060.00.390.79
172.68.164.46http/1.1acfs.eu.com:443POST /xmlrpc.php HTTP/1.1

0-434132340/178/369_
16.3011801797630.00.130.32
172.70.179.202http/1.1go99com.biz:443POST /wp-login.php HTTP/1.1

0-434132340/166/344_
16.241875181158410.00.130.44
172.70.246.66http/1.18kbet43.com:443POST /xmlrpc.php HTTP/1.1

0-434132340/189/382_
16.155601335090.00.400.75
162.158.193.37http/1.1ob1.howvps.com:443GET /2.zip HTTP/1.1

0-434132340/185/386_
16.122501554070.00.230.66
172.71.215.108http/1.1ob1.howvps.com:443GET /public_html.zip HTTP/1.1

0-434132340/178/379_
16.271924301384470.00.360.71
162.158.167.224http/1.1sign-cloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-434132340/184/377_
16.241912161866570.00.611.10
172.71.158.76http/1.1shauncanon.com:443POST //xmlrpc.php HTTP/1.1

0-434132340/166/347_
16.3012711431149620.00.340.61
162.158.167.184http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

0-434132340/190/370_
16.27564731578150.00.590.77
162.158.167.223http/1.1sign-cloud.us.com:443POST //xmlrpc.php HTTP/1.1

0-434132340/175/352_
16.316101863270.00.240.46
172.71.99.130http/1.15.78.79.22:80GET / HTTP/1.1

0-434132340/179/383_
16.1211221542890.00.240.32
172.68.23.21http/1.1pv2002.org:443GET /zoom/zoom_boom_parts_manual_pdf.pdf HTTP/1.1

0-434132340/181/354_
16.241846341444360.00.240.51
172.71.158.170http/1.1365ok365.net:443GET / HTTP/1.1

0-434132340/180/356_
16.18191211592730.00.450.63
172.71.98.104http/1.1accidentsolicitor.uk.net:443GET /ban-ca-lc88/ HTTP/1.1

0-434132340/187/373_
16.2612101272120.00.250.59
172.68.201.142http/1.1win678.com.de:443GET /wp-content/uploads/2025/10/huong-dan-dang-ky-win678.webp H

0-434132340/173/361_
16.001844551493710.00.881.24
141.101.76.77http/1.1googleplay.cn.com:443GET /wp-content/uploads/2024/12/23win68banner.webp HTTP/1.1

0-434132340/176/374_
16.211134661355280.00.240.46
172.70.134.71http/1.1mp4movieze.in.net:443POST /xmlrpc.php HTTP/1.1

0-434132340/149/316_
16.28189101269450.00.150.33
104.23.160.190http/1.1tp8866.com:443POST /wp-cron.php?doing_wp_cron=1760353905.16560292243957519531

0-434132340/163/348_
16.1413601182930.00.170.66
172.71.148.15http/1.1bet88lo.com:443GET /wp-content/uploads/2025/02/dang-ky-bet88-dia-chi-ca-cuoc-u

1-434132360/390/1543_
31.3764864597480.00.683.34
172.71.214.126http/1.1188vn.net:443POST /wp-admin/admin-ajax.php HTTP/1.1

1-434132360/400/1543_
31.381375289680.00.612.67
104.23.160.13http/1.1af88.sa.com:443POST /wp-cron.php?doing_wp_cron=1760354081.73861908912658691406

1-434132360/395/1555_
31.353193793120.00.793.59
172.68.174.232http/1.1shauncanon.com:443POST /wp-cron.php?doing_wp_cron=1760353989.59032201766967773437

1-434132360/412/1562_
31.3575474682080.00.594.00
172.70.246.66http/1.18kbet43.com:443POST /xmlrpc.php HTTP/1.1

1-434132360/388/1520_
31.375804690620.00.722.78
162.158.167.114http/1.15.78.79.22:80GET / HTTP/1.1

1-434132360/382/1563_
31.373605691840.00.473.06
172.71.24.102http/1.15.78.79.22:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

1-434132360/384/1531_
31.37465734239230.00.331.85
162.158.193.159http/1.1rwinds.com:443POST /xmlrpc.php HTTP/1.1

1-434132360/401/1592_
31.3285425393560.00.623.98
172.71.190.141http/1.1accidentsolicitor.uk.net:443POST /wp-admin/admin-ajax.php HTTP/1.1

1-434132360/416/1545_
31.335994433770.00.434.76
172.68.174.96http/1.1bbl555.com:443POST /wp-cron.php?doing_wp_cron=1760353971.58060598373413085937

1-434132360/416/1561_
31.154504929700.00.622.77
172.71.194.86http/1.1girlfriend.jpn.com:443POST /xmlrpc.php HTTP/1.1

1-434132360/440/1601_
31.3836104896510.00.554.05
172.68.174.157http/1.1exptrack.in.net:443POST /wp-cron.php?doing_wp_cron=1760354058.77096796035766601562

1-434132360/377/1553_
31.40015316370.02.124.48
172.68.26.22http/1.1getfittrack.io:443GET /robots.txt HTTP/1.1

1-434132360/399/1596_
31.337804934520.00.532.70
162.158.107.33http/1.1xn8818.com:80GET / HTTP/1.1

1-434132360/397/1569_
31.3078944415760.00.512.74
172.71.214.127http/1.1188vn.net:443POST /wp-admin/admin-ajax.php HTTP/1.1

1-434132360/403/1559_
31.39094865490.00.612.67
104.23.160.191http/1.1tp8866.com:443POST /wp-cron.php?doing_wp_cron=1760354094.47509908676147460937

1-434132360/412/1596_
31.26532265231520.01.164.08
172.71.158.77http/1.1shauncanon.com:443POST //xmlrpc.php HTTP/1.1

1-434132360/396/1592_
31.381204469580.00.542.90
172.71.190.231http/1.15.78.79.22:80GET /robots.txt HTTP/1.1

1-434132360/391/1541_
31.32317324702490.00.372.92
162.158.167.183http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-434132360/396/1569_
31.30535095376660.01.324.38
172.71.159.71http/1.1occasion.sa.com:80GET / HTTP/1.1

1-434132360/404/1556_
31.305984464680.00.442.71

Found on 2025-10-13 11:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c24c1cc714

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Saturday, 11-Oct-2025 02:47:00 UTC
Restart Time: Friday, 10-Oct-2025 12:39:26 UTC
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  14 hours 7 minutes 34 seconds
Server load: 0.79 0.89 0.93
Total accesses: 744390 - Total Traffic: 954.9 MB - Total Duration: 99336698
CPU Usage: u1043.17 s391.26 cu266.67 cs93.92 - 3.53% CPU load
14.6 requests/sec - 19.2 kB/second - 1345 B/request - 133.447 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 198 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
01900242no0yes0025000
11900151no10yes0025081
21900613no31yes20230291
31900149no0yes0025000
41900150no0yes0025000
51907532no20yes00250191
61907719no2yes0025002
71907747no2yes0025011
Sum8065 201980576

_______________________________________________________________R
_______W________________________________________________________
________________________________________________________________
________........................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-419002420/797/896_
63.034002018010.01.241.32
162.158.42.17http/1.15.78.79.22:80GET /ht/art/avrupa-bahis-siteleri/ HTTP/1.1

0-419002420/816/919_
62.744012136720.01.231.35
162.158.42.71http/1.1mcafeecom.uk.com:80GET /ketogenic/ketogenic_diet_tips_and_strategies_to_adapting_t

0-419002420/833/938_
63.05795382153140.01.591.99
172.70.142.178http/1.1slot365kh.com:80POST /xmlrpc.php HTTP/1.1

0-419002420/773/875_
62.823822540280.01.441.68
172.68.23.8http/1.14851.cn.com:80GET /pa/pa_school_sample_essays.pdf HTTP/1.1

0-419002420/822/923_
62.8969282512760.01.281.55
172.70.142.86http/1.1livecricgram.in.net:443GET / HTTP/1.1

0-419002420/819/924_
63.01701291860020.01.301.71
172.71.151.78http/1.1googleplay.cn.com:80GET /honda/honda_cr_250r_2004_repair_manual.pdf HTTP/1.1

0-419002420/773/866_
62.934212170600.01.381.41
172.68.50.185http/1.1barnhomeusa.za.com:443GET /wp-json/wp/v2/users HTTP/1.1

0-419002420/775/864_
62.82302040870.01.181.31
108.162.246.147http/1.15.78.79.22:80GET /no/tyr/vbet-guncel-giris/ HTTP/1.1

0-419002420/828/926_
63.091012533170.01.331.40
162.158.42.116http/1.14851.cn.com:80GET /how/how_to_set_the_time_on_a_watch_pdf.pdf HTTP/1.1

0-419002420/858/952_
63.02531802095090.00.981.03
172.70.142.178http/1.1slot365kh.com:80POST /xmlrpc.php HTTP/1.1

0-419002420/820/941_
62.813811974980.00.951.08
172.71.150.181http/1.1christian-breton-cosmetics.cn.cGET /katie/katie_sprinkles_surprises_by_simon_coco_author_hardc

0-419002420/795/907_
63.057512236500.01.391.51
172.68.23.147http/1.16602.cn.com:80GET /1994/1994_ap_chemistry_multiple_choice_answers.pdf HTTP/1.

0-419002420/837/954_
63.064701802420.01.402.53
108.162.246.154http/1.15.78.79.22:80GET /sentence/sentence_openers_pee_paragraphs_tes.pdf HTTP/1.1

0-419002420/838/940_
62.907812124500.01.001.17
108.162.245.21http/1.1christian-breton-cosmetics.cn.cGET /law/law_and_global_health_current_legal_issues_volume_16.p

0-419002420/865/956_
62.99511725940.01.241.35
172.68.23.116http/1.1colorbox.us.com:80GET /madcap/madcap_cafe_franchise_operations_folders.pdf HTTP/1

0-419002420/815/911_
63.064502026000.01.182.92
104.23.221.142http/1.1888toe.com:443GET /wp-admin/setup-config.php HTTP/1.1

0-419002420/819/913_
63.065812394550.02.372.62
172.68.22.240http/1.1colorbox.us.com:80GET /maruti/maruti_swift_vdi_service_centers.pdf HTTP/1.1

0-419002420/835/936_
63.025301900490.01.281.35
108.162.246.224http/1.15.78.79.22:80GET /study/study_guide_for_content_mastery_groundwater.pdf HTTP

0-419002420/845/953_
63.074302938970.00.911.04
172.68.23.143http/1.1ob1.howvps.com:443GET /pdfdir_8/bad-moon-rising-a-dark-hunter-novel.pdf HTTP/1.1

0-419002420/798/885_
62.967001961490.01.241.96
162.158.108.118http/1.1ob1.howvps.com:443GET /cgh-hairstyles HTTP/1.1

0-419002420/837/929_
62.99502718020.01.211.27
104.23.239.65http/1.1nn888.club:80GET / HTTP/1.1

0-419002420/822/931_
62.92691362279260.01.281.34
172.68.23.194http/1.1googleplay.cn.com:80GET /brand/brand_standards_manual_insurance.pdf HTTP/1.1

0-419002420/818/935_
63.057411616620.01.141.21
172.71.146.56http/1.16602.cn.com:80GET /1994/1994_cadillac_deville_manuals_and_user_guide.pdf HTTP

0-419002420/801/901_
62.984211532326500.01.151.21
172.71.124.137http/1.1acfs.eu.com:443GET /p/romance-novel-beautiful-roses-briefing.html HTTP/1.1

0-419002420/861/959_
63.0931512305100.01.121.30
172.70.142.179http/1.1slot365kh.com:80POST /xmlrpc.php HTTP/1.1

1-419001510/6730/7589_
377.98113511109630.07.308.59
172.68.174.233http/1.1shauncanon.com:443GET /dang-ky-789win/ HTTP/1.1

1-419001510/6724/7624_
378.1121210724160.08.829.99
104.23.160.130http/1.1tp8848.com:443GET /xo-so-tp88/ HTTP/1.1

1-419001510/6626/7480_
378.11209329390.07.679.25
172.71.151.219http/1.15.78.79.22:80GET /the/the_case_of_the_guilty_ghost_end_street_detective_agen

1-419001510/6725/7530_
378.111111107670.08.769.80
172.71.150.38http/1.16602.cn.com:80GET /2001/2001_dodge_grand_caravan_owners_manual_free.pdf HTTP/

1-419001510/6706/7537_
378.11122010068830.08.1210.06
172.70.142.179http/1.1slot365kh.com:80POST /xmlrpc.php HTTP/1.1

1-419001510/6680/7516_
378.10009979450.08.8810.60
172.68.23.104http/1.15.78.79.22:80GET /p/5-1/id/47786.html HTTP/1.1

1-419001510/6670/7500_
378.083010452050.06.898.09
108.162.245.54http/1.16602.cn.com:80GET /2000/2000_z3roadster_user_manual.pdf HTTP/1.1

1-419001510/6744/7630_
378.100010765360.07.979.76
108.162.241.209http/1.1ob1.howvps.com:443GET /xxx/video/ts4straight/ HTTP/1.1

1-419001510/6739/7607_
378.131110308830.07.268.93
172.71.151.65http/1.14851.cn.com:80GET /hummer/hummer_h3_repair_manual_free_manual.pdf HTTP/1.1

1-419001510/6812/7667_
378.070010579210.09.4410.91
162.158.41.120http/1.15.78.79.22:80GET /p/4-4/id/430.html HTTP/1.1

1-419001510/6934/7796_
378.09209845520.09.3110.94
162.158.41.120http/1.15.78.79.22:80GET /p/4-66/id/613.html HTTP/1.1

1-419001510/6582/7436_
378.110110473150.07.699.17
172.71.151.42http/1.1colorbox.us.com:80GET /mcat/mcat_100_success_secrets_free_book.pdf HTTP/1.1

1-419001510/6639/7482_
378.09115211620120.07.909.33
172.70.142.178http/1.1slot365kh.com:80POST /xmlrpc.php HTTP/1.1

1-419001510/6622/7516_
378.1331439763400.06.378.00
172.70.142.178http/1.1slot365kh.com:80POST /xmlrpc.php HTTP/1.1

1-419001510/6729/7568_
378.130010425800.08.699.84
108.162.245.238http/1.15.78.79.22:80GET /show/show_image_of_fuse_diagram_for_1995_toyota_corolla.pd

1-419001510/6716/7591_
378.11109760790.06.628.14
172.71.151.152http/1.15.78.79.22:80GET /p/5-1/id/57007.html HTTP/1.1

1-419001510/6778/7599_
378.140010381950.07.378.37
162.158.178.173http/1.1ob1.howvps.com:443GET / HTTP/1.1

1-419001510/6707/7572_
378.13109539470.07.829.42
162.158.111.31http/1.

Found on 2025-10-11 02:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2cbc45cd5

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Thursday, 09-Oct-2025 06:01:53 UTC
Restart Time: Thursday, 09-Oct-2025 03:23:22 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 hours 38 minutes 31 seconds
Server load: 1.16 1.91 1.84
Total accesses: 129069 - Total Traffic: 225.9 MB - Total Duration: 24441130
CPU Usage: u234.27 s79.62 cu0 cs0 - 3.3% CPU load
13.6 requests/sec - 24.3 kB/second - 1835 B/request - 189.365 ms/request
12 requests currently being processed, 0 workers gracefully restarting, 163 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
0942534no0yes0025000
1942535no0yes0025000
2942536no17yes20230141
3942633no36yes60190311
4949090no5yes1024031
51297216no35yes30220312
61300228no2yes0025011
Sum7095 1201630806

_________________________________________________________W__W___
____________W______WW___WW_________W_________________W_________W
____W___R______________________________________.................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-09425340/153/153_
11.711540213910.00.150.15
108.162.245.181http/1.15.78.79.22:80GET /yamaha/yamaha_raptor_350_repair_manual_04_05_06_07_08_09.p

0-09425340/162/162_
11.67571663600.00.090.09
162.158.42.11http/1.14851.cn.com:80GET /islands/islands_far_away_fijian_pictures_with_pen_and_brus

0-09425340/167/167_
11.731430278150.00.220.22
162.158.42.18http/1.15.78.79.22:80GET /et/tyr/mavi-bet-canli-mac/ HTTP/1.1

0-09425340/162/162_
11.74821475500.00.080.08
104.23.160.123http/1.100-0000.cn.com:443GET /wp-content/plugins/tocer/default.settings.json HTTP/1.1

0-09425340/145/145_
11.76141522249730.00.150.15
172.71.218.129http/1.1nn8818.com:80POST /xmlrpc.php HTTP/1.1

0-09425340/143/143_
11.591410247420.00.190.19
172.68.213.98http/1.1u888com.blog:443GET / HTTP/1.1

0-09425340/162/162_
11.7582176399970.00.230.23
162.158.42.155http/1.1bet88linh.com:80GET /tyr/canli-mac-izle-bet-tv/ HTTP/1.1

0-09425340/137/137_
11.61961149301390.00.180.18
172.71.98.58http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

0-09425340/148/148_
11.761480320370.00.280.28
172.71.151.17http/1.15.78.79.22:80GET /astbe/astbe_secrets_study_guide_astbe_test_review_for_the_

0-09425340/180/180_
11.75821358130.00.150.15
104.23.160.123http/1.100-0000.cn.com:443POST /wp-cron.php?doing_wp_cron=1759989553.48859405517578125000

0-09425340/159/159_
11.80621192980.00.180.18
172.71.151.78http/1.1gameblog.sa.com:80GET /programming/programming_and_mathematical_techniques_in_phy

0-09425340/149/149_
11.5782659306630.00.150.15
172.71.98.58http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

0-09425340/166/166_
11.761460241010.00.280.28
162.158.41.68http/1.15.78.79.22:80GET /balavyakaranamu/balavyakaranamu_of_paravastu_cinnaya_suri_

0-09425340/146/146_
11.78870439330.00.210.21
172.71.150.59http/1.123wim.us.com:80GET /the/the_river_never_looks_back_historical_and_practical_fo

0-09425340/148/148_
11.49134582256720.00.090.09
172.68.211.81http/1.1quickly.sa.com:80POST /xmlrpc.php HTTP/1.1

0-09425340/158/158_
11.521400438100.00.240.24
172.71.184.152http/1.1lc88j.com:443GET /wp-admin/setup-config.php HTTP/1.1

0-09425340/151/151_
11.62570336770.00.180.18
172.71.151.174http/1.15.78.79.22:80GET /image/ugandas-queen-of-the-turntables/2013-mustang-gt-fuse

0-09425340/147/147_
11.731430362430.00.160.16
172.71.150.64http/1.15.78.79.22:80GET /et/tyr/feyenoord-bet/ HTTP/1.1

0-09425340/150/150_
11.591411287770.00.120.12
108.162.245.123http/1.1mcafeecom.uk.com:80GET /zimsec/zimsec_a_level_geography_question_papers_ebooks_pdf

0-09425340/147/147_
11.651340208940.00.420.42
172.71.146.65http/1.1mcafeecom.uk.com:80GET /situated/situated_practices_of_strategic_planning_an_inter

0-09425340/147/147_
11.671540293240.00.260.26
172.71.146.181http/1.15.78.79.22:80GET /jk/jk_wrangler_unlimited_service_manual.pdf HTTP/1.1

0-09425340/151/151_
11.761391332660.00.300.30
172.71.151.75http/1.14851.cn.com:80GET /macgillivray/macgillivray_on_insurance_law_2nd_supplement.

0-09425340/154/154_
11.781010291530.00.130.13
172.68.151.95http/1.15.78.79.22:80GET /static/js/main.141b0494.js HTTP/1.1

0-09425340/126/126_
11.65961236600.00.090.09
162.158.42.91http/1.1gameblog.sa.com:80GET /operation/operation_service_manual_refurbished_vending_mac

0-09425340/158/158_
11.78871397450.00.190.19
172.68.23.138http/1.1gameblog.sa.com:80GET /presidential/presidential_power_research.pdf HTTP/1.1

1-09425350/289/289_
20.3890553480920.00.410.41
172.71.218.129http/1.1nn8818.com:80POST /xmlrpc.php HTTP/1.1

1-09425350/317/317_
20.35871401676950.00.360.36
104.23.160.69http/1.1shauncanon.com:443POST /wp-cron.php?doing_wp_cron=1759989585.42332696914672851562

1-09425350/325/325_
20.425611732568780.00.600.60
162.158.179.172http/1.1googleplay.cn.com:443GET /ban-ca-23win/ HTTP/1.1

1-09425350/296/296_
20.371040378620.00.390.39
108.162.245.89http/1.15.78.79.22:80GET /ca/tyr/canli-bet-izle/ HTTP/1.1

1-09425350/318/318_
20.291060670480.00.590.59
162.158.42.150http/1.15.78.79.22:80GET /images/CL141216/Men/Loafers/CL0000000936.jpg HTTP/1.1

1-09425350/290/290_
20.35900528440.00.520.52
108.162.245.169http/1.15.78.79.22:80GET /boys/boys_will_put_you_on_a_pedestal_so_they_can_look_up_y

1-09425350/314/314_
20.321091466350.00.570.57
172.71.82.41http/1.1exptrack.in.net:443GET /wp-includes/js/tinymce/plugins/charmap/plugin.min.js?wp-mc

1-09425350/288/288_
20.34991672570.00.580.58
104.23.251.42http/1.1456789.club:443GET /da-ga-don/ HTTP/1.1

1-09425350/303/303_
20.291060468660.00.250.25
172.71.150.68http/1.15.78.79.22:80GET /400/400_years_of_the_ghost_of_cape_may_chronicling_four_ce

1-09425350/324/324_
20.40680399990.00.390.39
108.162.246.139http/1.123wim.us.com:80GET /the/the_warrior_within_philosophies_of_bruce_lee_john_litt

1-09425350/298/298_
20.3663974600970.00.620.62
172.71.98.59http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-09425350/309/309_
20.40627162614040.00.420.42
162.158.179.171http/1.1googleplay.cn.com:443GET /casino-23win/ HTTP/1.1

1-09425350/291/291_
20.29109568440690.00.390.39
172.71.218.129http/1.1nn8818.com:80POST /xmlrpc.php HTTP/1.1

1-09425350/316/316_
20.4161543317690.00.490.49
172.70.211.155http/1.1exptrack.in.net:443POST /xmlrpc.php HTTP/1.1

1-09425350/294/294_
20.27871385050.00.310.31
104.23.160.69http/1.1

1-09425350/310/310_
20.3797587477960.00.800.80
172.71.218.129http/1.1nn8818.com:80POST /xmlrpc.php HTTP/1.1

1-09425350/306/306_
20.37631893430.00.390.39
172.68.175.47http/1.1quickly.sa.com:80POST /wp-cron.php?doing_wp_cron=1759989599.63960194587707519531

1-09425350/303/303_
20.07611931190.00.780.78
172.71.150.244http/1.123wim.us.com:80GET /perimeter/perimeter_worksheets_3rd_grade.pdf HTTP/1.1

1-09425350/290/290_
20.37560

Found on 2025-10-09 05:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2499d537a

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Monday, 06-Oct-2025 10:53:00 UTC
Restart Time: Monday, 06-Oct-2025 04:29:47 UTC
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  6 hours 23 minutes 12 seconds
Server load: 2.70 2.45 2.39
Total accesses: 371464 - Total Traffic: 685.1 MB - Total Duration: 82164312
CPU Usage: u428.35 s145.49 cu268.61 cs93.23 - 4.07% CPU load
16.2 requests/sec - 30.5 kB/second - 1933 B/request - 221.191 ms/request
2 requests currently being processed, 0 workers gracefully restarting, 148 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
04008320no0yes0025000
14008321no3yes0025030
24008411no2yes0025020
34008322no20yes10240182
44009067no11yes0025071
54009548no12yes1024081
Sum6048 201480384

________________________________________________________________
______________________W_________________________________________
_________W____________..........................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-740083200/131/422_
12.47450699160.00.241.14
172.68.22.181http/1.15.78.79.22:80GET /so/-----%E5%BC%A0%E9%B8%BF%E6%95%AC--------.html HTTP/1.1

0-740083200/126/430_
12.41301699300.00.440.88
172.68.23.24http/1.1big-league.cn.com:80GET /research/research_methods_the_concise_knowledge_base.pdf H

0-740083200/133/419_
12.5818244876310.00.050.48
172.68.23.63http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

0-740083200/128/411_
12.5629433961680.00.160.77
108.162.246.135http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

0-740083200/126/419_
12.503211216520.00.191.35
172.71.147.87http/1.16602.cn.com:80GET /ncci/ncci_basic_manual.pdf HTTP/1.1

0-740083200/138/432_
12.3740458715740.00.220.94
108.162.246.135http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

0-740083200/119/414_
12.49365881012780.00.100.66
172.71.151.211http/1.1gneno.za.com:443POST //xmlrpc.php HTTP/1.1

0-740083200/129/432_
12.58185081087930.00.240.85
108.162.246.135http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

0-740083200/121/403_
12.412211195890.00.361.15
172.68.23.201http/1.1big-league.cn.com:80GET /rethinking/rethinking_the_american_race_problem.pdf HTTP/1

0-740083200/120/424_
12.5440416999380.00.211.00
108.162.246.136http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

0-740083200/106/409_
12.5622343928860.00.100.88
172.68.22.96http/1.1cameraallindvdrw.in.net:443POST //xmlrpc.php HTTP/1.1

0-740083200/105/411_
12.55351829610.00.190.93
172.68.23.94http/1.14851.cn.com:80GET /01/01_silverado_engine_cooling_system_diagram.pdf HTTP/1.1

0-740083200/123/411_
12.47301018900.00.271.24
172.71.147.82http/1.15.78.79.22:80GET /tyr/tulipbet-bonus/ HTTP/1.1

0-740083200/115/422_
12.55354151202770.00.450.85
108.162.246.136http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

0-740083200/136/450_
12.5333241612840.00.141.37
172.68.22.97http/1.1cameraallindvdrw.in.net:443POST //xmlrpc.php HTTP/1.1

0-740083200/120/416_
12.5130312985620.00.271.10
172.68.22.96http/1.1cameraallindvdrw.in.net:443POST //xmlrpc.php HTTP/1.1

0-740083200/132/423_
12.58801007930.00.300.81
172.71.146.198http/1.1u888com.blog:443GET /zygazq/lancaster-magistrates-court-listings-2022.html HTTP

0-740083200/109/407_
12.271814961194300.00.140.82
162.158.122.123http/1.1456789.club:443POST /xmlrpc.php HTTP/1.1

0-740083200/118/429_
12.543701018720.00.060.70
172.68.22.115http/1.1big-league.cn.com:80GET /sozo/sozo_basic_training_guide_tfr_the_freedom_resource.pd

0-740083200/125/420_
12.5536459664170.00.150.67
108.162.246.136http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

0-740083200/121/434_
12.47180664720.00.100.84
172.69.17.26http/1.1hentaimama.us:443GET /ads.txt HTTP/1.1

0-740083200/125/425_
12.4935581964390.00.231.15
172.71.151.212http/1.1gneno.za.com:443POST //xmlrpc.php HTTP/1.1

0-740083200/128/431_
12.513201169610.00.931.75
172.71.150.239http/1.16602.cn.com:80GET /nclex/nclex_rn_test_study_guide_pdf_study_guide_zone.pdf H

0-740083200/108/380_
12.474501235370.00.300.82
172.68.22.181http/1.15.78.79.22:80GET /so/-----%E6%9C%B1%E8%BF%AA%C2%B7%E6%B8%A9%E7%89%B9--------

0-740083200/120/422_
12.45291158833890.00.311.09
162.158.182.75http/1.1k2gn3.sa.com:443POST /wp-login.php HTTP/1.1

1-740083210/2362/2918_
153.1355208238450.02.903.78
172.71.211.24http/1.1rakweataine.za.com:443GET / HTTP/1.1

1-740083210/2542/3091_
153.19417453720.04.075.20
172.68.22.50http/1.14851.cn.com:80GET /1997/1997_honda_civic_transmission_assembly.pdf HTTP/1.1

1-740083210/2515/3105_
153.11115537040680.03.394.88
172.69.176.153http/1.1googleplay.cn.com:443GET /no-hu-23win/ HTTP/1.1

1-740083210/2476/3042_
153.111307393840.02.593.90
104.23.172.8http/1.1ob1.howvps.com:443GET /apis/config/config.js HTTP/1.1

1-740083210/2509/3075_
153.11107067817830.03.414.42
172.68.23.141http/1.1googleplay.cn.com:80GET /jameson/jameson_hotel_parts_one_two_three.pdf HTTP/1.1

1-740083210/2541/3112_
153.13417015000.02.923.55
172.71.150.89http/1.16602.cn.com:80GET /nucleic/nucleic_acid_biosynthesis.pdf HTTP/1.1

1-740083210/2500/3072_
153.17132557879750.03.634.39
172.68.23.64http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-740083210/2535/3089_
153.20007348050.03.864.88
172.68.23.166http/1.15.78.79.22:80GET /af/tyr/bet-tsips/ HTTP/1.1

1-740083210/2498/3053_
153.0613968189750.04.155.25
104.23.160.69http/1.1shauncanon.com:443GET / HTTP/1.1

1-740083210/2600/3170_
153.1552497734390.03.023.99
172.68.23.64http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-740083210/2520/3087_
153.19408245320.086.0287.48
162.158.90.48http/1.1creditrepair.uk.com:80GET /file2.php HTTP/1.1

1-740083210/2485/3043_
153.19407603870.03.364.90
172.68.23.166http/1.15.78.79.22:80GET /af/tyr/beinsport-izle-bet/ HTTP/1.1

1-740083210/2491/3019_
153.171018345250.02.914.37
108.162.245.56http/1.16602.cn.com:80GET /of/of_mice_and_men_answers_to_chapter_1_questions.pdf HTTP

1-740083210/2530/3097_
153.141007475360.03.244.44
172.68.23.118http/1.1big-league.cn.com:80GET /speeches/speeches_and_writings_of_hon_surendranath_banejee

1-740083210/2578/3138_
153.1945867635780.03.654.22
172.68.23.64http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-740083210/2535/3087_
153.1965878040340.03.804.71
172.68.23.64http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-740083210/2526/3098_
153.06131748227700.03.074.04
104.23.160.69http/1.1shauncanon.com:443GET / HTTP/1.1

1-740083210/2488/3049_
153.08917884120.03.344.32
172.68.23.150http/1.14851.cn.com:80GET /you/you_can_do_this.pdf HTTP/1.1

1-740083210/2548/3086_
153.14114047696420.02.213.74
108.162.246.135http/1.1456789.club:443POST //xmlrpc.php HTTP/1.1

1-740083210/2541/3083_
153.2005327199000.0

Found on 2025-10-06 10:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c2597ca8da

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Saturday, 04-Oct-2025 04:37:34 UTC
Restart Time: Saturday, 04-Oct-2025 03:24:34 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 12 minutes 59 seconds
Server load: 0.87 1.11 1.05
Total accesses: 48092 - Total Traffic: 108.2 MB - Total Duration: 9359969
CPU Usage: u94.66 s34.3 cu2.23 cs1.31 - 3.03% CPU load
11 requests/sec - 25.3 kB/second - 2359 B/request - 194.626 ms/request
7 requests currently being processed, 0 workers gracefully restarting, 243 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
12636096no0yes0025000
22636097no0yes0025000
32636189no0yes0025000
42641827no2yes0025011
52644291no11yes00250101
62644320no23yes30221181
72644321no8yes4021070
82644380no0yes0025000
92644381no0yes0025000
102644382no0yes0025000
Sum10044 702431363

........................._______________________________________
________________________________________________________________
________________________________W____W____R_____W_W____W__W_____
________________________________________________________________
___________________.............................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/44.
0.002423133750.00.000.02
172.71.146.114http/1.14851.cn.com:80GET /mazda/mazda_tribute_2001_owners_manual_download.pdf HTTP/1

0-0-0/0/39.
0.002423068230.00.000.02
162.158.41.228http/1.1kumarsitelerim.net:443GET /sl/tyr/bet-tv-bursaspor-besiktas/ HTTP/1.1

0-0-0/0/39.
0.002423141680.00.000.07
172.71.150.183http/1.1kumarsitelerim.net:443GET /sl/tyr/betproton-giris/ HTTP/1.1

0-0-0/0/46.
0.00242366947890.00.000.02
172.68.164.4http/1.1arashilkis.za.com:443POST //xmlrpc.php HTTP/1.1

0-0-0/0/52.
0.002423094120.00.000.01
162.158.95.222http/1.13156.cn.com:80GET /drafts.zip HTTP/1.1

0-0-0/0/37.
0.002423075210.00.000.05
172.71.147.19http/1.1kumarsitelerim.net:443GET /sl/tyr/bahis-sitesi-en-iyi-isim/ HTTP/1.1

0-0-0/0/45.
0.002423145940.00.000.09
108.162.246.25http/1.14851.cn.com:80GET /mazda/mazda_rx2_rx3_1970_1978_service_repair.pdf HTTP/1.1

0-0-0/0/37.
0.002423065670.00.000.01
172.69.150.66http/1.13156.cn.com:80GET /old.zip HTTP/1.1

0-0-0/0/38.
0.0024231115830.00.000.13
172.68.23.102http/1.1canalzjgew.ru.com:80GET /cincinnatti/cincinnatti_hydrashift_manual.pdf HTTP/1.1

0-0-0/0/45.
0.002423078950.00.000.02
172.71.164.215http/1.13156.cn.com:80GET /errors.zip HTTP/1.1

0-0-0/0/47.
0.0024230288210.00.000.01
172.70.243.103http/1.13156.cn.com:80GET /develop.zip HTTP/1.1

0-0-0/0/43.
0.0024231112000.00.000.13
162.158.41.180http/1.14851.cn.com:80GET /mcat/mcat_practice_test_3r_answers.pdf HTTP/1.1

0-0-0/0/39.
0.002423099600.00.000.09
141.101.96.29http/1.13156.cn.com:80GET /metrics.zip HTTP/1.1

0-0-0/0/39.
0.002423035530.00.000.01
172.70.242.178http/1.13156.cn.com:80GET /packages.zip HTTP/1.1

0-0-0/0/27.
0.002423011330.00.000.01
172.70.240.37http/1.13156.cn.com:80GET /deploy.zip HTTP/1.1

0-0-0/0/42.
0.00242354886130.00.000.03
162.158.170.231http/1.1dh203.uk.net:443POST //xmlrpc.php HTTP/1.1

0-0-0/0/42.
0.0024230108010.00.000.09
172.71.164.91http/1.13156.cn.com:80GET /log.zip HTTP/1.1

0-0-0/0/33.
0.002423024900.00.000.02
172.70.240.84http/1.13156.cn.com:80GET /onedrive.zip HTTP/1.1

0-0-0/0/42.
0.002423028910.00.000.03
172.71.172.83http/1.13156.cn.com:80GET /aspnet.zip HTTP/1.1

0-0-0/0/34.
0.0024230215450.00.000.02
172.68.23.12http/1.1canalzjgew.ru.com:80GET /church/church_security_manual_pdf.pdf HTTP/1.1

0-0-0/0/32.
0.002423127780.00.000.09
172.68.23.136http/1.1canalzjgew.ru.com:80GET /church/church_volunteer_training_manual_baptist.pdf HTTP/1

0-0-0/0/51.
0.002423150190.00.000.04
172.71.147.164http/1.14851.cn.com:80GET /mcgill/mcgill_chemical_engineering_courses.pdf HTTP/1.1

0-0-0/0/50.
0.002423042670.00.000.09
162.158.95.21http/1.13156.cn.com:80GET /distribution.zip HTTP/1.1

0-0-0/0/36.
0.002423033980.00.000.08
172.71.144.33http/1.13156.cn.com:80GET /release.zip HTTP/1.1

0-0-0/0/41.
0.002423149100.00.000.11
162.158.42.197http/1.1mcafeecom.uk.com:80GET /automate/automate_windows_application_using_c.pdf HTTP/1.1

1-026360960/169/169_
11.744520222290.01.771.77
162.158.162.13http/1.1tv88y.net:443POST /wp-admin/admin-ajax.php HTTP/1.1

1-026360960/160/160_
11.73200207030.00.110.11
172.68.23.145http/1.15.78.79.22:80GET /litobiomikrofatsii/litobiomikrofatsii_karbonatnykh_porod_v

1-026360960/149/149_
11.64140258610.00.150.15
104.23.253.126http/1.1challengermode.cn.com:443GET / HTTP/1.1

1-026360960/178/178_
11.7700760370.00.240.24
172.69.195.47http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-026360960/181/181_
11.69140477310.00.340.34
172.71.147.94http/1.15.78.79.22:80GET /konica/konica_minolta_bizhub_c220_service_manual.pdf HTTP/

1-026360960/167/167_
11.7015529233160.00.180.18
172.70.208.162http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-026360960/161/161_
11.60150179490.00.170.17
162.158.189.246http/1.1tv88y.net:443GET /wp-content/uploads/2025/09/cropped-favicon-tv88-32x32.webp

1-026360960/178/178_
11.751517323480.00.280.28
162.158.162.13http/1.1tv88y.net:443GET / HTTP/1.1

1-026360960/168/168_
11.71151206900.00.120.12
172.69.176.161http/1.1jrhmusic.com:443GET / HTTP/1.1

1-026360960/167/167_
11.67210192090.00.350.35
172.71.246.138http/1.1challengermode.cn.com:443GET /info.php HTTP/1.1

1-026360960/165/165_
11.70210365810.00.250.25
172.68.22.22http/1.15.78.79.22:80GET /larson/larson_algebra_and_trigonometry_8th_edition_answers

1-026360960/174/174_
11.7700370540.00.210.21
172.69.195.47http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-026360960/166/166_
11.7410151390.00.100.10
104.23.239.34http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

1-026360960/179/179_
11.7700399560.00.260.26
172.69.195.47http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

1-026360960/175/175_
11.7319554454210.00.200.20
172.71.150.182http/1.1lasix.gb.net:80GET /image/ethernet-cable-color-code-diagram.html HTTP/1.1

1-026360960/162/162_
11.66150292220.00.340.34
172.71.241.80http/1.1challengermode.cn.com:80GET /server HTTP/1.1

1-026360960/180/180_
11.62210170860.00.190.19
172.68.23.184http/1.15.78.79.22:80GET /international/international_human_rights_95.pdf HTTP/1.1

1-026360960/164/164_
11.6600423900.00.260.26
172.68.22.207http/1.15.78.79.22:80GET /kawasaki/kawasaki_kx60_kx80_kdx80_kx100_1989_repair_servic

1-026360960/163/163_
11.751543187370.00.240.24
172.70.208.163h

Found on 2025-10-04 04:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e36045c2e36045c28019baca

Apache Status

Apache Server Status for www.melegend.io (via 5.78.79.22)

Server Version: Apache/2.4.62 (Unix) OpenSSL/1.1.1k
Server MPM: event
Server Built: Sep  6 2024 12:22:50

Current Time: Saturday, 04-Oct-2025 04:37:36 UTC
Restart Time: Saturday, 04-Oct-2025 03:24:34 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 13 minutes 1 second
Server load: 0.87 1.11 1.05
Total accesses: 48126 - Total Traffic: 109.9 MB - Total Duration: 9379334
CPU Usage: u94.71 s34.31 cu2.23 cs1.31 - 3.03% CPU load
11 requests/sec - 25.7 kB/second - 2393 B/request - 194.891 ms/request
5 requests currently being processed, 0 workers gracefully restarting, 245 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusygracefulidlewritingkeep-aliveclosing
12636096no5yes0025041
22636097no0yes0025000
32636189no0yes0025000
42641827no1yes0025010
52644291no11yes0025091
62644320no25yes40210192
72644321no12yes10240101
82644380no0yes0025000
92644381no0yes0025000
102644382no0yes0025000
Sum10054 502450435

........................._______________________________________
________________________________________________________________
__________________________________W_W_W_______WW________________
________________________________________________________________
___________________.............................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/44.
0.002425133750.00.000.02
172.71.146.114http/1.14851.cn.com:80GET /mazda/mazda_tribute_2001_owners_manual_download.pdf HTTP/1

0-0-0/0/39.
0.002425068230.00.000.02
162.158.41.228http/1.1kumarsitelerim.net:443GET /sl/tyr/bet-tv-bursaspor-besiktas/ HTTP/1.1

0-0-0/0/39.
0.002425141680.00.000.07
172.71.150.183http/1.1kumarsitelerim.net:443GET /sl/tyr/betproton-giris/ HTTP/1.1

0-0-0/0/46.
0.00242566947890.00.000.02
172.68.164.4http/1.1arashilkis.za.com:443POST //xmlrpc.php HTTP/1.1

0-0-0/0/52.
0.002425094120.00.000.01
162.158.95.222http/1.13156.cn.com:80GET /drafts.zip HTTP/1.1

0-0-0/0/37.
0.002425075210.00.000.05
172.71.147.19http/1.1kumarsitelerim.net:443GET /sl/tyr/bahis-sitesi-en-iyi-isim/ HTTP/1.1

0-0-0/0/45.
0.002425145940.00.000.09
108.162.246.25http/1.14851.cn.com:80GET /mazda/mazda_rx2_rx3_1970_1978_service_repair.pdf HTTP/1.1

0-0-0/0/37.
0.002425065670.00.000.01
172.69.150.66http/1.13156.cn.com:80GET /old.zip HTTP/1.1

0-0-0/0/38.
0.0024251115830.00.000.13
172.68.23.102http/1.1canalzjgew.ru.com:80GET /cincinnatti/cincinnatti_hydrashift_manual.pdf HTTP/1.1

0-0-0/0/45.
0.002425078950.00.000.02
172.71.164.215http/1.13156.cn.com:80GET /errors.zip HTTP/1.1

0-0-0/0/47.
0.0024250288210.00.000.01
172.70.243.103http/1.13156.cn.com:80GET /develop.zip HTTP/1.1

0-0-0/0/43.
0.0024251112000.00.000.13
162.158.41.180http/1.14851.cn.com:80GET /mcat/mcat_practice_test_3r_answers.pdf HTTP/1.1

0-0-0/0/39.
0.002425099600.00.000.09
141.101.96.29http/1.13156.cn.com:80GET /metrics.zip HTTP/1.1

0-0-0/0/39.
0.002425035530.00.000.01
172.70.242.178http/1.13156.cn.com:80GET /packages.zip HTTP/1.1

0-0-0/0/27.
0.002425011330.00.000.01
172.70.240.37http/1.13156.cn.com:80GET /deploy.zip HTTP/1.1

0-0-0/0/42.
0.00242554886130.00.000.03
162.158.170.231http/1.1dh203.uk.net:443POST //xmlrpc.php HTTP/1.1

0-0-0/0/42.
0.0024250108010.00.000.09
172.71.164.91http/1.13156.cn.com:80GET /log.zip HTTP/1.1

0-0-0/0/33.
0.002425024900.00.000.02
172.70.240.84http/1.13156.cn.com:80GET /onedrive.zip HTTP/1.1

0-0-0/0/42.
0.002425028910.00.000.03
172.71.172.83http/1.13156.cn.com:80GET /aspnet.zip HTTP/1.1

0-0-0/0/34.
0.0024250215450.00.000.02
172.68.23.12http/1.1canalzjgew.ru.com:80GET /church/church_security_manual_pdf.pdf HTTP/1.1

0-0-0/0/32.
0.002425127780.00.000.09
172.68.23.136http/1.1canalzjgew.ru.com:80GET /church/church_volunteer_training_manual_baptist.pdf HTTP/1

0-0-0/0/51.
0.002425150190.00.000.04
172.71.147.164http/1.14851.cn.com:80GET /mcgill/mcgill_chemical_engineering_courses.pdf HTTP/1.1

0-0-0/0/50.
0.002425042670.00.000.09
162.158.95.21http/1.13156.cn.com:80GET /distribution.zip HTTP/1.1

0-0-0/0/36.
0.002425033980.00.000.08
172.71.144.33http/1.13156.cn.com:80GET /release.zip HTTP/1.1

0-0-0/0/41.
0.002425149100.00.000.11
162.158.42.197http/1.1mcafeecom.uk.com:80GET /automate/automate_windows_application_using_c.pdf HTTP/1.1

1-026360960/169/169_
11.746520222290.01.771.77
162.158.162.13http/1.1tv88y.net:443POST /wp-admin/admin-ajax.php HTTP/1.1

1-026360960/160/160_
11.7300207030.00.110.11
172.68.23.145http/1.15.78.79.22:80GET /litobiomikrofatsii/litobiomikrofatsii_karbonatnykh_porod_v

1-026360960/149/149_
11.64160258610.00.150.15
104.23.253.126http/1.1challengermode.cn.com:443GET / HTTP/1.1

1-026360960/178/178_
11.7730760370.00.240.24
172.69.195.47http/1.1ob1.howvps.com:443GET /about HTTP/1.1

1-026360960/181/181_
11.69160477310.00.340.34
172.71.147.94http/1.15.78.79.22:80GET /konica/konica_minolta_bizhub_c220_service_manual.pdf HTTP/

1-026360960/167/167_
11.7017529233160.00.180.18
172.70.208.162http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-026360960/161/161_
11.60170179490.00.170.17
162.158.189.246http/1.1tv88y.net:443GET /wp-content/uploads/2025/09/cropped-favicon-tv88-32x32.webp

1-026360960/178/178_
11.753517323480.00.280.28
162.158.162.13http/1.1tv88y.net:443GET / HTTP/1.1

1-026360960/168/168_
11.71171206900.00.120.12
172.69.176.161http/1.1jrhmusic.com:443GET / HTTP/1.1

1-026360960/167/167_
11.6710192090.00.350.35
172.71.246.138http/1.1challengermode.cn.com:443GET /info.php HTTP/1.1

1-026360960/166/166_
11.771514370950.00.250.25
172.70.208.163http/1.1googleplay.cn.com:443POST //xmlrpc.php HTTP/1.1

1-026360960/174/174_
11.7720370540.00.210.21
172.69.195.47http/1.1ob1.howvps.com:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-026360960/166/166_
11.7430151390.00.100.10
104.23.239.34http/1.1ob1.howvps.com:443GET /debug/default/view?panel=config HTTP/1.1

1-026360960/179/179_
11.7720399560.00.260.26
172.69.195.47http/1.1ob1.howvps.com:443GET /v2/_catalog HTTP/1.1

1-026360960/175/175_
11.7321554454210.00.200.20
172.71.150.182http/1.1lasix.gb.net:80GET /image/ethernet-cable-color-code-diagram.html HTTP/1.1

1-026360960/162/162_
11.66170292220.00.340.34
172.71.241.80http/1.1challengermode.cn.com:80GET /server HTTP/1.1

1-026360960/181/181_
11.7710170860.00.190.19
172.71.164.187http/1.1ob1.howvps.com:443GET /_all_dbs HTTP/1.1

1-026360960/164/164_
11.6630423900.00.260.26
172.68.22.207http/1.15.78.79.22:80GET /kawasaki/kawasaki_kx60_kx80_kdx80_kx100_1989_repair_servic

1-026360960/163/163_
11.753543187370.00.240.24
172.70.208.163http/1.1googleplay.cn.com:443PO

Found on 2025-10-04 04:32

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: myyumo.com
Port: 443
URL: https://myyumo.com

First seen 2025-09-17 10:35
Last seen 2025-12-18 11:45
Open for 92 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5fbe4d0977fa53242ae559f8ae

Found 128 files trough .DS_Store spidering:

/css
/js
/pic
/pic/1.jpg
/pic/10.jpg
/pic/100.jpg
/pic/1000.jpg
/pic/1001.jpg
/pic/1002.jpg
/pic/1003.jpg
/pic/1004.jpg
/pic/1005.jpg
/pic/1006.jpg
/pic/1007.jpg
/pic/1008.jpg
/pic/1009.jpg
/pic/101.jpg
/pic/1010.jpg
/pic/1011.jpg
/pic/1012.jpg
/pic/1013.jpg
/pic/1014.jpg
/pic/1015.jpg
/pic/1016.jpg
/pic/1017.jpg
/pic/1018.jpg
/pic/1019.jpg
/pic/102.jpg
/pic/1020.jpg
/pic/1021.jpg
/pic/1022.jpg
/pic/1023.jpg
/pic/1024.jpg
/pic/1025.jpg
/pic/1026.jpg
/pic/1027.jpg
/pic/1028.jpg
/pic/1029.jpg
/pic/103.jpg
/pic/1030.jpg
/pic/1031.jpg
/pic/1032.jpg
/pic/1033.jpg
/pic/1034.jpg
/pic/1035.jpg
/pic/1036.jpg
/pic/1037.jpg
/pic/1038.jpg
/pic/1039.jpg
/pic/104.jpg
/pic/1040.jpg
/pic/1041.jpg
/pic/1042.jpg
/pic/1043.jpg
/pic/1044.jpg
/pic/1045.jpg
/pic/1046.jpg
/pic/1047.jpg
/pic/1048.jpg
/pic/1049.jpg
/pic/105.jpg
/pic/1050.jpg
/pic/1051.jpg
/pic/1052.jpg
/pic/1053.jpg
/pic/1054.jpg
/pic/1055.jpg
/pic/1056.jpg
/pic/1057.jpg
/pic/1058.jpg
/pic/1059.jpg
/pic/106.jpg
/pic/1060.jpg
/pic/1061.jpg
/pic/1062.jpg
/pic/1063.jpg
/pic/1064.jpg
/pic/1065.jpg
/pic/1066.jpg
/pic/1067.jpg
/pic/1068.jpg
/pic/1069.jpg
/pic/107.jpg
/pic/1070.jpg
/pic/1071.jpg
/pic/1072.jpg
/pic/1073.jpg
/pic/1074.jpg
/pic/1075.jpg
/pic/1076.jpg
/pic/1077.jpg
/pic/1078.jpg
/pic/1079.jpg
/pic/108.jpg
/pic/1080.jpg
/pic/1081.jpg
/pic/1082.jpg
/pic/1083.jpg
/pic/1084.jpg
/pic/1085.jpg
/pic/1086.jpg
/pic/1087.jpg
/pic/1088.jpg
/pic/1089.jpg
/pic/109.jpg
/pic/1090.jpg
/pic/1091.jpg
/pic/1092.jpg
/pic/1093.jpg
/pic/1094.jpg
/pic/1095.jpg
/pic/1096.jpg
/pic/1097.jpg
/pic/1098.jpg
/pic/1099.jpg
/pic/11.jpg
/pic/110.jpg
/pic/1100.jpg
/pic/1101.jpg
/pic/1102.jpg
/pic/1103.jpg
/pic/1104.jpg
/pic/1105.jpg
/pic/1106.jpg
/pic/1107.jpg
/pic/1108.jpg
/pic/1109.jpg
/pic/111.jpg

Found on 2025-12-18 11:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e976be4bb3fb89e2806

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/js
/pic
/pic/1.jpg
/pic/10.jpg
/pic/100.jpg
/pic/1000.jpg
/pic/1001.jpg
/pic/1002.jpg
/pic/1003.jpg
/pic/1004.jpg
/pic/1005.jpg
/pic/1006.jpg
/pic/1007.jpg
/pic/1008.jpg
/pic/1009.jpg
/pic/101.jpg
/pic/1010.jpg
/pic/1011.jpg
/pic/1012.jpg
/pic/1013.jpg
/pic/1014.jpg
/pic/1015.jpg
/pic/1016.jpg
/pic/1017.jpg
/pic/1018.jpg
/pic/1019.jpg
/pic/102.jpg
/pic/1020.jpg
/pic/1021.jpg
/pic/1022.jpg
/pic/1023.jpg
/pic/1024.jpg
/pic/1025.jpg
/pic/1026.jpg
/pic/1027.jpg
/pic/1028.jpg
/pic/1029.jpg
/pic/103.jpg
/pic/1030.jpg
/pic/1031.jpg
/pic/1032.jpg
/pic/1033.jpg
/pic/1034.jpg
/pic/1035.jpg
/pic/1036.jpg
/pic/1037.jpg
/pic/1038.jpg
/pic/1039.jpg
/pic/104.jpg
/pic/1040.jpg
/pic/1041.jpg
/pic/1042.jpg
/pic/1043.jpg
/pic/1044.jpg
/pic/1045.jpg
/pic/1046.jpg
/pic/1047.jpg
/pic/1048.jpg
/pic/1049.jpg
/pic/105.jpg
/pic/1050.jpg
/pic/1051.jpg
/pic/1052.jpg
/pic/1053.jpg
/pic/1054.jpg
/pic/1055.jpg
/pic/1056.jpg
/pic/1057.jpg
/pic/1058.jpg
/pic/1059.jpg
/pic/106.jpg
/pic/1060.jpg
/pic/1061.jpg
/pic/1062.jpg
/pic/1063.jpg
/pic/1064.jpg
/pic/1065.jpg
/pic/1066.jpg
/pic/1067.jpg
/pic/1068.jpg
/pic/1069.jpg
/pic/107.jpg
/pic/1070.jpg
/pic/1071.jpg
/pic/1072.jpg
/pic/1073.jpg
/pic/1074.jpg
/pic/1075.jpg
/pic/1076.jpg
/pic/1077.jpg
/pic/1078.jpg
/pic/1079.jpg
/pic/108.jpg
/pic/1080.jpg
/pic/1081.jpg
/pic/1082.jpg
/pic/1083.jpg
/pic/1084.jpg
/pic/1085.jpg
/pic/1086.jpg
/pic/1087.jpg
/pic/1088.jpg
/pic/1089.jpg
/pic/109.jpg
/pic/1090.jpg
/pic/1091.jpg
/pic/1092.jpg
/pic/1093.jpg
/pic/1094.jpg
/pic/1095.jpg
/pic/1096.jpg
/pic/1097.jpg
/pic/1098.jpg
/pic/1099.jpg
/pic/11.jpg
/pic/110.jpg
/pic/1100.jpg
/pic/1101.jpg
/pic/1102.jpg
/pic/1103.jpg
/pic/1104.jpg
/pic/1105.jpg
/pic/1106.jpg
/pic/1107.jpg
/pic/1108.jpg
/pic/1109.jpg

Found on 2025-10-10 20:47

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: jgjf.net
Port: 80
URL: http://jgjf.net

First seen 2025-10-17 02:06
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949b
```
Found 33 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/m1/css
/static/m1/favicon.ico
/static/m1/favicon.png
/static/m1/fonts
/static/m1/js
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-10-17 02:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: musicmediaconsulting.com
Port: 443
URL: https://musicmediaconsulting.com

First seen 2025-09-07 20:31
Last seen 2025-09-18 07:45
Open for 10 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87723895af61cd42b26629229826d7fb797e
```
Found 11 files trough .DS_Store spidering:

/imgs
/imgs/android_btn.png
/imgs/bg.png
/imgs/continue_btn.png
/imgs/corp.png
/imgs/faviconk8.ico
/imgs/ios_btn.png
/imgs/logo.png
/imgs/sponsors-1.png
/imgs/sponsors-2.png
/imgs/sponsors-3.png
```
  Found on 2025-09-18 07:45
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: demo.9033061.xyz
Port: 80
URL: http://demo.9033061.xyz

First seen 2025-09-15 01:07
Last seen 2025-09-15 01:07

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c122765d

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = http://192.168.50.200:8418/goshot-ai/GSAI-backend
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "http://192.168.50.200:8418/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46ZTQxMWYwYzZjOWQzZjEwYWYyMDk0ZDllMzlhZGEzZGYzZTliN2VhYg==
[branch "main"]
	remote = origin
	merge = refs/heads/main

Found on 2025-09-15 01:07

435 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: lechuanbo.net
Port: 443
URL: https://lechuanbo.net

First seen 2025-09-09 04:00
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949b
```
Found 33 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/m1/css
/static/m1/favicon.ico
/static/m1/favicon.png
/static/m1/fonts
/static/m1/js
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-09-09 04:00
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: uinuchex.shop
Port: 443
URL: https://uinuchex.shop

First seen 2024-10-01 11:46
Last seen 2025-07-14 11:49
Open for 286 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522309e6382
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = ssh://git@gitea.starteam.io:2222/CPA/landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-07-14 11:49
  
  273 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: sohoaditich.techgarden.vn
Port: 443
URL: https://sohoaditich.techgarden.vn

First seen 2024-12-10 09:22
Last seen 2025-07-02 11:06
Open for 204 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176426b7f0a696b12cb016b12cb016b12cb01
```
Found 2 files trough .DS_Store spidering:

/icons
/js
```
  Found on 2025-07-02 11:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: sohoaditich.techgarden.vn
Port: 80
URL: http://sohoaditich.techgarden.vn

First seen 2024-12-10 09:22
Last seen 2025-07-02 10:24
Open for 204 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176426b7f0a696b12cb016b12cb016b12cb01
```
Found 2 files trough .DS_Store spidering:

/icons
/js
```
  Found on 2025-07-02 10:24
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: 100city.net
Port: 80
URL: http://100city.net

First seen 2025-06-25 11:22
Last seen 2025-06-25 11:22

Severity: low
Fingerprint: 5f32cf5d6962f09c684e525d684e525d5928d5c5031bc059dd23f6c17f6d052a

Found 27 files trough .DS_Store spidering:

/404.html
/favicon.ico
/robots.txt
/static
/static/19j
/static/ads
/static/bookmark
/static/bookmark/css
/static/bookmark/images
/static/bookmark/js
/static/freeshare666
/static/home
/static/javrate
/static/javrs
/static/jieav
/static/jiejieav
/static/loading.gif
/static/mmcg
/static/mp4
/static/mxone
/static/player
/static/qiaolu
/static/taiav
/static/VideoJS
/static/w91
/static/xojav
/t.html

Found on 2025-06-25 11:22

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb32a9a52efa901b4872c11d317f9d023da

Found 29 files trough .DS_Store spidering:

/404.html
/favicon.ico
/robots.txt
/static
/static/19j
/static/ads
/static/bookmark
/static/bookmark/css
/static/bookmark/images
/static/bookmark/js
/static/freeshare666
/static/home
/static/javrate
/static/javrs
/static/jieav
/static/jiejieav
/static/loading.gif
/static/mmcg
/static/mp4
/static/mxone
/static/player
/static/qiaolu
/static/taiav
/static/taiav/css
/static/taiav/js
/static/VideoJS
/static/w91
/static/xojav
/t.html

Found on 2025-06-25 11:22

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: 100city.net
Port: 443
URL: https://100city.net

First seen 2025-06-25 11:22
Last seen 2025-06-25 11:22

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02ae0625d0520de228a2fab936c3f1e956

Found 24 files trough .DS_Store spidering:

/404.html
/favicon.ico
/robots.txt
/static
/static/19j
/static/ads
/static/bookmark
/static/freeshare666
/static/home
/static/javrate
/static/javrs
/static/jieav
/static/jiejieav
/static/loading.gif
/static/mmcg
/static/mp4
/static/mxone
/static/player
/static/qiaolu
/static/taiav
/static/VideoJS
/static/w91
/static/xojav
/t.html

Found on 2025-06-25 11:22

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb32a9a52efa901b4872c11d317f9d023da

Found 29 files trough .DS_Store spidering:

/404.html
/favicon.ico
/robots.txt
/static
/static/19j
/static/ads
/static/bookmark
/static/bookmark/css
/static/bookmark/images
/static/bookmark/js
/static/freeshare666
/static/home
/static/javrate
/static/javrs
/static/jieav
/static/jiejieav
/static/loading.gif
/static/mmcg
/static/mp4
/static/mxone
/static/player
/static/qiaolu
/static/taiav
/static/taiav/css
/static/taiav/js
/static/VideoJS
/static/w91
/static/xojav
/t.html

Found on 2025-06-25 11:22

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: lin95992.com
Port: 443
URL: https://lin95992.com

First seen 2025-06-04 10:58
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949b
```
Found 33 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/m1/css
/static/m1/favicon.ico
/static/m1/favicon.png
/static/m1/fonts
/static/m1/js
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-06-04 10:58
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: camdesa.controlasistencia.es
Port: 443
URL: https://camdesa.controlasistencia.es

First seen 2022-12-25 01:50
Last seen 2025-03-23 00:02
Open for 818 days

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146be803af0b1c950dbb92d48d808ad9990d

Found 21 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2025-03-23 00:02

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e5abc36967aab66d2e72499a39621518d

Found 20 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard

Found on 2025-03-18 22:06

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a44d6c04c3

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2025-03-05 10:33

Severity: low
Fingerprint: 5f32cf5d6962f09c668fcbec668fcbecc9c3328c92edcd4ca2d590912796a4ae

Found 17 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2024-10-16 23:13

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d6aae32956f82984916c5a38a3ea3ec33

Found 12 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2022-12-25 01:50

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: asyrep.controlasistencia.es
Port: 443
URL: https://asyrep.controlasistencia.es

First seen 2023-02-23 18:21
Last seen 2025-03-22 19:52
Open for 758 days

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146be803af0b1c950dbb92d48d808ad9990d

Found 21 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2025-03-22 19:52

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e5abc36967aab66d2e72499a39621518d

Found 20 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard

Found on 2025-03-05 01:54

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a44d6c04c3

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2025-02-14 16:09

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a02567c038e320b2c0b88fcb3d71680e96

Found 13 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2024-04-19 18:51

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d6aae32956f82984916c5a38a3ea3ec33

Found 12 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2024-04-19 18:51

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: castulo.controlasistencia.es
Port: 443
URL: https://castulo.controlasistencia.es

First seen 2022-10-25 21:33
Last seen 2025-03-22 18:59
Open for 878 days

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146be803af0b1c950dbb92d48d808ad9990d

Found 21 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2025-03-22 18:59

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a44d6c04c3

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2025-03-19 02:56

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e5abc36967aab66d2e72499a39621518d

Found 20 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard

Found on 2024-12-06 19:17

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a02567c038e320b2c0b88fcb3d71680e96

Found 13 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2024-10-17 08:13

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: alvarf.controlasistencia.es
Port: 443
URL: https://alvarf.controlasistencia.es

First seen 2023-04-24 19:34
Last seen 2025-03-22 18:59
Open for 697 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a4a4fdc09f
```
Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
```
  Found on 2025-03-22 18:59
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a578f388a8965ad1e9b3fa24784fb794b
```
Found 19 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js
```
  Found on 2025-03-20 19:17
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719f085dc49eb7c96957216ed2e2cec05d4
```
Found 16 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
```
  Found on 2024-07-14 16:33
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87726028bc72d1f19bf6369cf83f98969875
```
Found 11 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors
```
  Found on 2024-02-19 17:56
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: redsane.controlasistencia.es
Port: 443
URL: https://redsane.controlasistencia.es

First seen 2022-10-25 21:33
Last seen 2025-03-22 17:33
Open for 878 days

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146be803af0b1c950dbb92d48d808ad9990d

Found 21 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2025-03-22 17:33

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e5abc36967aab66d2e72499a39621518d

Found 20 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard

Found on 2025-02-16 15:22

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a44d6c04c3

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2025-01-16 16:28

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a02567c038e320b2c0b88fcb3d71680e96

Found 13 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2023-04-26 13:19

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d6aae32956f82984916c5a38a3ea3ec33

Found 12 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2023-02-24 21:43

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: innovaled.controlasistencia.es
Port: 443
URL: https://innovaled.controlasistencia.es

First seen 2022-10-25 21:33
Last seen 2025-03-22 09:48
Open for 878 days

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146be803af0b1c950dbb92d48d808ad9990d

Found 21 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2025-03-22 09:48

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e5abc36967aab66d2e72499a39621518d

Found 20 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard

Found on 2025-03-18 12:01

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a44d6c04c3

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2024-08-18 05:03

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d6aae32956f82984916c5a38a3ea3ec33

Found 12 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2023-02-23 19:22

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: 9leyendas.controlasistencia.es
Port: 443
URL: https://9leyendas.controlasistencia.es

First seen 2022-10-25 21:31
Last seen 2025-03-22 08:18
Open for 878 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719f085dc49eb7c96957216ed2e640878e2
```
Found 16 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/kendoui/styles
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js
```
  Found on 2025-03-22 08:18
- Severity: low
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbeac2272c6177ba62287833d73591a5eb6
```
Found 15 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/kendoui/styles
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
```
  Found on 2024-10-17 08:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a02567c038e320b2c0b88fcb3df2b9e02d
```
Found 13 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/kendoui/styles
/nif.html
/robots.txt
/svg
/vendors
```
  Found on 2024-10-17 08:12
- Severity: low
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d6aae32956f82984916c5a38a3ea3ec33
```
Found 12 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors
```
  Found on 2024-06-18 21:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: siktenpull.controlasistencia.es
Port: 443
URL: https://siktenpull.controlasistencia.es

First seen 2022-10-25 21:33
Last seen 2025-03-20 21:02
Open for 876 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a578f388a8965ad1e9b3fa24784fb794b
```
Found 19 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js
```
  Found on 2025-03-20 21:02
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a4a4fdc09f
```
Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
```
  Found on 2024-12-06 10:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719f085dc49eb7c96957216ed2e2cec05d4
```
Found 16 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
```
  Found on 2024-04-30 23:36
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87726028bc72d1f19bf6369cf83f98969875
```
Found 11 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors
```
  Found on 2023-02-24 21:43
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: mango.controlasistencia.es
Port: 443
URL: https://mango.controlasistencia.es

First seen 2022-10-25 21:32
Last seen 2025-03-20 19:57
Open for 876 days

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146be803af0b1c950dbb92d48d808ad9990d

Found 21 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2025-03-20 19:57

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b187e77502a44d6c04c3

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors

Found on 2025-02-10 06:32

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e5abc36967aab66d2e72499a3a16d0858

Found 20 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/images
/index.php
/js
/kendoui
/kendoui/js
/kendoui/license-agreements
/kendoui/src
/kendoui/styles
/kendoui/typescript
/nif.html
/robots.txt
/svg
/vendors
/vendors/datatables.net-responsive
/vendors/jQuery-Smart-Wizard
/vendors/jQuery-Smart-Wizard/js

Found on 2024-06-24 01:32

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a02567c038e320b2c0b88fcb3d71680e96

Found 13 files trough .DS_Store spidering:

/css
/favicon.ico
/getusuario.php
/guadalinfo
/guadalinfo/index.php
/images
/index.php
/js
/kendoui
/nif.html
/robots.txt
/svg
/vendors

Found on 2022-10-25 21:32

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 64.176.81.188
Domain: amsl.cc
Port: 443
URL: https://amsl.cc

First seen 2023-10-10 14:24
Last seen 2024-09-03 16:26
Open for 329 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a06e009db0ec0361365725de1208733a71
```
Found 13 files trough .DS_Store spidering:

/assets
/assets/addons
/assets/css
/assets/fonts
/assets/img
/assets/js
/assets/js/backend
/assets/js/frontend
/assets/less
/assets/libs
/fh
/template
/uploads
```
  Found on 2024-09-03 16:26
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877272a0bbaefce5c88c9c00dc9cd9f4ea4d
```
Found 11 files trough .DS_Store spidering:

/assets
/assets/addons
/assets/css
/assets/fonts
/assets/img
/assets/js
/assets/less
/assets/libs
/fh
/template
/uploads
```
  Found on 2023-11-21 10:15
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.140.93
Domain: mailcenter-icloud.info
Port: 80
URL: http://mailcenter-icloud.info

First seen 2023-11-17 16:35
Last seen 2024-07-22 11:39
Open for 247 days

Severity: low
Fingerprint: 5f32cf5d6962f09c87f05b7087f05b70485e91f1efa693d68c6819cd5066a180

Found 26 files trough .DS_Store spidering:

/scripts
/scripts/fmi_new
/scripts/fmi_new/languages
/scripts/map_model
/scripts/map_model/img
/scripts/new_map
/scripts/p4_new
/scripts/p4_new/languages
/scripts/p4_new_mod
/scripts/p6_new
/scripts/p6_new/languages
/scripts/p6_new/sav
/scripts/p6_new_mod
/scripts/p6_new_mod/assets
/scripts/p6_new_mod/assets/img
/scripts/p6_new_mod/assets/js
/scripts/p6_new_mod/assets/layout
/scripts/p6_new_mod/files
/scripts/p6_new_mod/fonts
/scripts/p6_new_mod/images
/scripts/p6_new_mod/languages
/scripts/p6_new_mod/sav
/scripts/rst
/scripts/rst/languages
/scripts/systemd_root_service
/scripts_raw

Found on 2024-07-22 11:39

Severity: low
Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf025cfbb408d1dc5ba63f9668979ce96481

Found 24 files trough .DS_Store spidering:

/fmi_new
/fmi_new/languages
/map_model
/map_model/img
/new_map
/p4_new
/p4_new/languages
/p4_new_mod
/p6_new
/p6_new/languages
/p6_new/sav
/p6_new_mod
/p6_new_mod/assets
/p6_new_mod/assets/img
/p6_new_mod/assets/js
/p6_new_mod/assets/layout
/p6_new_mod/files
/p6_new_mod/fonts
/p6_new_mod/images
/p6_new_mod/languages
/p6_new_mod/sav
/rst
/rst/languages
/systemd_root_service

Found on 2024-05-29 19:10

Severity: low
Fingerprint: 5f32cf5d6962f09c684e525d684e525d7534f1d8985934939f9467c08d125ac2

Found 27 files trough .DS_Store spidering:

/scripts
/scripts/fmi_new
/scripts/fmi_new/languages
/scripts/map_model
/scripts/map_model/img
/scripts/new_map
/scripts/p4_login_map
/scripts/p4_new
/scripts/p4_new/languages
/scripts/p4_new_mod
/scripts/p6_new
/scripts/p6_new/languages
/scripts/p6_new/sav
/scripts/p6_new_mod
/scripts/p6_new_mod/assets
/scripts/p6_new_mod/assets/img
/scripts/p6_new_mod/assets/js
/scripts/p6_new_mod/assets/layout
/scripts/p6_new_mod/files
/scripts/p6_new_mod/fonts
/scripts/p6_new_mod/images
/scripts/p6_new_mod/languages
/scripts/p6_new_mod/sav
/scripts/rst
/scripts/rst/languages
/scripts/systemd_root_service
/scripts_raw

Found on 2024-05-21 19:41

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf667545467de598117cd98bea5661a5c9

Found 25 files trough .DS_Store spidering:

/scripts
/scripts/fmi_new
/scripts/fmi_new/languages
/scripts/map_model
/scripts/map_model/img
/scripts/new_map
/scripts/p4_new
/scripts/p4_new/languages
/scripts/p4_new_mod
/scripts/p6_new
/scripts/p6_new/languages
/scripts/p6_new/sav
/scripts/p6_new_mod
/scripts/p6_new_mod/assets
/scripts/p6_new_mod/assets/img
/scripts/p6_new_mod/assets/js
/scripts/p6_new_mod/assets/layout
/scripts/p6_new_mod/files
/scripts/p6_new_mod/fonts
/scripts/p6_new_mod/images
/scripts/p6_new_mod/languages
/scripts/p6_new_mod/sav
/scripts/rst
/scripts/rst/languages
/scripts/systemd_root_service

Found on 2024-05-13 02:55

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9b83b3c03ac2a06070031ad6c5b53b7f6

Found 23 files trough .DS_Store spidering:

/fmi_new
/new_map
/p4_new_mod
/p6_new_mod
/p6_new_mod/assets
/p6_new_mod/assets/img
/p6_new_mod/assets/js
/p6_new_mod/assets/layout
/p6_new_mod/files
/p6_new_mod/fonts
/p6_new_mod/images
/p6_new_mod/languages
/p6_new_mod/sav
/systemd_root_service
/systemd_root_service/__pycache__
/systemd_root_service/common
/systemd_root_service/common/__pycache__
/systemd_root_service/common/LOG
/systemd_root_service/common/LOG/DEBUG
/systemd_root_service/common/LOG/INFO
/systemd_root_service/LOG
/systemd_root_service/LOG/DEBUG
/systemd_root_service/LOG/INFO

Found on 2024-02-02 19:03

Severity: low
Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b8740a6a932eb6315aac713f6a716dcdb

Found 14 files trough .DS_Store spidering:

/fmi_new
/new_map
/p4_new_mod
/p6_new_mod
/p6_new_mod/assets
/p6_new_mod/assets/img
/p6_new_mod/assets/js
/p6_new_mod/assets/layout
/p6_new_mod/files
/p6_new_mod/fonts
/p6_new_mod/images
/p6_new_mod/languages
/p6_new_mod/sav
/systemd_root_service

Found on 2023-12-11 14:17

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040eed7a473c0b4cccd0df0b209d40dba81e

Found 20 files trough .DS_Store spidering:

/fmi_new
/new_map
/p4_new_mod
/p6_new_mod
/p6_new_mod/assets
/p6_new_mod/assets/img
/p6_new_mod/assets/js
/p6_new_mod/assets/layout
/p6_new_mod/files
/p6_new_mod/fonts
/p6_new_mod/images
/p6_new_mod/languages
/p6_new_mod/sav
/systemd_root_service
/systemd_root_service/common
/systemd_root_service/common/LOG
/systemd_root_service/common/LOG/DEBUG
/systemd_root_service/common/LOG/INFO
/systemd_root_service/LOG
/systemd_root_service/LOG/DEBUG

Found on 2023-11-17 16:35

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: j9d7u621f.fun
Port: 443
URL: https://j9d7u621f.fun

First seen 2024-07-01 09:29
Last seen 2024-07-20 21:40
Open for 19 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642d7b89818a637c102a637c102a637c102
```
Found 2 files trough .DS_Store spidering:

/fashi
/fashi/css
```
  Found on 2024-07-20 21:40
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.46.151
Domain: kammerjaeger-pulheim.de
Port: 443
URL: https://kammerjaeger-pulheim.de

First seen 2024-07-11 08:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318aa5a2378aa5a237ac7ba4ea

Apache Status

Apache Server Status for kammerjaeger-pulheim.de (via 63.250.41.106)

Server Version: Apache/2.4.57 (Unix)
Server MPM: event
Server Built: Aug 19 2023 04:20:51

Current Time: Thursday, 11-Jul-2024 08:14:39 UTC
Restart Time: Wednesday, 10-Jul-2024 23:26:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 hours 47 minutes 54 seconds
Server load: 0.00 0.01 0.00
Total accesses: 66114 - Total Traffic: 23.0 MB - Total Duration: 15505
CPU Usage: u24.29 s30.18 cu0 cs0 - .172% CPU load
2.09 requests/sec - 761 B/second - 364 B/request - .234519 ms/request
1 requests currently being processed, 99 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
039197no2yes025011
139198no5yes025050
239199no15yes0250132
339735no1yes124001
Sum4023 1990194

________________________________________________________________
_______________________________W____............................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0391970/411/411_
8.3153851790.00.130.13
172.70.243.231http/1.163.250.41.106:80GET /server-status HTTP/1.1

0-0391970/409/409_
8.315301010.00.140.14
162.158.111.157http/1.163.250.41.106:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0391970/407/407_
8.31536920.00.130.13
172.68.119.190http/1.163.250.41.106:80GET /server-status HTTP/1.1

0-0391970/419/419_
8.24530940.00.140.14
172.69.34.179http/1.163.250.41.106:80GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1

0-0391970/407/407_
8.33530950.00.140.14
172.71.174.157http/1.163.250.41.106:80HEAD / HTTP/1.1

0-0391970/406/406_
8.34901020.00.130.13
172.68.194.214http/1.163.250.41.106:80GET / HTTP/1.1

0-0391970/419/419_
8.33530900.00.140.14
172.68.27.157http/1.163.250.41.106:80GET /kammerjaeger-in/solingen-gosse/ HTTP/1.1

0-0391970/405/405_
8.34430840.00.120.12
172.71.182.108http/1.163.250.41.106:80GET /wp-includes/blocks/image/index.php HTTP/1.1

0-0391970/359/359_
8.323801070.00.130.13
172.70.122.42http/1.163.250.41.106:80GET /.env HTTP/1.1

0-0391970/393/393_
8.33380880.00.140.14
172.68.27.161http/1.163.250.41.106:80GET /kammerjaeger-in/brandenburg-oderland/ HTTP/1.1

0-0391970/420/420_
8.3540840.00.130.13
172.68.194.214http/1.163.250.41.106:80GET /s/3393e2034313e27363e2237313/_/;/META-INF/maven/com.atlass

0-0391970/399/399_
8.35641030.00.160.16
172.68.194.214http/1.163.250.41.106:80GET /server-status HTTP/1.1

0-0391970/420/420_
8.35501000.00.150.15
141.101.69.85http/1.163.250.41.106:80GET / HTTP/1.1

0-0391970/431/431_
8.3200930.00.140.14
172.70.123.85http/1.163.250.41.106:80GET /config.json HTTP/1.1

0-0391970/420/420_
8.30600940.00.130.13
172.71.183.65http/1.163.250.41.106:80GET /images/ HTTP/1.1

0-0391970/421/421_
8.3300880.00.130.13
172.70.243.114http/1.163.250.41.106:80GET /robots.txt HTTP/1.1

0-0391970/393/393_
8.33600810.00.130.13
172.70.175.19http/1.163.250.41.106:80GET /wp-content/uploads/2021/06/star.png HTTP/1.1

0-0391970/409/409_
8.33600860.00.130.13
172.71.99.67http/1.163.250.41.106:80GET /wp-includes/blocks/freeform/index.php HTTP/1.1

0-0391970/416/416_
8.32600900.00.130.13
172.70.223.99http/1.163.250.41.106:80GET /telescope/requests HTTP/1.1

0-0391970/400/400_
8.345901000.00.140.14
172.69.58.133http/1.163.250.41.106:80GET /wp-content/uploads/2022/06/phone-black.svg HTTP/1.1

0-0391970/409/409_
8.34580900.00.150.15
162.158.134.19http/1.163.250.41.106:80HEAD / HTTP/1.1

0-0391970/418/418_
8.34580920.00.130.13
172.69.150.2http/1.163.250.41.106:80GET /sitemap.xml HTTP/1.1

0-0391970/398/398_
8.335401030.00.140.14
162.158.175.107http/1.163.250.41.106:80GET /kammerjaeger-in/solingen-eckstumpf/ HTTP/1.1

0-0391970/392/392_
8.34540830.00.130.13
172.71.102.10http/1.163.250.41.106:80GET /wp-includes/blocks/gallery/index.php HTTP/1.1

0-0391970/417/417_
8.34580900.00.140.14
172.71.102.171http/1.163.250.41.106:80GET /wp-content/ HTTP/1.1

1-0391980/968/968_
19.58302240.00.350.35
172.71.102.152http/1.163.250.41.106:80GET /wp-includes/blocks/more/index.php HTTP/1.1

1-0391980/988/988_
19.58402100.00.330.33
172.71.250.21http/1.163.250.41.106:80GET /.git/config HTTP/1.1

1-0391980/993/993_
19.57202380.00.350.35
172.70.246.91http/1.163.250.41.106:80GET /robots.txt HTTP/1.1

1-0391980/1006/1006_
19.571002600.00.360.36
172.70.47.60http/1.163.250.41.106:80GET /wp-includes/blocks/cover/index.php HTTP/1.1

1-0391980/965/965_
19.58202320.00.350.35
162.158.129.90http/1.163.250.41.106:80GET /debug/default/view?panel=config HTTP/1.1

1-0391980/1038/1038_
19.56302400.00.380.38
172.70.174.72http/1.163.250.41.106:80GET /kammerjaeger-in/selm-beifang/ HTTP/1.1

1-0391980/983/983_
19.57202210.00.350.35
172.70.250.68http/1.163.250.41.106:80GET /sitemap.xml HTTP/1.1

1-0391980/975/975_
19.56302330.00.360.36
172.70.34.79http/1.163.250.41.106:80GET /kammerjaeger-in/dortmund-schueren/ HTTP/1.1

1-0391980/977/977_
19.56202250.00.340.34
172.71.194.50http/1.163.250.41.106:80GET /wp-content/themes/kammerjaegerbrd/img/six.svg HTTP/1.1

1-0391980/980/980_
19.57302110.00.340.34
162.158.189.100http/1.163.250.41.106:80GET /test/wp-admin/install.php HTTP/1.1

1-0391980/961/961_
19.561302170.00.340.34
172.71.94.192http/1.163.250.41.106:80GET /wp-includes/blocks/latest-comments/index.php HTTP/1.1

1-0391980/993/993_
19.57902410.00.380.38
172.71.183.197http/1.163.250.41.106:80GET /wp-includes/blocks/loginout/index.php HTTP/1.1

1-0391980/968/968_
19.57802250.00.340.34
172.69.150.144http/1.163.250.41.106:80GET /server HTTP/1.1

1-0391980/996/996_
19.561302160.00.340.34
172.70.39.8http/1.163.250.41.106:80GET /linkpartner/ HTTP/1.1

1-0391980/1005/1005_
19.571202390.00.370.37
172.71.102.121http/1.163.250.41.106:80GET /wp-includes/blocks/legacy-widget/index.php HTTP/1.1

1-0391980/991/991_
19.561202220.00.370.37
172.71.222.132http/1.163.250.41.106:80GET /kammerjaeger-in/halver-husen/ HTTP/1.1

1-0391980/982/982_
19.571102270.00.370.37
172.70.246.141http/1.163.250.41.106:80GET /impressum/ HTTP/1.1

1-0391980/966/966_
19.56202140.00.350.35
172.70.47.19http/1.163.250.41.106:80GET /wp-content/themes/ HTTP/1.1

1-0391980/983/983_
19.57802520.00.370.37
172.70.246.81http/1.163.250.41.106:80GET / HTTP/1.1

1-0391980/963/963_
19.571002240.00.350.35
172.70.46.36http/1.163.250.41.106:80GET /wp-includes/blocks/list/index.php HTTP/1.1

1-0391980/984/984_
19.55302280.00.350.35
162.158.87.82http/1.163.250.41.106:80GET /?rest_route=/wp/v2/users/ HTTP/1.1

1-0391980/980/980_
19.58302210.00.320.32
172.71.186.16http/1.163.250.41.106:80GET /.vscode/sftp.json HTTP/1.1

1-0391980/985/985_
19.5840

Found on 2024-07-11 08:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb318aa5a2378aa5a2374c386296

Apache Status

Apache Server Status for kammerjaeger-pulheim.de (via 63.250.41.106)

Server Version: Apache/2.4.57 (Unix)
Server MPM: event
Server Built: Aug 19 2023 04:20:51

Current Time: Thursday, 11-Jul-2024 08:14:33 UTC
Restart Time: Wednesday, 10-Jul-2024 23:26:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 hours 47 minutes 48 seconds
Server load: 0.00 0.01 0.00
Total accesses: 66085 - Total Traffic: 23.0 MB - Total Duration: 15494
CPU Usage: u24.26 s30.18 cu0 cs0 - .172% CPU load
2.09 requests/sec - 761 B/second - 364 B/request - .234456 ms/request
1 requests currently being processed, 99 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
039197no0yes124000
139198no2yes025020
239199no13yes0250121
339735no1yes025010
Sum4016 1990151

___________W____________________________________________________
____________________________________............................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0391970/411/411_
8.3147851790.00.130.13
172.70.243.231http/1.163.250.41.106:80GET /server-status HTTP/1.1

0-0391970/409/409_
8.314701010.00.140.14
162.158.111.157http/1.163.250.41.106:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-0391970/407/407_
8.31466920.00.130.13
172.68.119.190http/1.163.250.41.106:80GET /server-status HTTP/1.1

0-0391970/419/419_
8.24470940.00.140.14
172.69.34.179http/1.163.250.41.106:80GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1

0-0391970/407/407_
8.33470950.00.140.14
172.71.174.157http/1.163.250.41.106:80HEAD / HTTP/1.1

0-0391970/406/406_
8.34201020.00.130.13
172.68.194.214http/1.163.250.41.106:80GET / HTTP/1.1

0-0391970/419/419_
8.33460900.00.140.14
172.68.27.157http/1.163.250.41.106:80GET /kammerjaeger-in/solingen-gosse/ HTTP/1.1

0-0391970/405/405_
8.34360840.00.120.12
172.71.182.108http/1.163.250.41.106:80GET /wp-includes/blocks/image/index.php HTTP/1.1

0-0391970/359/359_
8.323101070.00.130.13
172.70.122.42http/1.163.250.41.106:80GET /.env HTTP/1.1

0-0391970/393/393_
8.33310880.00.140.14
172.68.27.161http/1.163.250.41.106:80GET /kammerjaeger-in/brandenburg-oderland/ HTTP/1.1

0-0391970/419/419_
8.33550830.00.130.13
172.71.174.235http/1.163.250.41.106:80GET /kammerjaeger-in/ HTTP/1.1

0-0391972/398/398W
8.3300980.00.150.15
172.68.194.214http/1.163.250.41.106:80GET /server-status HTTP/1.1

0-0391970/419/419_
8.335601000.00.150.15
172.70.46.93http/1.163.250.41.106:80GET /wp-includes/blocks/audio/index.php HTTP/1.1

0-0391970/431/431_
8.32550930.00.140.14
172.70.123.85http/1.163.250.41.106:80GET /config.json HTTP/1.1

0-0391970/420/420_
8.30540940.00.130.13
172.71.183.65http/1.163.250.41.106:80GET /images/ HTTP/1.1

0-0391970/421/421_
8.33550880.00.130.13
172.70.243.114http/1.163.250.41.106:80GET /robots.txt HTTP/1.1

0-0391970/393/393_
8.33540810.00.130.13
172.70.175.19http/1.163.250.41.106:80GET /wp-content/uploads/2021/06/star.png HTTP/1.1

0-0391970/409/409_
8.33540860.00.130.13
172.71.99.67http/1.163.250.41.106:80GET /wp-includes/blocks/freeform/index.php HTTP/1.1

0-0391970/416/416_
8.32540900.00.130.13
172.70.223.99http/1.163.250.41.106:80GET /telescope/requests HTTP/1.1

0-0391970/400/400_
8.345301000.00.140.14
172.69.58.133http/1.163.250.41.106:80GET /wp-content/uploads/2022/06/phone-black.svg HTTP/1.1

0-0391970/409/409_
8.34520900.00.150.15
162.158.134.19http/1.163.250.41.106:80HEAD / HTTP/1.1

0-0391970/418/418_
8.34520920.00.130.13
172.69.150.2http/1.163.250.41.106:80GET /sitemap.xml HTTP/1.1

0-0391970/398/398_
8.334801030.00.140.14
162.158.175.107http/1.163.250.41.106:80GET /kammerjaeger-in/solingen-eckstumpf/ HTTP/1.1

0-0391970/392/392_
8.34480830.00.130.13
172.71.102.10http/1.163.250.41.106:80GET /wp-includes/blocks/gallery/index.php HTTP/1.1

0-0391970/417/417_
8.34510900.00.140.14
172.71.102.171http/1.163.250.41.106:80GET /wp-content/ HTTP/1.1

1-0391980/967/967_
19.571002240.00.350.35
172.71.146.57http/1.163.250.41.106:80GET /kammerjaeger-in/meinerzhagenfumberg/ HTTP/1.1

1-0391980/987/987_
19.561102100.00.330.33
172.70.147.111http/1.163.250.41.106:80GET /wordpress/wp-admin/install.php HTTP/1.1

1-0391980/993/993_
19.57702380.00.350.35
172.70.246.91http/1.163.250.41.106:80GET /robots.txt HTTP/1.1

1-0391980/1006/1006_
19.57302600.00.360.36
172.70.47.60http/1.163.250.41.106:80GET /wp-includes/blocks/cover/index.php HTTP/1.1

1-0391980/964/964_
19.57702310.00.350.35
172.70.47.30http/1.163.250.41.106:80GET /wp-includes/blocks/column/index.php HTTP/1.1

1-0391980/1038/1038_
19.561002400.00.380.38
172.70.174.72http/1.163.250.41.106:80GET /kammerjaeger-in/selm-beifang/ HTTP/1.1

1-0391980/983/983_
19.57802210.00.350.35
172.70.250.68http/1.163.250.41.106:80GET /sitemap.xml HTTP/1.1

1-0391980/975/975_
19.561002330.00.360.36
172.70.34.79http/1.163.250.41.106:80GET /kammerjaeger-in/dortmund-schueren/ HTTP/1.1

1-0391980/977/977_
19.56702250.00.340.34
172.71.194.50http/1.163.250.41.106:80GET /wp-content/themes/kammerjaegerbrd/img/six.svg HTTP/1.1

1-0391980/980/980_
19.57902110.00.340.34
162.158.189.100http/1.163.250.41.106:80GET /test/wp-admin/install.php HTTP/1.1

1-0391980/961/961_
19.56702170.00.340.34
172.71.94.192http/1.163.250.41.106:80GET /wp-includes/blocks/latest-comments/index.php HTTP/1.1

1-0391980/993/993_
19.57302410.00.380.38
172.71.183.197http/1.163.250.41.106:80GET /wp-includes/blocks/loginout/index.php HTTP/1.1

1-0391980/968/968_
19.57202250.00.340.34
172.69.150.144http/1.163.250.41.106:80GET /server HTTP/1.1

1-0391980/996/996_
19.56702160.00.340.34
172.70.39.8http/1.163.250.41.106:80GET /linkpartner/ HTTP/1.1

1-0391980/1005/1005_
19.57502390.00.370.37
172.71.102.121http/1.163.250.41.106:80GET /wp-includes/blocks/legacy-widget/index.php HTTP/1.1

1-0391980/991/991_
19.56502220.00.370.37
172.71.222.132http/1.163.250.41.106:80GET /kammerjaeger-in/halver-husen/ HTTP/1.1

1-0391980/982/982_
19.57402270.00.370.37
172.70.246.141http/1.163.250.41.106:80GET /impressum/ HTTP/1.1

1-0391980/966/966_
19.56702140.00.350.35
172.70.47.19http/1.163.250.41.106:80GET /wp-content/themes/ HTTP/1.1

1-0391980/983/983_
19.57202520.00.370.37
172.70.246.81http/1.163.250.41.106:80GET / HTTP/1.1

1-0391980/963/963_
19.57402240.00.350.35
172.70.46.36http/1.163.250.41.106:80GET /wp-includes/blocks/list/index.php HTTP/1.1

1-0391980/984/984_
19.551002280.00.350.35
162.158.87.82http/1.163.250.41.106:80GET /?rest_route=/wp/v2/users/ HTTP/1.1

1-0391980/979/979_
19.511002210.00.320.32
172.71.102.232http/1.163.250.41.106:80GET /wp-includes/block-supports/index.php HTTP/1.1

1-0391980/984/984<

Found on 2024-07-11 08:14

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: goboko.mobi
Port: 443
URL: https://goboko.mobi

First seen 2023-03-19 22:05
Last seen 2024-01-09 12:10
Open for 295 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d7bc16182ddf1495aeef7ef95857eb3cb
```
Found 12 files trough .DS_Store spidering:

/composer.json
/composer.lock
/index.php
/vendor
/vendor/autoload.php
/vendor/composer
/vendor/guzzlehttp
/vendor/paragonie
/vendor/phpseclib
/vendor/psr
/vendor/ralouphie
/vendor/symfony
```
  Found on 2024-01-09 12:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: bragenarilalhol.tk
Port: 80
URL: http://bragenarilalhol.tk

First seen 2023-01-10 10:30
Last seen 2023-12-24 08:04
Open for 347 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 08:04
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: blacypamtradep.gq
Port: 443
URL: https://blacypamtradep.gq

First seen 2022-10-04 11:27
Last seen 2023-12-24 04:58
Open for 445 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 04:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: nemamame.cf
Port: 80
URL: http://nemamame.cf

First seen 2022-10-04 21:44
Last seen 2023-12-24 03:18
Open for 445 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 03:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: charivadisnino.tk
Port: 80
URL: http://charivadisnino.tk

First seen 2023-05-30 02:59
Last seen 2023-09-06 15:20
Open for 99 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-30 02:59
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: harpmasygascardripp.tk
Port: 80
URL: http://harpmasygascardripp.tk

First seen 2022-10-14 02:45
Last seen 2023-09-05 10:33
Open for 326 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 02:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: dwarimafhafecmerk.tk
Port: 80
URL: http://dwarimafhafecmerk.tk

First seen 2023-01-06 01:08
Last seen 2023-08-30 12:14
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-06 01:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: ircabubbpartpo.tk
Port: 80
URL: http://ircabubbpartpo.tk

First seen 2022-11-08 03:42
Last seen 2023-08-27 19:43
Open for 292 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-08 03:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: ircabubbpartpo.tk
Port: 443
URL: https://ircabubbpartpo.tk

First seen 2022-11-08 03:42
Last seen 2023-08-27 19:43
Open for 292 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-08 03:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: tinavptimunlingnach.tk
Port: 443
URL: https://tinavptimunlingnach.tk

First seen 2022-10-14 01:48
Last seen 2023-08-27 14:06
Open for 317 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 01:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: tinavptimunlingnach.tk
Port: 80
URL: http://tinavptimunlingnach.tk

First seen 2022-10-14 01:48
Last seen 2023-08-27 14:06
Open for 317 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 01:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: neshoolekopatli.tk
Port: 443
URL: https://neshoolekopatli.tk

First seen 2023-06-26 02:06
Last seen 2023-08-24 02:33
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-26 02:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: ulecfoval.cf
Port: 80
URL: http://ulecfoval.cf

First seen 2023-05-30 04:31
Last seen 2023-08-22 17:22
Open for 84 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-30 04:31
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: inylcexuhal.tk
Port: 80
URL: http://inylcexuhal.tk

First seen 2022-10-22 06:38
Last seen 2023-08-17 14:04
Open for 299 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-22 06:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: wmitceterhoukorca.tk
Port: 80
URL: http://wmitceterhoukorca.tk

First seen 2022-09-14 02:01
Last seen 2023-08-15 14:47
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-14 02:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: spacalposacott.gq
Port: 443
URL: https://spacalposacott.gq

First seen 2022-09-14 15:28
Last seen 2023-08-15 05:53
Open for 334 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-14 15:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: weimegertaisu.tk
Port: 80
URL: http://weimegertaisu.tk

First seen 2022-09-14 13:14
Last seen 2023-08-15 03:48
Open for 334 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-14 13:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: berlover.tk
Port: 443
URL: https://berlover.tk

First seen 2023-02-09 02:28
Last seen 2023-08-13 03:56
Open for 185 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-09 02:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: sticmistnumgosistorr.tk
Port: 80
URL: http://sticmistnumgosistorr.tk

First seen 2022-12-12 01:58
Last seen 2023-08-05 15:57
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-12 01:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: sticmistnumgosistorr.tk
Port: 443
URL: https://sticmistnumgosistorr.tk

First seen 2022-12-12 01:58
Last seen 2023-08-05 15:57
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-12 01:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: mirawingase.tk
Port: 443
URL: https://mirawingase.tk

First seen 2022-09-04 02:18
Last seen 2023-08-05 08:08
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-04 02:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: mirawingase.tk
Port: 80
URL: http://mirawingase.tk

First seen 2022-09-04 02:18
Last seen 2023-08-05 08:08
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-04 02:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: flapinqooni.tk
Port: 80
URL: http://flapinqooni.tk

First seen 2023-02-08 02:47
Last seen 2023-08-04 14:14
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-08 02:47
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: flapinqooni.tk
Port: 443
URL: https://flapinqooni.tk

First seen 2023-02-08 02:47
Last seen 2023-08-04 14:14
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-08 02:47
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: alagaluv.tk
Port: 443
URL: https://alagaluv.tk

First seen 2023-02-06 04:18
Last seen 2023-08-02 14:25
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-06 04:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: alagaluv.tk
Port: 80
URL: http://alagaluv.tk

First seen 2023-02-06 04:18
Last seen 2023-08-02 14:25
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-06 04:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: xinfawatingpyfic.tk
Port: 80
URL: http://xinfawatingpyfic.tk

First seen 2022-08-31 01:49
Last seen 2023-08-01 05:50
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-31 01:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: coconslo.tk
Port: 443
URL: https://coconslo.tk

First seen 2022-10-01 06:21
Last seen 2023-07-24 07:20
Open for 296 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-01 06:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: coconslo.tk
Port: 80
URL: http://coconslo.tk

First seen 2022-10-01 06:20
Last seen 2023-07-24 07:20
Open for 296 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-01 06:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: quiplicin.cf
Port: 443
URL: https://quiplicin.cf

First seen 2022-09-18 13:48
Last seen 2023-07-22 11:53
Open for 306 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-18 13:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: mastmarfoo.gq
Port: 80
URL: http://mastmarfoo.gq

First seen 2023-05-24 06:27
Last seen 2023-07-22 11:46
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-24 06:27
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: mastmarfoo.gq
Port: 443
URL: https://mastmarfoo.gq

First seen 2023-05-24 06:27
Last seen 2023-07-22 11:46
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-24 06:27
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: onsicace.ml
Port: 80
URL: http://onsicace.ml

First seen 2022-09-26 20:20
Last seen 2023-07-10 11:54
Open for 286 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 20:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: lusire.me
Port: 443
URL: https://lusire.me

First seen 2022-08-02 22:00
Last seen 2023-06-12 00:44
Open for 313 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522965fa712
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://cdn-tv.hnmting.com/group-twp/ludashiweb-auto.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-08-02 22:00
  
  281 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: heldimandadis.ml
Port: 443
URL: https://heldimandadis.ml

First seen 2023-06-11 07:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-11 07:05
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: denthipconttrasjuncto.tk
Port: 443
URL: https://denthipconttrasjuncto.tk

First seen 2022-10-14 02:03
Last seen 2023-06-07 08:07
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 02:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: montconleopaschplow.ml
Port: 80
URL: http://montconleopaschplow.ml

First seen 2022-11-06 02:03
Last seen 2023-06-05 02:54
Open for 211 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-06 02:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: tervitabtuamonsspel.ml
Port: 80
URL: http://tervitabtuamonsspel.ml

First seen 2023-05-31 05:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-31 05:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: thehypeinvestors.com
Port: 443
URL: https://thehypeinvestors.com

First seen 2022-12-26 07:54
Last seen 2023-04-23 11:34
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc58bbbf254b2c6c1e00ba3bc9b390cb6d
```
Found 4 files trough .DS_Store spidering:

/images
/images/phones
/images/screenshots
/video
```
  Found on 2023-04-23 11:34
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dfdb30689fdb30689fdb30689fdb30689
```
Found 1 files trough .DS_Store spidering:

/video
```
  Found on 2022-12-26 07:54
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: netiwooki.com
Port: 443
URL: https://netiwooki.com

First seen 2021-08-15 23:13
Last seen 2023-04-17 04:01
Open for 609 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9ea73c8e469d4b0a143139de2d427e600
```
Found 5 files trough .DS_Store spidering:

/contest
/contest/css
/contest/image
/contest/img
/contest/js
```
  Found on 2021-08-15 23:13
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: clarencaterla.ga
Port: 80
URL: http://clarencaterla.ga

First seen 2022-09-12 15:03
Last seen 2023-03-08 19:22
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-12 15:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: clarencaterla.ga
Port: 443
URL: https://clarencaterla.ga

First seen 2022-09-12 15:03
Last seen 2023-03-08 19:22
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-12 15:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: tutalo.cf
Port: 80
URL: http://tutalo.cf

First seen 2022-09-26 03:39
Last seen 2023-02-12 22:58
Open for 139 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 03:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: tutalo.cf
Port: 443
URL: https://tutalo.cf

First seen 2022-09-26 03:39
Last seen 2023-02-12 22:58
Open for 139 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 03:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: pleasacicden.ga
Port: 443
URL: https://pleasacicden.ga

First seen 2022-09-16 11:43
Last seen 2023-01-26 00:28
Open for 131 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 11:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: pleasacicden.ga
Port: 80
URL: http://pleasacicden.ga

First seen 2022-09-16 11:43
Last seen 2023-01-26 00:28
Open for 131 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 11:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: schadymexachlahi.ga
Port: 80
URL: http://schadymexachlahi.ga

First seen 2022-11-12 14:50
Last seen 2023-01-11 21:21
Open for 60 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2022-11-12 14:50
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: schadymexachlahi.ga
Port: 443
URL: https://schadymexachlahi.ga

First seen 2022-11-12 14:50
Last seen 2023-01-11 21:21
Open for 60 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2022-11-12 14:50
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: gleaned.us
Port: 443
URL: https://gleaned.us

First seen 2022-09-11 07:50
Last seen 2022-09-11 07:50
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d8d5a3f6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = ssh://jdruin@git.code.sf.net/p/mutillidae/git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-09-11 07:50
  
  270 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.46.151
Domain: gleaned.us
Port: 80
URL: http://gleaned.us

First seen 2022-09-11 07:50
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522d8d5a3f6
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = ssh://jdruin@git.code.sf.net/p/mutillidae/git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-09-11 07:50
  
  270 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: fastleaklekencoaqui.tk
Port: 443
URL: https://fastleaklekencoaqui.tk

First seen 2022-08-30 22:09
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-30 22:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.46.151
Domain: mail.netiwooki.com
Port: 443
URL: https://mail.netiwooki.com

First seen 2021-08-14 06:29
Last seen 2022-02-09 08:29
Open for 179 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9ea73c8e469d4b0a143139de2d427e600
```
Found 5 files trough .DS_Store spidering:

/contest
/contest/css
/contest/image
/contest/img
/contest/js
```
  Found on 2021-08-14 06:29
Create report

Open service 104.21.46.151:443 · obfuscate.manthra.cc

2026-01-26 15:54

HTTP/1.1 404 Not Found
Date: Mon, 26 Jan 2026 15:55:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
access-control-allow-origin: *
content-security-policy: default-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
x-powered-by: Express
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=4,cfOrigin;dur=51
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=KOqrZUV%2Bq0E54YyrO19%2Bx63vLkOHXoKHioLpAI5spG8rrq%2Blah%2FvWepK%2F4Td8fNvi1%2BUrzSmKwdBi1gRmoXI7EZB2BQ7%2FyeRwYybA9KFkkbqdPr%2B"}]}
Server: cloudflare
CF-RAY: 9c4131670cd8fcd9-YYZ

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"version":"2024.11.0","token":"b4c03b1149fc4646a98d30cab4617b78","r":1,"server_timing":{"name":{"cfCacheStatus":true,"cfEdge":true,"cfExtPri":true,"cfL4":true,"cfOrigin":true,"cfSpeedBrain":true},"location_startswith":null}}' crossorigin="anonymous"></script>
</body>
</html>

Found 2026-01-26 by HttpPlugin