LeakIX - Host 104.21.71.213

Host 104.21.71.213

United States

CLOUDFLARENET

Software information

CloudPanel 2.5.2

tcp/8443

cloudflare

tcp/443 tcp/80 tcp/8443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: dinsosbengkulu.org
Port: 80
URL: http://dinsosbengkulu.org

First seen 2025-04-10 10:55
Last seen 2026-02-09 00:11
Open for 304 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-02-09 00:11
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.71.213
Domain: nordicdrama.com
Port: 80
URL: http://nordicdrama.com

First seen 2025-04-03 19:51
Last seen 2026-02-08 21:47
Open for 311 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704eed366cf

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Sunday, 08-Feb-2026 21:47:56 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 47
Parent Server MPM Generation: 46
Server uptime:  19 days 15 hours 18 minutes 51 seconds
Server load: 1.10 1.14 1.18
Total accesses: 2430530 - Total Traffic: 2.1 GB - Total Duration: 957781
CPU Usage: u114.71 s197.69 cu1691.67 cs2886.79 - .288% CPU load
1.43 requests/sec - 1337 B/second - 934 B/request - .394063 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01298529no0yes124000
11298530no0yes025000
Sum200 149000

__W_______________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4612985290/1517/41366_
46.44620164030.01.2436.95
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

0-4612985290/1542/41409_
46.43420164220.01.2636.95
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

0-4612985291/1498/41443W
46.4500172250.01.2337.04
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-4612985290/1471/41419_
46.44620164110.01.2036.93
127.0.0.1http/1.1default:7080GET /app/webroot/filemanager.php HTTP/1.0

0-4612985290/1446/41490_
46.35470164520.01.1937.08
127.0.0.1http/1.1default:7080GET /Sanskrit.php HTTP/1.0

0-4612985290/1467/41563_
46.45620164410.01.2137.10
127.0.0.1http/1.1default:7080GET /sx.php HTTP/1.0

0-4612985290/1501/41335_
46.46420183100.01.2336.89
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-4612985290/1501/41629_
46.46470162360.01.2337.14
127.0.0.1http/1.1default:7080GET /166.php HTTP/1.0

0-4612985290/1455/41542_
46.40460164750.01.2037.10
127.0.0.1http/1.1default:7080GET /x.php HTTP/1.0

0-4612985290/1487/41392_
46.40460169970.01.2236.99
127.0.0.1http/1.1default:7080GET /jane.php HTTP/1.0

0-4612985290/1525/41595_
46.45630164460.01.2537.14
127.0.0.1http/1.1default:7080GET /past1.php HTTP/1.0

0-4612985290/1483/41399_
46.4620164720.01.2136.97
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-4612985290/1457/41357_
46.44620165610.01.2036.93
127.0.0.1http/1.1default:7080GET /filemanager.php HTTP/1.0

0-4612985290/1495/41388_
46.46460165380.01.2336.95
127.0.0.1http/1.1default:7080GET /8xyz.php HTTP/1.0

0-4612985290/1492/41452_
46.44630163910.01.2237.01
127.0.0.1http/1.1default:7080GET /log.php HTTP/1.0

0-4612985290/1481/41438_
46.45620163020.01.2237.15
127.0.0.1http/1.1default:7080GET /vx.php HTTP/1.0

0-4612985290/1520/41434_
46.46460163030.01.2537.02
127.0.0.1http/1.1default:7080GET /past1.php HTTP/1.0

0-4612985290/1451/41492_
46.43460167000.01.1937.01
127.0.0.1http/1.1default:7080GET /c.php HTTP/1.0

0-4612985290/1471/41417_
46.45620163280.01.2036.97
127.0.0.1http/1.1default:7080GET /bk.php HTTP/1.0

0-4612985290/1454/41614_
46.46470164450.01.1937.14
127.0.0.1http/1.1default:7080GET /reze.php HTTP/1.0

0-4612985290/1477/41558_
46.4320168570.01.2237.08
127.0.0.1http/1.1default:7080GET /makeasmtp.php HTTP/1.0

0-4612985290/1511/41504_
46.46470166440.01.2437.06
127.0.0.1http/1.1default:7080GET /lib.php HTTP/1.0

0-4612985290/1515/41485_
46.35470171710.01.2436.99
127.0.0.1http/1.1default:7080GET /jmfi2.php HTTP/1.0

0-4612985290/1475/41470_
46.43630162020.01.2037.10
127.0.0.1http/1.1default:7080GET /item.php HTTP/1.0

0-4612985290/1449/41345_
46.46460170530.01.1936.91
127.0.0.1http/1.1default:7080GET /ol.php HTTP/1.0

1-4612985300/2395/55621_
70.21630222220.01.9649.45
127.0.0.1http/1.1default:7080GET /tinyfilemanager.php HTTP/1.0

1-4612985300/2367/55950_
70.18480214210.01.9349.75
127.0.0.1http/1.1default:7080GET /admin/function.php HTTP/1.0

1-4612985300/2396/55705_
70.19470215990.01.9749.52
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

1-4612985300/2384/55794_
70.23480216500.01.9549.57
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-4612985300/2371/55613_
70.25460224780.01.9449.44
127.0.0.1http/1.1default:7080GET /bk.php HTTP/1.0

1-4612985300/2418/56008_
70.2510216160.01.9949.81
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-4612985300/2375/55678_
70.23460215490.01.9549.52
127.0.0.1http/1.1default:7080GET /wp-trackback.php HTTP/1.0

1-4612985300/2370/55689_
70.18460214870.01.9549.53
127.0.0.1http/1.1default:7080GET /bless.php HTTP/1.0

1-4612985300/2360/55496_
70.23470213100.01.9449.37
127.0.0.1http/1.1default:7080GET /x.php HTTP/1.0

1-4612985300/2395/56113_
70.19471215530.01.9749.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4612985300/2328/55476_
70.23620213630.01.9249.35
127.0.0.1http/1.1default:7080GET /ol.php HTTP/1.0

1-4612985300/2361/55880_
70.22620218700.01.9349.72
127.0.0.1http/1.1default:7080GET /autoload_classmap.php HTTP/1.0

1-4612985300/2429/55818_
70.23450215930.02.0149.65
127.0.0.1http/1.1default:7080GET /about.php7 HTTP/1.0

1-4612985300/2394/55948_
70.19480216220.01.9649.75
127.0.0.1http/1.1default:7080GET /jsond.php HTTP/1.0

1-4612985300/2369/55721_
70.25420213540.01.9449.52
127.0.0.1http/1.1default:7080GET /p/stabilo-boss-mini-highlighter-single-blue?s=part_number&

1-4612985300/2358/55761_
70.24460215540.01.9349.61
127.0.0.1http/1.1default:7080GET /jga.php HTTP/1.0

1-4612985300/2348/55808_
70.25450218870.01.9249.60
127.0.0.1http/1.1default:7080GET /sx.php HTTP/1.0

1-4612985300/2366/55765_
70.23470214160.01.9449.56
127.0.0.1http/1.1default:7080GET /k.php HTTP/1.0

1-4612985300/2348/55588_
70.25450224630.01.9349.37
127.0.0.1http/1.1default:7080GET /vx.php HTTP/1.0

1-4612985300/2388/55824_
70.23450214890.01.9649.62
127.0.0.1http/1.1default:7080GET /cloud.php HTTP/1.0

1-4612985300/2375/56086_
70.23630213660.01.9449.88
127.0.0.1http/1.1default:7080GET /jga.php HTTP/1.0

1-4612985300/2394/55638_
70.23480227060.01.9649.48
127.0.0.1http/1.1default:7080GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.0

1-4612985300/2370/55582_
70.1910214340.01.9549.42
127.0.0.1http/1.1default:7080GET /file.php HTTP/1.0

1-4612985300/2413/55818_
70.23630215440.01.9749.59
127.0.0.1http/1.1default:7080GET /8xyz.php HTTP/1.0

1-4612985300/2430/55614_
70.21421214280.02.0049.41
127.0.0.1http/1.1default:7080GET /mar.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child /

Found on 2026-02-08 21:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770492573d2e

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Friday, 06-Feb-2026 07:34:08 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 42
Parent Server MPM Generation: 41
Server uptime:  17 days 1 hour 5 minutes 2 seconds
Server load: 1.79 1.75 1.80
Total accesses: 2079008 - Total Traffic: 1.8 GB - Total Duration: 855474
CPU Usage: u72.44 s136.5 cu1543.04 cs2689.02 - .302% CPU load
1.41 requests/sec - 1331 B/second - 943 B/request - .411482 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0827538no0yes025000
1827539no0yes124000
Sum200 149000

_____________________________________W____________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-418275380/444/35916_
12.9500148290.00.3632.38
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-418275380/423/35954_
12.9510148740.00.3532.39
127.0.0.1http/1.1default:7080GET /file5.php HTTP/1.0

0-418275380/402/35937_
12.9210150760.00.3332.43
127.0.0.1http/1.1default:7080GET /wp-admin/maint/about.php HTTP/1.0

0-418275380/418/35990_
12.9210148530.00.3432.38
127.0.0.1http/1.1default:7080GET /wsd.php HTTP/1.0

0-418275380/415/36078_
12.9210149120.00.3532.53
127.0.0.1http/1.1default:7080GET /rzki.php HTTP/1.0

0-418275380/430/36131_
12.9510149000.00.3632.54
127.0.0.1http/1.1default:7080GET /async.php HTTP/1.0

0-418275380/405/35826_
12.9300167530.00.3432.27
127.0.0.1http/1.1default:7080GET /ziwopudm.php HTTP/1.0

0-418275380/437/36096_
12.9510146500.00.3632.50
127.0.0.1http/1.1default:7080GET /alfashell.php HTTP/1.0

0-418275380/432/36133_
12.9510149040.00.3632.56
127.0.0.1http/1.1default:7080GET /mah/xBrain.php HTTP/1.0

0-418275380/429/35882_
12.9511154270.00.3632.36
127.0.0.1http/1.1default:7080GET /wp-includes/assets/index.php HTTP/1.0

0-418275380/407/36131_
12.9310148580.00.3432.58
127.0.0.1http/1.1default:7080GET /environment.php HTTP/1.0

0-418275380/415/35905_
12.9310148850.00.3432.36
127.0.0.1http/1.1default:7080GET /a2.php HTTP/1.0

0-418275380/436/35986_
12.9700149700.00.3632.43
127.0.0.1http/1.1default:7080GET /oo.php HTTP/1.0

0-418275380/422/35955_
12.9310149830.00.3532.40
127.0.0.1http/1.1default:7080GET /503.php HTTP/1.0

0-418275380/405/35970_
12.9300148450.00.3432.43
127.0.0.1http/1.1default:7080GET /indeex.php HTTP/1.0

0-418275380/438/35985_
12.9700147270.00.3632.58
127.0.0.1http/1.1default:7080GET /ioxi-o.php HTTP/1.0

0-418275380/407/35916_
12.9300146840.00.3432.38
127.0.0.1http/1.1default:7080GET /alfa-rex.php HTTP/1.0

0-418275380/427/36105_
12.9700151720.00.3532.49
127.0.0.1http/1.1default:7080GET /okxh.php HTTP/1.0

0-418275380/418/36029_
12.9400147920.00.3532.46
127.0.0.1http/1.1default:7080GET /ioxi2.php HTTP/1.0

0-418275380/430/36141_
12.9700148760.00.3632.56
127.0.0.1http/1.1default:7080GET /log.php HTTP/1.0

0-418275380/429/36128_
12.9500148250.00.3632.52
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-418275380/405/36033_
12.9210150630.00.3332.47
127.0.0.1http/1.1default:7080GET /x7.php HTTP/1.0

0-418275380/425/36006_
12.9700156070.00.3532.41
127.0.0.1http/1.1default:7080GET /png.php HTTP/1.0

0-418275380/416/35941_
12.9400146200.00.3532.46
127.0.0.1http/1.1default:7080GET /class19.php HTTP/1.0

0-418275380/424/35948_
12.9510155320.00.3532.38
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-418275390/710/47024_
20.5210191470.00.5942.26
127.0.0.1http/1.1default:7080GET /33.php HTTP/1.0

1-418275390/741/47430_
20.5210190320.00.6142.62
127.0.0.1http/1.1default:7080GET /acxx.php HTTP/1.0

1-418275390/725/47081_
20.5510191690.00.6042.30
127.0.0.1http/1.1default:7080GET /wbbw.php HTTP/1.0

1-418275390/716/47231_
20.5611192020.00.5942.43
127.0.0.1http/1.1default:7080GET /item.php HTTP/1.0

1-418275390/751/47011_
20.5610196510.00.6242.26
127.0.0.1http/1.1default:7080GET /wp-content/plugins/profile-builder/assets/css/style-front-

1-418275390/731/47370_
20.5010191810.00.6042.57
127.0.0.1http/1.1default:7080GET /wp-admin/images/admin.php HTTP/1.0

1-418275390/717/47065_
20.5710191290.00.5942.29
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-418275390/724/47133_
20.5710191000.00.6042.39
127.0.0.1http/1.1default:7080GET /akcc.php HTTP/1.0

1-418275390/717/46924_
20.5410189230.00.6042.22
127.0.0.1http/1.1default:7080GET /custom-background.php HTTP/1.0

1-418275390/713/47490_
20.5700190990.00.5942.71
127.0.0.1http/1.1default:7080GET /file17.php HTTP/1.0

1-418275390/752/46908_
20.5400189400.00.6242.17
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-418275390/712/47238_
20.5700194550.00.5942.47
127.0.0.1http/1.1default:7080GET /ff.php HTTP/1.0

1-418275391/695/47208W
20.5500190750.00.5742.43
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-418275390/728/47332_
20.5700192210.00.6042.56
127.0.0.1http/1.1default:7080GET /wp-content/lock360.php HTTP/1.0

1-418275390/738/47185_
20.5200189420.00.6142.39
127.0.0.1http/1.1default:7080GET /assets/as.php HTTP/1.0

1-418275390/715/47154_
20.5700191390.00.5942.40
127.0.0.1http/1.1default:7080GET /aboutc.php HTTP/1.0

1-418275390/726/47111_
20.5320193940.00.6042.34
127.0.0.1http/1.1default:7080GET /zfile.php HTTP/1.0

1-418275390/751/47201_
20.5510189910.00.6242.40
127.0.0.1http/1.1default:7080GET /class.1.php HTTP/1.0

1-418275390/714/47007_
20.5200198010.00.5942.20
127.0.0.1http/1.1default:7080GET /panel.php HTTP/1.0

1-418275390/724/47265_
20.5511190560.00.6042.44
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-418275390/697/47352_
20.4910188860.00.5742.59
127.0.0.1http/1.1default:7080GET /timocra.php HTTP/1.0

1-418275390/738/47017_
20.4910202670.00.6242.25
127.0.0.1http/1.1default:7080GET /content.php HTTP/1.0

1-418275390/757/46982_
20.5510190090.00.6342.23
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-418275390/710/47142_
20.5110190490.00.5942.34
127.0.0.1http/1.1default:7080GET /gifclass.php HTTP/1.0

1-418275390/754/47025_
20.4910189740.00.6342.20
127.0.0.1http/1.1default:7080GET /yas.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds

Found on 2026-02-06 07:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770498fa0d84

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Friday, 06-Feb-2026 07:34:08 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 42
Parent Server MPM Generation: 41
Server uptime:  17 days 1 hour 5 minutes 2 seconds
Server load: 1.79 1.75 1.80
Total accesses: 2079009 - Total Traffic: 1.8 GB - Total Duration: 855478
CPU Usage: u72.44 s136.5 cu1543.04 cs2689.02 - .302% CPU load
1.41 requests/sec - 1331 B/second - 943 B/request - .411484 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0827538no0yes124000
1827539no0yes025000
Sum200 149000

_____________________W____________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-418275380/444/35916_
12.9500148290.00.3632.38
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-418275380/423/35954_
12.9510148740.00.3532.39
127.0.0.1http/1.1default:7080GET /file5.php HTTP/1.0

0-418275380/402/35937_
12.9210150760.00.3332.43
127.0.0.1http/1.1default:7080GET /wp-admin/maint/about.php HTTP/1.0

0-418275380/418/35990_
12.9210148530.00.3432.38
127.0.0.1http/1.1default:7080GET /wsd.php HTTP/1.0

0-418275380/415/36078_
12.9210149120.00.3532.53
127.0.0.1http/1.1default:7080GET /rzki.php HTTP/1.0

0-418275380/430/36131_
12.9510149000.00.3632.54
127.0.0.1http/1.1default:7080GET /async.php HTTP/1.0

0-418275380/405/35826_
12.9300167530.00.3432.27
127.0.0.1http/1.1default:7080GET /ziwopudm.php HTTP/1.0

0-418275380/437/36096_
12.9510146500.00.3632.50
127.0.0.1http/1.1default:7080GET /alfashell.php HTTP/1.0

0-418275380/432/36133_
12.9510149040.00.3632.56
127.0.0.1http/1.1default:7080GET /mah/xBrain.php HTTP/1.0

0-418275380/429/35882_
12.9511154270.00.3632.36
127.0.0.1http/1.1default:7080GET /wp-includes/assets/index.php HTTP/1.0

0-418275380/407/36131_
12.9310148580.00.3432.58
127.0.0.1http/1.1default:7080GET /environment.php HTTP/1.0

0-418275380/415/35905_
12.9310148850.00.3432.36
127.0.0.1http/1.1default:7080GET /a2.php HTTP/1.0

0-418275380/436/35986_
12.9700149700.00.3632.43
127.0.0.1http/1.1default:7080GET /oo.php HTTP/1.0

0-418275380/422/35955_
12.9310149830.00.3532.40
127.0.0.1http/1.1default:7080GET /503.php HTTP/1.0

0-418275380/405/35970_
12.9300148450.00.3432.43
127.0.0.1http/1.1default:7080GET /indeex.php HTTP/1.0

0-418275380/438/35985_
12.9700147270.00.3632.58
127.0.0.1http/1.1default:7080GET /ioxi-o.php HTTP/1.0

0-418275380/407/35916_
12.9300146840.00.3432.38
127.0.0.1http/1.1default:7080GET /alfa-rex.php HTTP/1.0

0-418275380/427/36105_
12.9700151720.00.3532.49
127.0.0.1http/1.1default:7080GET /okxh.php HTTP/1.0

0-418275380/418/36029_
12.9400147920.00.3532.46
127.0.0.1http/1.1default:7080GET /ioxi2.php HTTP/1.0

0-418275380/430/36141_
12.9700148760.00.3632.56
127.0.0.1http/1.1default:7080GET /log.php HTTP/1.0

0-418275380/429/36128_
12.9500148250.00.3632.52
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-418275381/405/36033W
12.9200150630.00.3332.47
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-418275380/425/36006_
12.9700156070.00.3532.41
127.0.0.1http/1.1default:7080GET /png.php HTTP/1.0

0-418275380/416/35941_
12.9400146200.00.3532.46
127.0.0.1http/1.1default:7080GET /class19.php HTTP/1.0

0-418275380/424/35948_
12.9510155320.00.3532.38
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-418275390/710/47024_
20.5210191470.00.5942.26
127.0.0.1http/1.1default:7080GET /33.php HTTP/1.0

1-418275390/741/47430_
20.5210190320.00.6142.62
127.0.0.1http/1.1default:7080GET /acxx.php HTTP/1.0

1-418275390/725/47081_
20.5510191690.00.6042.30
127.0.0.1http/1.1default:7080GET /wbbw.php HTTP/1.0

1-418275390/716/47231_
20.5611192020.00.5942.43
127.0.0.1http/1.1default:7080GET /item.php HTTP/1.0

1-418275390/751/47011_
20.5610196510.00.6242.26
127.0.0.1http/1.1default:7080GET /wp-content/plugins/profile-builder/assets/css/style-front-

1-418275390/731/47370_
20.5010191810.00.6042.57
127.0.0.1http/1.1default:7080GET /wp-admin/images/admin.php HTTP/1.0

1-418275390/717/47065_
20.5710191290.00.5942.29
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-418275390/724/47133_
20.5710191000.00.6042.39
127.0.0.1http/1.1default:7080GET /akcc.php HTTP/1.0

1-418275390/717/46924_
20.5410189230.00.6042.22
127.0.0.1http/1.1default:7080GET /custom-background.php HTTP/1.0

1-418275390/713/47490_
20.5710190990.00.5942.71
127.0.0.1http/1.1default:7080GET /file17.php HTTP/1.0

1-418275390/752/46908_
20.5410189400.00.6242.17
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-418275390/712/47238_
20.5700194550.00.5942.47
127.0.0.1http/1.1default:7080GET /ff.php HTTP/1.0

1-418275390/696/47209_
20.5704190800.00.5742.43
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-418275390/728/47332_
20.5700192210.00.6042.56
127.0.0.1http/1.1default:7080GET /wp-content/lock360.php HTTP/1.0

1-418275390/738/47185_
20.5200189420.00.6142.39
127.0.0.1http/1.1default:7080GET /assets/as.php HTTP/1.0

1-418275390/715/47154_
20.5700191390.00.5942.40
127.0.0.1http/1.1default:7080GET /aboutc.php HTTP/1.0

1-418275390/726/47111_
20.5320193940.00.6042.34
127.0.0.1http/1.1default:7080GET /zfile.php HTTP/1.0

1-418275390/751/47201_
20.5520189910.00.6242.40
127.0.0.1http/1.1default:7080GET /class.1.php HTTP/1.0

1-418275390/714/47007_
20.5200198010.00.5942.20
127.0.0.1http/1.1default:7080GET /panel.php HTTP/1.0

1-418275390/724/47265_
20.5511190560.00.6042.44
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-418275390/697/47352_
20.4920188860.00.5742.59
127.0.0.1http/1.1default:7080GET /timocra.php HTTP/1.0

1-418275390/738/47017_
20.4910202670.00.6242.25
127.0.0.1http/1.1default:7080GET /content.php HTTP/1.0

1-418275390/757/46982_
20.5520190090.00.6342.23
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-418275390/710/47142_
20.5110190490.00.5942.34
127.0.0.1http/1.1default:7080GET /gifclass.php HTTP/1.0

1-418275390/754/47025_
20.4920189740.00.6342.20
127.0.0.1http/1.1default:7080GET /yas.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SS

Found on 2026-02-06 07:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77048b4aa2d8

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Sunday, 01-Feb-2026 18:36:04 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 31
Parent Server MPM Generation: 30
Server uptime:  12 days 12 hours 6 minutes 58 seconds
Server load: 1.64 1.70 1.78
Total accesses: 1683957 - Total Traffic: 1.5 GB - Total Duration: 734427
CPU Usage: u57.8 s111.3 cu1325.44 cs2392.01 - .36% CPU load
1.56 requests/sec - 1466 B/second - 941 B/request - .436132 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04138861no0yes124000
14138862no0yes025000
Sum200 149000

_______________________W__________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-3041388610/673/29768_
18.4520129640.00.5926.76
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-3041388610/672/29901_
18.45330130410.00.6026.89
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

0-3041388610/670/29726_
18.45210131900.00.6026.76
127.0.0.1http/1.1default:7080GET /cast-crew/?movieid=377495 HTTP/1.0

0-3041388610/639/29899_
18.44340129730.00.5726.84
127.0.0.1http/1.1default:7080GET /movie/?movieid=396330 HTTP/1.0

0-3041388610/682/29842_
18.37340130080.00.6126.82
127.0.0.1http/1.1default:7080GET /crew?profileid=1118957 HTTP/1.0

0-3041388610/667/29939_
18.4520130430.00.5926.90
127.0.0.1http/1.1default:7080GET /crew/?profileid=1476167 HTTP/1.0

0-3041388610/653/29717_
18.43300149020.00.5826.72
127.0.0.1http/1.1default:7080GET /movie/?movieid=476243 HTTP/1.0

0-3041388610/638/29892_
18.45100127580.00.5726.84
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-3041388610/665/29956_
18.4230129990.00.5926.94
127.0.0.1http/1.1default:7080GET /actor/?profileid=202582 HTTP/1.0

0-3041388610/702/29751_
18.40340130230.00.6226.78
127.0.0.1http/1.1default:7080GET /movie/?movieid=513360 HTTP/1.0

0-3041388610/663/29985_
18.45170129790.00.5926.98
127.0.0.1http/1.1default:7080GET /movie?movieid=533668 HTTP/1.0

0-3041388610/662/29721_
18.45340129900.00.5926.73
127.0.0.1http/1.1default:7080GET /?s=Dag+Malmberg HTTP/1.0

0-3041388610/636/29779_
18.45300130930.00.5726.77
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/wp-login.php

0-3041388610/698/29734_
18.43170130890.00.6226.73
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

0-3041388610/673/29838_
18.43100129830.00.6026.85
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/476.0.1.1/wp

0-3041388610/657/29762_
18.4530128440.00.5926.75
127.0.0.1http/1.1default:7080GET /tv-show/?showid=45817 HTTP/1.0

0-3041388610/715/29910_
18.43210128580.00.6426.90
127.0.0.1http/1.1default:7080GET /checkout/wp-login.php HTTP/1.0

0-3041388610/665/29863_
18.44340132740.00.5926.81
127.0.0.1http/1.1default:7080GET /thicker-than-water-tjockare-an-vatten-cast/ HTTP/1.0

0-3041388610/666/29891_
18.4230129200.00.5926.87
127.0.0.1http/1.1default:7080GET /profile.php?id=181703 HTTP/1.0

0-3041388610/677/29974_
18.44350130020.00.6026.94
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/wp-login.php

0-3041388610/655/30033_
18.4530129510.00.5826.98
127.0.0.1http/1.1default:7080GET /movie?movieid=498258 HTTP/1.0

0-3041388610/647/29777_
18.4220131660.00.5826.76
127.0.0.1http/1.1default:7080GET /actor/?profileid=202032 HTTP/1.0

0-3041388610/645/29894_
18.4220129420.00.5826.84
127.0.0.1http/1.1default:7080GET /movie/?movieid=2252 HTTP/1.0

0-3041388611/644/29812W
18.4400127430.00.5726.86
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-3041388610/633/29747_
18.41330136260.00.5726.74
127.0.0.1http/1.1default:7080GET /movie?movieid=82393 HTTP/1.0

1-3041388620/408/37325_
12.5510162260.00.3633.45
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/wp-login.php

1-3041388620/412/37651_
12.56350160990.00.3733.71
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

1-3041388620/416/37361_
12.46340162090.00.3733.46
127.0.0.1http/1.1default:7080GET /movie/?movieid=11282 HTTP/1.0

1-3041388620/424/37564_
12.56340162190.00.3833.68
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/476.0.1.1/wp

1-3041388620/438/37426_
12.55360167320.00.3933.57
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/476.0.1.1/wp

1-3041388620/405/37685_
12.55360162920.00.3633.79
127.0.0.1http/1.1default:7080GET /checkout/wp-login.php HTTP/1.0

1-3041388620/401/37558_
12.55370162420.00.3633.66
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/476.0.1.1/wp

1-3041388620/409/37444_
12.5710161610.00.3733.60
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-3041388620/407/37290_
12.55330160170.00.3733.45
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/476.0.1.1/wp

1-3041388620/429/37751_
12.47290161890.00.3933.83
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-3041388620/400/37311_
12.51370160340.00.3633.45
127.0.0.1http/1.1default:7080GET /crew/?profileid=2112073 HTTP/1.0

1-3041388620/428/37629_
12.5730165580.00.3833.71
127.0.0.1http/1.1default:7080GET /category/horror/page/2/ HTTP/1.0

1-3041388620/424/37514_
12.56330161340.00.3833.64
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/wp-login.php

1-3041388620/409/37714_
12.46340163080.00.3633.81
127.0.0.1http/1.1default:7080GET /movie/?movieid=43742 HTTP/1.0

1-3041388620/420/37495_
12.51370160160.00.3733.59
127.0.0.1http/1.1default:7080GET /products/partnumlist/745.0.4.3?s=part_number&part_number_d

1-3041388620/441/37572_
12.56310162640.00.4033.69
127.0.0.1http/1.1default:7080GET /movie?movieid=575936 HTTP/1.0

1-3041388620/424/37413_
12.55370163300.00.3833.53
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

1-3041388620/427/37607_
12.55310161390.00.3833.71
127.0.0.1http/1.1default:7080GET /checkout/sid=d064a07b8dab39f2c28774f13535aa46/wp-login.php

1-3041388620/397/37501_
12.5530169280.00.3533.56
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

1-3041388620/429/37603_
12.56330161790.00.3833.69
127.0.0.1http/1.1default:7080GET /checkout/wp-login.php HTTP/1.0

1-3041388620/426/37711_
12.56340159980.00.3833.75
127.0.0.1http/1.1default:7080GET /movie/?miss-blue-jeans&movieid=123964 HTTP/1.0

1-3041388620/440/37463_
12.56290173970.00.3933.56
127.0.0.1http/1.1default:7080GET /sitemap-pt-post-2015-08.html HTTP/1.0

1-3041388620/407/37329_
12.55330161100.00.3633.48
127.0.0.1http/1.1default:7080GET /movie?movieid=579089 HTTP/1.0

1-3041388620/422/37496_

Found on 2026-02-01 18:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704e49d5a5d

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Saturday, 31-Jan-2026 02:53:41 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 27
Parent Server MPM Generation: 26
Server uptime:  10 days 20 hours 24 minutes 36 seconds
Server load: 0.96 1.04 1.11
Total accesses: 1519863 - Total Traffic: 1.3 GB - Total Duration: 685026
CPU Usage: u45.99 s93.16 cu1241.76 cs2275.66 - .39% CPU load
1.62 requests/sec - 1527 B/second - 942 B/request - .450716 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03788206no0yes025000
13788207no0yes124000
Sum200 149000

____________________________________W_____________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2637882060/201/26603_
6.0810120100.00.1723.96
127.0.0.1http/1.1default:7080GET /yas.php HTTP/1.0

0-2637882060/218/26701_
6.0810120570.00.1924.05
127.0.0.1http/1.1default:7080GET /yr.PHP HTTP/1.0

0-2637882060/213/26582_
6.0810122520.00.1823.97
127.0.0.1http/1.1default:7080GET /12.php HTTP/1.0

0-2637882060/203/26710_
6.0710120350.00.1724.02
127.0.0.1http/1.1default:7080GET /file.php HTTP/1.0

0-2637882060/204/26690_
6.0410120730.00.1724.02
127.0.0.1http/1.1default:7080GET /img.php HTTP/1.0

0-2637882060/211/26740_
6.0800120940.00.1824.07
127.0.0.1http/1.1default:7080GET /wp-content/lock360.php HTTP/1.0

0-2637882060/221/26506_
6.0710134370.00.1923.89
127.0.0.1http/1.1default:7080GET /zr.php HTTP/1.0

0-2637882060/203/26731_
6.0810118240.00.1724.04
127.0.0.1http/1.1default:7080GET /dex.php HTTP/1.0

0-2637882060/215/26791_
6.0810120560.00.1824.14
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2637882060/212/26535_
6.0710120910.00.1823.92
127.0.0.1http/1.1default:7080GET /siteheads.php HTTP/1.0

0-2637882060/217/26788_
6.0710120090.00.1924.13
127.0.0.1http/1.1default:7080GET /content.php HTTP/1.0

0-2637882060/206/26533_
6.0800120420.00.1823.89
127.0.0.1http/1.1default:7080GET /home/privacy/418.0.1.1 HTTP/1.0

0-2637882060/209/26552_
6.0420121040.00.1823.90
127.0.0.1http/1.1default:7080GET /products/productdetail/part_number=325123/379.0 HTTP/1.0

0-2637882060/217/26533_
6.0720121450.00.1923.88
127.0.0.1http/1.1default:7080GET /log.php HTTP/1.0

0-2637882060/203/26623_
6.0420120240.00.1723.99
127.0.0.1http/1.1default:7080GET /a2.php HTTP/1.0

0-2637882060/202/26641_
6.0420119220.00.1723.99
127.0.0.1http/1.1default:7080GET /m.php HTTP/1.0

0-2637882060/214/26683_
6.0720119150.00.1824.03
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

0-2637882060/203/26700_
6.0420123240.00.1724.01
127.0.0.1http/1.1default:7080GET /wp-admin/images/admin.php HTTP/1.0

0-2637882060/215/26664_
6.0720119610.00.1924.02
127.0.0.1http/1.1default:7080GET /ar/mgsl.php HTTP/1.0

0-2637882060/221/26750_
6.0810120140.00.1924.09
127.0.0.1http/1.1default:7080GET /products/category/210.1.1.1.25295.0.0.0.0 HTTP/1.0

0-2637882060/225/26888_
6.0810120230.00.1924.20
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2637882060/200/26573_
6.0610122280.00.1723.93
127.0.0.1http/1.1default:7080GET /c/apparel-men_jackets-vests-men_gipfelgrat-light-jacket-me

0-2637882060/223/26709_
6.0810120010.00.1924.03
127.0.0.1http/1.1default:7080GET /assets/as.php HTTP/1.0

0-2637882060/198/26607_
6.0610117950.00.1724.03
127.0.0.1http/1.1default:7080GET /size.php HTTP/1.0

0-2637882060/199/26575_
6.0710126460.00.1723.92
127.0.0.1http/1.1default:7080GET /vx.php HTTP/1.0

1-2637882070/330/33969_
8.7810152450.00.2830.49
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-2637882070/336/34289_
8.7310150800.00.2930.74
127.0.0.1http/1.1default:7080GET /server.php HTTP/1.0

1-2637882070/323/34014_
8.7600152350.00.2830.50
127.0.0.1http/1.1default:7080GET /panel.php HTTP/1.0

1-2637882070/322/34184_
8.7310152050.00.2730.69
127.0.0.1http/1.1default:7080GET /home/privacy/688.1.1.1 HTTP/1.0

1-2637882070/333/34007_
8.7800156900.00.2930.56
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-2637882070/341/34277_
8.7800152680.00.2930.77
127.0.0.1http/1.1default:7080GET /buy.php HTTP/1.0

1-2637882070/345/34239_
8.7800152530.00.2930.72
127.0.0.1http/1.1default:7080GET /classwithtostring.php HTTP/1.0

1-2637882070/314/34147_
8.7620151890.00.2730.69
127.0.0.1http/1.1default:7080GET /products/partnumlist/745.0.4.3?s=part_number&part_number_d

1-2637882070/343/33953_
8.7801150200.00.2930.49
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2637882070/310/34335_
8.7600151740.00.2630.80
127.0.0.1http/1.1default:7080GET /wen.php HTTP/1.0

1-2637882070/328/33949_
8.7600150360.00.2830.48
127.0.0.1http/1.1default:7080GET /mini.php HTTP/1.0

1-2637882071/335/34203W
8.7300155550.00.2930.68
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2637882070/309/34169_
8.7600151690.00.2730.68
127.0.0.1http/1.1default:7080GET /okxh.php HTTP/1.0

1-2637882070/329/34323_
8.7600152980.00.2830.80
127.0.0.1http/1.1default:7080GET /ioxi-o.php HTTP/1.0

1-2637882070/316/34111_
8.7320149590.00.2730.61
127.0.0.1http/1.1default:7080GET /oo.php HTTP/1.0

1-2637882070/338/34122_
8.7320152210.00.2930.64
127.0.0.1http/1.1default:7080GET /css/radio.php HTTP/1.0

1-2637882070/331/34022_
8.7620153280.00.2830.54
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2637882070/355/34233_
8.7620151410.00.3030.73
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2637882070/330/34213_
8.7800159430.00.2830.67
127.0.0.1http/1.1default:7080GET /acxx.php HTTP/1.0

1-2637882070/319/34235_
8.7610151590.00.2730.71
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2637882070/336/34280_
8.7320149720.00.2930.72
127.0.0.1http/1.1default:7080GET /1.php HTTP/1.0

1-2637882070/333/34039_
8.7620163980.00.2830.53
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-2637882070/315/33948_
8.7320150920.00.2730.49
127.0.0.1http/1.1default:7080GET //cwclass.php HTTP/1.0

1-2637882070/319/34152_
8.7810151590.00.2730.61
127.0.0.1http/1.1default:7080GET /up.php HTTP/1.0

1-2637882070/343/34042_
8.7310151290.00.2930.52
127.0.0.1http/1.1default:7080GET /gg.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation

Found on 2026-01-31 02:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770466dda956

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Saturday, 31-Jan-2026 02:53:41 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 27
Parent Server MPM Generation: 26
Server uptime:  10 days 20 hours 24 minutes 36 seconds
Server load: 0.96 1.04 1.11
Total accesses: 1519862 - Total Traffic: 1.3 GB - Total Duration: 685024
CPU Usage: u45.99 s93.16 cu1241.76 cs2275.66 - .39% CPU load
1.62 requests/sec - 1527 B/second - 942 B/request - .450715 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03788206no0yes025000
13788207no0yes124000
Sum200 149000

_________________________________W________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2637882060/201/26603_
6.0810120100.00.1723.96
127.0.0.1http/1.1default:7080GET /yas.php HTTP/1.0

0-2637882060/218/26701_
6.0810120570.00.1924.05
127.0.0.1http/1.1default:7080GET /yr.PHP HTTP/1.0

0-2637882060/213/26582_
6.0810122520.00.1823.97
127.0.0.1http/1.1default:7080GET /12.php HTTP/1.0

0-2637882060/203/26710_
6.0710120350.00.1724.02
127.0.0.1http/1.1default:7080GET /file.php HTTP/1.0

0-2637882060/204/26690_
6.0410120730.00.1724.02
127.0.0.1http/1.1default:7080GET /img.php HTTP/1.0

0-2637882060/211/26740_
6.0800120940.00.1824.07
127.0.0.1http/1.1default:7080GET /wp-content/lock360.php HTTP/1.0

0-2637882060/221/26506_
6.0710134370.00.1923.89
127.0.0.1http/1.1default:7080GET /zr.php HTTP/1.0

0-2637882060/203/26731_
6.0810118240.00.1724.04
127.0.0.1http/1.1default:7080GET /dex.php HTTP/1.0

0-2637882060/215/26791_
6.0810120560.00.1824.14
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2637882060/212/26535_
6.0710120910.00.1823.92
127.0.0.1http/1.1default:7080GET /siteheads.php HTTP/1.0

0-2637882060/217/26788_
6.0710120090.00.1924.13
127.0.0.1http/1.1default:7080GET /content.php HTTP/1.0

0-2637882060/206/26533_
6.0800120420.00.1823.89
127.0.0.1http/1.1default:7080GET /home/privacy/418.0.1.1 HTTP/1.0

0-2637882060/209/26552_
6.0420121040.00.1823.90
127.0.0.1http/1.1default:7080GET /products/productdetail/part_number=325123/379.0 HTTP/1.0

0-2637882060/217/26533_
6.0720121450.00.1923.88
127.0.0.1http/1.1default:7080GET /log.php HTTP/1.0

0-2637882060/203/26623_
6.0420120240.00.1723.99
127.0.0.1http/1.1default:7080GET /a2.php HTTP/1.0

0-2637882060/202/26641_
6.0420119220.00.1723.99
127.0.0.1http/1.1default:7080GET /m.php HTTP/1.0

0-2637882060/214/26683_
6.0720119150.00.1824.03
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

0-2637882060/203/26700_
6.0420123240.00.1724.01
127.0.0.1http/1.1default:7080GET /wp-admin/images/admin.php HTTP/1.0

0-2637882060/215/26664_
6.0720119610.00.1924.02
127.0.0.1http/1.1default:7080GET /ar/mgsl.php HTTP/1.0

0-2637882060/221/26750_
6.0810120140.00.1924.09
127.0.0.1http/1.1default:7080GET /products/category/210.1.1.1.25295.0.0.0.0 HTTP/1.0

0-2637882060/225/26888_
6.0810120230.00.1924.20
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2637882060/200/26573_
6.0610122280.00.1723.93
127.0.0.1http/1.1default:7080GET /c/apparel-men_jackets-vests-men_gipfelgrat-light-jacket-me

0-2637882060/223/26709_
6.0810120010.00.1924.03
127.0.0.1http/1.1default:7080GET /assets/as.php HTTP/1.0

0-2637882060/198/26607_
6.0610117950.00.1724.03
127.0.0.1http/1.1default:7080GET /size.php HTTP/1.0

0-2637882060/199/26575_
6.0710126460.00.1723.92
127.0.0.1http/1.1default:7080GET /vx.php HTTP/1.0

1-2637882070/330/33969_
8.7800152450.00.2830.49
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-2637882070/336/34289_
8.7310150800.00.2930.74
127.0.0.1http/1.1default:7080GET /server.php HTTP/1.0

1-2637882070/323/34014_
8.7600152350.00.2830.50
127.0.0.1http/1.1default:7080GET /panel.php HTTP/1.0

1-2637882070/322/34184_
8.7300152050.00.2730.69
127.0.0.1http/1.1default:7080GET /home/privacy/688.1.1.1 HTTP/1.0

1-2637882070/333/34007_
8.7800156900.00.2930.56
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-2637882070/341/34277_
8.7800152680.00.2930.77
127.0.0.1http/1.1default:7080GET /buy.php HTTP/1.0

1-2637882070/345/34239_
8.7800152530.00.2930.72
127.0.0.1http/1.1default:7080GET /classwithtostring.php HTTP/1.0

1-2637882070/314/34147_
8.7620151890.00.2730.69
127.0.0.1http/1.1default:7080GET /products/partnumlist/745.0.4.3?s=part_number&part_number_d

1-2637882071/342/33952W
8.7300150180.00.2930.49
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2637882070/310/34335_
8.7600151740.00.2630.80
127.0.0.1http/1.1default:7080GET /wen.php HTTP/1.0

1-2637882070/328/33949_
8.7600150360.00.2830.48
127.0.0.1http/1.1default:7080GET /mini.php HTTP/1.0

1-2637882070/335/34203_
8.7330155550.00.2930.68
127.0.0.1http/1.1default:7080GET /custom-background.php HTTP/1.0

1-2637882070/309/34169_
8.7630151690.00.2730.68
127.0.0.1http/1.1default:7080GET /okxh.php HTTP/1.0

1-2637882070/329/34323_
8.7600152980.00.2830.80
127.0.0.1http/1.1default:7080GET /ioxi-o.php HTTP/1.0

1-2637882070/316/34111_
8.7310149590.00.2730.61
127.0.0.1http/1.1default:7080GET /oo.php HTTP/1.0

1-2637882070/338/34122_
8.7320152210.00.2930.64
127.0.0.1http/1.1default:7080GET /css/radio.php HTTP/1.0

1-2637882070/331/34022_
8.7610153280.00.2830.54
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2637882070/355/34233_
8.7610151410.00.3030.73
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2637882070/330/34213_
8.7800159430.00.2830.67
127.0.0.1http/1.1default:7080GET /acxx.php HTTP/1.0

1-2637882070/319/34235_
8.7610151590.00.2730.71
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2637882070/336/34280_
8.7310149720.00.2930.72
127.0.0.1http/1.1default:7080GET /1.php HTTP/1.0

1-2637882070/333/34039_
8.7620163980.00.2830.53
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-2637882070/315/33948_
8.7320150920.00.2730.49
127.0.0.1http/1.1default:7080GET //cwclass.php HTTP/1.0

1-2637882070/319/34152_
8.7810151590.00.2730.61
127.0.0.1http/1.1default:7080GET /up.php HTTP/1.0

1-2637882070/343/34042_
8.7310151290.00.2930.52
127.0.0.1http/1.1default:7080GET /gg.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation

Found on 2026-01-31 02:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77046a859f17

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Friday, 23-Jan-2026 21:49:45 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  3 days 15 hours 20 minutes 40 seconds
Server load: 1.64 1.73 1.67
Total accesses: 252997 - Total Traffic: 216.2 MB - Total Duration: 112766
CPU Usage: u16.61 s32.86 cu210.7 cs370.14 - .2% CPU load
.805 requests/sec - 721 B/second - 896 B/request - .445721 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02325320no0yes124000
12325321no0yes025000
Sum200 149000

___W______________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-923253200/63/4213_
2.1315018640.00.063.60
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

0-923253200/55/4224_
2.1110019080.00.053.61
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-923253200/63/4191_
2.1312018570.00.063.59
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

0-923253201/61/4146W
2.080018800.00.053.54
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-923253200/61/4195_
2.1316019180.00.053.60
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-923253200/63/4208_
2.119018850.00.063.60
127.0.0.1http/1.1default:7080GET /p/norge HTTP/1.0

0-923253200/62/4107_
2.139018280.00.053.51
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

0-923253200/55/4233_
2.1115018960.00.053.61
127.0.0.1http/1.1default:7080GET /products/category/Aqua+Skins%26%238482%3B+Winter+-+Men/688

0-923253200/63/4284_
2.138019240.00.053.66
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-923253200/57/4135_
2.1111018550.00.053.54
127.0.0.1http/1.1default:7080GET /p/my-creative-cookery-club?pp=8 HTTP/1.0

0-923253200/66/4208_
2.1112018400.00.063.60
127.0.0.1http/1.1default:7080GET /p/solar-power-plus HTTP/1.0

0-923253200/57/4206_
2.1311021730.00.053.62
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

0-923253200/65/4258_
2.1310019160.00.063.67
127.0.0.1http/1.1default:7080GET /assets/img/radiator200.png HTTP/1.0

0-923253200/57/4260_
2.098019520.00.053.64
127.0.0.1http/1.1default:7080GET /dropdown.php HTTP/1.0

0-923253200/59/4210_
2.097019370.00.053.62
127.0.0.1http/1.1default:7080GET /wp-configs.php HTTP/1.0

0-923253200/58/4269_
2.138019780.00.053.64
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-923253200/64/4139_
2.137018470.00.063.54
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-923253200/63/4201_
2.118020000.00.063.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-923253200/62/4209_
2.137019250.00.063.59
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-923253200/61/4186_
2.131018740.00.053.58
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-923253200/61/4220_
2.121019250.00.053.61
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-923253200/61/4251_
2.130019260.00.053.63
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-923253200/56/4201_
2.132018550.00.053.58
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-923253200/65/4219_
2.112018650.00.063.60
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

0-923253200/62/4263_
2.120019180.00.053.64
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

1-923253210/95/5804_
3.150025710.00.084.96
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-923253210/94/5899_
3.1510025680.00.085.04
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-923253210/100/5956_
3.1411025710.00.095.09
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

1-923253210/97/5926_
3.1410026120.00.095.06
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

1-923253210/103/5823_
3.1510025620.00.094.97
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-923253210/95/5896_
3.1410026550.00.085.03
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

1-923253210/100/6016_
3.149026740.00.095.14
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

1-923253210/103/5898_
3.166026150.00.095.04
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-923253210/99/5900_
3.159025240.00.095.05
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-923253210/116/5999_
3.165026490.00.105.12
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-923253210/78/5825_
3.155025870.00.074.99
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

1-923253210/109/5952_
3.166026200.00.095.07
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-923253210/89/5932_
3.156025790.00.085.07
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

1-923253210/82/5957_
3.076025660.00.075.08
127.0.0.1http/1.1default:7080GET /horeg.php HTTP/1.0

1-923253210/119/5945_
3.164025730.00.105.09
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-923253210/87/5920_
3.154026850.00.085.08
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-923253210/107/5878_
3.142025950.00.105.03
127.0.0.1http/1.1default:7080POST /api HTTP/1.0

1-923253210/106/5851_
3.162025740.00.095.02
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-923253210/86/5931_
3.162026260.00.085.04
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-923253210/85/5878_
3.152025880.00.085.02
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-923253210/84/5877_
3.152025410.00.075.01
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-923253210/110/5981_
3.162026230.00.105.13
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-923253210/89/5843_
3.151026280.00.084.99
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-923253210/110/5939_
3.161025840.00.105.06
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-923253210/104/5935_
3.160026250.00.095.05
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of se

Found on 2026-01-23 21:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704bb4a45d4

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Friday, 23-Jan-2026 21:49:46 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  3 days 15 hours 20 minutes 40 seconds
Server load: 1.64 1.73 1.67
Total accesses: 252998 - Total Traffic: 216.3 MB - Total Duration: 112768
CPU Usage: u16.61 s32.87 cu210.7 cs370.14 - .2% CPU load
.805 requests/sec - 721 B/second - 896 B/request - .445727 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02325320no0yes025000
12325321no0yes124000
Sum200 149000

___________________________W______________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-923253200/63/4213_
2.1315018640.00.063.60
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

0-923253200/55/4224_
2.1111019080.00.053.61
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-923253200/63/4191_
2.1313018570.00.063.59
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

0-923253200/62/4147_
2.140118820.00.063.54
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-923253200/61/4195_
2.130019180.00.053.60
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-923253200/63/4208_
2.119018850.00.063.60
127.0.0.1http/1.1default:7080GET /p/norge HTTP/1.0

0-923253200/62/4107_
2.139018280.00.053.51
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

0-923253200/55/4233_
2.1115018960.00.053.61
127.0.0.1http/1.1default:7080GET /products/category/Aqua+Skins%26%238482%3B+Winter+-+Men/688

0-923253200/63/4284_
2.139019240.00.053.66
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-923253200/57/4135_
2.1111018550.00.053.54
127.0.0.1http/1.1default:7080GET /p/my-creative-cookery-club?pp=8 HTTP/1.0

0-923253200/66/4208_
2.1113018400.00.063.60
127.0.0.1http/1.1default:7080GET /p/solar-power-plus HTTP/1.0

0-923253200/57/4206_
2.1311021730.00.053.62
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

0-923253200/65/4258_
2.1311019160.00.063.67
127.0.0.1http/1.1default:7080GET /assets/img/radiator200.png HTTP/1.0

0-923253200/57/4260_
2.098019520.00.053.64
127.0.0.1http/1.1default:7080GET /dropdown.php HTTP/1.0

0-923253200/59/4210_
2.097019370.00.053.62
127.0.0.1http/1.1default:7080GET /wp-configs.php HTTP/1.0

0-923253200/58/4269_
2.138019780.00.053.64
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-923253200/64/4139_
2.137018470.00.063.54
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-923253200/63/4201_
2.119020000.00.063.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-923253200/62/4209_
2.137019250.00.063.59
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-923253200/61/4186_
2.132018740.00.053.58
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-923253200/61/4220_
2.122019250.00.053.61
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-923253200/61/4251_
2.130019260.00.053.63
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-923253200/56/4201_
2.132018550.00.053.58
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-923253200/65/4219_
2.112018650.00.063.60
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

0-923253200/62/4263_
2.120019180.00.053.64
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

1-923253210/95/5804_
3.151025710.00.084.96
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-923253210/94/5899_
3.1510025680.00.085.04
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-923253211/100/5956W
3.140025710.00.095.09
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-923253210/97/5926_
3.1410026120.00.095.06
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

1-923253210/103/5823_
3.1510025620.00.094.97
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-923253210/95/5896_
3.1410026550.00.085.03
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

1-923253210/100/6016_
3.149026740.00.095.14
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

1-923253210/103/5898_
3.166026150.00.095.04
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-923253210/99/5900_
3.159025240.00.095.05
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-923253210/116/5999_
3.165026490.00.105.12
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-923253210/78/5825_
3.155025870.00.074.99
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

1-923253210/109/5952_
3.166026200.00.095.07
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-923253210/89/5932_
3.156025790.00.085.07
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

1-923253210/82/5957_
3.076025660.00.075.08
127.0.0.1http/1.1default:7080GET /horeg.php HTTP/1.0

1-923253210/119/5945_
3.164025730.00.105.09
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-923253210/87/5920_
3.154026850.00.085.08
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-923253210/107/5878_
3.143025950.00.105.03
127.0.0.1http/1.1default:7080POST /api HTTP/1.0

1-923253210/106/5851_
3.163025740.00.095.02
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-923253210/86/5931_
3.163026260.00.085.04
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-923253210/85/5878_
3.152025880.00.085.02
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-923253210/84/5877_
3.153025410.00.075.01
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-923253210/110/5981_
3.162026230.00.105.13
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-923253210/89/5843_
3.151026280.00.084.99
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-923253210/110/5939_
3.161025840.00.105.06
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-923253210/104/5935_
3.161026250.00.095.05
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of sec

Found on 2026-01-23 21:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704a3b52db9

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-12-09T15:50:28

Current Time: Friday, 23-Jan-2026 16:01:17 UTC
Restart Time: Tuesday, 20-Jan-2026 06:29:05 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  3 days 9 hours 32 minutes 12 seconds
Server load: 2.74 2.53 2.46
Total accesses: 238175 - Total Traffic: 203.0 MB - Total Duration: 107259
CPU Usage: u52.75 s98.24 cu162.62 cs287.29 - .205% CPU load
.811 requests/sec - 725 B/second - 893 B/request - .450337 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02163449no0yes025000
12163450no0yes124000
Sum200 149000

__________________________________________W_______..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-821634490/731/3972_
45.502017710.00.633.39
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-821634490/735/4004_
45.503018160.00.643.42
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-821634490/748/3959_
45.4721017740.00.663.38
127.0.0.1http/1.1default:7080POST /api HTTP/1.0

0-821634490/717/3906_
45.4915017970.00.623.32
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-821634490/733/3961_
45.3921018330.00.643.39
127.0.0.1http/1.1default:7080GET /movie?movieid=488204 HTTP/1.0

0-821634490/729/3950_
45.496017880.00.633.37
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-821634490/734/3865_
45.4816017350.00.643.29
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

0-821634490/746/4013_
45.4820018080.00.643.41
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

0-821634490/733/4042_
45.4211018360.00.643.45
127.0.0.1http/1.1default:7080GET /products/productdetail/4%2BUnits%2B-%2B24x84%2BMonet%2BPRO

0-821634490/721/3915_
45.3216017630.00.633.34
127.0.0.1http/1.1default:7080GET /movie?movieid=13026 HTTP/1.0

0-821634490/736/3964_
45.4911017470.00.643.38
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

0-821634490/763/3964_
45.494020910.00.663.41
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-821634490/761/4038_
45.497018330.00.673.47
127.0.0.1http/1.1default:7080GET /p/cgx3-camera HTTP/1.0

0-821634490/750/4040_
45.4913018610.00.663.44
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-821634490/733/3985_
45.3921018550.00.643.41
127.0.0.1http/1.1default:7080GET /products/productdetail/60%22%2Bx%2B50y%2BRoll%2BCanvas%2BM

0-821634490/750/4033_
45.427019000.00.653.43
127.0.0.1http/1.1default:7080GET /products/productdetail/4%2BUnits%2B-%2B15x20%2BVincent%2BP

0-821634490/728/3914_
45.474117650.00.633.34
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-821634490/757/3971_
45.2015019170.00.663.38
127.0.0.1http/1.1default:7080GET /222.php HTTP/1.0

0-821634490/753/3976_
45.4721118400.00.663.38
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

0-821634490/731/3948_
45.473017920.00.643.37
127.0.0.1http/1.1default:7080POST /graphql HTTP/1.0

0-821634490/774/3989_
45.2911018440.00.673.41
127.0.0.1http/1.1default:7080GET /home/index/453.0.1.1 HTTP/1.0

0-821634490/762/4011_
45.4911018460.00.663.42
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

0-821634490/732/3996_
45.476017760.00.633.40
127.0.0.1http/1.1default:7080GET /userlist.php HTTP/1.0

0-821634490/734/3980_
45.4914017770.00.643.38
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

0-821634490/774/4034_
45.3220018370.00.673.43
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-821634500/1037/5472_
63.5821024450.00.904.67
127.0.0.1http/1.1default:7080GET /products/productdetail/4x4%2BClassic%2B1-3/8%22%2BGallery%

1-821634500/1066/5561_
63.656324510.00.934.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-821634500/1047/5588_
63.5910024430.00.914.76
127.0.0.1http/1.1default:7080GET /crew?profileid=2418540 HTTP/1.0

1-821634500/1060/5548_
63.687024660.00.924.72
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-821634500/1039/5457_
63.6812024310.00.904.65
127.0.0.1http/1.1default:7080GET /crew?profileid=1464834 HTTP/1.0

1-821634500/1059/5528_
63.559025200.00.934.70
127.0.0.1http/1.1default:7080GET /products/productdetail/part_number=44274/199.0 HTTP/1.0

1-821634500/1075/5641_
63.6718025320.00.934.81
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

1-821634500/1067/5525_
63.580024730.00.924.71
127.0.0.1http/1.1default:7080GET /crew?profileid=74181 HTTP/1.0

1-821634500/1067/5533_
63.6813323910.00.934.73
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-821634500/1083/5616_
63.5819025080.00.934.77
127.0.0.1http/1.1default:7080GET /products/productdetail/40x48%2BVincent%2BPRO%2B7/8%22%2BVi

1-821634500/1034/5483_
63.6719024620.00.904.68
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

1-821634500/1080/5585_
63.689024820.00.944.75
127.0.0.1http/1.1default:7080GET /p/lonestar-racing-aluminum-roof-can-am-red-with-wrap-kit H

1-821634500/1093/5601_
63.570024580.00.954.78
127.0.0.1http/1.1default:7080GET /ads.txt HTTP/1.0

1-821634500/1082/5603_
63.5912024300.00.944.77
127.0.0.1http/1.1default:7080GET /products/productdetail/4%2BUnits%2B-%2B68x85%2BMonet%2BPRO

1-821634500/1092/5569_
63.5913024320.00.954.75
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-821634500/1098/5554_
63.6621025470.00.964.75
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

1-821634500/1045/5512_
63.5821024590.00.914.70
127.0.0.1http/1.1default:7080GET /p/musical-band-1 HTTP/1.0

1-821634501/1085/5491W
63.660024350.00.944.69
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-821634500/1073/5597_
63.6810025040.00.934.74
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-821634500/1038/5529_
63.700024490.00.904.71
127.0.0.1http/1.1default:7080GET /movie?movieid=36047 HTTP/1.0

1-821634500/1062/5537_
63.5918024000.00.924.71
127.0.0.1http/1.1default:7080GET /?s=Gottsk%C3%A1lk%2BDagur%2BSigur%C3%B0arson HTTP/1.0

1-821634500/1090/5586_
63.690024840.00.974.77
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-821634500/1102/5502_
63.577025050.00.964.69
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-821634500/1029/5552_
63.696324290.00.894.72
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-821634500/1064/5575_
63.689124980.00.914.73
127.0.0.1http/1.1default:7080

Found on 2026-01-23 16:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704f667d6b8

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Friday, 16-Jan-2026 23:30:28 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 145
Parent Server MPM Generation: 144
Server uptime:  53 days 3 hours 9 minutes 33 seconds
Server load: 1.72 1.66 1.70
Total accesses: 16710662 - Total Traffic: 16.6 GB - Total Duration: 4218776
CPU Usage: u164.63 s306.6 cu8470.98 cs11954.2 - .455% CPU load
3.64 requests/sec - 3880 B/second - 1065 B/request - .25246 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0810728no0yes124000
1810729no0yes025000
Sum200 149000

__W_______________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1448107280/501/287929_
21.9220730950.00.46292.81
127.0.0.1http/1.1default:7080GET /ssk.php HTTP/1.0

0-1448107280/510/288204_
21.9300730490.00.47292.98
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-1448107281/492/287843W
21.8600730920.00.46292.76
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-1448107280/503/288250_
21.9300733740.00.47293.06
127.0.0.1http/1.1default:7080GET /wp-content/del.php HTTP/1.0

0-1448107280/536/287474_
21.9300737670.00.49292.30
127.0.0.1http/1.1default:7080GET /yee.php HTTP/1.0

0-1448107280/530/287824_
21.9220749090.00.49292.63
127.0.0.1http/1.1default:7080GET /wui.php HTTP/1.0

0-1448107280/515/287638_
21.8700727940.00.48292.49
127.0.0.1http/1.1default:7080GET /BIBIL.php HTTP/1.0

0-1448107280/487/287561_
21.8220738440.00.45292.35
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=86765 HTTP/1.0

0-1448107280/476/287787_
21.8320742090.00.45292.55
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=268872 HTTP/1.0

0-1448107280/491/288399_
21.8900734820.00.46293.12
127.0.0.1http/1.1default:7080GET /abe.php HTTP/1.0

0-1448107280/528/287797_
21.9210731050.00.49292.71
127.0.0.1http/1.1default:7080GET /jju.php HTTP/1.0

0-1448107280/524/287908_
21.9200727540.00.48292.65
127.0.0.1http/1.1default:7080GET /ttw.php HTTP/1.0

0-1448107280/533/288484_
21.9220734390.00.49293.29
127.0.0.1http/1.1default:7080GET /nhd.php HTTP/1.0

0-1448107280/495/288350_
21.8311729930.00.46293.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-1448107280/506/287803_
21.9210737890.00.48292.72
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-1448107280/531/287422_
21.8810741950.00.49292.15
127.0.0.1http/1.1default:7080GET /lok.php HTTP/1.0

0-1448107280/511/288316_
21.9210737700.00.48293.10
127.0.0.1http/1.1default:7080GET /wp-includes/class-wp-dependency-get.php HTTP/1.0

0-1448107280/503/287599_
21.8312736710.00.46292.35
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-1448107280/510/288004_
21.9210732710.00.48292.76
127.0.0.1http/1.1default:7080GET /wp-admin/ HTTP/1.0

0-1448107280/502/288035_
21.8900734100.00.47292.81
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-1448107280/500/287869_
21.8220743520.00.46292.69
127.0.0.1http/1.1default:7080GET /viewtopic.php?pid=298266 HTTP/1.0

0-1448107280/504/287786_
21.9300728060.00.47292.52
127.0.0.1http/1.1default:7080GET /niu.php HTTP/1.0

0-1448107280/502/288309_
21.8310745240.00.47293.19
127.0.0.1http/1.1default:7080POST /api HTTP/1.0

0-1448107280/508/287625_
21.8810728380.00.47292.38
127.0.0.1http/1.1default:7080GET /msg.php HTTP/1.0

0-1448107280/516/288683_
21.9210730410.00.48293.42
127.0.0.1http/1.1default:7080GET /as.php HTTP/1.0

1-1448107290/327/381315_
15.9520946310.00.30387.55
127.0.0.1http/1.1default:7080GET /wwo.php HTTP/1.0

1-1448107290/347/380074_
15.9510951010.00.32386.21
127.0.0.1http/1.1default:7080GET //wp-includes/js/tinymce/index.php HTTP/1.0

1-1448107290/348/380887_
15.9510943740.00.32387.24
127.0.0.1http/1.1default:7080GET /w.php HTTP/1.0

1-1448107290/353/379599_
15.9500941650.00.33386.01
127.0.0.1http/1.1default:7080GET /ula.php HTTP/1.0

1-1448107290/332/380576_
15.8710942950.00.30386.86
127.0.0.1http/1.1default:7080GET /profile.php?id=285058 HTTP/1.0

1-1448107290/352/381497_
15.8710973090.00.33387.77
127.0.0.1http/1.1default:7080GET /profile.php?id=419994 HTTP/1.0

1-1448107290/345/380909_
15.9600947270.00.32387.17
127.0.0.1http/1.1default:7080GET /wp/sih.php HTTP/1.0

1-1448107290/360/379816_
15.9510943230.00.34386.12
127.0.0.1http/1.1default:7080GET /wp-admin/zwso.php HTTP/1.0

1-1448107290/317/380412_
15.9600942830.00.31386.74
127.0.0.1http/1.1default:7080GET //wp-content/index.php HTTP/1.0

1-1448107290/360/380664_
15.9510945280.00.34386.82
127.0.0.1http/1.1default:7080GET /wp-content/uploads/gravity_forms/d/d/d/g/ HTTP/1.0

1-1448107290/359/380302_
15.9400949680.00.34386.63
127.0.0.1http/1.1default:7080GET //wp-includes/css/about.php HTTP/1.0

1-1448107290/344/380460_
15.9440944950.00.32386.75
127.0.0.1http/1.1default:7080GET /x/index.php HTTP/1.0

1-1448107290/332/380045_
15.9500960620.00.31386.41
127.0.0.1http/1.1default:7080GET /.trash7309/dd/ HTTP/1.0

1-1448107290/321/380450_
15.9500948540.00.30386.71
127.0.0.1http/1.1default:7080GET /k.php HTTP/1.0

1-1448107290/381/380535_
15.9400950300.00.35386.75
127.0.0.1http/1.1default:7080GET /images/g3.php HTTP/1.0

1-1448107290/363/380607_
15.9400947060.00.34387.03
127.0.0.1http/1.1default:7080GET /web.php HTTP/1.0

1-1448107290/341/380954_
15.9400948100.00.33387.33
127.0.0.1http/1.1default:7080GET /dds.php HTTP/1.0

1-1448107290/366/380351_
15.9600946350.00.34386.71
127.0.0.1http/1.1default:7080GET /1337.php HTTP/1.0

1-1448107290/336/379947_
15.9600948740.00.32386.20
127.0.0.1http/1.1default:7080GET /ink.php HTTP/1.0

1-1448107290/354/380348_
15.9400942830.00.33386.66
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-1448107290/362/379941_
15.9400951070.00.33386.29
127.0.0.1http/1.1default:7080GET /Cachex.php HTTP/1.0

1-1448107290/385/380097_
15.9320945660.00.36386.41
127.0.0.1http/1.1default:7080GET /thoms.php HTTP/1.0

1-1448107290/354/380372_
15.9420945580.00.34386.69
127.0.0.1http/1.1default:7080GET /first/function.php HTTP/1.0

1-1448107290/329/380650_
15.9320952210.00.30386.96
127.0.0.1http/1.1default:7080GET /sue.php HTTP/1.0

1-1448107290/344/380955_
15.87101052710.00.32387.27
127.0.0.1http/1.1default:7080GET /profile.php?id=219528 HTTP/1.0


  
 SrvChild S

Found on 2026-01-16 23:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704b2d1ffa6

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Friday, 09-Jan-2026 01:52:33 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 124
Parent Server MPM Generation: 123
Server uptime:  45 days 5 hours 31 minutes 38 seconds
Server load: 1.97 1.78 1.78
Total accesses: 14838276 - Total Traffic: 14.7 GB - Total Duration: 3476334
CPU Usage: u123.93 s226.18 cu7021.45 cs9412.74 - .429% CPU load
3.8 requests/sec - 4036 B/second - 1063 B/request - .234282 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03444157no0yes025000
13444158no0yes124000
Sum200 149000

______________________________________________W___..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12334441570/75/251935_
2.49220588430.00.06255.32
127.0.0.1http/1.1default:7080GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/73/252292_
2.50150588590.00.06255.60
127.0.0.1http/1.1default:7080GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/78/251770_
2.49200587110.00.07255.19
127.0.0.1http/1.1default:7080GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/59/252239_
2.51200590110.00.05255.62
127.0.0.1http/1.1default:7080GET /profile.php?id=385731 HTTP/1.0

0-12334441570/55/251799_
2.51180596370.00.05255.14
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-12334441570/59/251915_
2.51220597280.00.05255.26
127.0.0.1http/1.1default:7080GET /products/category/Metalworking%2BTools/15563.0.1.1.1038172

0-12334441570/63/251885_
2.50110586610.00.05255.26
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-12334441570/73/251780_
2.50180595300.00.06255.06
127.0.0.1http/1.1default:7080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/69/252004_
2.51110599390.00.06255.35
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

0-12334441570/68/252608_
2.50310592540.00.06255.93
127.0.0.1http/1.1default:7080GET /tv-show?showid=1781 HTTP/1.0

0-12334441570/59/251936_
2.51150588170.00.05255.38
127.0.0.1http/1.1default:7080GET /p/heavy-duty-stamp-system?pp=24 HTTP/1.0

0-12334441570/64/251994_
2.5160585690.00.05255.31
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-12334441570/61/252603_
2.5150591350.00.05255.98
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-12334441570/62/252429_
2.5060587160.00.05255.78
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

0-12334441570/73/251826_
2.5110597130.00.06255.26
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-12334441570/63/251552_
2.47610600170.00.05254.83
127.0.0.1http/1.1default:7080GET /wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/69/252384_
2.50610595580.00.06255.69
127.0.0.1http/1.1default:7080GET /p/modeling-clay-16-pack/art_all-art-products?pp=24&mobile=

0-12334441570/67/251716_
2.50570595280.00.06255.00
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

0-12334441570/65/252345_
2.48570589590.00.06255.65
127.0.0.1http/1.1default:7080GET /xmlrpc.php?rsd HTTP/1.0

0-12334441570/68/252206_
2.4510587980.00.06255.54
127.0.0.1http/1.1default:7080GET /products/productdetail/Team%2BSuit%2B-%2BMen%2B-%2BJammer%

0-12334441570/68/251882_
2.48530588380.00.06255.27
127.0.0.1http/1.1default:7080GET /website/wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/67/252010_
2.50530585840.00.06255.29
127.0.0.1http/1.1default:7080GET /profile.php?id=205872&section=personality HTTP/1.0

0-12334441570/63/252272_
2.50450602850.00.06255.58
127.0.0.1http/1.1default:7080GET /c/replacement-parts_impeller?pp=12&pg=1&mobile=0 HTTP/1.0

0-12334441570/63/251867_
2.48310585330.00.05255.18
127.0.0.1http/1.1default:7080GET /news/wp-includes/wlwmanifest.xml HTTP/1.0

0-12334441570/71/252978_
2.48450589850.00.06256.29
127.0.0.1http/1.1default:7080GET /wp/wp-includes/wlwmanifest.xml HTTP/1.0

1-12334441580/110/342179_
3.73100792860.00.09347.02
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-12334441580/116/341123_
3.69160798960.00.10345.85
127.0.0.1http/1.1default:7080GET /products/productdetail/Paint%2B&%23038;%2BSparkle%2B(4Oz.)

1-12334441580/115/341928_
3.7481791510.00.10346.82
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-12334441580/104/340785_
3.7270790760.00.09345.72
127.0.0.1http/1.1default:7080GET /crew/?profileid=20640 HTTP/1.0

1-12334441580/97/341488_
3.7280789510.00.08346.33
127.0.0.1http/1.1default:7080GET /p/splash-mag-drive-pump-100-gph?referring_products=pdp%7C2

1-12334441580/111/342117_
3.7470818340.00.09346.93
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-12334441580/106/341952_
3.73200795250.00.09346.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-12334441580/113/340903_
3.73170789020.00.10345.76
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

1-12334441580/95/341269_
3.73160788860.00.08346.14
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-12334441580/102/341579_
3.70140791970.00.08346.34
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-12334441580/102/341199_
3.73120796950.00.09346.06
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-12334441580/106/341433_
3.73140791420.00.09346.26
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-12334441580/97/340964_
3.7280808930.00.08345.89
127.0.0.1http/1.1default:7080GET /k/custominstall HTTP/1.0

1-12334441580/111/341744_
3.7490796310.00.09346.58
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-12334441580/113/341621_
3.69150790410.00.09346.41
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=16039 HTTP/1.0

1-12334441580/100/341369_
3.7420794150.00.09346.32
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-12334441580/107/342103_
3.7480794120.00.09347.06
127.0.0.1http/1.1default:7080GET //products/category/ID%2BStamper/15563.0.1.1.1037463.0.0.0.

1-12334441580/108/341350_
3.73130794350.00.09346.28
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-12334441580/100/340900_
3.71200791950.00.08345.69
127.0.0.1http/1.1default:7080GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0

1-12334441580/111/341372_
3.7320790480.00.10346.28
127.0.0.1http/1.1default:7080GET /products/productdetail/Cabinet%2BDoor%2Band%2BDrawer%2BPul

1-12334441580/103/340789_
3.7430793550.00.09345.64
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-12334441581/100/340980W
3.7000791280.00.09345.82
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-12334441580/112/341266_
3.7330793070.00.10346.15
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-12334441580/1

Found on 2026-01-09 01:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704cc92ec80

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Thursday, 01-Jan-2026 19:46:38 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 105
Parent Server MPM Generation: 104
Server uptime:  37 days 23 hours 25 minutes 43 seconds
Server load: 1.96 1.75 1.75
Total accesses: 12255896 - Total Traffic: 12.1 GB - Total Duration: 2793933
CPU Usage: u160.61 s275.87 cu5581.31 cs7262.82 - .405% CPU load
3.74 requests/sec - 3959 B/second - 1060 B/request - .227966 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01888528no0yes025000
11888529no0yes124000
Sum200 149000

____________________________________________W_____..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-10418885280/2642/208459_
94.4110474010.02.79210.59
127.0.0.1http/1.1default:7080GET /wp-content/themes/ HTTP/1.0

0-10418885280/2604/208672_
94.4020473680.02.75210.80
127.0.0.1http/1.1default:7080GET /function/function.php HTTP/1.0

0-10418885280/2628/208271_
94.4200472890.02.77210.51
127.0.0.1http/1.1default:7080GET /wp-includes/sodium_compat/ HTTP/1.0

0-10418885280/2635/208533_
94.4210475040.02.78210.74
127.0.0.1http/1.1default:7080GET /wp-includes/js/ HTTP/1.0

0-10418885280/2657/208556_
94.4010482990.02.80210.69
127.0.0.1http/1.1default:7080GET /images/index.php HTTP/1.0

0-10418885280/2552/208325_
94.4120482320.02.69210.48
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/midnight/ HTTP/1.0

0-10418885280/2672/208445_
94.4120472390.02.81210.62
127.0.0.1http/1.1default:7080GET /wp-admin/maint/ HTTP/1.0

0-10418885280/2612/208303_
94.4010481500.02.76210.42
127.0.0.1http/1.1default:7080GET /index.php/feed/atom/ HTTP/1.0

0-10418885280/2639/208471_
94.4110474380.02.79210.61
127.0.0.1http/1.1default:7080GET /index/function.php HTTP/1.0

0-10418885280/2627/209137_
94.4110478270.02.77211.26
127.0.0.1http/1.1default:7080GET /wp-content/uploads/ HTTP/1.0

0-10418885280/2526/208538_
94.3720474160.02.66210.77
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-10418885280/2661/208524_
94.3910471590.02.81210.63
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-10418885280/2653/209301_
94.4110477490.02.80211.46
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-10418885280/2611/209090_
94.4200473860.02.76211.23
127.0.0.1http/1.1default:7080GET /wp-includes/block-bindings/index.php HTTP/1.0

0-10418885280/2610/208416_
94.3720483460.02.75210.61
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-10418885280/2655/207968_
94.4210477530.02.80210.09
127.0.0.1http/1.1default:7080GET /wp-includes/PHPMailer/ HTTP/1.0

0-10418885280/2610/208682_
94.4110478340.02.75210.80
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

0-10418885280/2686/208226_
94.3820481150.02.84210.34
127.0.0.1http/1.1default:7080GET /.well-known/acme-challenge/index.php HTTP/1.0

0-10418885280/2629/209012_
94.4110474970.02.78211.16
127.0.0.1http/1.1default:7080GET /wp-includes/ HTTP/1.0

0-10418885280/2664/208821_
94.4210474200.02.81211.00
127.0.0.1http/1.1default:7080GET /wp-includes/IXR/ HTTP/1.0

0-10418885280/2610/208379_
94.4110473460.02.76210.58
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/ HTTP/1.0

0-10418885280/2617/208784_
94.4110472360.02.76210.90
127.0.0.1http/1.1default:7080GET /wp-content/ HTTP/1.0

0-10418885280/2598/208706_
94.3400488160.02.74210.83
127.0.0.1http/1.1default:7080GET /c/rc-trucks_1-36-micro-t-bodies HTTP/1.0

0-10418885280/2630/208502_
94.3310471450.02.78210.63
127.0.0.1http/1.1default:7080GET /c/slot-car-racing_parma-hand-controllers_1-32-home-set HTT

0-10418885280/2709/209278_
94.4120474710.02.86211.38
127.0.0.1http/1.1default:7080GET /wp-admin/includes/ HTTP/1.0

1-10418885290/1686/282324_
61.8910636090.01.78285.51
127.0.0.1http/1.1default:7080GET //wp-includes/fonts/ HTTP/1.0

1-10418885290/1603/281589_
61.9110642710.01.69284.67
127.0.0.1http/1.1default:7080GET /wp-includes/Text/ HTTP/1.0

1-10418885290/1682/281887_
61.9030635330.01.77285.09
127.0.0.1http/1.1default:7080GET /autoload_classmap/function.php HTTP/1.0

1-10418885290/1631/281070_
61.9110634240.01.71284.37
127.0.0.1http/1.1default:7080GET /wp-admin/network/ HTTP/1.0

1-10418885290/1611/281561_
61.9030633640.01.69284.74
127.0.0.1http/1.1default:7080GET /images/install.php HTTP/1.0

1-10418885290/1670/282471_
61.9000642880.01.76285.65
127.0.0.1http/1.1default:7080GET /admin/controller/extension/extension/ultra.php HTTP/1.0

1-10418885290/1697/282151_
61.9120639030.01.79285.26
127.0.0.1http/1.1default:7080GET /wp-admin/js/ HTTP/1.0

1-10418885290/1647/281136_
61.9100632270.01.73284.36
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-10418885290/1648/281672_
61.8910633630.01.74284.90
127.0.0.1http/1.1default:7080GET /.tresh/index.php HTTP/1.0

1-10418885290/1686/281801_
61.8910635730.01.78284.96
127.0.0.1http/1.1default:7080GET /.well-known/ HTTP/1.0

1-10418885290/1652/281452_
61.8920640430.01.74284.68
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

1-10418885290/1664/281331_
61.8910633820.01.75284.49
127.0.0.1http/1.1default:7080GET /products/productdetail/Oval%2BGaspachi%2BHatch/part_number

1-10418885290/1632/281218_
61.9110645100.01.73284.45
127.0.0.1http/1.1default:7080GET /wp-content/plugins/ HTTP/1.0

1-10418885290/1663/281862_
61.9020636090.01.75285.07
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/blue/ HTTP/1.0

1-10418885290/1618/281705_
61.8920634510.01.71284.84
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-10418885290/1677/281740_
61.9110638570.01.77285.01
127.0.0.1http/1.1default:7080GET /wp-includes/Requests/ HTTP/1.0

1-10418885290/1693/282298_
61.9030637550.01.79285.58
127.0.0.1http/1.1default:7080GET /css/admin.php HTTP/1.0

1-10418885290/1664/281614_
61.8920638330.01.75284.84
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-10418885290/1617/280884_
61.9020635120.01.71284.06
127.0.0.1http/1.1default:7080GET /update/gely.php HTTP/1.0

1-10418885291/1635/281261W
61.8800633080.01.73284.49
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-10418885290/1665/280835_
61.9020635000.01.76284.00
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-10418885290/1648/281321_
61.9020636050.01.74284.46
127.0.0.1http/1.1default:7080GET /wp-admin/images/ HTTP/1.0

1-10418885290/1636/281437_
61.8920631920.01.73284.64
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-10418885290/1674/281644_
61.8920640910.01.772

Found on 2026-01-01 19:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770427360d36

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Friday, 26-Dec-2025 18:42:11 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 88
Parent Server MPM Generation: 87
Server uptime:  31 days 22 hours 21 minutes 16 seconds
Server load: 1.57 1.33 1.38
Total accesses: 10602408 - Total Traffic: 10.5 GB - Total Duration: 2354554
CPU Usage: u169.95 s268.71 cu4690.59 cs6002.31 - .403% CPU load
3.84 requests/sec - 4101 B/second - 1067 B/request - .222077 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0613497no0yes025000
1613498no0yes124000
Sum200 149000

_______________________________________W__________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-876134970/2717/179133_
83.7500396210.02.66182.36
127.0.0.1http/1.1default:7080GET /wp-includes/sodium_compat/index.php HTTP/1.0

0-876134970/2718/179358_
83.7500396730.02.66182.58
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-876134970/2734/179085_
83.7700397150.02.69182.42
127.0.0.1http/1.1default:7080GET /wp-admin/images/index.php HTTP/1.0

0-876134970/2695/179046_
83.7700399660.02.66182.34
127.0.0.1http/1.1default:7080GET /asa.php HTTP/1.0

0-876134970/2681/179177_
83.7000406490.02.64182.44
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/autoload_classmap.php HTTP/1.0

0-876134970/2684/178895_
83.7500405950.02.64182.15
127.0.0.1http/1.1default:7080GET /karma_57c3d4.php HTTP/1.0

0-876134970/2688/179080_
83.7700396650.02.64182.34
127.0.0.1http/1.1default:7080GET /file1.php HTTP/1.0

0-876134970/2813/179171_
83.7700406400.02.75182.37
127.0.0.1http/1.1default:7080GET /wp-admin.php HTTP/1.0

0-876134970/2658/179085_
83.7500398130.02.61182.32
127.0.0.1http/1.1default:7080GET /doelr.php HTTP/1.0

0-876134970/2671/179682_
83.7700398280.02.62182.91
127.0.0.1http/1.1default:7080GET /wp-includes/random_compat/vx.php HTTP/1.0

0-876134970/2704/179187_
83.7600397960.02.66182.45
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-876134970/2718/179291_
83.7400396150.02.67182.47
127.0.0.1http/1.1default:7080GET /t.php?p= HTTP/1.0

0-876134970/2735/179841_
83.7700398320.02.68183.05
127.0.0.1http/1.1default:7080GET /file32.php HTTP/1.0

0-876134970/2657/179536_
83.7700397190.02.61182.81
127.0.0.1http/1.1default:7080GET /l3gi0n.php HTTP/1.0

0-876134970/2675/179137_
83.7800407980.02.63182.37
127.0.0.1http/1.1default:7080GET /wp-title.php HTTP/1.0

0-876134970/2738/178712_
83.7700401690.02.69181.96
127.0.0.1http/1.1default:7080GET /wp-content/about.php HTTP/1.0

0-876134970/2736/179346_
83.7600401350.02.69182.58
127.0.0.1http/1.1default:7080GET /wp-includes/css/ HTTP/1.0

0-876134970/2676/178747_
83.7700404890.02.63181.95
127.0.0.1http/1.1default:7080GET /wp-content/plugins/autoload_classmap.php HTTP/1.0

0-876134970/2693/179677_
83.7700398500.02.64182.89
127.0.0.1http/1.1default:7080GET /gecko.php HTTP/1.0

0-876134970/2753/179385_
83.7700397200.02.71182.69
127.0.0.1http/1.1default:7080GET /55b76.php HTTP/1.0

0-876134970/2696/179174_
83.7500397730.02.65182.44
127.0.0.1http/1.1default:7080GET /p.php HTTP/1.0

0-876134970/2697/179344_
83.7800396020.02.65182.58
127.0.0.1http/1.1default:7080GET /ccea.php HTTP/1.0

0-876134970/2774/179429_
83.7700405760.02.72182.67
127.0.0.1http/1.1default:7080GET /admin/controller/extension/extension/vx.php HTTP/1.0

0-876134970/2693/179228_
83.7500395640.02.65182.51
127.0.0.1http/1.1default:7080GET /yas.php HTTP/1.0

0-876134970/2659/179632_
83.7700397400.02.60182.80
127.0.0.1http/1.1default:7080GET /nc.php HTTP/1.0

1-876134980/4279/245472_
123.7500540710.04.18249.77
127.0.0.1http/1.1default:7080GET /wp-content/themes/admin.php HTTP/1.0

1-876134980/4306/244665_
123.7900548490.04.23248.91
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-876134980/4222/245042_
123.7800540720.04.17249.33
127.0.0.1http/1.1default:7080GET /classwithtostring.php HTTP/1.0

1-876134980/4234/244441_
123.8100539790.04.15248.79
127.0.0.1http/1.1default:7080GET /zc-729.php HTTP/1.0

1-876134980/4221/245200_
123.7900540600.04.14249.52
127.0.0.1http/1.1default:7080GET /admin.php HTTP/1.0

1-876134980/4244/245721_
123.7000539950.04.15250.03
127.0.0.1http/1.1default:7080GET /ahax.php HTTP/1.0

1-876134980/4176/245213_
123.7900544390.04.11249.48
127.0.0.1http/1.1default:7080GET /rzki.php HTTP/1.0

1-876134980/4204/244436_
123.7000538240.04.13248.75
127.0.0.1http/1.1default:7080GET /wp-admin/css/about.php HTTP/1.0

1-876134980/4240/244881_
123.8000539140.04.17249.22
127.0.0.1http/1.1default:7080GET /hook.php HTTP/1.0

1-876134980/4221/245018_
123.7200541100.04.16249.30
127.0.0.1http/1.1default:7080GET /gel4y.php HTTP/1.0

1-876134980/4277/244638_
123.7800545700.04.21248.96
127.0.0.1http/1.1default:7080GET /s12.php HTTP/1.0

1-876134980/4209/244446_
123.7800539080.04.14248.73
127.0.0.1http/1.1default:7080GET /db.php HTTP/1.0

1-876134980/4254/244463_
123.7800550750.04.17248.82
127.0.0.1http/1.1default:7080GET /wp-includes/images/ HTTP/1.0

1-876134980/4251/244964_
123.7200539320.04.17249.22
127.0.0.1http/1.1default:7080GET /new.php HTTP/1.0

1-876134981/4248/244931W
123.7600539600.04.17249.20
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-876134980/4236/244901_
123.7900544420.04.17249.31
127.0.0.1http/1.1default:7080GET /lm18.php HTTP/1.0

1-876134980/4244/245292_
123.7900542160.04.17249.70
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/Engine/vx.php HTTP/1.0

1-876134980/4271/244980_
123.7900544210.04.20249.30
127.0.0.1http/1.1default:7080GET /wp-includes/assets/vx.php HTTP/1.0

1-876134980/4196/244219_
123.7600539520.04.12248.50
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-876134980/4282/244497_
123.7900538260.04.21248.86
127.0.0.1http/1.1default:7080GET /bbn.php HTTP/1.0

1-876134980/4242/244238_
123.7100541280.04.17248.48
127.0.0.1http/1.1default:7080GET /inputs.php HTTP/1.0

1-876134980/4281/244489_
123.7900541880.04.20248.77
127.0.0.1http/1.1default:7080GET /assets/vx.php HTTP/1.0

1-876134980/4261/244596_
123.7800536990.04.19248.91
127.0.0.1http/1.1default:7080GET /wso.php HTTP/1.0

1-876134980/4261/245045_
123.8100541780.04.19249.36
127.0.0.1http/1.1default:7080GET /wp-includes/PHPMailer/index.php HTTP/1.0

1-876134980/4170/245242_
123.7900551790.04.10249.58
127.0.0.1

Found on 2025-12-26 18:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770472205477

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Wednesday, 24-Dec-2025 15:56:53 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 81
Parent Server MPM Generation: 80
Server uptime:  29 days 19 hours 35 minutes 58 seconds
Server load: 1.72 1.72 1.77
Total accesses: 9806446 - Total Traffic: 9.8 GB - Total Duration: 2168306
CPU Usage: u316.04 s472.77 cu4167.36 cs5293.75 - .398% CPU load
3.81 requests/sec - 4077 B/second - 1071 B/request - .22111 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0129811no0yes124000
1129812no0yes025000
Sum200 149000

________________W_________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-801298110/6878/166143_
228.74130365780.07.14169.76
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-801298110/6954/166278_
228.7600366000.07.20169.90
127.0.0.1http/1.1default:7080GET /buy.php HTTP/1.0

0-801298110/6915/165997_
228.7230366760.07.19169.71
127.0.0.1http/1.1default:7080GET /wp-admin/includes/ HTTP/1.0

0-801298110/6787/166023_
228.7630369200.07.04169.68
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-801298110/6890/166215_
228.7570376240.07.17169.84
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-801298110/6898/165892_
228.70130375590.07.16169.54
127.0.0.1http/1.1default:7080GET /file.php HTTP/1.0

0-801298110/6988/166124_
228.7160366420.07.25169.77
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

0-801298110/6965/166044_
228.7560375820.07.24169.68
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-801298110/6966/166240_
228.7200367610.07.23169.84
127.0.0.1http/1.1default:7080GET /wp-admin/js/autoload_classmap.php HTTP/1.0

0-801298110/7013/166699_
228.75120367990.07.28170.32
127.0.0.1http/1.1default:7080GET /wso.php HTTP/1.0

0-801298110/6910/166121_
228.74140367400.07.18169.75
127.0.0.1http/1.1default:7080GET /wp-includes/customize/ HTTP/1.0

0-801298110/6891/166006_
228.7600365560.07.15169.56
127.0.0.1http/1.1default:7080GET /aa.php HTTP/1.0

0-801298110/6985/166736_
228.70130367870.07.26170.35
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

0-801298110/7028/166671_
228.7560367210.07.30170.33
167.94.138.193http/1.1default-86-38-247-135:7081GET /robots.txt HTTP/1.1

0-801298110/6913/166119_
228.7350377580.07.20169.73
167.94.138.193http/1.1

0-801298110/6953/165650_
228.73140371430.07.23169.27
127.0.0.1http/1.1default:7080GET /wp-content/ HTTP/1.0

0-801298111/6926/166272W
228.7400370900.07.20169.87
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-801298110/6859/165771_
228.7200374500.07.12169.34
127.0.0.1http/1.1default:7080GET /wp-admin/js/ HTTP/1.0

0-801298110/6961/166505_
228.70130367890.07.22170.12
127.0.0.1http/1.1default:7080GET /flower.php HTTP/1.0

0-801298110/6933/166241_
228.74130366590.07.20169.92
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/fullscreen/ HTTP/1.0

0-801298110/6808/166100_
228.74130367600.07.08169.76
127.0.0.1http/1.1default:7080GET /wp-includes/widgets/about.php HTTP/1.0

0-801298110/6993/166304_
228.71120365670.07.25169.94
127.0.0.1http/1.1default:7080GET /tiny.php HTTP/1.0

0-801298110/6894/166342_
228.7170374690.07.15169.97
127.0.0.1http/1.1default:7080GET /wp-admin/classwithtostring.php/.well-known/acme-challenge/

0-801298110/6864/166349_
228.75120365750.07.12170.01
127.0.0.1http/1.1default:7080GET /wp-signin.php HTTP/1.0

0-801298110/6960/166563_
228.73120366920.07.24170.14
127.0.0.1http/1.1default:7080GET /wp-content/uploads/ HTTP/1.0

1-801298120/11152/226521_
345.1590496840.011.60231.38
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-801298120/11115/225905_
345.1510504920.011.53230.69
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-801298120/11032/226317_
345.1600496810.011.47231.14
127.0.0.1http/1.1default:7080GET /cgi-bin/ HTTP/1.0

1-801298120/11222/225521_
345.1430495890.011.67230.42
127.0.0.1http/1.1default:7080GET /wp-includes/style-engine/ HTTP/1.0

1-801298120/11121/226195_
345.1590496240.011.57231.09
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-801298120/11295/226849_
345.1390495950.011.73231.73
127.0.0.1http/1.1default:7080GET /wp-includes/certificates/index.php HTTP/1.0

1-801298120/11033/226481_
345.1400494780.011.46231.28
127.0.0.1http/1.1default:7080GET /xmldoc/ HTTP/1.0

1-801298120/11121/225717_
345.1600494340.011.55230.60
127.0.0.1http/1.1default:7080GET /edit.php HTTP/1.0

1-801298120/10951/225994_
345.1410495110.011.37230.89
127.0.0.1http/1.1default:7080GET /wp-links.php HTTP/1.0

1-801298120/11024/226209_
345.1400496970.011.44231.01
127.0.0.1http/1.1default:7080GET /xmrlpc.php HTTP/1.0

1-801298120/10904/225936_
345.1560502460.011.34230.84
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-801298120/11123/225743_
345.1500495790.011.56230.58
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-801298120/11083/225704_
345.1400507320.011.52230.60
127.0.0.1http/1.1default:7080GET /wp.php HTTP/1.0

1-801298120/11118/226073_
345.1420495590.011.55230.86
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-801298120/10993/226182_
345.1520496330.011.41231.02
127.0.0.1http/1.1default:7080GET /?id=212&url=http%3A%2F%2Fwww.tourisme-essonne.com%2Ffr%2Fh

1-801298120/11203/226002_
345.1600500880.011.63230.96
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-801298120/11092/226533_
345.1500498690.011.51231.46
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-801298120/11049/226218_
345.12110500690.011.49231.07
127.0.0.1http/1.1default:7080GET /wp-includes/block-supports/ HTTP/1.0

1-801298120/11043/225578_
345.1600496070.011.47230.41
127.0.0.1http/1.1default:7080GET /admin.php HTTP/1.0

1-801298120/11196/225630_
345.1530494290.011.63230.54
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-801298120/11121/225575_
345.1290498120.011.56230.37
127.0.0.1http/1.1default:7080GET /wp-includes/blocks/code/ HTTP/1.0

1-801298120/11080/225585_
345.1590497850.011.52230.41
127.0.0.1http/1.1default:7080GET /?id=212&url=http%3A%2F%2Fwww.tourisme-essonne.com%2Ffr%2Fh

1-801298120/11070/225794_
345.1290493020.011.50230.66
127.0.0.1http/1.1default:7080GET /wp-includes/blocks/post-author-name/ HTTP/1.0

1-801298120/11144/226236_
345.1460497940.011.59231.11
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/providers/ HTTP/1.0

1-80

Found on 2025-12-24 15:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704e7c23d7e

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Monday, 22-Dec-2025 20:16:46 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 76
Parent Server MPM Generation: 75
Server uptime:  27 days 23 hours 55 minutes 51 seconds
Server load: 0.91 0.98 1.15
Total accesses: 8641500 - Total Traffic: 8.6 GB - Total Duration: 1880679
CPU Usage: u157.35 s233.7 cu3738.35 cs4731.95 - .366% CPU load
3.57 requests/sec - 3811 B/second - 1066 B/request - .217633 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04011087no0yes124000
14011088no0yes025000
Sum200 149000

______W___________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-7540110870/2857/147716_
75.1460320510.02.99150.38
127.0.0.1http/1.1default:7080GET /wp-includes/js/dist/development/index.php HTTP/1.0

0-7540110870/2730/147867_
75.1530320840.02.87150.56
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-7540110870/2781/147708_
75.10180322150.02.91150.46
127.0.0.1http/1.1default:7080GET /wp-includes/block-supports HTTP/1.0

0-7540110870/2757/147879_
75.14210321200.02.88150.61
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

0-7540110870/2827/147880_
75.1560320740.02.96150.54
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-7540110870/2803/147645_
75.15140330820.02.93150.35
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-7540110871/2756/147613W
75.1200321190.02.88150.31
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-7540110870/2796/147592_
75.14150327830.02.92150.26
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

0-7540110870/2752/147818_
75.14180322270.02.88150.46
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

0-7540110870/2752/148170_
75.1490322210.02.88150.85
127.0.0.1http/1.1default:7080GET /wp-includes/customize/chosen.php HTTP/1.0

0-7540110870/2813/147824_
75.15100322560.02.94150.50
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

0-7540110870/2828/147568_
75.11160320230.02.96150.18
127.0.0.1http/1.1default:7080GET /wp-includes/customize/chosen.php HTTP/1.0

0-7540110870/2793/148319_
75.1620322940.02.93150.99
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-7540110870/2778/148137_
75.1590322100.02.92150.84
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-7540110870/2794/147758_
75.1410327640.02.92150.40
127.0.0.1http/1.1default:7080POST /graphql HTTP/1.0

0-7540110870/2722/147329_
75.1570326740.02.85149.99
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-7540110870/2737/147923_
75.1610325940.02.86150.56
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-7540110870/2675/147511_
75.14100329880.02.80150.13
127.0.0.1http/1.1default:7080GET /wp-includes/block-supports HTTP/1.0

0-7540110870/2795/148023_
75.14160322340.02.93150.69
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-7540110870/2715/147831_
75.1410321240.02.85150.56
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

0-7540110870/2780/147837_
75.1430322320.02.92150.55
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api HTTP/1.0

0-7540110870/2693/147958_
75.1610320960.02.82150.68
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-7540110870/2775/147965_
75.1420329850.02.92150.65
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.0

0-7540110870/2774/148099_
75.12210321340.02.90150.83
127.0.0.1http/1.1default:7080GET /classwithtostring.php HTTP/1.0

0-7540110870/2755/148093_
75.1470321400.02.88150.71
127.0.0.1http/1.1default:7080GET /wp-includes/index.php HTTP/1.0

1-7540110880/4549/198225_
115.42170427740.04.75201.56
127.0.0.1http/1.1default:7080GET /wp-includes/IXR HTTP/1.0

1-7540110880/4573/197418_
115.44230435270.04.78200.68
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-7540110880/4541/197941_
115.42190427570.04.75201.25
127.0.0.1http/1.1default:7080GET /wp-content/uploads HTTP/1.0

1-7540110880/4476/197307_
115.44110427140.04.68200.70
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-7540110880/4518/198052_
115.3980426650.04.73201.42
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-7540110880/4548/198403_
115.44190427060.04.76201.77
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

1-7540110880/4585/198268_
115.44310426080.04.79201.59
127.0.0.1http/1.1default:7080GET /wp-includes/html-api/index.php HTTP/1.0

1-7540110880/4465/197573_
115.44310425990.04.67200.95
127.0.0.1http/1.1default:7080GET /wp-includes/blocks/code HTTP/1.0

1-7540110880/4632/197898_
115.42210426660.04.84201.30
127.0.0.1http/1.1default:7080GET /wp-admin/js HTTP/1.0

1-7540110880/4543/197997_
115.39300427680.04.75201.30
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/blue HTTP/1.0

1-7540110880/4563/197999_
115.39130434770.04.75201.41
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/index.php HTTP/1.0

1-7540110880/4528/197386_
115.39120426740.04.74200.71
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.0

1-7540110880/4587/197616_
115.44210435410.04.81201.01
127.0.0.1http/1.1default:7080POST /api HTTP/1.0

1-7540110880/4531/197981_
115.44130427080.04.74201.28
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-7540110880/4567/198059_
115.44300427900.04.78201.43
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/index.php HTTP/1.0

1-7540110880/4489/197663_
115.42230426140.04.70201.10
127.0.0.1http/1.1default:7080GET /wp-admin/includes/colour.php HTTP/1.0

1-7540110880/4639/198324_
115.44120429640.04.85201.76
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-7540110880/4578/197922_
115.4480431560.04.78201.25
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-7540110880/4472/197460_
115.44200427870.04.69200.80
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

1-7540110880/4540/197296_
115.44170425430.04.74200.68
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-7540110880/4549/197418_
115.42200429530.04.76200.71
127.0.0.1http/1.1default:7080GET /wp-content/backups-dup-lite HTTP/1.0

1-7540110880/4588/197468_
115.39110429470.04.80200.78
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

1-7540110880/4549/197575_
115.44230424510.04.76200.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-7540110880/4600/198032_
115.42230429370.04.82201.39
127.0.0.1http/1.1default:7080

Found on 2025-12-22 20:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770406e8a2d8

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Sunday, 21-Dec-2025 04:00:26 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 73
Parent Server MPM Generation: 72
Server uptime:  26 days 7 hours 39 minutes 31 seconds
Server load: 1.07 0.88 0.82
Total accesses: 8008546 - Total Traffic: 7.9 GB - Total Duration: 1744061
CPU Usage: u97.99 s154.71 cu3521.21 cs4469.82 - .363% CPU load
3.52 requests/sec - 3748 B/second - 1064 B/request - .217775 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03695043no0yes025000
13695044no0yes124000
Sum200 149000

_________________________________W________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-7236950430/1189/136920_
26.0000297340.01.27139.04
127.0.0.1http/1.1default:7080GET /wp-includes/IXR/security.php HTTP/1.0

0-7236950430/1168/137273_
25.9720298180.01.25139.42
127.0.0.1http/1.1default:7080GET /wp-conflg/function.php HTTP/1.0

0-7236950430/1182/136999_
25.9900299140.01.26139.22
127.0.0.1http/1.1default:7080GET /wp-includes/js/dist/development/index.php HTTP/1.0

0-7236950430/1195/137235_
25.9900298460.01.28139.42
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/admin.php HTTP/1.0

0-7236950430/1183/137021_
25.9820297590.01.26139.14
127.0.0.1http/1.1default:7080GET /wp-content/backups-dup-lite HTTP/1.0

0-7236950430/1125/136867_
25.9310307890.01.20139.05
127.0.0.1http/1.1default:7080GET /wp-content/plugins/wp-theme-editor/include.php HTTP/1.0

0-7236950430/1205/137026_
25.9810298590.01.29139.18
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2025 HTTP/1.0

0-7236950430/1165/136815_
25.9310304920.01.25138.96
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-7236950430/1172/137080_
25.9820299370.01.25139.18
127.0.0.1http/1.1default:7080GET /wp-includes/SimplePie/applicationd.php HTTP/1.0

0-7236950430/1183/137446_
25.9810299520.01.27139.58
127.0.0.1http/1.1default:7080GET /vendor/phpunit/phpunit/src/Util/PHP/as.php HTTP/1.0

0-7236950430/1173/137009_
25.9720299550.01.25139.15
127.0.0.1http/1.1default:7080GET /wp-includes/PHPMailer/index.php HTTP/1.0

0-7236950430/1119/136775_
25.9800297330.01.19138.86
127.0.0.1http/1.1default:7080GET /wp-admin/css/about.php HTTP/1.0

0-7236950430/1204/137559_
25.9810300080.01.28139.70
127.0.0.1http/1.1default:7080GET /wp-includes/Text HTTP/1.0

0-7236950430/1183/137331_
25.9310298970.01.26139.48
127.0.0.1http/1.1default:7080GET /fonts/fontawesome-webfont.php HTTP/1.0

0-7236950430/1213/136981_
25.9810298860.01.29139.09
127.0.0.1http/1.1default:7080GET /wp-content/themes/admin.php HTTP/1.0

0-7236950430/1132/136618_
25.9810303760.01.21138.76
127.0.0.1http/1.1default:7080GET /uploads/index.php HTTP/1.0

0-7236950430/1187/137172_
25.9910302920.01.27139.27
127.0.0.1http/1.1default:7080GET /wp-includes/blocks/code HTTP/1.0

0-7236950430/1207/136909_
25.9810307390.01.29139.01
127.0.0.1http/1.1default:7080GET /wp-admin HTTP/1.0

0-7236950430/1217/137357_
25.9900299570.01.30139.50
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.0

0-7236950430/1180/137223_
25.9810298680.01.26139.40
127.0.0.1http/1.1default:7080GET /wp-includes/block-supports HTTP/1.0

0-7236950430/1157/137037_
25.9800299460.01.24139.20
127.0.0.1http/1.1default:7080GET /2021/wp-includes/wlwmanifest.xml HTTP/1.0

0-7236950430/1181/137336_
25.9800298510.01.26139.53
127.0.0.1http/1.1default:7080GET /wp-includes/images/media/dog.php HTTP/1.0

0-7236950430/1199/137232_
25.9900306970.01.28139.36
127.0.0.1http/1.1default:7080GET /wp-includes/index.php HTTP/1.0

0-7236950430/1175/137336_
25.9800298310.01.26139.53
127.0.0.1http/1.1default:7080GET /wp-content/autoload_classmap.php HTTP/1.0

0-7236950430/1167/137395_
25.9800298690.01.24139.47
127.0.0.1http/1.1default:7080GET /shop/wp-includes/wlwmanifest.xml HTTP/1.0

1-7236950440/1832/183552_
37.9310396030.01.96186.19
127.0.0.1http/1.1default:7080GET /themes.php HTTP/1.0

1-7236950440/1823/182840_
37.9300403430.01.94185.42
127.0.0.1http/1.1default:7080GET /2019/wp-includes/wlwmanifest.xml HTTP/1.0

1-7236950440/1855/183335_
37.9510395930.01.98185.94
127.0.0.1http/1.1default:7080GET /wp-includes/html-api/index.php HTTP/1.0

1-7236950440/1861/182766_
37.9500395790.01.99185.43
127.0.0.1http/1.1default:7080GET /wp-includes/IXR HTTP/1.0

1-7236950440/1896/183559_
37.9500395390.02.03186.22
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/index.php HTTP/1.0

1-7236950440/1838/183889_
37.9510395570.01.97186.54
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-7236950440/1797/183524_
37.9410394360.01.92186.14
127.0.0.1http/1.1default:7080GET /wp-content/languages HTTP/1.0

1-7236950440/1787/183039_
37.9500394330.01.91185.71
127.0.0.1http/1.1default:7080GET /wp-includes/IXR/index.php HTTP/1.0

1-7236950441/1861/183227W
37.9000394850.02.00185.92
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-7236950440/1824/183442_
37.9600396130.01.95186.03
127.0.0.1http/1.1default:7080GET /wp-includes/theme-compat HTTP/1.0

1-7236950440/1896/183376_
37.9500403160.02.02186.08
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api HTTP/1.0

1-7236950440/1894/182875_
37.9510395370.02.02185.50
127.0.0.1http/1.1default:7080GET /wp-includes/block-bindings/index.php HTTP/1.0

1-7236950440/1831/182944_
37.9410403580.01.96185.62
127.0.0.1http/1.1default:7080GET /wp-admin/js/widgets HTTP/1.0

1-7236950440/1853/183446_
37.9500395840.01.98186.03
127.0.0.1http/1.1default:7080GET /wp-includes/css/index.php HTTP/1.0

1-7236950440/1866/183447_
37.9510396310.02.00186.12
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/Engine HTTP/1.0

1-7236950440/1841/183171_
37.9500394730.01.97185.89
127.0.0.1http/1.1default:7080GET /wp-links.php HTTP/1.0

1-7236950440/1859/183578_
37.9500397710.01.99186.29
127.0.0.1http/1.1default:7080GET /wp-includes/SimplePie/index.php HTTP/1.0

1-7236950440/1870/183322_
37.9600399910.02.00185.95
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/index.php HTTP/1.0

1-7236950440/1840/182912_
37.9510396260.01.97185.53
127.0.0.1http/1.1default:7080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

1-7236950440/1833/182761_
37.9410394310.01.96185.45
127.0.0.1http/1.1default:7080GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.0

1-7236950440/1844/182964_
37.9510398430.01.97185.56
127.0.0.1http/1.1default:7080GET /cms/wp-includes/wlwmanifest.xml HTTP/1.0

1-7236950440/1865/182741_
37.9010397700.02.00185.34
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

1-7236950440/1845/182997_
37.9310393070.01.98185.65
127.0.0.1http/1.1default:7080GET /new.p

Found on 2025-12-21 04:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77040c13ff5b

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Friday, 19-Dec-2025 04:50:02 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 67
Parent Server MPM Generation: 66
Server uptime:  24 days 8 hours 29 minutes 7 seconds
Server load: 1.39 1.36 1.43
Total accesses: 7153858 - Total Traffic: 7.0 GB - Total Duration: 1542055
CPU Usage: u77.33 s129.14 cu3126.17 cs3937.65 - .346% CPU load
3.4 requests/sec - 3594 B/second - 1057 B/request - .215556 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03304431no0yes025000
13304432no0yes124000
Sum200 149000

________________________________________W_________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



</SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-6633044310/421/121925_
12.93330262020.00.45122.96
127.0.0.1http/1.1default:7080GET /k/shopping HTTP/1.0

0-6633044310/443/122204_
12.93560263220.00.48123.24
127.0.0.1http/1.1default:7080GET /uk-tv-episode-guide?showid=262&amzid=B00MWV4QBO HTTP/1.0

0-6633044310/422/121973_
12.94170264060.00.45123.09
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

0-6633044310/418/122245_
12.93200263490.00.45123.34
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

0-6633044310/417/121958_
12.92330261960.00.45122.98
127.0.0.1http/1.1default:7080GET /wp-includes/js/dist/development/index.php HTTP/1.0

0-6633044310/407/121840_
12.93280272380.00.44122.90
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/index.php HTTP/1.0

0-6633044310/428/121965_
12.93280263130.00.46123.03
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=517783 HTTP/1.0

0-6633044310/429/121719_
12.93200267860.00.46122.77
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api HTTP/1.0

0-6633044310/410/122061_
12.93170263770.00.44123.07
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.0

0-6633044310/419/122376_
12.94160264020.00.45123.40
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-6633044310/423/122046_
12.93150264220.00.46123.11
127.0.0.1http/1.1default:7080GET /actor?profileid=587381 HTTP/1.0

0-6633044310/427/121822_
12.93160262140.00.46122.82
127.0.0.1http/1.1default:7080GET /wp-includes/theme-compat HTTP/1.0

0-6633044310/423/122465_
12.94150264850.00.46123.50
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

0-6633044310/402/122335_
12.94150262390.00.43123.39
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-6633044310/426/121843_
12.9330263200.00.46122.86
127.0.0.1http/1.1default:7080GET /actor?profileid=69656 HTTP/1.0

0-6633044310/426/121659_
12.93150268110.00.46122.72
127.0.0.1http/1.1default:7080GET /actor?profileid=78496 HTTP/1.0

0-6633044310/398/122199_
12.9430267890.00.43123.19
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-6633044310/439/121921_
12.9430271840.00.47122.93
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-6633044310/410/122134_
12.9330263760.00.44123.16
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-6633044310/419/122119_
12.9500263220.00.45123.19
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-6633044310/418/122047_
12.9300263750.00.45123.10
43.134.141.244http/1.1default:7080GET / HTTP/1.0

0-6633044310/415/122342_
12.92650263540.00.45123.45
127.0.0.1http/1.1default:7080GET /wp-includes/IXR HTTP/1.0

0-6633044310/420/122068_
12.91810271080.00.45123.11
127.0.0.1http/1.1default:7080GET /ads.txt HTTP/1.0

0-6633044310/419/122191_
12.93650263150.00.45123.27
127.0.0.1http/1.1default:7080GET /category/book-news/page/8/ HTTP/1.0

0-6633044310/409/122393_
12.92560263340.00.44123.39
127.0.0.1http/1.1default:7080GET /wp-includes/block-supports HTTP/1.0

1-6633044320/695/164348_
19.6890351060.00.75165.64
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=102539 HTTP/1.0

1-6633044320/697/163802_
19.7290359010.00.75165.04
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-6633044320/662/164178_
19.7290350920.00.71165.43
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

1-6633044320/690/163699_
19.6990351460.00.74165.03
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=242718 HTTP/1.0

1-6633044320/689/164330_
19.7290350830.00.74165.63
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-6633044320/692/164524_
19.7080350490.00.74165.78
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

1-6633044320/657/164482_
19.7280350120.00.70165.75
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-6633044320/678/164040_
19.7260350030.00.73165.37
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-6633044320/649/164067_
19.7250349790.00.70165.37
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-6633044320/699/164304_
19.7060351490.00.75165.52
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

1-6633044320/706/164117_
19.7050358820.00.76165.46
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=13647 HTTP/1.0

1-6633044320/656/163658_
19.7020350480.00.70164.93
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-6633044320/664/163808_
19.7220349900.00.71165.13
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-6633044320/693/164233_
19.7220351000.00.74165.43
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=282979 HTTP/1.0

1-6633044320/705/164287_
19.7120351360.00.76165.59
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-6633044321/659/163886W
19.6200349630.00.71165.23
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-6633044320/673/164487_
19.68120353400.00.72165.84
127.0.0.1http/1.1default:7080GET /wp-includes/html-api/index.php HTTP/1.0

1-6633044320/688/164090_
19.71120355270.00.74165.34
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=434345 HTTP/1.0

1-6633044320/669/163772_
19.66120350430.00.72165.05
127.0.0.1http/1.1default:7080GET /wp-content/autoload_classmap.php HTTP/1.0

1-6633044320/695/163748_
19.71120349750.00.75165.09
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-6633044320/670/163923_
19.68120354070.00.72165.16
127.0.0.1http/1.1default:7080GET /wp-includes/index.php HTTP/1.0

1-6633044320/663/163684_
19.68110350100.00.71164.93
127.0.0.1http/1.1default:7080GET /actor?profileid=571422 HTTP/1.0

1-6633044320/668/163847_
19.71120348530.00.72165.13
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-6633044320/686/164176_
19.71110349630.00.74165.47
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

Found on 2025-12-19 04:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770451f1d3a0

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Tuesday, 16-Dec-2025 23:22:38 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 57
Parent Server MPM Generation: 56
Server uptime:  22 days 3 hours 1 minute 43 seconds
Server load: 1.56 1.29 1.22
Total accesses: 6471306 - Total Traffic: 6.4 GB - Total Duration: 1363249
CPU Usage: u135.17 s200.38 cu2701.15 cs3339.78 - .334% CPU load
3.39 requests/sec - 3582 B/second - 1058 B/request - .210661 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02728816no0yes025000
12728817no0yes124000
Sum200 149000

_________________________________________W________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-5627288160/2587/109234_
74.09100228560.02.39110.32
127.0.0.1http/1.1default:7080GET /siln.php HTTP/1.0

0-5627288160/2584/109461_
74.0950230220.02.38110.53
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

0-5627288160/2590/109220_
74.10110230270.02.39110.35
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

0-5627288160/2657/109582_
74.08110230100.02.46110.72
127.0.0.1http/1.1default:7080GET /mans.php HTTP/1.0

0-5627288160/2632/109261_
74.0690228590.02.44110.31
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-5627288160/2581/109103_
74.08100238620.02.38110.19
127.0.0.1http/1.1default:7080GET /scx.php7 HTTP/1.0

0-5627288160/2651/109207_
74.0900229710.02.45110.31
127.0.0.1http/1.1default:7080GET /sallu.php HTTP/1.0

0-5627288160/2501/108941_
74.10100234120.02.31110.03
127.0.0.1http/1.1default:7080GET /zxin.php HTTP/1.0

0-5627288160/2642/109352_
74.10110231020.02.43110.43
127.0.0.1http/1.1default:7080GET /lock360.php HTTP/1.0

0-5627288160/2596/109562_
74.1070229910.02.39110.64
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-5627288160/2557/109345_
74.08110230140.02.36110.45
127.0.0.1http/1.1default:7080GET /gm.php HTTP/1.0

0-5627288160/2634/109214_
74.09100228960.02.44110.25
127.0.0.1http/1.1default:7080GET /mtvcrew.php HTTP/1.0

0-5627288160/2713/109755_
74.08110231310.02.51110.83
127.0.0.1http/1.1default:7080GET /abc.php HTTP/1.0

0-5627288160/2536/109639_
74.0590229340.02.34110.73
127.0.0.1http/1.1default:7080HEAD /p/mk1-18-machined-finish HTTP/1.0

0-5627288160/2669/109196_
74.10100229800.02.46110.25
127.0.0.1http/1.1default:7080GET /shell.php HTTP/1.0

0-5627288160/2630/108987_
74.0960234720.02.42110.07
127.0.0.1http/1.1default:7080GET /shoha.php HTTP/1.0

0-5627288160/2660/109458_
74.1060234030.02.45110.49
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-5627288160/2585/109241_
74.10100231440.02.38110.29
127.0.0.1http/1.1default:7080GET /acp.php?p= HTTP/1.0

0-5627288160/2608/109543_
74.09110230460.02.41110.60
127.0.0.1http/1.1default:7080GET /sid3.php HTTP/1.0

0-5627288160/2548/109331_
74.1050229770.02.36110.43
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-5627288160/2569/109313_
74.0970229770.02.37110.39
127.0.0.1http/1.1default:7080GET /akcc.php?p= HTTP/1.0

0-5627288160/2638/109613_
74.08110229760.02.43110.73
127.0.0.1http/1.1default:7080GET /m.php HTTP/1.0

0-5627288160/2594/109462_
74.1000238100.02.39110.54
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-5627288160/2602/109442_
74.1090229930.02.41110.54
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

0-5627288160/2632/109713_
74.1090230390.02.41110.74
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-5627288170/3799/149618_
106.5330312860.03.47150.96
127.0.0.1http/1.1default:7080GET /netflix-reveals-casting-for-vinterviken-2021/ HTTP/1.0

1-5627288170/3947/149319_
106.53100321430.03.64150.60
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-5627288170/3837/149648_
106.55120313290.03.52150.97
127.0.0.1http/1.1default:7080GET /moon.php?p= HTTP/1.0

1-5627288170/3815/149180_
106.5430313790.03.50150.56
127.0.0.1http/1.1default:7080GET /an.php HTTP/1.0

1-5627288170/3787/149645_
106.53130312700.03.47151.00
127.0.0.1http/1.1default:7080GET /p/lower-wind-deflectors-chrome?pp=20 HTTP/1.0

1-5627288170/3893/149810_
106.53110312610.03.56151.14
127.0.0.1http/1.1default:7080GET /wsoyanz.php HTTP/1.0

1-5627288170/3871/149898_
106.5550312530.03.54151.23
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-5627288170/3857/149495_
106.5530312730.03.54150.92
127.0.0.1http/1.1default:7080GET /wp/harajuku/ HTTP/1.0

1-5627288170/3932/149692_
106.53120312330.03.61151.06
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

1-5627288170/3863/149539_
106.5310312620.03.55150.83
127.0.0.1http/1.1default:7080GET /p/thunderblox-ultra-double-for-split-limbs?pp=8 HTTP/1.0

1-5627288170/3930/149498_
106.54130321120.03.61150.89
127.0.0.1http/1.1default:7080GET /111.php HTTP/1.0

1-5627288170/3844/149001_
106.53130312550.03.52150.35
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-5627288170/3791/149272_
106.5350312100.03.48150.69
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

1-5627288170/3874/149579_
106.5530313150.03.56150.88
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-5627288170/3919/149547_
106.55100313070.03.59150.92
127.0.0.1http/1.1default:7080GET /pass.php HTTP/1.0

1-5627288170/3834/149395_
106.5610312090.03.51150.82
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-5627288171/3886/149853W
106.5400315710.03.56151.22
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-5627288170/3840/149383_
106.5530317090.03.52150.71
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-5627288170/3883/149241_
106.55100311990.03.55150.57
127.0.0.1http/1.1default:7080GET /403.php HTTP/1.0

1-5627288170/3859/149163_
106.55120312070.03.56150.57
127.0.0.1http/1.1default:7080GET /p.php HTTP/1.0

1-5627288170/3880/149385_
106.55100316630.03.57150.70
127.0.0.1http/1.1default:7080GET /wp-is.php HTTP/1.0

1-5627288170/3883/149102_
106.55110312600.03.57150.39
127.0.0.1http/1.1default:7080GET /wso.php HTTP/1.0

1-5627288170/3832/149352_
106.53120311750.03.51150.70
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

1-5627288170/3807/149673_
106.55110312360.03.50151.03
127.0.0.1http/1.1default:7080GET /wp-good.php HTTP/1.0

1-5627288170/3841/149843_
106.51100322030.03.51151.18
127.0.0.1http/1.1default:7080GET /wp-content/plugins/seoo

Found on 2025-12-16 23:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704d90f043e

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Saturday, 13-Dec-2025 11:21:49 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 50
Parent Server MPM Generation: 49
Server uptime:  18 days 15 hours 54 seconds
Server load: 0.88 1.03 1.05
Total accesses: 5643340 - Total Traffic: 5.6 GB - Total Duration: 1163658
CPU Usage: u59.54 s97.75 cu2361.09 cs2883.21 - .336% CPU load
3.51 requests/sec - 3735 B/second - 1065 B/request - .2062 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02092634no0yes025000
12092635no0yes124000
Sum200 149000

__________________________W_______________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4920926340/426/93873_
11.97160192520.00.3895.42
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-4920926340/462/94150_
11.94170193520.00.4195.66
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-4920926340/458/93812_
11.94160192850.00.4295.40
127.0.0.1http/1.1default:7080GET /assets/data/jquery-file-upload/server/php/ HTTP/1.0

0-4920926340/435/94058_
11.91130193150.00.3995.66
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

0-4920926340/451/93780_
11.97130192040.00.4095.27
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

0-4920926340/442/93883_
11.97120201320.00.3995.41
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

0-4920926340/447/93834_
11.91120193230.00.4095.37
127.0.0.1http/1.1default:7080GET /6kUgr4yGzxN.php HTTP/1.0

0-4920926340/432/93620_
11.97110192360.00.3895.16
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

0-4920926340/455/93903_
11.9780194370.00.4195.44
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-4920926340/429/94010_
11.9790192860.00.3895.56
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-4920926340/461/93964_
11.9690193390.00.4195.51
127.0.0.1http/1.1default:7080GET /mobilew88_com.sql HTTP/1.0

0-4920926340/417/93907_
11.9680192510.00.3795.40
127.0.0.1http/1.1default:7080GET /ew88_com.sql HTTP/1.0

0-4920926340/463/94236_
11.9730194200.00.4195.76
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-4920926340/432/94238_
11.9630193060.00.3895.77
127.0.0.1http/1.1default:7080GET /m.sql HTTP/1.0

0-4920926340/459/93699_
11.88360192630.00.4195.22
127.0.0.1http/1.1default:7080GET /jjrpo.php HTTP/1.0

0-4920926340/447/93575_
11.9700198350.00.3995.10
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-4920926340/447/94001_
11.9600192940.00.3995.47
127.0.0.1http/1.1default:7080GET /latest.sql HTTP/1.0

0-4920926340/461/93877_
11.88210195450.00.4195.40
127.0.0.1http/1.1default:7080GET /xtt.php HTTP/1.0

0-4920926340/455/94347_
11.96210194480.00.4195.86
127.0.0.1http/1.1default:7080POST /api HTTP/1.0

0-4920926340/425/93918_
11.96210193410.00.3895.46
127.0.0.1http/1.1default:7080POST /graphql HTTP/1.0

0-4920926340/431/93987_
11.97180193340.00.3895.50
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

0-4920926340/429/94236_
11.92210193720.00.3895.82
127.0.0.1http/1.1default:7080GET /abc.php HTTP/1.0

0-4920926340/459/94170_
11.97190201600.00.4195.72
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-4920926340/458/94105_
11.94180193370.00.4195.65
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-4920926340/434/94227_
11.97170193570.00.3895.72
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-4920926350/669/131947_
17.8820270790.00.59134.01
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-4920926351/693/131580W
17.8500279210.00.61133.54
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-4920926350/691/131917_
17.86310271130.00.61133.92
127.0.0.1http/1.1default:7080GET /mo.sql HTTP/1.0

1-4920926350/684/131459_
17.8820271710.00.60133.52
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-4920926350/672/131930_
17.86230270470.00.59133.98
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4920926350/676/131954_
17.8610269990.00.60133.99
127.0.0.1http/1.1default:7080GET /.sql HTTP/1.0

1-4920926350/662/132242_
17.82230270690.00.58134.30
127.0.0.1http/1.1default:7080GET /asset/plugins/kcfinder/browse.php HTTP/1.0

1-4920926350/655/131755_
17.82220270690.00.58133.88
127.0.0.1http/1.1default:7080GET /assets/plugins/kcfinder/browse.php HTTP/1.0

1-4920926350/701/131946_
17.87220270400.00.62134.01
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4920926350/709/131755_
17.87200270270.00.63133.75
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

1-4920926350/709/131758_
17.81200272540.00.63133.84
127.0.0.1http/1.1default:7080GET /jjrpo.php HTTP/1.0

1-4920926350/660/131237_
17.81200270100.00.58133.28
127.0.0.1http/1.1default:7080GET /wso.php HTTP/1.0

1-4920926350/685/131706_
17.87200269780.00.60133.80
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

1-4920926350/677/131790_
17.87200270050.00.60133.78
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

1-4920926350/691/131793_
17.81200270070.00.61133.87
127.0.0.1http/1.1default:7080GET /gg.php HTTP/1.0

1-4920926350/678/131835_
17.87150270410.00.60133.95
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-4920926350/681/131946_
17.84150271890.00.60134.02
127.0.0.1http/1.1default:7080POST /adminstrator/vendor/phpunit/phpunit/src/Util/PHP/eval-std

1-4920926350/695/131680_
17.87140274550.00.61133.70
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-4920926350/677/131421_
17.84140268520.00.61133.46
127.0.0.1http/1.1default:7080POST /plugins/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.ph

1-4920926350/688/131503_
17.84100269860.00.61133.57
127.0.0.1http/1.1default:7080POST /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

1-4920926350/683/131666_
17.88100270180.00.61133.67
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-4920926350/675/131349_
17.8860269740.00.60133.35
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-4920926350/678/131674_
17.8850269820.00.60133.71
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-4920926350/709/132049_
17.8620270180.00.63134.07
127.0.0.1http/1.1default:7080GET /backupwp.sql HTTP/1.0

1-4920926350/677/132038_
17.8460279070.00.60134.09
127.0.0.1http/1.1default:7080POST /lar

Found on 2025-12-13 11:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704fef3579c

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Thursday, 11-Dec-2025 11:00:16 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 45
Parent Server MPM Generation: 44
Server uptime:  16 days 14 hours 39 minutes 21 seconds
Server load: 1.25 1.40 1.47
Total accesses: 4832248 - Total Traffic: 4.8 GB - Total Duration: 986802
CPU Usage: u176.75 s243.72 cu1872.42 cs2265.37 - .318% CPU load
3.37 requests/sec - 3581 B/second - 1063 B/request - .204212 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01641614no0yes025000
11641615no0yes124000
Sum200 149000

_____________________________________________W____..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4416416140/4391/81536_
120.9020165830.04.6082.78
127.0.0.1http/1.1default:7080GET /ALFA_DATA/ HTTP/1.0

0-4416416140/4444/81733_
120.8810166750.04.6582.94
127.0.0.1http/1.1default:7080GET /wp-includes/Text/ HTTP/1.0

0-4416416140/4450/81423_
120.9020165930.04.6682.69
127.0.0.1http/1.1default:7080GET /wp-includes/js/jquery/jquery.php HTTP/1.0

0-4416416140/4424/81573_
120.9020165810.04.6282.87
127.0.0.1http/1.1default:7080GET /upload/ HTTP/1.0

0-4416416140/4380/81466_
120.8530165310.04.5782.64
127.0.0.1http/1.1default:7080GET /wp-content/plugins/ HTTP/1.0

0-4416416140/4429/81580_
120.8630174670.04.6382.82
127.0.0.1http/1.1default:7080GET /wp-links-opml.php HTTP/1.0

0-4416416140/4403/81582_
120.9020166550.04.6082.82
127.0.0.1http/1.1default:7080GET /.well-known/acme-challenge/ HTTP/1.0

0-4416416140/4366/81269_
120.9030165470.04.5782.49
127.0.0.1http/1.1default:7080GET /wp-includes/customize/chosen.php HTTP/1.0

0-4416416140/4417/81661_
120.9110167970.04.6282.92
127.0.0.1http/1.1default:7080GET /xmlrpc.php HTTP/1.0

0-4416416140/4421/81642_
120.8820166140.04.6182.90
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2025/ HTTP/1.0

0-4416416140/4432/81576_
120.8820166380.04.6382.81
127.0.0.1http/1.1default:7080GET /wp-content/themes/classic/inc/ HTTP/1.0

0-4416416140/4401/81501_
120.9030165760.04.6182.69
127.0.0.1http/1.1default:7080GET /wp-includes/certificates/ HTTP/1.0

0-4416416140/4455/81895_
120.8820167400.04.6683.12
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/simi.php HTTP/1.0

0-4416416140/4359/81891_
120.9010166290.04.5683.11
127.0.0.1http/1.1default:7080GET /wp.php HTTP/1.0

0-4416416140/4382/81440_
120.9010165940.04.5982.66
127.0.0.1http/1.1default:7080GET /wp-includes/style-engine/wp-conflg.php HTTP/1.0

0-4416416140/4348/81226_
120.8910171120.04.5482.45
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/Renderer/index.php HTTP/1.0

0-4416416140/4426/81727_
120.8940166330.04.6382.90
127.0.0.1http/1.1default:7080GET /wp-includes/bk/index.php HTTP/1.0

0-4416416140/4382/81383_
120.8930168360.04.5882.62
127.0.0.1http/1.1default:7080GET /wp-includes/blocks/code/ HTTP/1.0

0-4416416140/4436/81869_
120.9110167420.04.6483.08
127.0.0.1http/1.1default:7080GET /xmrlpc.php HTTP/1.0

0-4416416140/4320/81579_
120.8820166540.04.5282.81
127.0.0.1http/1.1default:7080GET /wp-content/uploads/index.php HTTP/1.0

0-4416416140/4413/81580_
120.8910166410.04.6282.80
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/Engine/ HTTP/1.0

0-4416416140/4465/81814_
120.9010166510.04.6783.10
127.0.0.1http/1.1default:7080GET /admin/uploads/ HTTP/1.0

0-4416416140/4421/81824_
120.8740174520.04.6283.06
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/blue/atomlib.php HTTP/1.0

0-4416416140/4482/81733_
120.9020166330.04.6982.97
127.0.0.1http/1.1default:7080GET /wp-includes/js/crop/ HTTP/1.0

0-4416416140/4456/81908_
120.8810166880.04.6683.11
127.0.0.1http/1.1default:7080GET /wp-includes/PHPMailer/index.php HTTP/1.0

1-4416416150/7255/111923_
186.7320227420.07.61113.49
127.0.0.1http/1.1default:7080GET /wp-content/plugins/ninja-forms/ HTTP/1.0

1-4416416150/7239/111519_
186.7410228050.07.57112.99
127.0.0.1http/1.1default:7080GET /wp-includes/SimplePie/index.php HTTP/1.0

1-4416416150/7268/111808_
186.7620227610.07.61113.32
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-4416416150/7336/111502_
186.7320228600.07.68113.06
127.0.0.1http/1.1default:7080GET /wp-good.php HTTP/1.0

1-4416416150/7203/111782_
186.7320226950.07.55113.35
127.0.0.1http/1.1default:7080GET /wp-content/mu-plugins/ HTTP/1.0

1-4416416150/7348/111937_
186.7610227240.07.69113.48
127.0.0.1http/1.1default:7080GET /wp-signin.php HTTP/1.0

1-4416416150/7222/112068_
186.7510227220.07.56113.63
127.0.0.1http/1.1default:7080GET /wp-includes/js/codemirror/index.php HTTP/1.0

1-4416416150/7352/111702_
186.7610227230.07.70113.32
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-4416416150/7272/111777_
186.7320226790.07.60113.35
127.0.0.1http/1.1default:7080GET /wp-content/upgrade/index.php HTTP/1.0

1-4416416150/7260/111674_
186.7520226770.07.60113.18
127.0.0.1http/1.1default:7080GET /wp-includes/index.php HTTP/1.0

1-4416416150/7345/111744_
186.7620229310.07.69113.32
127.0.0.1http/1.1default:7080GET /wp-includes/random_compat/index.php HTTP/1.0

1-4416416150/7243/111180_
186.7620226840.07.57112.71
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/index.php HTTP/1.0

1-4416416150/7248/111641_
186.7320226280.07.58113.26
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/ HTTP/1.0

1-4416416150/7258/111591_
186.7620226420.07.58113.09
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/providers/index.php HTTP/1.0

1-4416416150/7366/111696_
186.7610226830.07.71113.26
127.0.0.1http/1.1default:7080GET /wp-includes/theme-compat/ HTTP/1.0

1-4416416150/7199/111778_
186.7410226900.07.53113.39
127.0.0.1http/1.1default:7080GET /wp-includes/assets/autoload_classmap.php HTTP/1.0

1-4416416150/7295/111896_
186.7620228590.07.64113.49
127.0.0.1http/1.1default:7080GET /uploads/ HTTP/1.0

1-4416416150/7239/111644_
186.7610226630.07.57113.18
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/index.php HTTP/1.0

1-4416416150/7293/111389_
186.7410225580.07.62112.91
127.0.0.1http/1.1default:7080GET /wp-includes/blocks/ HTTP/1.0

1-4416416150/7131/111389_
186.7620226340.07.46112.97
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/fields/ HTTP/1.0

1-4416416151/7356/111628W
186.7300226850.07.69113.13
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-4416416150/7156/111421_
186.7610226380.07.49112.93
127.0.0.1http/1.1default:7080GET /wp-login.php HTTP/1.0

1-4416416150/7236/111453_
186.7410225900.07.56112.97
127.0.0.1http/1.1default:7080GET /wp-includes/Requests/index.php HTTP/1.0

1-4416416150/7331/111809

Found on 2025-12-11 10:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704fead275b

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Wednesday, 03-Dec-2025 02:35:16 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  8 days 6 hours 14 minutes 21 seconds
Server load: 0.70 0.62 0.67
Total accesses: 1960002 - Total Traffic: 1.9 GB - Total Duration: 381566
CPU Usage: u27.56 s43.04 cu756.24 cs906.73 - .243% CPU load
2.75 requests/sec - 2812 B/second - 1024 B/request - .194676 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04160082no0yes025000
14160083no0yes124000
Sum200 149000

_____________________________________W____________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2241600820/269/34292_
5.747066540.00.2833.61
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2241600820/257/34359_
5.729066630.00.2733.69
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/ocean/ HTTP/1.0

0-2241600820/253/34168_
5.739066310.00.2633.54
127.0.0.1http/1.1default:7080GET /wp-includes/images/media/ HTTP/1.0

0-2241600820/260/34170_
5.729066080.00.2733.52
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-2241600820/259/34259_
5.738066430.00.2733.56
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2241600820/245/34203_
5.746074880.00.2533.55
127.0.0.1http/1.1default:7080GET /wp-includes/js/codemirror/ HTTP/1.0

0-2241600820/246/34185_
5.728066210.00.2533.52
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-2241600820/273/34138_
5.727066330.00.2933.49
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2022/ HTTP/1.0

0-2241600820/276/34276_
5.726067950.00.2933.63
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-2241600820/247/34126_
5.745066130.00.2633.45
127.0.0.1http/1.1default:7080GET /wp-includes/PHPMailer/ HTTP/1.0

0-2241600820/237/34314_
5.743066550.00.2533.68
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-2241600820/281/34173_
5.713065890.00.2933.50
127.0.0.1http/1.1default:7080GET /include/ HTTP/1.0

0-2241600820/278/34375_
5.735067270.00.2933.74
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-2241600820/237/34360_
5.743066320.00.2433.70
127.0.0.1http/1.1default:7080GET /cache-wordpress/ HTTP/1.0

0-2241600820/280/34436_
5.743066740.00.2933.77
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-2241600820/227/34079_
5.733071320.00.2333.40
127.0.0.1http/1.1default:7080GET /wp-includes/wp-includes/ HTTP/1.0

0-2241600820/289/34249_
5.743066580.00.3033.56
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-2241600820/234/34232_
5.743066610.00.2433.61
127.0.0.1http/1.1default:7080GET /cakil/ HTTP/1.0

0-2241600820/233/34171_
5.731066640.00.2433.50
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.0

0-2241600820/284/34224_
5.741066480.00.2933.54
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-2241600820/225/34205_
5.731066490.00.2333.54
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

0-2241600820/286/34222_
5.741066030.00.3033.60
127.0.0.1http/1.1default:7080GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.0

0-2241600820/281/34237_
5.741066980.00.2933.59
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-2241600820/236/34292_
5.721066570.00.2533.65
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

0-2241600820/268/34472_
5.739067240.00.2833.80
127.0.0.1http/1.1default:7080GET /wp-includes/images/crystal/ HTTP/1.0

1-2241600830/422/44330_
8.824085810.00.4443.15
127.0.0.1http/1.1default:7080POST /graphql HTTP/1.0

1-2241600830/431/44111_
8.874085560.00.4542.93
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-2241600830/411/44346_
8.874085980.00.4343.16
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/ HTTP/1.0

1-2241600830/414/44039_
8.864087910.00.4342.87
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-2241600830/446/44093_
8.872085160.00.4642.94
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2241600830/441/44268_
8.842085540.00.4543.08
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-2241600830/417/44450_
8.872086210.00.4343.27
127.0.0.1http/1.1default:7080GET /cekidot/ HTTP/1.0

1-2241600830/451/44005_
8.871085820.00.4742.87
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2241600830/437/44003_
8.872085090.00.4542.83
127.0.0.1http/1.1default:7080GET /ubh/ HTTP/1.0

1-2241600830/413/44104_
8.822085370.00.4342.94
127.0.0.1http/1.1default:7080GET /wp-includes/theme-compat/ HTTP/1.0

1-2241600830/434/44059_
8.870085070.00.4542.90
127.0.0.1http/1.1default:7080GET /wp-content/plugins/linkpreview/ HTTP/1.0

1-2241600830/418/44185_
8.840085560.00.4343.02
127.0.0.1http/1.1default:7080GET /wp-admin/js/widgets/ HTTP/1.0

1-2241600831/438/43992W
8.860084790.00.4542.87
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2241600830/437/44376_
8.866085550.00.4543.19
127.0.0.1http/1.1default:7080GET /wp-includes/images/wlw/ HTTP/1.0

1-2241600830/432/43907_
8.840084800.00.4542.72
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-2241600830/415/44237_
8.847085450.00.4343.09
127.0.0.1http/1.1default:7080GET /wp-content/languages/ HTTP/1.0

1-2241600830/441/44126_
8.846085130.00.4642.97
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-2241600830/435/44131_
8.870185310.00.4542.97
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2241600830/444/44126_
8.816085280.00.4642.97
127.0.0.1http/1.1default:7080GET /wp-includes/assets/autoload_classmap.php HTTP/1.0

1-2241600830/425/44182_
8.876085300.00.4443.05
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2241600830/418/44189_
8.866085980.00.4343.01
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2241600830/443/44017_
8.825085030.00.4642.85
127.0.0.1http/1.1default:7080GET /modules/ HTTP/1.0

1-2241600830/424/44149_
8.875085300.00.4443.00
127.0.0.1http/1.1default:7080GET /wp-includes/js/plupload/ HTTP/1.0

1-2241600830/438/44162_
8.846085600.00.4642.97
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/ectoplasm/ HTTP/1.0

1-2241600830/448/44198_
8.874085590.00.4643.02
127.0.0.1http/1.1d

Found on 2025-12-03 02:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704cc88842c

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Wednesday, 03-Dec-2025 02:35:15 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  8 days 6 hours 14 minutes 20 seconds
Server load: 0.70 0.62 0.67
Total accesses: 1960001 - Total Traffic: 1.9 GB - Total Duration: 381564
CPU Usage: u27.56 s43.04 cu756.24 cs906.73 - .243% CPU load
2.75 requests/sec - 2812 B/second - 1024 B/request - .194675 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04160082no0yes025000
14160083no0yes124000
Sum200 149000

__________________________________________W_______..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2241600820/269/34292_
5.746066540.00.2833.61
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2241600820/257/34359_
5.728066630.00.2733.69
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/ocean/ HTTP/1.0

0-2241600820/253/34168_
5.738066310.00.2633.54
127.0.0.1http/1.1default:7080GET /wp-includes/images/media/ HTTP/1.0

0-2241600820/260/34170_
5.729066080.00.2733.52
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-2241600820/259/34259_
5.737066430.00.2733.56
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2241600820/245/34203_
5.745074880.00.2533.55
127.0.0.1http/1.1default:7080GET /wp-includes/js/codemirror/ HTTP/1.0

0-2241600820/246/34185_
5.727066210.00.2533.52
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-2241600820/273/34138_
5.726066330.00.2933.49
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2022/ HTTP/1.0

0-2241600820/276/34276_
5.725067950.00.2933.63
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-2241600820/247/34126_
5.744066130.00.2633.45
127.0.0.1http/1.1default:7080GET /wp-includes/PHPMailer/ HTTP/1.0

0-2241600820/237/34314_
5.743066550.00.2533.68
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-2241600820/281/34173_
5.713065890.00.2933.50
127.0.0.1http/1.1default:7080GET /include/ HTTP/1.0

0-2241600820/278/34375_
5.734067270.00.2933.74
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-2241600820/237/34360_
5.742066320.00.2433.70
127.0.0.1http/1.1default:7080GET /cache-wordpress/ HTTP/1.0

0-2241600820/280/34436_
5.742066740.00.2933.77
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-2241600820/227/34079_
5.732071320.00.2333.40
127.0.0.1http/1.1default:7080GET /wp-includes/wp-includes/ HTTP/1.0

0-2241600820/289/34249_
5.742066580.00.3033.56
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-2241600820/234/34232_
5.742066610.00.2433.61
127.0.0.1http/1.1default:7080GET /cakil/ HTTP/1.0

0-2241600820/233/34171_
5.730066640.00.2433.50
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/wp-includes/IXR/ HTTP/1.0

0-2241600820/284/34224_
5.741066480.00.2933.54
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-2241600820/225/34205_
5.731066490.00.2333.54
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

0-2241600820/286/34222_
5.740066030.00.3033.60
127.0.0.1http/1.1default:7080GET /wp-content/ALFA_DATA/alfacgiapi/ HTTP/1.0

0-2241600820/281/34237_
5.740066980.00.2933.59
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-2241600820/236/34292_
5.720066570.00.2533.65
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

0-2241600820/268/34472_
5.739067240.00.2833.80
127.0.0.1http/1.1default:7080GET /wp-includes/images/crystal/ HTTP/1.0

1-2241600830/422/44330_
8.823085810.00.4443.15
127.0.0.1http/1.1default:7080POST /graphql HTTP/1.0

1-2241600830/431/44111_
8.873085560.00.4542.93
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-2241600830/411/44346_
8.873085980.00.4343.16
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/ HTTP/1.0

1-2241600830/414/44039_
8.863087910.00.4342.87
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-2241600830/446/44093_
8.871085160.00.4642.94
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2241600830/441/44268_
8.841085540.00.4543.08
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-2241600830/417/44450_
8.871086210.00.4343.27
127.0.0.1http/1.1default:7080GET /cekidot/ HTTP/1.0

1-2241600830/451/44005_
8.870085820.00.4742.87
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2241600830/437/44003_
8.871085090.00.4542.83
127.0.0.1http/1.1default:7080GET /ubh/ HTTP/1.0

1-2241600830/413/44104_
8.821085370.00.4342.94
127.0.0.1http/1.1default:7080GET /wp-includes/theme-compat/ HTTP/1.0

1-2241600830/434/44059_
8.870085070.00.4542.90
127.0.0.1http/1.1default:7080GET /wp-content/plugins/linkpreview/ HTTP/1.0

1-2241600830/418/44185_
8.840085560.00.4343.02
127.0.0.1http/1.1default:7080GET /wp-admin/js/widgets/ HTTP/1.0

1-2241600830/438/43992_
8.866084790.00.4542.87
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-2241600830/437/44376_
8.866085550.00.4543.19
127.0.0.1http/1.1default:7080GET /wp-includes/images/wlw/ HTTP/1.0

1-2241600830/432/43907_
8.847084800.00.4542.72
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-2241600830/415/44237_
8.846085450.00.4343.09
127.0.0.1http/1.1default:7080GET /wp-content/languages/ HTTP/1.0

1-2241600830/441/44126_
8.846085130.00.4642.97
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-2241600831/434/44130W
8.860085290.00.4542.97
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2241600830/444/44126_
8.815085280.00.4642.97
127.0.0.1http/1.1default:7080GET /wp-includes/assets/autoload_classmap.php HTTP/1.0

1-2241600830/425/44182_
8.875085300.00.4443.05
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2241600830/418/44189_
8.865085980.00.4343.01
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2241600830/443/44017_
8.824085030.00.4642.85
127.0.0.1http/1.1default:7080GET /modules/ HTTP/1.0

1-2241600830/424/44149_
8.874085300.00.4443.00
127.0.0.1http/1.1default:7080GET /wp-includes/js/plupload/ HTTP/1.0

1-2241600830/438/44162_
8.845085600.00.4642.97
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/ectoplasm/ HTTP/1.0

1-2241600830/448/44198_
8.873085590.00.4643.02
127.0.0.1http/1.1default:

Found on 2025-12-03 02:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770459b31c38

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Monday, 01-Dec-2025 12:37:45 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 18
Parent Server MPM Generation: 17
Server uptime:  6 days 16 hours 16 minutes 50 seconds
Server load: 0.96 0.85 0.80
Total accesses: 1546217 - Total Traffic: 1.5 GB - Total Duration: 302438
CPU Usage: u49.37 s67.85 cu567.95 cs685.46 - .238% CPU load
2.68 requests/sec - 2699 B/second - 1007 B/request - .195599 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03734303no0yes025000
13734304no0yes124000
Sum200 149000

__________________________W_______________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1737343030/2249/25405_
43.406049720.02.2424.43
127.0.0.1http/1.1default:7080GET /wp-signin.php HTTP/1.0

0-1737343030/2226/25448_
43.410049670.02.2224.46
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-1737343030/2236/25269_
43.415049430.02.2424.33
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

0-1737343030/2195/25349_
43.416049260.02.1924.39
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

0-1737343030/2250/25313_
43.372049410.02.2424.31
127.0.0.1http/1.1default:7080GET /wp-includes/certificates/ HTTP/1.0

0-1737343030/2267/25394_
43.415058030.02.2724.41
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-1737343030/2234/25436_
43.404049700.02.2324.46
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-1737343030/2237/25289_
43.416049510.02.2324.32
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-1737343030/2221/25344_
43.385049390.02.2124.39
127.0.0.1http/1.1default:7080GET /wp-includes/pomo/ HTTP/1.0

0-1737343030/2240/25315_
43.394049350.02.2424.34
127.0.0.1http/1.1default:7080GET /wp-includes/sitemaps/autoload_classmap.php HTTP/1.0

0-1737343030/2185/25419_
43.414049570.02.1824.47
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

0-1737343030/2209/25207_
43.370049020.02.2024.21
127.0.0.1http/1.1default:7080GET /wp-includes/customize/ HTTP/1.0

0-1737343030/2213/25431_
43.370050370.02.2124.47
127.0.0.1http/1.1default:7080GET /wp-content/cache/ HTTP/1.0

0-1737343030/2264/25480_
43.385049420.02.2624.50
127.0.0.1http/1.1default:7080GET /wp-includes/random_compat/ HTTP/1.0

0-1737343030/2224/25442_
43.417049620.02.2224.46
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

0-1737343030/2237/25258_
43.414054440.02.2324.27
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

0-1737343030/2201/25401_
43.412049740.02.2024.43
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

0-1737343030/2183/25308_
43.371049710.02.1824.36
127.0.0.1http/1.1default:7080GET /wp-includes/css/ HTTP/1.0

0-1737343030/2198/25338_
43.415049820.02.2024.37
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

0-1737343030/2235/25342_
43.377049540.02.2224.36
127.0.0.1http/1.1default:7080GET /wp-content/et-cache/ HTTP/1.0

0-1737343030/2229/25481_
43.412049860.02.2224.51
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-1737343030/2259/25381_
43.377049280.02.2624.45
127.0.0.1http/1.1default:7080GET /c/airlines_air-ceylon HTTP/1.0

0-1737343030/2161/25352_
43.417049920.02.1524.39
127.0.0.1http/1.1default:7080POST /api/graphql HTTP/1.0

0-1737343030/2236/25423_
43.411049800.02.2324.46
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-1737343030/2262/25577_
43.420050320.02.2524.60
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-1737343040/1338/36660_
28.0242071020.01.3435.19
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/index.php HTTP/1.0

1-1737343041/1354/36483W
28.040070800.01.3535.02
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-1737343040/1348/36645_
28.060071220.01.3435.17
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-1737343040/1386/36417_
28.0544073330.01.3934.96
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/search/ HTTP/1.0

1-1737343040/1365/36415_
28.053070530.01.3634.98
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-1737343040/1377/36500_
28.052070720.01.3735.03
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-1737343040/1392/36781_
28.021071480.01.3935.31
127.0.0.1http/1.1default:7080GET /wp-includes/SimplePie/index.php HTTP/1.0

1-1737343040/1343/36446_
28.0442071340.01.3435.00
127.0.0.1http/1.1default:7080GET /wp-includes/fonts/autoload_classmap.php HTTP/1.0

1-1737343040/1363/36249_
28.0417070080.01.3634.79
127.0.0.1http/1.1default:7080GET /wp-includes/images/index.php HTTP/1.0

1-1737343040/1376/36407_
28.0245070720.01.3734.96
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/ HTTP/1.0

1-1737343040/1372/36322_
28.0542070230.01.3734.85
127.0.0.1http/1.1default:7080GET /wp-includes/style-engine/index.php HTTP/1.0

1-1737343040/1371/36527_
28.022070870.01.3735.07
127.0.0.1http/1.1default:7080GET /wp-includes/SimplePie/autoload_classmap.php HTTP/1.0

1-1737343040/1356/36293_
28.0244070140.01.3634.86
127.0.0.1http/1.1default:7080GET /wp-includes/Text/Diff/Engine/ HTTP/1.0

1-1737343040/1393/36670_
28.020070790.01.3935.18
127.0.0.1http/1.1default:7080GET /wp-includes/Text/ HTTP/1.0

1-1737343040/1348/36233_
28.053070230.01.3534.77
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

1-1737343040/1376/36592_
28.0517070880.01.3835.16
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-1737343040/1332/36464_
28.0441070310.01.3335.02
127.0.0.1http/1.1default:7080GET /wp-includes/fonts/index.php HTTP/1.0

1-1737343040/1337/36514_
28.0542070670.01.3435.07
127.0.0.1http/1.1default:7080GET /wp-mail.php HTTP/1.0

1-1737343040/1395/36432_
28.0541070550.01.3934.97
127.0.0.1http/1.1default:7080GET /xmrlpc.php HTTP/1.0

1-1737343040/1378/36445_
28.022070470.01.3835.02
127.0.0.1http/1.1default:7080GET /wp-includes/Requests/index.php HTTP/1.0

1-1737343040/1338/36542_
28.056071210.01.3435.08
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

1-1737343040/1374/36327_
28.043070210.01.3734.88
127.0.0.1http/1.1default:7080GET /wp-includes/index.php HTTP/1.0

1-1737343040/1362/36435_
28.051070630.01.3634.99
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-1737343040/1362/36553_
28.052071070.01.3635.06
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-1737343040/1357/36463_
28.04</

Found on 2025-12-01 12:37

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770470485e6b

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Saturday, 29-Nov-2025 12:58:36 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 14
Parent Server MPM Generation: 13
Server uptime:  4 days 16 hours 37 minutes 41 seconds
Server load: 0.84 0.72 0.72
Total accesses: 1207168 - Total Traffic: 1.1 GB - Total Duration: 238861
CPU Usage: u28.48 s41.06 cu457.79 cs553.32 - .267% CPU load
2.98 requests/sec - 3003 B/second - 1008 B/request - .197869 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03349924no0yes025000
13349925no0yes124000
Sum200 149000

_____________________________W____________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1333499240/628/19565_
13.5710038810.00.5918.79
127.0.0.1http/1.1default:7080GET /file5.php HTTP/1.0

0-1333499240/626/19602_
13.578038730.00.5918.84
127.0.0.1http/1.1default:7080GET /ava.php HTTP/1.0

0-1333499240/611/19378_
13.604038400.00.5718.65
127.0.0.1http/1.1default:7080GET /swagger/index.html HTTP/1.0

0-1333499240/566/19502_
13.6010038410.00.5318.76
127.0.0.1http/1.1default:7080GET /CLA.php HTTP/1.0

0-1333499240/608/19418_
13.605038370.00.5718.64
127.0.0.1http/1.1default:7080POST /api/gql HTTP/1.0

0-1333499240/620/19538_
13.597047130.00.5818.78
127.0.0.1http/1.1default:7080GET /log.php HTTP/1.0

0-1333499240/629/19518_
13.605038660.00.5918.77
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

0-1333499240/576/19462_
13.612038700.00.5518.70
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-1333499240/625/19456_
13.604038530.00.5918.71
127.0.0.1http/1.1default:7080GET /webjars/swagger-ui/index.html HTTP/1.0

0-1333499240/605/19391_
13.602038210.00.5718.63
127.0.0.1http/1.1default:7080GET /api-docs/swagger.json HTTP/1.0

0-1333499240/623/19560_
13.572038610.00.5918.82
127.0.0.1http/1.1default:7080GET /class-t.api.php HTTP/1.0

0-1333499240/583/19399_
13.585038150.00.5518.63
127.0.0.1http/1.1default:7080GET /12.php HTTP/1.0

0-1333499240/613/19572_
13.584039450.00.5818.83
127.0.0.1http/1.1default:7080GET /manager.php HTTP/1.0

0-1333499240/591/19540_
13.594038420.00.5518.78
127.0.0.1http/1.1default:7080GET /r4f_1.php HTTP/1.0

0-1333499240/632/19579_
13.571038690.00.5918.81
127.0.0.1http/1.1default:7080GET /wp-content/uploads/index.php HTTP/1.0

0-1333499240/597/19345_
13.572043420.00.5618.59
127.0.0.1http/1.1default:7080GET /wp-update.php HTTP/1.0

0-1333499240/597/19536_
13.6013038690.00.5618.78
127.0.0.1http/1.1default:7080GET /atomlib.php HTTP/1.0

0-1333499240/589/19467_
13.6010038790.00.5618.73
127.0.0.1http/1.1default:7080GET /tgrs.php HTTP/1.0

0-1333499240/599/19495_
13.611038780.00.5618.75
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-1333499240/622/19457_
13.5710038530.00.5918.71
127.0.0.1http/1.1default:7080GET /fileas.php HTTP/1.0

0-1333499240/631/19557_
13.5713038830.00.5918.81
127.0.0.1http/1.1default:7080GET /ioxi-o.php HTTP/1.0

0-1333499240/613/19483_
13.5712038210.00.5718.76
127.0.0.1http/1.1default:7080GET /33.php HTTP/1.0

0-1333499240/603/19576_
13.6012039160.00.5718.85
127.0.0.1http/1.1default:7080GET /lib.php HTTP/1.0

0-1333499240/577/19535_
13.608038780.00.5518.79
127.0.0.1http/1.1default:7080GET /akcc.php HTTP/1.0

0-1333499240/601/19572_
13.607039150.00.5618.82
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-1333499250/1139/28993_
23.070056580.01.0727.90
127.0.0.1http/1.1default:7080GET /wp-load.php HTTP/1.0

1-1333499250/1115/28705_
23.100056150.01.0627.62
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-1333499250/1178/28935_
23.094056720.01.1027.84
127.0.0.1http/1.1default:7080GET /swagger/swagger-ui.html HTTP/1.0

1-1333499250/1122/28755_
23.100058730.01.0527.67
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-1333499251/1197/28817W
23.090056170.01.1227.75
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-1333499250/1144/28889_
23.091056550.01.0727.79
127.0.0.1http/1.1default:7080GET /z.php HTTP/1.0

1-1333499250/1185/29052_
23.075056910.01.1127.95
127.0.0.1http/1.1default:7080GET /png.php HTTP/1.0

1-1333499250/1110/28744_
23.075056800.01.0427.66
127.0.0.1http/1.1default:7080GET /wp-mail.php/wp-includes/ID3/rnEPv9.php HTTP/1.0

1-1333499250/1150/28600_
23.102055820.01.0827.52
127.0.0.1http/1.1default:7080GET /api/swagger.json HTTP/1.0

1-1333499250/1159/28688_
23.100056290.01.0927.61
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-1333499250/1133/28638_
23.103055730.01.0627.54
127.0.0.1http/1.1default:7080GET /v3/api-docs HTTP/1.0

1-1333499250/1140/28808_
23.074056270.01.0727.72
127.0.0.1http/1.1default:7080GET /ftp.php HTTP/1.0

1-1333499250/1130/28655_
23.102055820.01.0627.60
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-1333499250/1135/28921_
23.095056280.01.0727.82
127.0.0.1http/1.1default:7080POST /graphql/api HTTP/1.0

1-1333499250/1149/28640_
23.103056080.01.0827.55
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-1333499250/1127/28843_
23.093056270.01.0627.78
127.0.0.1http/1.1default:7080GET /ol.php HTTP/1.0

1-1333499250/1128/28850_
23.101056150.01.0627.75
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-1333499250/1155/28856_
23.070056260.01.0927.77
127.0.0.1http/1.1default:7080GET /f35.php HTTP/1.0

1-1333499250/1192/28722_
23.093056130.01.1227.64
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-1333499250/1129/28658_
23.101055820.01.0627.60
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-1333499250/1141/28929_
23.070056830.01.0727.83
127.0.0.1http/1.1default:7080GET /sko.php HTTP/1.0

1-1333499250/1169/28706_
23.093055710.01.0927.62
127.0.0.1http/1.1default:7080GET /ouh.php HTTP/1.0

1-1333499250/1172/28760_
23.103056060.01.1027.68
127.0.0.1http/1.1default:7080GET /v2/api-docs HTTP/1.0

1-1333499250/1130/28700_
23.073056310.01.0627.59
127.0.0.1http/1.1default:7080GET /usep.php HTTP/1.0

1-1333499250/1159/28801_
23.072056300.01.1027.72
127.0.0.1http/1.1default:7080GET /nope.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot

Found on 2025-11-29 12:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704325617db

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-08-11T12:10:10

Current Time: Thursday, 27-Nov-2025 13:19:15 UTC
Restart Time: Monday, 24-Nov-2025 20:20:54 UTC
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  2 days 16 hours 58 minutes 20 seconds
Server load: 0.60 0.62 0.69
Total accesses: 509478 - Total Traffic: 505.8 MB - Total Duration: 106603
CPU Usage: u49 s63.95 cu172.62 cs206.85 - .211% CPU load
2.18 requests/sec - 2267 B/second - 1040 B/request - .20924 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02807395no0yes124000
12807396no0yes025000
Sum200 149000

__________W_______________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-828073950/2468/8791_
55.622018420.02.328.66
127.0.0.1http/1.1default:7080GET /mail.php HTTP/1.0

0-828073950/2498/8872_
55.622018320.02.358.76
127.0.0.1http/1.1default:7080GET /plugins/Cache/footer.php HTTP/1.0

0-828073950/2440/8651_
55.611017930.02.298.57
127.0.0.1http/1.1default:7080GET /about.php HTTP/1.0

0-828073950/2444/8694_
55.611017980.02.308.59
127.0.0.1http/1.1default:7080GET /inputs.php HTTP/1.0

0-828073950/2486/8800_
55.602018320.02.338.67
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-828073950/2477/8800_
55.612018420.02.328.69
127.0.0.1http/1.1default:7080GET /abcd.php HTTP/1.0

0-828073950/2488/8787_
55.622018360.02.338.67
127.0.0.1http/1.1default:7080GET /404.php HTTP/1.0

0-828073950/2484/8851_
55.600018560.02.338.73
127.0.0.1http/1.1default:7080GET /222.php HTTP/1.0

0-828073950/2441/8779_
55.630018200.02.308.67
127.0.0.1http/1.1default:7080GET /wp-admin/network/plugins.php HTTP/1.0

0-828073950/2444/8729_
55.630018030.02.298.62
127.0.0.1http/1.1default:7080GET /.well-known/index.php HTTP/1.0

0-828073951/2503/8867W
55.620018430.02.358.77
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-828073950/2453/8712_
55.630018030.02.318.60
127.0.0.1http/1.1default:7080GET /gmo.php HTTP/1.0

0-828073950/2489/8858_
55.621019060.02.348.76
127.0.0.1http/1.1default:7080GET /sx.php HTTP/1.0

0-828073950/2438/8767_
55.602018170.02.298.66
127.0.0.1http/1.1default:7080GET /classwithtostring.php HTTP/1.0

0-828073950/2483/8775_
55.580018270.02.338.67
127.0.0.1http/1.1default:7080GET /xv.php HTTP/1.0

0-828073950/2492/8770_
55.631021090.02.338.65
127.0.0.1http/1.1default:7080GET /byp.php HTTP/1.0

0-828073950/2465/8771_
55.622018270.02.318.67
127.0.0.1http/1.1default:7080GET /manager.php?p= HTTP/1.0

0-828073950/2409/8782_
55.603018620.02.278.69
127.0.0.1http/1.1default:7080GET /1.php HTTP/1.0

0-828073950/2511/8775_
55.622018540.02.368.67
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-828073950/2425/8746_
55.621018130.02.288.63
127.0.0.1http/1.1default:7080GET /wp-content/plugins/index.php HTTP/1.0

0-828073950/2421/8749_
55.631018420.02.278.65
127.0.0.1http/1.1default:7080GET /1.php HTTP/1.0

0-828073950/2463/8732_
55.611017990.02.328.65
127.0.0.1http/1.1default:7080GET /alfa.php HTTP/1.0

0-828073950/2422/8748_
55.612018500.02.278.66
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-828073950/2504/8869_
55.600018530.02.368.75
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

0-828073950/2484/8794_
55.631018580.02.348.71
127.0.0.1http/1.1default:7080GET /alfa.php HTTP/1.0

1-828073960/1646/11724_
38.463024300.01.5511.68
127.0.0.1http/1.1default:7080GET /wp-admin/js/wp-conflg.php?p= HTTP/1.0

1-828073960/1585/11513_
38.433023880.01.4911.48
127.0.0.1http/1.1default:7080GET /wp-content/maintenance/ HTTP/1.0

1-828073960/1635/11709_
38.461024270.01.5411.66
127.0.0.1http/1.1default:7080GET /wp-admin/network/wp-conflg.php?p= HTTP/1.0

1-828073960/1609/11568_
38.430026520.01.5111.53
127.0.0.1http/1.1default:7080GET /wp-content/uploads/typehub/custom/ HTTP/1.0

1-828073960/1589/11592_
38.471023810.01.4911.55
127.0.0.1http/1.1default:7080GET /wp-admin/maint/admin.php HTTP/1.0

1-828073960/1591/11596_
38.461024220.01.4911.56
127.0.0.1http/1.1default:7080GET /swagger/v1/swagger.json HTTP/1.0

1-828073960/1606/11652_
38.462024410.01.5111.59
127.0.0.1http/1.1default:7080GET /wp-admin/maint/about.php HTTP/1.0

1-828073960/1601/11512_
38.470024380.01.5011.47
127.0.0.1http/1.1default:7080GET /wp-trackback.php HTTP/1.0

1-828073960/1611/11591_
38.471023890.01.5211.56
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-828073960/1655/11616_
38.470024330.01.5511.59
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-828073960/1624/11527_
38.470023680.01.5211.47
127.0.0.1http/1.1default:7080GET /crew?profileid=1457942 HTTP/1.0

1-828073960/1557/11579_
38.465023900.01.4711.54
127.0.0.1http/1.1default:7080GET /admin.php HTTP/1.0

1-828073960/1623/11528_
38.465023910.01.5311.52
127.0.0.1http/1.1default:7080GET /wp-admin/maint/maint.php HTTP/1.0

1-828073960/1645/11734_
38.455024180.01.5411.68
127.0.0.1http/1.1default:7080GET /htaccess.php HTTP/1.0

1-828073960/1606/11600_
38.470024300.01.5111.55
127.0.0.1http/1.1default:7080GET /wp-admin/about.php HTTP/1.0

1-828073960/1597/11655_
38.456024300.01.5011.62
127.0.0.1http/1.1default:7080GET /swagger-ui.html HTTP/1.0

1-828073960/1663/11673_
38.464024130.01.5611.62
127.0.0.1http/1.1default:7080GET /autoload_classmap.php?p= HTTP/1.0

1-828073960/1649/11708_
38.464024160.01.5511.67
127.0.0.1http/1.1default:7080GET /0x.php HTTP/1.0

1-828073960/1585/11495_
38.455023840.01.4911.46
127.0.0.1http/1.1default:7080GET /x50.php HTTP/1.0

1-828073960/1575/11585_
38.430023910.01.4811.56
127.0.0.1http/1.1default:7080GET /wp-content/plugins/backup-backup/includes/ HTTP/1.0

1-828073960/1618/11646_
38.463024420.01.5211.60
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-828073960/1583/11525_
38.450023780.01.4911.47
127.0.0.1http/1.1default:7080GET /tx1.php HTTP/1.0

1-828073960/1617/11694_
38.444024190.01.5211.65
127.0.0.1http/1.1default:7080GET /crew?profileid=2205885 HTTP/1.0

1-828073960/1615/11521_
38.463024030.01.5311.47
127.0.0.1http/1.1default:7080GET /swagger.json HTTP/1.0

1-828073960/1574/11466_
38.472023910.01.4811.42
127.0.0.1http/1.1default:7080GET /item.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID</

Found on 2025-11-27 13:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77043cc96749

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Saturday, 17-May-2025 00:05:21 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 240
Parent Server MPM Generation: 239
Server uptime:  37 days 4 hours 46 minutes 14 seconds
Server load: 0.47 0.63 0.52
Total accesses: 6728122 - Total Traffic: 21.6 GB - Total Duration: 946831071
CPU Usage: u73.58 s117.51 cu6866.19 cs3532.91 - .33% CPU load
2.09 requests/sec - 7.0 kB/second - 3440 B/request - 140.727 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
068766no1yes124000
368765no0yes025000
Sum201 149000

____________________W____.......................................
..........._________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-239687660/9/136703_
0.6712331218646550.00.08478.18
127.0.0.1http/1.1marseille-immunopole.org:7081GET /2012/12/06/car-shows-in-makassar-made-rp100-billion-worth-

0-239687660/9/136476_
0.6620283218483500.00.10471.18
127.0.0.1http/1.1marseille-immunopole.org:7081GET /sites/default/files/field/image/kielce_wiadomo%C5%9Bci_mis

0-239687660/11/136467_
0.6820217972200.00.05478.60
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-239687660/6/136584_
0.66150218323580.00.05483.84
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-content/uploads/2023/11/slot999.png HTTP/1.0

0-239687660/6/136891_
0.5940220211200.00.04484.18
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-content/themes/hello-elementor/assets/js/hello-frontend

0-239687660/9/136743_
0.67146218749790.00.09469.04
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-239687660/7/136825_
0.59140220004920.00.06478.55
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-content/plugins/elementor/assets/css/frontend.min.css?v

0-239687660/10/135948_
0.6800217113730.00.05471.15
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-239687660/12/136420_
0.680185218185030.00.13483.01
127.0.0.1http/1.1marseille-immunopole.org:7081GET /xmlrpc.php HTTP/1.0

0-239687660/8/136235_
0.6100219222780.00.07483.59
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-239687660/9/136361_
0.6820218469750.00.05480.56
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-239687660/9/136368_
0.6820219077640.00.08479.54
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-239687660/6/136791_
0.580303220086560.00.05476.59
127.0.0.1http/1.1marseille-immunopole.org:7081GET /2010/04/30/welcome-to-sari-pan-pacific-jakarta/ HTTP/1.0

0-239687660/6/136655_
0.5920219129100.00.06484.57
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 H

0-239687660/9/136584_
0.6810218715850.00.08475.21
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-239687660/6/136250_
0.6010217727330.00.04472.89
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.

0-239687660/8/136380_
0.6010216591350.00.06465.53
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.a23fbd

0-239687660/9/136648_
0.6810220224420.00.08485.86
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-239687660/11/136122_
0.6800218446160.00.10488.81
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-239687660/3/136548_
0.59120218068290.00.01477.17
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-content/uploads/2025/03/03.jpg.webp HTTP/1.0

0-239687661/5/136901W
0.6600219752570.00.07486.56
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-239687660/8/136303_
0.610193217893110.00.07474.31
127.0.0.1http/1.1marseille-immunopole.org:7081GET /xmlrpc.php HTTP/1.0

0-239687660/8/135906_
0.6220261218713820.00.07475.68
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-commentin.php?pass=f0aab4595a024d626315fb786dce8282 HTT

0-239687660/7/136774_
0.684198218606910.00.05474.50
127.0.0.1http/1.1violenceroutiere.org:7081GET /images/leafmailer2.8.php HTTP/1.0

0-239687660/5/136549_
0.62217218062080.00.05479.90
127.0.0.1http/1.1marseille-immunopole.org:7081GET / HTTP/1.0

1-202-0/0/82956.
0.001169530056288530.00.00189.07
127.0.0.1http/1.1default:7080GET //sim.php/wp-includes/certificates/plugins.php HTTP/1.0

1-202-0/0/82833.
0.00116953050656387360.00.00198.99
127.0.0.1http/1.1marseille-immunopole.org:7081GET /?q=comment/reply/6292/6699 HTTP/1.0

1-202-0/0/82558.
0.001169530054866740.00.00203.36
127.0.0.1http/1.1default:7080GET /lv.php HTTP/1.0

1-202-0/0/83136.
0.001169530055286530.00.00209.03
127.0.0.1http/1.1default:7080GET //wp-includes/Text/autoload_classmap.php HTTP/1.0

1-202-0/0/82900.
0.001169530055946750.00.00189.18
127.0.0.1http/1.1default:7080GET //webadmin.php HTTP/1.0

1-202-0/0/82704.
0.001169530057601100.00.00192.66
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/about.php HTTP/1.0

1-202-0/0/82709.
0.00116953038155226980.00.00198.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bt/ HTTP/1.0

1-202-0/0/82661.
0.001169530055537880.00.00181.38
127.0.0.1http/1.1default:7080GET /wp-includes/images/about.php HTTP/1.0

1-202-0/0/82866.
0.001169530055008220.00.00187.65
127.0.0.1http/1.1default:7080GET /wp-admin/users.php HTTP/1.0

1-202-0/0/82632.
0.00116953042756582710.00.00194.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1036/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82891.
0.001169530055451330.00.00179.05
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

1-202-0/0/82602.
0.001169530055747130.00.00191.04
127.0.0.1http/1.1default:7080GET //simple.php HTTP/1.0

1-202-0/0/82675.
0.001169530055692570.00.00197.95
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-202-0/0/82848.
0.001169530055796960.00.00197.19
127.0.0.1http/1.1default:7080GET /01.php HTTP/1.0

1-202-0/0/82428.
0.001169530055320330.00.00182.91
127.0.0.1http/1.1default:7080GET ///wp-2019.php HTTP/1.0

1-202-0/0/82843.
0.001169530056536820.00.00263.68
127.0.0.1http/1.1default:7080GET /ee.php HTTP/1.0

1-202-0/0/82632.
0.001169530053766080.00.00182.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82782.
0.00116953050255389380.00.00177.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82781.
0.001169530055630830.00.00182.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82891.
0.00116953041755651820.00.00193.14
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

1-202-0/0/83091.
0.001169530056922130.00.00194.75
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP

1-202-0/0/82806.
0.001169530054827760.00.00188.77
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

1-202-0/0/82650.
0.001169530054684640.0

Found on 2025-05-17 00:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770433e97d29

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Monday, 12-May-2025 18:09:34 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 228
Parent Server MPM Generation: 227
Server uptime:  32 days 22 hours 50 minutes 28 seconds
Server load: 0.33 0.24 0.23
Total accesses: 5694082 - Total Traffic: 17.1 GB - Total Duration: 663620681
CPU Usage: u156.4 s146.89 cu5307.52 cs2830.8 - .297% CPU load
2 requests/sec - 6.3 kB/second - 3229 B/request - 116.546 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03166159no1yes025000
33166158no0yes124000
Sum201 149000

_________________________.......................................
...........____________________W____............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-22731661590/1904/110011_
83.8730144806300.07.48362.40
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-22731661590/1907/109641_
83.8619144609490.07.30353.45
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-22731661590/1867/109788_
83.83170144292850.07.43361.99
127.0.0.1http/1.1default:7080GET /profile.php?id=342883 HTTP/1.0

0-22731661590/1918/110004_
83.8720144486230.07.73366.37
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-22731661590/1894/110073_
83.860519146579420.07.63368.26
127.0.0.1http/1.1violenceroutiere.org:7081GET /xmlrpc.php HTTP/1.0

0-22731661590/1883/109910_
83.84150144454210.07.54351.30
127.0.0.1http/1.1default:7080GET /p/esotico-tie-front-cardigan?referring_products=%7C2d6fe5a

0-22731661590/1846/110050_
83.8800146529970.07.11362.06
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-22731661590/1877/109407_
83.8810144015140.08.10355.11
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-22731661590/1809/109708_
83.881552144556460.07.23366.21
127.0.0.1http/1.1violenceroutiere.org:7081GET /downloads/bonhomme-blanc-3d-images-gratuites-libres-de-dro

0-22731661590/1932/109578_
83.8810145424580.07.85365.93
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-22731661590/1864/109496_
83.8780144719620.06.98362.32
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-22731661590/1821/109617_
83.8715497145078370.07.00361.66
127.0.0.1http/1.1violenceroutiere.org:7081GET /xmlrpc.php HTTP/1.0

0-22731661590/1891/109692_
83.860460145343080.07.95356.89
127.0.0.1http/1.1violenceroutiere.org:7081GET /xmlrpc.php HTTP/1.0

0-22731661590/1867/109813_
83.83160144743500.07.26366.52
127.0.0.1http/1.1audi-encounter.com:7081GET / HTTP/1.0

0-22731661590/1877/109685_
83.8720145466000.07.59356.66
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-22731661590/1926/109673_
83.81150144473980.07.70355.80
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/plugins/elementor/assets/js/text-editor.c084ef8

0-22731661590/1863/109613_
83.85115142814730.06.71348.55
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-22731661590/1842/109597_
83.8430145807360.06.88366.88
127.0.0.1http/1.1audi-encounter.com:7081GET /b629e322a32356203505/344629246aei28bet6m47.dz HTTP/1.0

0-22731661590/1883/109441_
83.8616505144475120.07.45371.14
127.0.0.1http/1.1violenceroutiere.org:7081GET /xmlrpc.php HTTP/1.0

0-22731661590/1854/109752_
83.8800144728540.07.05360.41
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-22731661590/1849/110037_
83.842454146430460.07.21367.26
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/01/auto-voiture-ancienne-colle

0-22731661590/1859/109585_
83.78150144535870.07.66356.58
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/plugins/elementor/assets/css/widget-image.min.c

0-22731661590/1870/109226_
83.861412144669230.07.10358.36
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2015/10/TCR_43.1_Cover.jpg HTTP/1.0

0-22731661590/1899/109917_
83.8715589144079730.07.26355.82
127.0.0.1http/1.1violenceroutiere.org:7081GET /xmlrpc.php HTTP/1.0

0-22731661590/1861/109765_
83.87158143943700.07.47361.40
127.0.0.1http/1.1violenceroutiere.org:7081POST /wp-cron.php?doing_wp_cron=1747073359.39752197265625000000

1-202-0/0/82956.
0.00802583056288530.00.00189.07
127.0.0.1http/1.1default:7080GET //sim.php/wp-includes/certificates/plugins.php HTTP/1.0

1-202-0/0/82833.
0.0080258350656387360.00.00198.99
127.0.0.1http/1.1marseille-immunopole.org:7081GET /?q=comment/reply/6292/6699 HTTP/1.0

1-202-0/0/82558.
0.00802583054866740.00.00203.36
127.0.0.1http/1.1default:7080GET /lv.php HTTP/1.0

1-202-0/0/83136.
0.00802583055286530.00.00209.03
127.0.0.1http/1.1default:7080GET //wp-includes/Text/autoload_classmap.php HTTP/1.0

1-202-0/0/82900.
0.00802583055946750.00.00189.18
127.0.0.1http/1.1default:7080GET //webadmin.php HTTP/1.0

1-202-0/0/82704.
0.00802583057601100.00.00192.66
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/about.php HTTP/1.0

1-202-0/0/82709.
0.0080258338155226980.00.00198.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bt/ HTTP/1.0

1-202-0/0/82661.
0.00802583055537880.00.00181.38
127.0.0.1http/1.1default:7080GET /wp-includes/images/about.php HTTP/1.0

1-202-0/0/82866.
0.00802583055008220.00.00187.65
127.0.0.1http/1.1default:7080GET /wp-admin/users.php HTTP/1.0

1-202-0/0/82632.
0.0080258342756582710.00.00194.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1036/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82891.
0.00802583055451330.00.00179.05
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

1-202-0/0/82602.
0.00802583055747130.00.00191.04
127.0.0.1http/1.1default:7080GET //simple.php HTTP/1.0

1-202-0/0/82675.
0.00802583055692570.00.00197.95
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-202-0/0/82848.
0.00802583055796960.00.00197.19
127.0.0.1http/1.1default:7080GET /01.php HTTP/1.0

1-202-0/0/82428.
0.00802583055320330.00.00182.91
127.0.0.1http/1.1default:7080GET ///wp-2019.php HTTP/1.0

1-202-0/0/82843.
0.00802583056536820.00.00263.68
127.0.0.1http/1.1default:7080GET /ee.php HTTP/1.0

1-202-0/0/82632.
0.00802583053766080.00.00182.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82782.
0.0080258350255389380.00.00177.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82781.
0.00802583055630830.00.00182.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82891.
0.0080258341755651820.00.00193.14
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

1-202-0/0/83091.
0.00802583056922130.00.00194.75
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP

1-202-0/0/82806.
0.00802583054827760.00.00188.77
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

1-202-0/0/82650.
0.00802583054684640.00.00184.59
12

Found on 2025-05-12 18:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704081c7b65

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Saturday, 10-May-2025 23:46:02 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 222
Parent Server MPM Generation: 221
Server uptime:  31 days 4 hours 26 minutes 55 seconds
Server load: 0.43 0.39 0.38
Total accesses: 5415672 - Total Traffic: 15.8 GB - Total Duration: 610591430
CPU Usage: u135.41 s126.85 cu4959.43 cs2689.3 - .294% CPU load
2.01 requests/sec - 6.2 kB/second - 3140 B/request - 112.745 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02840644no0yes025000
32840643no0yes124000
Sum200 149000

_________________________.......................................
...........W________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-22128406440/1198/103260_
63.21011131983610.07.37331.68
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-22128406440/1179/102946_
63.0450132053060.06.73323.14
127.0.0.1http/1.1default:7080GET /wp-content/plugins/about.php HTTP/1.0

0-22128406440/1234/103170_
63.0830131584590.07.50331.57
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz/

0-22128406440/1225/103339_
63.195541131504850.07.18335.48
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/05/abstrait-arri%C3%A8re-plan-

0-22128406440/1232/103399_
63.0920134437880.07.59337.90
127.0.0.1http/1.1default:7080GET /p/flexable-stitch-scroll-frame?pp=8 HTTP/1.0

0-22128406440/1224/103134_
63.199477131640180.07.35319.49
127.0.0.1http/1.1violenceroutiere.org:7081GET /__media__/js/netsoltrademark.php?d=dev-westudy.accedo.gr%2

0-22128406440/1199/103467_
63.201477133926360.07.25331.51
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/05/abstrait-bokeh-lumi%C3%A8re

0-22128406440/1183/102715_
63.1940131123210.06.96323.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-22128406440/1190/103136_
63.1410132151090.06.95335.78
127.0.0.1http/1.1default:7080GET /shptron/.env HTTP/1.0

0-22128406440/1240/102788_
63.2010132837870.07.56333.85
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-22128406440/1200/102768_
63.2030132139140.07.08331.83
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-22128406440/1212/102966_
63.201548132510180.07.06331.18
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/13/?%EE%B9%85apan/ HTTP/1.0

0-22128406440/1215/102955_
63.2030132549440.07.69325.32
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-22128406440/1252/103193_
63.181470132624620.07.08336.17
127.0.0.1http/1.1violenceroutiere.org:7081GET /favicon.ico HTTP/1.0

0-22128406440/1198/103108_
63.0390132896560.07.33325.78
127.0.0.1http/1.1marseille-immunopole.org:7081GET /wp-content/themes/twentytwentyfour/assets/fonts/inter/Inte

0-22128406440/1226/102924_
63.190506131570640.07.14324.28
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/101/?%EE%B9%85apan/ HTTP/1.0

0-22128406440/1202/103003_
63.2010130647250.06.72318.83
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-22128406440/1216/103018_
63.2100133476510.07.25337.18
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-22128406440/1231/102782_
63.123471131935950.07.41340.25
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1009/?%EE%B9%8Bresident/ HTTP/1.0

0-22128406440/1235/103182_
63.2030132596940.07.33330.83
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-22128406440/1164/103360_
63.2020133605450.07.25336.05
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-22128406440/1183/102910_
63.023442131856150.07.32325.88
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/128/?%EE%B9%88orotai/ HTTP/1.0

0-22128406440/1187/102593_
63.2040132421620.06.86328.70
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-22128406440/1192/103214_
63.181464131421530.07.52324.31
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/05/abstrait-arri%C3%A8re-plan-

0-22128406440/1227/103185_
63.190420131487000.07.13329.94
127.0.0.1http/1.1violenceroutiere.org:7081GET /robots.txt HTTP/1.0

1-202-0/0/82956.
0.00649971056288530.00.00189.07
127.0.0.1http/1.1default:7080GET //sim.php/wp-includes/certificates/plugins.php HTTP/1.0

1-202-0/0/82833.
0.0064997150656387360.00.00198.99
127.0.0.1http/1.1marseille-immunopole.org:7081GET /?q=comment/reply/6292/6699 HTTP/1.0

1-202-0/0/82558.
0.00649971054866740.00.00203.36
127.0.0.1http/1.1default:7080GET /lv.php HTTP/1.0

1-202-0/0/83136.
0.00649971055286530.00.00209.03
127.0.0.1http/1.1default:7080GET //wp-includes/Text/autoload_classmap.php HTTP/1.0

1-202-0/0/82900.
0.00649971055946750.00.00189.18
127.0.0.1http/1.1default:7080GET //webadmin.php HTTP/1.0

1-202-0/0/82704.
0.00649971057601100.00.00192.66
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/about.php HTTP/1.0

1-202-0/0/82709.
0.0064997138155226980.00.00198.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bt/ HTTP/1.0

1-202-0/0/82661.
0.00649971055537880.00.00181.38
127.0.0.1http/1.1default:7080GET /wp-includes/images/about.php HTTP/1.0

1-202-0/0/82866.
0.00649971055008220.00.00187.65
127.0.0.1http/1.1default:7080GET /wp-admin/users.php HTTP/1.0

1-202-0/0/82632.
0.0064997142756582710.00.00194.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1036/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82891.
0.00649971055451330.00.00179.05
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

1-202-0/0/82602.
0.00649971055747130.00.00191.04
127.0.0.1http/1.1default:7080GET //simple.php HTTP/1.0

1-202-0/0/82675.
0.00649971055692570.00.00197.95
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-202-0/0/82848.
0.00649971055796960.00.00197.19
127.0.0.1http/1.1default:7080GET /01.php HTTP/1.0

1-202-0/0/82428.
0.00649971055320330.00.00182.91
127.0.0.1http/1.1default:7080GET ///wp-2019.php HTTP/1.0

1-202-0/0/82843.
0.00649971056536820.00.00263.68
127.0.0.1http/1.1default:7080GET /ee.php HTTP/1.0

1-202-0/0/82632.
0.00649971053766080.00.00182.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82782.
0.0064997150255389380.00.00177.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82781.
0.00649971055630830.00.00182.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82891.
0.0064997141755651820.00.00193.14
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

1-202-0/0/83091.
0.00649971056922130.00.00194.75
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP

1-202-0/0/82806.
0.00649971054827760.00.00188.77
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

1-202-0/0/82650.
0.00649971

Found on 2025-05-10 23:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77043e780fe1

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Thursday, 08-May-2025 14:52:21 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 217
Parent Server MPM Generation: 216
Server uptime:  28 days 19 hours 33 minutes 14 seconds
Server load: 0.56 0.44 0.45
Total accesses: 4938461 - Total Traffic: 14.0 GB - Total Duration: 504809280
CPU Usage: u123.82 s124.68 cu4401.95 cs2423.73 - .284% CPU load
1.98 requests/sec - 5.9 kB/second - 3048 B/request - 102.22 ms/request
2 requests currently being processed, 48 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02351154no0yes223000
32351153no0yes025000
Sum200 248000

____________W_______W____.......................................
..........._________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-21623511540/1243/90870_
59.182787103989200.04.85282.65
127.0.0.1http/1.1violenceroutiere.org:7081POST / HTTP/1.0

0-21623511540/1187/90607_
59.340523104446620.04.68275.38
127.0.0.1http/1.1marseille-immunopole.org:7081GET /fileadmin/templates/cdt91/img/logo.gif HTTP/1.0

0-21623511540/1192/90688_
59.343802103947040.04.48282.67
127.0.0.1http/1.1violenceroutiere.org:7081GET /search/%E6%81%92%E6%8C%87%E6%9C%9F%E8%B4%A7%E5%9C%A8%E5%93

0-21623511540/1223/90819_
59.3930103697130.04.94287.20
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-21623511540/1188/90757_
59.3910105782710.04.95288.59
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-21623511540/1195/90658_
59.361886103713300.04.78270.36
127.0.0.1http/1.1violenceroutiere.org:7081GET /?download=coeur-images-gratuites HTTP/1.0

0-21623511540/1205/90961_
59.390530105446950.04.94282.43
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/03/empreinte-patte-de-chien-15

0-21623511540/1226/90403_
59.3910103535340.04.82275.22
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-21623511540/1221/90699_
59.3900104483730.05.12287.49
127.0.0.1http/1.1default:7080GET /blog/2009/08/21/diydaysextendingtheexperience/ HTTP/1.0

0-21623511540/1206/90405_
59.39011105035290.04.59285.44
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-21623511540/1215/90494_
59.39110104781820.04.82284.21
127.0.0.1http/1.1violenceroutiere.org:7081POST /wp-cron.php?doing_wp_cron=1746715939.86700010299682617187

0-21623511540/1185/90437_
59.3920104285350.04.38281.55
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-21623511541/1171/90571W
59.3800104422920.04.65277.03
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-21623511540/1192/90714_
59.35213105027540.04.71287.99
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-21623511540/1237/90622_
59.3920104666850.05.04276.46
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-21623511540/1194/90487_
59.361516103834000.04.58276.57
127.0.0.1http/1.1violenceroutiere.org:7081GET /a-swedish-sculpture-park-which-has-so-much-to-offer/ HTTP/

0-21623511540/1230/90605_
59.370555102891020.04.69271.09
127.0.0.1http/1.1marseille-immunopole.org:7081GET /apple-touch-icon-precomposed.png HTTP/1.0

0-21623511540/1188/90576_
59.3920105465020.04.84288.60
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-21623511540/1204/90325_
59.3910104498590.04.65292.19
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-21623511540/1218/90733_
59.343825104955420.05.13282.62
127.0.0.1http/1.1violenceroutiere.org:7081GET /search/%E6%81%92%E6%8C%87%E4%BB%A3%E7%90%86%E5%8A%A0%E7%9B

0-21623511541/1220/90870W
59.3300105506020.05.27287.46
127.0.0.1http/1.1violenceroutiere.org:7081GET /?download=paques-photos-gratuites HTTP/1.0

0-21623511540/1206/90407_
59.3930104624860.04.60276.48
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-21623511540/1219/90229_
59.270517104249190.05.09279.45
127.0.0.1http/1.1violenceroutiere.org:7081GET /?page=100 HTTP/1.0

0-21623511540/1205/90803_
59.3920103658470.05.07275.79
127.0.0.1http/1.1default:7080GET /profile.php?id=10019 HTTP/1.0

0-21623511540/1197/90761_
59.37110103497210.04.85282.10
127.0.0.1http/1.1marseille-immunopole.org:7081POST /wp-cron.php?doing_wp_cron=1746715933.88499498367309570312

1-202-0/0/82956.
0.00445150056288530.00.00189.07
127.0.0.1http/1.1default:7080GET //sim.php/wp-includes/certificates/plugins.php HTTP/1.0

1-202-0/0/82833.
0.0044515050656387360.00.00198.99
127.0.0.1http/1.1marseille-immunopole.org:7081GET /?q=comment/reply/6292/6699 HTTP/1.0

1-202-0/0/82558.
0.00445150054866740.00.00203.36
127.0.0.1http/1.1default:7080GET /lv.php HTTP/1.0

1-202-0/0/83136.
0.00445150055286530.00.00209.03
127.0.0.1http/1.1default:7080GET //wp-includes/Text/autoload_classmap.php HTTP/1.0

1-202-0/0/82900.
0.00445150055946750.00.00189.18
127.0.0.1http/1.1default:7080GET //webadmin.php HTTP/1.0

1-202-0/0/82704.
0.00445150057601100.00.00192.66
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/about.php HTTP/1.0

1-202-0/0/82709.
0.0044515038155226980.00.00198.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bt/ HTTP/1.0

1-202-0/0/82661.
0.00445150055537880.00.00181.38
127.0.0.1http/1.1default:7080GET /wp-includes/images/about.php HTTP/1.0

1-202-0/0/82866.
0.00445150055008220.00.00187.65
127.0.0.1http/1.1default:7080GET /wp-admin/users.php HTTP/1.0

1-202-0/0/82632.
0.0044515042756582710.00.00194.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1036/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82891.
0.00445150055451330.00.00179.05
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

1-202-0/0/82602.
0.00445150055747130.00.00191.04
127.0.0.1http/1.1default:7080GET //simple.php HTTP/1.0

1-202-0/0/82675.
0.00445150055692570.00.00197.95
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-202-0/0/82848.
0.00445150055796960.00.00197.19
127.0.0.1http/1.1default:7080GET /01.php HTTP/1.0

1-202-0/0/82428.
0.00445150055320330.00.00182.91
127.0.0.1http/1.1default:7080GET ///wp-2019.php HTTP/1.0

1-202-0/0/82843.
0.00445150056536820.00.00263.68
127.0.0.1http/1.1default:7080GET /ee.php HTTP/1.0

1-202-0/0/82632.
0.00445150053766080.00.00182.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82782.
0.0044515050255389380.00.00177.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82781.
0.00445150055630830.00.00182.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82891.
0.0044515041755651820.00.00193.14
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

1-202-0/0/83091.
0.00445150056922130.00.00194.75
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP

1-202-0/0/82806.
0.00445150054827760.00.00188.77
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

1-202-0/0/82650.
0.004451500

Found on 2025-05-08 14:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704a30059dc

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Tuesday, 06-May-2025 08:37:37 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 210
Parent Server MPM Generation: 209
Server uptime:  26 days 13 hours 18 minutes 31 seconds
Server load: 1.15 1.35 1.26
Total accesses: 4524318 - Total Traffic: 12.3 GB - Total Duration: 422894996
CPU Usage: u137.85 s128.1 cu3858.34 cs2175.01 - .275% CPU load
1.97 requests/sec - 5.6 kB/second - 2921 B/request - 93.4715 ms/request
3 requests currently being processed, 47 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01842841no1yes223000
31842840no0yes124000
Sum201 347000

______________WW_________.......................................
...........______W__________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-20918428410/2074/80043_
80.120082625740.07.17236.56
127.0.0.1http/1.1default:7080GET /wp-admin/css/wp-login.php HTTP/1.0

0-20918428410/2079/79934_
80.130083506590.06.97229.99
127.0.0.1http/1.1default:7080GET /wp-includes/interactivity-api HTTP/1.0

0-20918428410/2089/80022_
80.130082741480.06.72237.29
127.0.0.1http/1.1default:7080GET /alfanew.php7 HTTP/1.0

0-20918428410/2087/79985_
80.130081895430.06.66240.79
127.0.0.1http/1.1default:7080GET /index/function.php?p= HTTP/1.0

0-20918428410/2093/80041_
80.101084335230.06.85242.89
127.0.0.1http/1.1default:7080GET /wp-admin/user/cloud.php HTTP/1.0

0-20918428410/2040/79917_
80.12158682207170.06.65224.45
127.0.0.1http/1.1violenceroutiere.org:7081POST //wp-login.php HTTP/1.0

0-20918428410/2099/80298_
80.120084087350.07.25237.29
127.0.0.1http/1.1default:7080GET /wp-error_log.php?dir=. HTTP/1.0

0-20918428410/2062/79623_
80.121082188110.06.95229.83
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-20918428410/2036/80056_
80.111082865730.06.58241.25
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20918428410/2034/79735_
80.120082964880.06.76240.03
127.0.0.1http/1.1default:7080GET /wb.php HTTP/1.0

0-20918428410/2124/79871_
80.120083444240.07.03239.55
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-20918428410/2105/79805_
80.11163683113200.07.23235.71
127.0.0.1http/1.1violenceroutiere.org:7081POST //wp-login.php HTTP/1.0

0-20918428410/2063/79930_
80.13026882879590.06.71230.75
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-20918428410/2051/80041_
80.111083722120.06.98242.65
127.0.0.1http/1.1default:7080GET /data.php HTTP/1.0

0-20918428411/2099/79969W
80.110083245700.06.83230.47
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-20918428411/2053/79809W
80.110082515140.06.46231.12
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-20918428410/2096/80063_
80.130081768960.06.77226.64
127.0.0.1http/1.1default:7080GET /wp-includes/css/dist/components/admin.php HTTP/1.0

0-20918428410/2051/79850_
80.130083091020.06.56243.07
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-20918428410/2024/79615_
80.121082809810.06.77245.86
127.0.0.1http/1.1default:7080GET /wp-includes/D2a4qMfz8OV.php HTTP/1.0

0-20918428410/2131/80013_
80.130083394280.07.06236.79
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-20918428410/2037/80115_
80.12132983778090.06.69241.31
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-20918428410/2046/79787_
80.111083641650.06.71232.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20918428410/2037/79681_
80.121083230310.06.94235.48
127.0.0.1http/1.1default:7080GET /wp-includes/Requests/autoload_classmap.php HTTP/1.0

0-20918428410/2083/80103_
80.121082294550.06.91230.70
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-20918428410/2034/80041_
80.121082482540.06.55235.96
127.0.0.1http/1.1default:7080GET /wp-includes/css/about.php?p= HTTP/1.0

1-202-0/0/82956.
0.00249867056288530.00.00189.07
127.0.0.1http/1.1default:7080GET //sim.php/wp-includes/certificates/plugins.php HTTP/1.0

1-202-0/0/82833.
0.0024986750656387360.00.00198.99
127.0.0.1http/1.1marseille-immunopole.org:7081GET /?q=comment/reply/6292/6699 HTTP/1.0

1-202-0/0/82558.
0.00249867054866740.00.00203.36
127.0.0.1http/1.1default:7080GET /lv.php HTTP/1.0

1-202-0/0/83136.
0.00249867055286530.00.00209.03
127.0.0.1http/1.1default:7080GET //wp-includes/Text/autoload_classmap.php HTTP/1.0

1-202-0/0/82900.
0.00249867055946750.00.00189.18
127.0.0.1http/1.1default:7080GET //webadmin.php HTTP/1.0

1-202-0/0/82704.
0.00249867057601100.00.00192.66
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/about.php HTTP/1.0

1-202-0/0/82709.
0.0024986738155226980.00.00198.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bt/ HTTP/1.0

1-202-0/0/82661.
0.00249867055537880.00.00181.38
127.0.0.1http/1.1default:7080GET /wp-includes/images/about.php HTTP/1.0

1-202-0/0/82866.
0.00249867055008220.00.00187.65
127.0.0.1http/1.1default:7080GET /wp-admin/users.php HTTP/1.0

1-202-0/0/82632.
0.0024986742756582710.00.00194.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1036/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82891.
0.00249867055451330.00.00179.05
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

1-202-0/0/82602.
0.00249867055747130.00.00191.04
127.0.0.1http/1.1default:7080GET //simple.php HTTP/1.0

1-202-0/0/82675.
0.00249867055692570.00.00197.95
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-202-0/0/82848.
0.00249867055796960.00.00197.19
127.0.0.1http/1.1default:7080GET /01.php HTTP/1.0

1-202-0/0/82428.
0.00249867055320330.00.00182.91
127.0.0.1http/1.1default:7080GET ///wp-2019.php HTTP/1.0

1-202-0/0/82843.
0.00249867056536820.00.00263.68
127.0.0.1http/1.1default:7080GET /ee.php HTTP/1.0

1-202-0/0/82632.
0.00249867053766080.00.00182.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82782.
0.0024986750255389380.00.00177.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82781.
0.00249867055630830.00.00182.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82891.
0.0024986741755651820.00.00193.14
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

1-202-0/0/83091.
0.00249867056922130.00.00194.75
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP

1-202-0/0/82806.
0.00249867054827760.00.00188.77
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

1-202-0/0/82650.
0.00249867054684640.00.00184.59
127.0.0.1http/1.1default:7080GET /erin1.PhP7 HTTP/1.0

1-202-0/0/82780.
0.00249867055128580.00.00196.2

Found on 2025-05-06 08:37

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704f26baf57

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Sunday, 04-May-2025 19:30:48 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 206
Parent Server MPM Generation: 205
Server uptime:  25 days 11 minutes 41 seconds
Server load: 0.61 0.58 0.51
Total accesses: 4201661 - Total Traffic: 11.1 GB - Total Duration: 372179515
CPU Usage: u162.27 s135.06 cu3455.05 cs1993.68 - .266% CPU load
1.94 requests/sec - 5.4 kB/second - 2827 B/request - 88.5791 ms/request
2 requests currently being processed, 48 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01480168no0yes223000
31480167no0yes025000
Sum200 248000

____________W___W________.......................................
..........._________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-20514801680/2855/71696_
99.101069227460.09.02202.90
127.0.0.1http/1.1default:7080GET /%E8%94%A1%E8%A1%8C%E5%85%A8-Chua-Heng-Chuan/1499073/ HTTP/

0-20514801680/2788/71612_
99.10040170299980.09.04197.34
127.0.0.1http/1.1marseille-immunopole.org:7081GET /feed/ HTTP/1.0

0-20514801680/2803/71666_
99.114869411840.09.45204.18
127.0.0.1http/1.1violenceroutiere.org:7081POST /wp-cron.php?doing_wp_cron=1746387044.11187291145324707031

0-20514801680/2814/71725_
99.121069095930.09.27207.68
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-20514801680/2775/71687_
99.123070736790.09.54209.47
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20514801680/2855/71636_
99.100069323770.08.87191.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20514801680/2802/71878_
98.98327370735400.09.27203.23
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-20514801680/2819/71304_
99.115068866270.08.73196.55
127.0.0.1http/1.1default:7080GET /%E8%94%A1%E9%94%A1%E8%89%AF-CHOR-SEK-LEONG-CHOI-FATT-LEONG

0-20514801680/2838/71745_
99.116069842200.09.05208.66
127.0.0.1http/1.1default:7080GET /%E8%94%A1%E9%94%A1%E8%89%AF-CHOI-SEK-LEONG-CHOI-FATT-LEONG

0-20514801680/2850/71290_
99.11528869710110.08.68207.19
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

0-20514801680/2796/71413_
99.102069662620.09.59206.64
127.0.0.1http/1.1default:7080GET /%E8%94%A1%E7%BE%8E%E5%8D%8E-DOLLY-CHAI/1617746/ HTTP/1.0

0-20514801680/2847/71391_
99.108069552720.09.76202.20
127.0.0.1http/1.1default:7080GET /%E8%94%A1%E8%B5%9B%E5%A8%87/1683851/ HTTP/1.0

0-20514801681/2817/71592W
99.100069328360.09.30197.48
127.0.0.1http/1.1violenceroutiere.org:7081GET /__media__/js/netsoltrademark.php?d=online-viagra-buy.xyz/ 

0-20514801680/2823/71739_
99.04546970644910.09.75209.02
127.0.0.1http/1.1marseille-immunopole.org:7081GET /wp-content/themes/hello_dolly_v2.php HTTP/1.0

0-20514801680/2730/71640_
99.121069570860.08.67197.89
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-20514801680/2772/71491_
99.122069246100.09.30197.74
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-20514801681/2747/71583W
99.030068632450.08.91193.00
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-20514801680/2758/71519_
99.120070043370.09.15210.06
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-20514801680/2833/71336_
99.122069870090.08.97213.52
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-20514801680/2806/71537_
99.06640370022960.09.06203.51
127.0.0.1http/1.1marseille-immunopole.org:7081GET /xmlrpc.php HTTP/1.0

0-20514801680/2835/71770_
99.07329270520960.09.60208.08
127.0.0.1http/1.1marseille-immunopole.org:7081GET /xmlrpc.php HTTP/1.0

0-20514801680/2847/71472_
99.12040170438420.09.43198.94
127.0.0.1http/1.1marseille-immunopole.org:7081GET /xmlrpc.php HTTP/1.0

0-20514801680/2831/71359_
99.120070047680.08.97201.90
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-20514801680/2854/71715_
99.123069390210.08.94197.47
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20514801680/2804/71752_
99.104069624450.09.14203.42
127.0.0.1http/1.1audi-encounter.com:7081GET /d0ffc46d07243786214447/48476ff300eid7dct0m30.dz HTTP/1.0

1-202-0/0/82956.
0.00116257056288530.00.00189.07
127.0.0.1http/1.1default:7080GET //sim.php/wp-includes/certificates/plugins.php HTTP/1.0

1-202-0/0/82833.
0.0011625750656387360.00.00198.99
127.0.0.1http/1.1marseille-immunopole.org:7081GET /?q=comment/reply/6292/6699 HTTP/1.0

1-202-0/0/82558.
0.00116257054866740.00.00203.36
127.0.0.1http/1.1default:7080GET /lv.php HTTP/1.0

1-202-0/0/83136.
0.00116257055286530.00.00209.03
127.0.0.1http/1.1default:7080GET //wp-includes/Text/autoload_classmap.php HTTP/1.0

1-202-0/0/82900.
0.00116257055946750.00.00189.18
127.0.0.1http/1.1default:7080GET //webadmin.php HTTP/1.0

1-202-0/0/82704.
0.00116257057601100.00.00192.66
127.0.0.1http/1.1default:7080GET /wp-includes/rest-api/about.php HTTP/1.0

1-202-0/0/82709.
0.0011625738155226980.00.00198.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bt/ HTTP/1.0

1-202-0/0/82661.
0.00116257055537880.00.00181.38
127.0.0.1http/1.1default:7080GET /wp-includes/images/about.php HTTP/1.0

1-202-0/0/82866.
0.00116257055008220.00.00187.65
127.0.0.1http/1.1default:7080GET /wp-admin/users.php HTTP/1.0

1-202-0/0/82632.
0.0011625742756582710.00.00194.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1036/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82891.
0.00116257055451330.00.00179.05
127.0.0.1http/1.1default:7080GET /mah/function.php HTTP/1.0

1-202-0/0/82602.
0.00116257055747130.00.00191.04
127.0.0.1http/1.1default:7080GET //simple.php HTTP/1.0

1-202-0/0/82675.
0.00116257055692570.00.00197.95
127.0.0.1http/1.1default:7080GET /ova.php HTTP/1.0

1-202-0/0/82848.
0.00116257055796960.00.00197.19
127.0.0.1http/1.1default:7080GET /01.php HTTP/1.0

1-202-0/0/82428.
0.00116257055320330.00.00182.91
127.0.0.1http/1.1default:7080GET ///wp-2019.php HTTP/1.0

1-202-0/0/82843.
0.00116257056536820.00.00263.68
127.0.0.1http/1.1default:7080GET /ee.php HTTP/1.0

1-202-0/0/82632.
0.00116257053766080.00.00182.94
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82782.
0.0011625750255389380.00.00177.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/1103/?%EE%B9%8Bresident/ HTTP/1.0

1-202-0/0/82781.
0.00116257055630830.00.00182.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-202-0/0/82891.
0.0011625741755651820.00.00193.14
127.0.0.1http/1.1marseille-immunopole.org:7081POST /xmlrpc.php HTTP/1.0

1-202-0/0/83091.
0.00116257056922130.00.00194.75
127.0.0.1http/1.1default:7080GET /wp-includes/js/tinymce/plugins/compat3x/css/index.php HTTP

1-202-0/0/82806.
0.00116257054827760.00.00188.77
127.0.0.1http/1.1default:7080GET /wp-content/index.php HTTP/1.0

1-202-0/0/82650.
0.00116257054684640.00.00184.59
127.0.0.1http

Found on 2025-05-04 19:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704f97e507d

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Friday, 02-May-2025 16:45:09 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 202
Parent Server MPM Generation: 201
Server uptime:  22 days 21 hours 26 minutes 2 seconds
Server load: 0.44 0.33 0.35
Total accesses: 3729035 - Total Traffic: 9.3 GB - Total Duration: 301001850
CPU Usage: u52.14 s77.76 cu3024.66 cs1797.79 - .25% CPU load
1.89 requests/sec - 5022 B/second - 2664 B/request - 80.7184 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01149433no0yes025000
31149432no0yes124000
Sum200 149000

_________________________.......................................
...........__W______________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-20111494330/84/60038_
3.935051619730.00.53156.73
127.0.0.1http/1.1marseille-immunopole.org:7081GET /wp-includes/js/dist/script-modules/block-library/navigatio

0-20111494330/72/59915_
3.961349652825160.00.45150.37
127.0.0.1http/1.1violenceroutiere.org:7081GET /__media__/js/netsoltrademark.php?d=guides.co%2Fg%2Fbuffalo

0-20111494330/85/59994_
4.00547351622930.00.52157.62
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/11/30-538x300.jpg HTTP/1.0

0-20111494330/72/60068_
3.99845951688700.00.41161.33
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/11/30-538x300.jpg HTTP/1.0

0-20111494330/73/60090_
4.005052829300.00.43162.99
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20111494330/75/59884_
3.97565751625270.00.45146.16
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-login.php?action=register HTTP/1.0

0-20111494330/78/60124_
3.9912952627030.00.50156.11
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-20111494330/59/59674_
3.991245851642870.00.30152.07
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/05/bouton-3d-download-t%c3%a9l

0-20111494330/76/60155_
3.961248752178140.00.52163.20
127.0.0.1http/1.1violenceroutiere.org:7081GET /__media__/js/netsoltrademark.php?d=online-viagra-buy.xyz/ 

0-20111494330/68/59620_
3.994052334820.00.35162.14
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20111494330/78/59658_
3.97878851841280.00.46160.63
127.0.0.1http/1.1violenceroutiere.org:7081GET /?d=online-viagra-buy.xyz HTTP/1.0

0-20111494330/68/59594_
3.951246551660270.00.40155.96
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/07/Papilio-Arfak-779x460.jpg HTTP/

0-20111494330/75/59959_
4.00661451774410.00.36152.21
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/04/salon-f-r-kunstbuch-200-648x370

0-20111494330/78/59986_
3.9914052813250.00.39162.90
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20111494330/81/60103_
4.0052152264150.00.51153.47
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-20111494330/72/59871_
3.956051339430.00.43151.48
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-20111494330/77/59906_
3.991247451593370.00.42146.78
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/11/30-538x300.jpg HTTP/1.0

0-20111494330/67/59897_
3.9913052356650.00.39163.67
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20111494330/77/59669_
4.014052262550.00.48168.01
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20111494330/69/59850_
3.98542552348270.00.50157.52
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-login.php?registration=disabled HTTP/1.0

0-20111494330/79/60042_
3.975753028460.00.39161.73
127.0.0.1http/1.1violenceroutiere.org:7081POST /wp-cron.php?doing_wp_cron=1746204286.31036710739135742187

0-20111494330/68/59816_
4.01535453010560.00.38152.81
127.0.0.1http/1.1marseille-immunopole.org:7081GET /xmlrpc.php HTTP/1.0

0-20111494330/80/59603_
3.9712052328630.00.52156.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-20111494330/74/59877_
4.013051993080.00.49151.93
127.0.0.1http/1.1default:7080GET /viewtopic.php?pid=33725 HTTP/1.0

0-20111494330/74/60021_
3.961447551865100.00.40157.36
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/08/Courtesy-of-Museo-Leonardiano-0

1-196-0/0/82704.
0.0014670048655889240.00.00187.79
127.0.0.1http/1.1violenceroutiere.org:7081GET /video_06_v-19470shr5tuxhb.jpg HTTP/1.0

1-196-0/0/82616.
0.00146700056041820.00.00198.04
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-196-0/0/82295.
0.00146700054490600.00.00201.96
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-196-0/0/82901.
0.00146700154942470.00.00207.98
127.0.0.1http/1.1violenceroutiere.org:7081POST /wp-cron.php?doing_wp_cron=1746057600.18091893196105957031

1-196-0/0/82680.
0.00146700055611140.00.00188.21
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-196-0/0/82473.
0.0014670051357250130.00.00191.59
127.0.0.1http/1.1violenceroutiere.org:7081GET /wa_import15_v-13zij0ingdrx26.jpg HTTP/1.0

1-196-0/0/82480.
0.0014670049654792240.00.00197.56
127.0.0.1http/1.1violenceroutiere.org:7081GET /2011/01/11/community-manager-evolution-%C2%BFun-cm-para-do

1-196-0/0/82437.
0.0014670046355232280.00.00180.39
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/img_prin.jpg HTTP/1.0

1-196-0/0/82644.
0.0014670076054644510.00.00186.50
127.0.0.1http/1.1violenceroutiere.org:7081GET /?replytocom=2235 HTTP/1.0

1-196-0/0/82396.
0.0014670045156191830.00.00193.18
127.0.0.1http/1.1violenceroutiere.org:7081GET /2011/02/09/curso-certificado-de-especializacion-para-commu

1-196-0/0/82642.
0.00146700055092360.00.00178.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-196-0/0/82370.
0.001467002255418180.00.00190.13
127.0.0.1http/1.1marseille-immunopole.org:7081GET / HTTP/1.0

1-196-0/0/82444.
0.0014670051655356050.00.00196.83
127.0.0.1http/1.1violenceroutiere.org:7081GET /2011/02/09/curso-certificado-de-especializacion-para-commu

1-196-0/0/82610.
0.0014670076155370730.00.00195.99
127.0.0.1http/1.1violenceroutiere.org:7081GET /?replytocom=2234 HTTP/1.0

1-196-0/0/82196.
0.0014670048355022860.00.00181.85
127.0.0.1http/1.1violenceroutiere.org:7081GET /index.php HTTP/1.0

1-196-0/0/82604.
0.0014670060156165200.00.00262.65
127.0.0.1http/1.1violenceroutiere.org:7081GET /ethylotests-chimique-nf20_v-179pcci6979336.gif HTTP/1.0

1-196-0/0/82381.
0.0014670070853404520.00.00181.75
127.0.0.1http/1.1violenceroutiere.org:7081GET /?replytocom=6016 HTTP/1.0

1-196-0/0/82566.
0.00146700055035730.00.00175.99
127.0.0.1http/1.1default:7080GET /k/partnumlist?s=part_number&part_number_d=ASC&part_number_

1-196-0/0/82547.
0.0014670048755259650.00.00181.62
127.0.0.1http/1.1violenceroutiere.org:7081GET /2011/01/14/curso-certificado-de-especializacion-para-commu

1-196-0/0/82665.
0.0014670056755283510.00.00191.91
127.0.0.1http/1.1violenceroutiere.org:7081GET /2011/01/14/curso-certificado-de-especializacion-para-commu

1-196-0/0/82857.
0.0014670090856559640.00.00193.68
127.0.0.1http/1.1violenceroutiere.org:7081GET /?replytocom=2237 HTTP/1.0

1-196-0/0/82578.
0.0014670005443

Found on 2025-05-02 16:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704a4765bac

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Wednesday, 30-Apr-2025 17:33:07 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 197
Parent Server MPM Generation: 196
Server uptime:  20 days 22 hours 14 minutes 1 second
Server load: 0.90 0.72 0.71
Total accesses: 3285802 - Total Traffic: 7.3 GB - Total Duration: 215223322
CPU Usage: u172.91 s126.25 cu2321.08 cs1481.36 - .227% CPU load
1.82 requests/sec - 4340 B/second - 2388 B/request - 65.501 ms/request
2 requests currently being processed, 73 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0677738no0yes025000
1677739no0yes124000
2739442no0yes124000
Sum300 273000

_____________________________________________W_______________W__
___________.....................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1966777380/1133/49798_
62.16591031184070.05.33109.93
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-1966777380/1176/49574_
62.185048432095550.05.19104.48
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/903/?%EE%B9%8Bt/ HTTP/1.0

0-1966777380/1141/49684_
62.1246231066460.05.25111.21
127.0.0.1http/1.1violenceroutiere.org:7081POST /wp-cron.php?doing_wp_cron=1746034302.81424093246459960937

0-1966777380/1076/49749_
62.133847531322160.04.93114.05
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/7/?%EE%B9%8Bresident/ HTTP/1.0

0-1966777380/1152/49778_
62.21944131775230.05.38115.44
127.0.0.1http/1.1marseille-immunopole.org:7081GET /sites/default/files/field/image/kielce_wiadomo%c5%9bci_dzi

0-1966777380/1086/49555_
62.220031433730.04.8599.11
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-1966777380/1148/49923_
62.115853532177750.04.84109.84
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/07/motb_galley-613x460.jpg HTTP/1.

0-1966777380/1128/49402_
62.203747631516810.05.25105.39
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/905/?%EE%B9%8Bt/ HTTP/1.0

0-1966777380/1150/49829_
62.175756531794070.05.23116.98
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/04/Photo-Renat-Gataulin_09-691x460

0-1966777380/1149/49343_
62.133543731819010.05.39115.74
127.0.0.1http/1.1marseille-immunopole.org:7081GET /images/2008Arias100x125.jpg HTTP/1.0

0-1966777380/1130/49274_
62.18571630841800.05.39112.92
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-1966777380/1138/49343_
62.194647831340730.05.19110.52
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/904/?%EE%B9%8Bresident/ HTTP/1.0

0-1966777380/1104/49636_
62.165860231526880.05.06105.85
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2017/04/Night-in-the-square_03-690x460.

0-1966777380/1139/49604_
62.193849532022300.05.11115.90
127.0.0.1http/1.1marseille-immunopole.org:7081GET /sites/default/files/styles/frontpage_skrot/public/field/im

0-1966777380/1110/49734_
62.1938031454620.05.13105.10
127.0.0.1http/1.1marseille-immunopole.org:7081POST /wp-cron.php?doing_wp_cron=1746034349.43188405036926269531

0-1966777380/1131/49580_
62.0757031050410.05.22104.86
154.81.156.54http/1.1default:7080GET / HTTP/1.0

0-1966777380/1135/49567_
62.133846231320780.05.56100.27
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/7/?%EE%B9%88orotai/ HTTP/1.0

0-1966777380/1222/49629_
62.156448132047160.05.53115.95
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/901/?%EE%B9%88orotai/ HTTP/1.0

0-1966777380/1094/49420_
62.175856631389670.05.06120.81
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/03/homme-avec-un-micro.png HTT

0-1966777380/1122/49541_
62.221031479140.04.99111.00
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-1966777380/1185/49641_
62.165851432571750.05.62114.83
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/902/?%EE%B9%88orotai/ HTTP/1.0

0-1966777380/1119/49492_
62.22455632550300.04.92106.18
127.0.0.1http/1.1marseille-immunopole.org:7081GET /arenaycal/2011/187_noviembre/fco_arias187.asp HTTP/1.0

0-1966777380/1121/49283_
62.1441531997620.05.01111.53
127.0.0.1http/1.1marseille-immunopole.org:7081GET / HTTP/1.0

0-1966777380/1150/49547_
62.15155931751110.05.44105.16
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/901/?%EE%B9%85apan/ HTTP/1.0

0-1966777380/1101/49655_
62.203550031455140.04.66111.00
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/906/?%EE%B9%88orotai/ HTTP/1.0

1-1966777390/1951/81245_
105.543053723180.08.92181.43
127.0.0.1http/1.1audi-encounter.com:7081GET /3c6ac1f56246529879/1849fa6036ei503ctcm69.dz HTTP/1.0

1-1966777390/1956/81134_
105.481541453796920.08.96191.78
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/906/?%EE%B9%85apan/ HTTP/1.0

1-1966777390/1962/80881_
105.471681452424180.08.74195.95
127.0.0.1http/1.1violenceroutiere.org:7081GET /page/12/?paged=12 HTTP/1.0

1-1966777390/1955/81375_
105.511551352711260.09.53201.41
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/912/?%EE%B9%85apan/ HTTP/1.0

1-1966777390/1923/81205_
105.4051053468110.09.35182.17
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

1-1966777390/1910/80991_
105.53947155128460.08.69185.52
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/913/?%EE%B9%88orotai/ HTTP/1.0

1-1966777390/1909/81002_
105.544052613770.09.07191.87
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-1966777390/1949/81014_
105.49965753290070.09.09174.64
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/edd/2015/07/banque-d-images-photos-grat

1-1966777390/1935/81161_
105.40425852511620.08.99180.90
127.0.0.1http/1.1robinautopilot.com:7081GET /cbeb86e914695566763905508964/6047ebe461ei97c8tbm30.dz HTTP

1-1966777390/1965/80899_
105.49554654084810.09.18186.87
127.0.0.1http/1.1marseille-immunopole.org:7081GET /sites/default/files/field/image/kielce_muzeum_zabawek1a.jp

1-1966777390/1952/81220_
105.462242353022350.09.17172.02
127.0.0.1http/1.1marseille-immunopole.org:7081GET /sites/default/files/styles/frontpage_skrot/public/field/im

1-1966777390/1979/80922_
105.55155753354000.09.24184.54
127.0.0.1http/1.1marseille-immunopole.org:7081GET /wp-content/uploads/2020/06/BastiaPNG.png HTTP/1.0

1-1966777390/1955/80981_
105.53548653369210.09.24190.89
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/914/?%EE%B9%85apan/ HTTP/1.0

1-1966777390/1944/81161_
105.521354153294240.08.97190.61
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/912/?%EE%B9%8Bresident/ HTTP/1.0

1-1966777390/1948/80724_
105.543052845770.08.73175.81
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-1966777390/1910/81126_
105.46163653937410.08.90256.49
127.0.0.1http/1.1violenceroutiere.org:7081GET /?paged=12 HTTP/1.0

1-1966777390/1880/80943_
105.5213051407590.08.94175.69
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-1966777390/1969/81084_
105.535052981590.08.74170.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-1966777390/1904/81089_
105.551053150240.08.79175.87
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-1966777390/1946/81235_
105.491350653122920.09.19185.77
127.0.0.1http/1.1marseille-immunopole.org:7081GET /page/906/

Found on 2025-04-30 17:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704bdfe13eb

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Monday, 28-Apr-2025 17:13:24 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 187
Parent Server MPM Generation: 186
Server uptime:  18 days 21 hours 54 minutes 18 seconds
Server load: 0.96 0.58 0.50
Total accesses: 2780979 - Total Traffic: 5.4 GB - Total Duration: 119595190
CPU Usage: u47.27 s67.86 cu1784.66 cs1221.75 - .191% CPU load
1.7 requests/sec - 3524 B/second - 2070 B/request - 43.0047 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0331984no0yes124000
1331985no1yes025000
Sum201 149000

____________W_____________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1863319840/115/42386_
4.34545517584020.00.3381.32
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/104/42124_
4.351018184570.00.3076.17
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-1863319840/124/42304_
4.35250817256810.00.3881.99
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-login.php?registration=disabled HTTP/1.0

0-1863319840/118/42410_
4.32247117792760.00.2486.09
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/106/42395_
4.346017857340.00.2886.08
127.0.0.1http/1.1default:7080GET /?feed=rss2 HTTP/1.0

0-1863319840/118/42226_
4.34039517807260.00.2970.80
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/103/42475_
4.270018553150.00.3181.96
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-men

0-1863319840/117/42059_
4.351017607240.00.2876.54
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-1863319840/116/42404_
4.351017675100.00.2587.79
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-1863319840/107/41911_
4.331017875760.00.2485.97
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-1863319840/102/41931_
4.3411717489710.00.3983.92
127.0.0.1http/1.1violenceroutiere.org:7081GET / HTTP/1.0

0-1863319840/116/42058_
4.352017526390.00.2481.58
127.0.0.1http/1.1default:7080GET /wso1337.php HTTP/1.0

0-1863319841/109/42224W
4.340017730910.00.2977.24
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-1863319840/116/42168_
4.33145518057350.00.3186.55
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/113/42382_
4.282017639740.00.3776.70
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver

0-1863319840/107/42078_
4.352017307770.00.3276.01
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-1863319840/104/42203_
4.360017323500.00.3670.98
127.0.0.1http/1.1default:7080GET /rad.php HTTP/1.0

0-1863319840/109/42078_
4.36044317614970.00.2586.26
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/120/42048_
4.32243517684150.00.2792.33
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/114/42304_
4.35434117724850.00.2581.90
127.0.0.1http/1.1marseille-immunopole.org:7081GET /wp-login.php HTTP/1.0

0-1863319840/114/42160_
4.352017974970.00.2985.02
127.0.0.1http/1.1default:7080GET /?feed=rss2 HTTP/1.0

0-1863319840/104/42071_
4.31651018390320.00.2476.89
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

0-1863319840/104/41925_
4.36058318252650.00.2782.59
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-content/uploads/2018/10/Przemys%C5%82aw-Wo%C5%BAnica-2-

0-1863319840/102/42109_
4.345017570420.00.2476.38
127.0.0.1http/1.1default:7080GET /wpindex.php HTTP/1.0

0-1863319840/117/42263_
4.351017725800.00.2882.88
127.0.0.1http/1.1default:7080GET /products/category/648.0.1.1.27435.0.0.0.0 HTTP/1.0

1-1863319850/193/68697_
7.30150529970180.00.60132.21
127.0.0.1http/1.1marseille-immunopole.org:7081GET /blog/?post_id=00626 HTTP/1.0

1-1863319850/199/68519_
7.171029623890.00.55141.60
127.0.0.1http/1.1default:7080GET /y.php HTTP/1.0

1-1863319850/199/68353_
7.28155229150540.00.58147.58
127.0.0.1http/1.1violenceroutiere.org:7081GET /wp-login.php?action=register HTTP/1.0

1-1863319850/217/68706_
7.27239728410570.00.52150.62
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/197/68609_
7.27248829297520.00.61131.06
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/208/68522_
7.23045631523030.00.55136.68
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/207/68604_
7.3101029020800.00.53143.35
127.0.0.1http/1.1marseille-immunopole.org:7081GET / HTTP/1.0

1-1863319850/188/68565_
7.29238630050550.00.50127.07
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/197/68587_
7.292029082420.00.50131.84
127.0.0.1http/1.1default:7080GET /?feed=rss2 HTTP/1.0

1-1863319850/190/68294_
7.29043529933510.00.54137.44
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/199/68677_
7.292029271460.00.51122.64
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-1863319850/202/68380_
7.242029896230.00.49135.94
127.0.0.1http/1.1default:7080GET /?feed=rss2 HTTP/1.0

1-1863319850/196/68404_
7.26142729517120.00.42141.88
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/207/68724_
7.31041829589700.00.60142.00
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/181/68230_
7.240029508650.00.45126.77
127.0.0.1http/1.1default:7080GET /wp-title.php HTTP/1.0

1-1863319850/221/68582_
7.301030119860.00.52207.04
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-1863319850/196/68532_
7.262028183580.00.59127.40
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-1863319850/202/68518_
7.310028882500.00.49121.51
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-1863319850/183/68574_
7.292029159650.00.47127.22
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-1863319850/202/68689_
7.30142529510600.00.47136.69
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/194/68986_
7.30145731267300.00.49139.16
127.0.0.1http/1.1marseille-immunopole.org:7081POST //xmlrpc.php HTTP/1.0

1-1863319850/198/68551_
7.300028996860.00.60132.57
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-1863319850/189/68438_
7.221028301470.00.58126.65
127.0.0.1http/1.1default:7080GET /wp-site.php HTTP/1.0

1-1863319850/187/68572_
7.3010<

Found on 2025-04-28 17:13

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770463c07e0a

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Saturday, 26-Apr-2025 12:44:46 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 157
Parent Server MPM Generation: 156
Server uptime:  16 days 17 hours 25 minutes 39 seconds
Server load: 0.09 0.13 0.09
Total accesses: 2349376 - Total Traffic: 3.7 GB - Total Duration: 64262737
CPU Usage: u40.05 s60.7 cu1379.51 cs972.58 - .17% CPU load
1.63 requests/sec - 2732 B/second - 1680 B/request - 27.3531 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
04080845no0yes025000
14080846no0yes124000
Sum200 149000

____________________________W_____________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-15640808450/189/36307_
3.828010330350.00.2058.27
127.0.0.1http/1.1default:7080GET /xxc.php HTTP/1.0

0-15640808450/178/36093_
3.805010763610.00.1758.13
127.0.0.1http/1.1default:7080GET /blog.php7 HTTP/1.0

0-15640808450/201/36197_
3.813010079460.00.1958.76
127.0.0.1http/1.1default:7080GET /wp-admin/images/Mhbgf.php HTTP/1.0

0-15640808450/189/36303_
3.833010170520.00.2357.62
127.0.0.1http/1.1default:7080GET /wp-includes/mtnidwgu.php HTTP/1.0

0-15640808450/191/36275_
3.824010260280.00.2358.17
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-15640808450/195/36166_
3.825010191860.00.1857.37
127.0.0.1http/1.1default:7080GET /sleepster/ HTTP/1.0

0-15640808450/201/36377_
3.815011128480.00.1858.62
127.0.0.1http/1.1default:7080GET /profile.php?id=342883 HTTP/1.0

0-15640808450/180/36073_
3.831010281980.00.1757.95
127.0.0.1http/1.1default:7080GET /setup-config.php HTTP/1.0

0-15640808450/184/36347_
3.83009979200.00.2059.14
127.0.0.1http/1.1default:7080GET /simple/function.php HTTP/1.0

0-15640808450/186/35824_
3.8010010369470.00.1857.55
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/blue/blkabtfa.php HTTP/1.0

0-15640808450/196/35908_
3.825010064500.00.1956.82
127.0.0.1http/1.1default:7080GET /bihnmimh.php HTTP/1.0

0-15640808450/198/36121_
3.825010105960.00.2558.10
127.0.0.1http/1.1default:7080GET /theme.php HTTP/1.0

0-15640808450/191/36214_
3.811010285610.00.2358.74
127.0.0.1http/1.1default:7080GET /profile.php?id=12005 HTTP/1.0

0-15640808450/189/36117_
3.8210010435950.00.1758.26
127.0.0.1http/1.1default:7080GET /wp-includes/block-support.php HTTP/1.0

0-15640808450/208/36322_
3.827010127150.00.2058.75
127.0.0.1http/1.1default:7080GET /ioxi02.php HTTP/1.0

0-15640808450/178/36124_
3.81109975660.00.1957.38
127.0.0.1http/1.1default:7080GET /wp-content/wp-login.php HTTP/1.0

0-15640808450/188/36099_
3.810010114290.00.2057.83
127.0.0.1http/1.1default:7080GET /wp-consar.php HTTP/1.0

0-15640808450/205/36075_
3.788010096320.00.2357.68
127.0.0.1http/1.1default:7080GET /.well-known/pki-validation/worksec.php HTTP/1.0

0-15640808450/168/35957_
3.826010172390.00.2158.31
127.0.0.1http/1.1default:7080GET /meta.php HTTP/1.0

0-15640808450/187/36198_
3.81509964630.00.1858.05
127.0.0.1http/1.1default:7080GET /products/category/3258.0.1.1.1043021.0.0.0.0 HTTP/1.0

0-15640808450/204/36129_
3.824010330060.00.2157.69
127.0.0.1http/1.1default:7080GET /special.php HTTP/1.0

0-15640808450/198/35923_
3.825010362560.00.2157.76
127.0.0.1http/1.1default:7080GET /cgi-bin/admin.php HTTP/1.0

0-15640808450/198/35881_
3.787010661640.00.1858.65
127.0.0.1http/1.1default:7080GET /baxa1.php HTTP/1.0

0-15640808450/190/36072_
3.815010213220.00.1858.15
127.0.0.1http/1.1default:7080GET /inputs.php HTTP/1.0

0-15640808450/203/36187_
3.83109931750.00.2557.92
127.0.0.1http/1.1default:7080GET /wp-config-sample.php HTTP/1.0

1-15640808460/337/57738_
6.231015499410.00.3492.99
127.0.0.1http/1.1default:7080GET /wp-content/1.php HTTP/1.0

1-15640808460/341/57629_
6.211015508340.00.3791.74
127.0.0.1http/1.1default:7080GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.0

1-15640808460/323/57498_
6.222015201570.00.3893.52
127.0.0.1http/1.1default:7080GET /logs.php HTTP/1.0

1-15640808461/318/57682W
6.220014623350.00.3291.34
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-15640808460/329/57620_
6.231015132960.00.3292.09
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-15640808460/341/57468_
6.230017512970.00.3391.20
127.0.0.1http/1.1default:7080GET /.tmb/cloud.php HTTP/1.0

1-15640808460/340/57533_
6.202015160540.00.3792.64
127.0.0.1http/1.1default:7080GET /wp-includes/IXR/index.php HTTP/1.0

1-15640808460/325/57718_
6.231015551290.00.3892.21
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-15640808460/340/57555_
6.220014910500.00.3592.07
127.0.0.1http/1.1default:7080GET /wp-content/plugins/zxmunes/ HTTP/1.0

1-15640808460/312/57409_
6.230015649570.00.3192.36
127.0.0.1http/1.1default:7080GET /wp-includes/autoload_classmap.php HTTP/1.0

1-15640808460/312/57581_
6.200015028950.00.2992.75
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/wp-login.php HTTP/1.0

1-15640808460/332/57580_
6.211015751820.00.3791.76
127.0.0.1http/1.1default:7080GET /wp-theme.php HTTP/1.0

1-15640808460/325/57326_
6.212015205800.00.3891.18
127.0.0.1http/1.1default:7080GET /locale.php HTTP/1.0

1-15640808460/350/57860_
6.211015657730.00.3591.98
127.0.0.1http/1.1default:7080GET /wp-content/plugins/Duplicatepost/src/ui/sidwso.php HTTP/1.

1-15640808460/331/57411_
6.211015933900.00.4693.25
127.0.0.1http/1.1default:7080GET /wp-admin/images/install.php HTTP/1.0

1-15640808460/324/57732_
6.221015948680.00.3392.27
127.0.0.1http/1.1default:7080GET /wp-includes/certificates/about.php HTTP/1.0

1-15640808460/336/57659_
6.220014673540.00.3592.25
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-15640808460/327/57560_
6.230014800790.00.3791.99
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-15640808460/322/57654_
6.230015024480.00.3191.99
127.0.0.1http/1.1default:7080GET /r3x.php HTTP/1.0

1-15640808460/318/57732_
6.220015345290.00.3092.29
127.0.0.1http/1.1default:7080GET /wp-admin/network/network.php HTTP/1.0

1-15640808460/343/57989_
6.230017045560.00.3494.52
127.0.0.1http/1.1default:7080GET /admin/function.php HTTP/1.0

1-15640808460/320/57617_
6.222014857800.00.3992.01
127.0.0.1http/1.1default:7080GET /edit.php HTTP/1.0

1-15640808460/327/57699_
6.231014854730.00.3591.98
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-15640808460/330/57624_
6.211015213900.00.3291.13
127.0.0.1http/1.1default:7080GET /wp-admin/images/admin.php HTTP/1.0

1-156

Found on 2025-04-26 12:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704434f2def

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Thursday, 24-Apr-2025 22:34:28 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 142
Parent Server MPM Generation: 141
Server uptime:  15 days 3 hours 15 minutes 22 seconds
Server load: 0.91 0.63 0.36
Total accesses: 2127019 - Total Traffic: 3.3 GB - Total Duration: 58989769
CPU Usage: u38.14 s54.26 cu1240.83 cs873.63 - .169% CPU load
1.63 requests/sec - 2736 B/second - 1682 B/request - 27.7335 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03780845no0yes124000
13780846no1yes025000
Sum201 149000

____W_____________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-14137808450/142/32926_
4.1012799568100.00.2152.86
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/138/32813_
4.110010022090.00.2552.87
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-14137808450/131/32811_
4.0402959375670.00.1953.56
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/130/32911_
4.10009364840.00.2452.24
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-14137808451/134/32861W
4.04009543760.00.2152.87
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-14137808450/141/32782_
4.09409445610.00.2652.21
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-14137808450/134/32881_
4.0922999640610.00.2453.23
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/145/32674_
4.0942779431190.00.2552.35
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/134/32956_
4.0442759167980.00.2153.55
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/153/32487_
4.10109575840.00.3552.43
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-14137808450/136/32628_
4.1103109345870.00.2551.94
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/130/32789_
4.09309350110.00.2052.78
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-14137808450/142/32851_
4.07309548180.00.2453.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-14137808450/135/32808_
4.09309705990.00.2552.97
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-14137808450/140/32942_
4.07109388850.00.2353.39
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-14137808450/134/32728_
4.0722649223850.00.2452.18
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/140/32665_
4.05409322320.00.2552.25
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-14137808450/142/32735_
4.0722969264040.00.2352.32
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/134/32645_
4.1102959436550.00.2153.07
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/142/32842_
4.0812969208710.00.2952.68
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/142/32718_
4.0812639595140.00.2352.34
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

0-14137808450/135/32526_
4.10109597400.00.2552.42
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-14137808450/139/32527_
4.0802009845070.00.2153.17
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-login.php HTTP/1.0

0-14137808450/137/32691_
4.10209443450.00.2253.12
127.0.0.1http/1.1default:7080GET /profile.php?id=115886 HTTP/1.0

0-14137808450/126/32825_
4.09309178270.00.2052.62
127.0.0.1http/1.1audi-encounter.com:7081GET /wp-login.php HTTP/1.0

1-14137808460/233/52245_
6.919014107320.00.4484.03
127.0.0.1http/1.1default:7080GET /.DS_Store HTTP/1.0

1-14137808460/228/52077_
6.954014178950.00.3983.21
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-14137808460/233/52047_
6.90630113942170.00.4584.56
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/248/52197_
6.95630513357870.00.4882.65
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/234/52119_
6.94626713825730.00.4683.22
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/226/51884_
6.90527216252630.00.3882.64
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/231/51975_
6.911013866010.00.4784.01
127.0.0.1http/1.1default:7080GET /_all_dbs HTTP/1.0

1-14137808460/246/52193_
6.931029014250430.00.4182.98
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/227/51987_
6.952013713700.00.4282.87
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-14137808460/246/51972_
6.955014369590.00.4983.73
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-14137808460/236/52050_
6.906013728330.00.4083.95
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-14137808460/247/52078_
6.96129014285900.00.4782.73
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/227/51818_
6.91125113912010.00.4282.79
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/221/52305_
6.95328113799040.00.3983.05
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/214/51927_
6.94729314594200.00.4184.30
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/229/52127_
6.9110014651980.00.4483.24
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2014/11/Top-10-LG-G3-2014-Cases-And-Cov

1-14137808460/224/52201_
6.932013469620.00.4883.63
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

1-14137808460/232/52017_
6.91328913504070.00.4383.07
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/226/52130_
6.96126513724880.00.4583.19
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-login.php HTTP/1.0

1-14137808460/226/52145_
6.92427613921520.00.3783.43
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/236/52403_
6.93329515788060.00.4685.48
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/237/52080_
6.95326813578640.00.4783.03
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/215/52226_
6.94931713515100.00.3883.54
127.0.0.1http/1.1robinautopilot.com:7081POST //xmlrpc.php HTTP/1.0

1-14137808460/241/52185_
6.955014013230.00.4782.72
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz%

Found on 2025-04-24 22:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770465cd812a

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Tuesday, 22-Apr-2025 19:48:02 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 123
Parent Server MPM Generation: 122
Server uptime:  13 days 28 minutes 56 seconds
Server load: 0.13 0.21 0.21
Total accesses: 1793087 - Total Traffic: 2.8 GB - Total Duration: 47883937
CPU Usage: u32.36 s46.29 cu1025.42 cs723.84 - .162% CPU load
1.59 requests/sec - 2666 B/second - 1672 B/request - 26.7047 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03379134no0yes025000
13379135no0yes124000
Sum200 149000

_________________________W________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12233791340/127/27819_
3.44107949780.00.1944.82
127.0.0.1http/1.1default:7080GET /apache/phpinfo.php HTTP/1.0

0-12233791340/123/27665_
3.45107714470.00.2344.53
127.0.0.1http/1.1default:7080GET /wp-content/wp-login.php HTTP/1.0

0-12233791340/110/27644_
3.45207679590.00.1844.96
127.0.0.1http/1.1default:7080GET /api/info.php HTTP/1.0

0-12233791340/119/27799_
3.44407653320.00.2243.76
127.0.0.1http/1.1default:7080GET /php1.php HTTP/1.0

0-12233791340/119/27768_
3.45307902480.00.1844.65
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-12233791340/114/27708_
3.44407694280.00.1843.92
127.0.0.1http/1.1default:7080GET /core.php HTTP/1.0

0-12233791340/116/27829_
3.45007884570.00.1745.06
127.0.0.1http/1.1default:7080GET /xampp/info.php HTTP/1.0

0-12233791340/120/27623_
3.45407762520.00.1744.25
127.0.0.1http/1.1default:7080GET /k/shopping HTTP/1.0

0-12233791340/107/27914_
3.43307542020.00.2144.69
127.0.0.1http/1.1default:7080GET /xl2023.php HTTP/1.0

0-12233791340/110/27457_
3.43307770040.00.1844.04
127.0.0.1http/1.1default:7080GET /alfanew.php HTTP/1.0

0-12233791340/103/27581_
3.45307708090.00.1643.88
127.0.0.1http/1.1default:7080GET /dashboard/info.php HTTP/1.0

0-12233791340/113/27720_
3.45407648980.00.1844.10
127.0.0.1http/1.1default:7080GET /dashboard/admin/info.php HTTP/1.0

0-12233791340/107/27766_
3.43307789790.00.1745.31
127.0.0.1http/1.1default:7080GET /mini.php HTTP/1.0

0-12233791340/122/27764_
3.45308020890.00.2144.55
127.0.0.1http/1.1default:7080GET /dashboard/phpinfo HTTP/1.0

0-12233791340/127/27857_
3.45107797740.00.2044.91
127.0.0.1http/1.1default:7080GET /wp-admin.php HTTP/1.0

0-12233791340/110/27638_
3.45107611150.00.1743.78
127.0.0.1http/1.1default:7080GET /backend/info.php HTTP/1.0

0-12233791340/112/27643_
3.45307627120.00.1744.20
127.0.0.1http/1.1default:7080GET /.well-known/admin.php HTTP/1.0

0-12233791340/124/27600_
3.43307545540.00.1743.78
127.0.0.1http/1.1default:7080GET /.well-known/pki-validation/moon.php HTTP/1.0

0-12233791340/98/27573_
3.45107750580.00.1544.33
127.0.0.1http/1.1default:7080GET /backend/phpinfo.php HTTP/1.0

0-12233791340/129/27724_
3.45207504620.00.2644.24
127.0.0.1http/1.1default:7080GET /dashboardadmin/phpinfo HTTP/1.0

0-12233791340/122/27695_
3.44107835560.00.2144.03
127.0.0.1http/1.1default:7080GET /wp-content/plugins/clara/clara.php HTTP/1.0

0-12233791340/111/27373_
3.44107924910.00.1944.11
127.0.0.1http/1.1default:7080GET /webdav/phpinfo.php HTTP/1.0

0-12233791340/117/27550_
3.44207582640.00.2144.80
127.0.0.1http/1.1default:7080GET /2018/wp-includes/wlwmanifest.xml HTTP/1.0

0-12233791340/107/27653_
3.46007738600.00.1944.88
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-12233791340/113/27760_
3.45107494480.00.1644.29
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-12233791351/202/44139W
5.820011347460.00.3270.40
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-12233791350/205/43943_
5.832011623820.00.3370.03
127.0.0.1http/1.1default:7080GET /api/phpinfo.php HTTP/1.0

1-12233791350/195/43913_
5.831011328460.00.3171.00
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

1-12233791350/214/44075_
5.822010713370.00.3469.41
127.0.0.1http/1.1default:7080GET /apple-touch-icon.png HTTP/1.0

1-12233791350/188/43996_
5.832011189440.00.3070.07
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-12233791350/197/43845_
5.831013687360.00.2869.50
127.0.0.1http/1.1default:7080GET /backup/info.php HTTP/1.0

1-12233791350/207/44021_
5.840011291740.00.4070.69
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-12233791350/194/44133_
5.832011127480.00.3169.05
127.0.0.1http/1.1default:7080GET /byp.php HTTP/1.0

1-12233791350/197/43886_
5.812011076260.00.3369.68
127.0.0.1http/1.1default:7080GET /apache/info.php HTTP/1.0

1-12233791350/188/44005_
5.830011540890.00.3070.18
127.0.0.1http/1.1default:7080GET /dashboardadmin/phpinfo.php HTTP/1.0

1-12233791350/195/43913_
5.831010994260.00.3170.49
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-12233791350/190/43995_
5.830011093160.00.3869.23
127.0.0.1http/1.1default:7080GET /k/shopping HTTP/1.0

1-12233791350/199/43791_
5.830011294620.00.3269.72
127.0.0.1http/1.1default:7080GET /wp-config-sample.php HTTP/1.0

1-12233791350/194/44328_
5.830011310900.00.3170.10
127.0.0.1http/1.1default:7080GET /dashboardadmin/info.php HTTP/1.0

1-12233791350/204/44026_
5.831012031980.00.3770.67
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-12233791350/201/44047_
5.831012111710.00.3170.03
127.0.0.1http/1.1default:7080GET /backup/phpinfo.php HTTP/1.0

1-12233791350/198/44139_
5.821010919330.00.3970.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-12233791350/202/43953_
5.840010933640.00.3770.00
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-12233791350/186/44079_
5.830011111480.00.2769.67
127.0.0.1http/1.1default:7080GET /wp-admin/user/about.php HTTP/1.0

1-12233791350/195/44092_
5.830011343970.00.3170.25
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-12233791350/208/44232_
5.840013061110.00.3371.64
127.0.0.1http/1.1default:7080GET /item.php HTTP/1.0

1-12233791350/203/43981_
5.830010993550.00.3769.31
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-12233791350/199/44212_
5.830010986390.00.3169.98
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-12233791350/199/44084_
5.840011228130.00.3068.94
127.0.0.1http/1.1default:7080GET /crm/info.php HTTP/1.0

1-12233791350/198/44136_
5.831011364860.00.3470.25
127.0.0.1http/1.1default:7080GET /dashboard/test.php

Found on 2025-04-22 19:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77048f306646

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Sunday, 20-Apr-2025 19:21:29 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 105
Parent Server MPM Generation: 104
Server uptime:  11 days 2 minutes 23 seconds
Server load: 0.18 0.17 0.15
Total accesses: 1552986 - Total Traffic: 2.4 GB - Total Duration: 39637465
CPU Usage: u22.79 s36.03 cu863.88 cs616.64 - .162% CPU load
1.63 requests/sec - 2677 B/second - 1638 B/request - 25.5234 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02992398no0yes025000
12992399no0yes124000
Sum200 149000

__________________________________________W_______..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-10429923980/16/24078_
0.29106679510.00.0237.97
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-10429923980/14/23970_
0.29106449960.00.0137.83
127.0.0.1http/1.1default:7080GET /wp-admin/includes/1975Team.php HTTP/1.0

0-10429923980/13/24017_
0.30106493510.00.0138.44
127.0.0.1http/1.1default:7080GET /fw.php HTTP/1.0

0-10429923980/16/24101_
0.29106395070.00.0236.74
127.0.0.1http/1.1default:7080GET /wp-confiig.php HTTP/1.0

0-10429923980/12/24054_
0.30176653460.00.0438.04
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0

0-10429923980/21/24012_
0.29106484530.00.0237.17
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-10429923980/10/24094_
0.30106678640.00.0138.24
127.0.0.1http/1.1default:7080GET /wp-includes/qw.php HTTP/1.0

0-10429923980/8/23956_
0.23406592550.00.0137.52
127.0.0.1http/1.1default:7080GET /wp-content/themes/digital-download/new.php HTTP/1.0

0-10429923980/21/24197_
0.30006305790.00.0238.12
127.0.0.1http/1.1default:7080GET /wp-content/themes/about.php HTTP/1.0

0-10429923980/20/23840_
0.29406535860.00.0237.37
127.0.0.1http/1.1default:7080GET /epinyins.php HTTP/1.0

0-10429923980/11/23981_
0.28406528400.00.0137.37
127.0.0.1http/1.1default:7080GET /css.php HTTP/1.0

0-10429923980/20/23999_
0.29306519080.00.0237.58
127.0.0.1http/1.1default:7080GET /wp-core.php HTTP/1.0

0-10429923980/12/24103_
0.28306510950.00.0138.26
127.0.0.1http/1.1default:7080GET /wp-admin/css/fw.php HTTP/1.0

0-10429923980/18/23964_
0.29306699550.00.0237.44
127.0.0.1http/1.1default:7080GET /fck.php HTTP/1.0

0-10429923980/15/24227_
0.29306617410.00.0138.19
127.0.0.1http/1.1default:7080GET /class.api.php HTTP/1.0

0-10429923980/9/23957_
0.28306441670.00.0137.22
127.0.0.1http/1.1default:7080GET /data.php HTTP/1.0

0-10429923980/13/23972_
0.29306397730.00.0137.70
127.0.0.1http/1.1default:7080GET /wp-config.old HTTP/1.0

0-10429923980/16/23953_
0.29306365560.00.0137.21
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-10429923980/11/23962_
0.28306545060.00.0137.81
127.0.0.1http/1.1default:7080GET /files/index.php HTTP/1.0

0-10429923980/16/24026_
0.29206280760.00.0137.61
127.0.0.1http/1.1default:7080GET /first.php HTTP/1.0

0-10429923980/15/24052_
0.28206449060.00.0437.32
127.0.0.1http/1.1default:7080GET /doc.php HTTP/1.0

0-10429923980/14/23739_
0.29206682690.00.0137.36
127.0.0.1http/1.1default:7080GET /css/access.php HTTP/1.0

0-10429923980/15/23941_
0.28206449280.00.0237.92
127.0.0.1http/1.1default:7080GET /comdofuns.php HTTP/1.0

0-10429923980/15/24004_
0.29206506820.00.0138.06
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-10429923980/14/24095_
0.29206345050.00.0137.89
127.0.0.1http/1.1default:7080GET /wp-content/fw.php HTTP/1.0

1-10429923990/30/38147_
0.5012419239000.00.0359.63
127.0.0.1http/1.1robinautopilot.com:7081GET /wp-config.old HTTP/1.0

1-10429923990/23/38021_
0.50109695520.00.0259.51
127.0.0.1http/1.1default:7080GET /theme.php HTTP/1.0

1-10429923990/32/38104_
0.49109415320.00.0360.50
127.0.0.1http/1.1default:7080GET /contact_tpl.php HTTP/1.0

1-10429923990/22/38124_
0.50108720820.00.0258.98
127.0.0.1http/1.1default:7080GET /.well-known/acme-challenge/sxo.php HTTP/1.0

1-10429923990/34/38054_
0.50109176930.00.0359.26
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-10429923990/23/37974_
0.500011197630.00.0258.77
127.0.0.1http/1.1default:7080GET /olu.php HTTP/1.0

1-10429923990/34/38109_
0.48009139980.00.0359.87
127.0.0.1http/1.1default:7080GET /default.php HTTP/1.0

1-10429923990/24/38251_
0.50009176900.00.0258.47
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-10429923990/32/37964_
0.50009110190.00.0358.81
127.0.0.1http/1.1default:7080GET /goods.php HTTP/1.0

1-10429923990/26/38074_
0.48008934560.00.0259.46
127.0.0.1http/1.1default:7080GET /ws.php.php HTTP/1.0

1-10429923990/27/38036_
0.50008976180.00.0359.93
127.0.0.1http/1.1default:7080GET /classwithtostring.php HTTP/1.0

1-10429923990/27/38030_
0.48009100870.00.0358.52
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-10429923990/26/37874_
0.48009169770.00.0359.16
127.0.0.1http/1.1default:7080GET /en/index.php HTTP/1.0

1-10429923990/30/38275_
0.48009277520.00.0359.38
127.0.0.1http/1.1default:7080GET /editor.php HTTP/1.0

1-10429923990/26/38117_
0.50009072320.00.0260.14
127.0.0.1http/1.1default:7080GET /ws.php HTTP/1.0

1-10429923990/28/38098_
0.480010202160.00.0359.44
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-10429923990/30/38239_
0.50009082140.00.0359.78
127.0.0.1http/1.1default:7080GET /h.php HTTP/1.0

1-10429923991/27/38003W
0.50008908490.00.0259.01
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-10429923990/30/38149_
0.50009169600.00.0559.21
127.0.0.1http/1.1default:7080GET /dirs.php HTTP/1.0

1-10429923990/26/38118_
0.48009385980.00.0359.65
127.0.0.1http/1.1default:7080GET /1.php7 HTTP/1.0

1-10429923990/27/38280_
0.491011070180.00.0360.97
127.0.0.1http/1.1default:7080GET /alert.php HTTP/1.0

1-10429923990/28/38093_
0.48209123890.00.0359.10
127.0.0.1http/1.1default:7080GET /feed-rss2-queue.php HTTP/1.0

1-10429923990/28/38271_
0.50108904940.00.0359.26
127.0.0.1http/1.1default:7080GET /wp-config-premigrate.php HTTP/1.0

1-10429923990/27/38116_
0.50109250000.00.0358.45
127.0.0.1http/1.1default:7080GET /function.php HTTP/1.0

1-10429923990/25/38171_
0.49109265540.00.0259.32
127.0.0.1http/1.1default:7080GET /index/function.php HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID

Found on 2025-04-20 19:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77048894e34e

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Friday, 18-Apr-2025 15:05:16 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 85
Parent Server MPM Generation: 84
Server uptime:  8 days 19 hours 46 minutes 10 seconds
Server load: 0.13 0.12 0.10
Total accesses: 1294146 - Total Traffic: 2.0 GB - Total Duration: 35392142
CPU Usage: u19.76 s30.12 cu725.95 cs515.77 - .169% CPU load
1.7 requests/sec - 2786 B/second - 1641 B/request - 27.3479 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02554741no0yes025000
12554742no0yes124000
Sum200 149000

__________________________________W_______________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-8425547410/76/20160_
1.442406046580.00.1031.85
127.0.0.1http/1.1default:7080GET /package/dynamic_js/744aa7a9e0404e5ec9c1b3f4d4c2f063351d79e

0-8425547410/78/20084_
1.442305677300.00.0831.33
127.0.0.1http/1.1default:7080GET /package/dynamic_js/784245312a05d33ae694c74388342d13cd25c74

0-8425547410/79/20185_
1.422405765120.00.0931.97
127.0.0.1http/1.1default:7080GET /main.35a08c25eb91de70487f.js HTTP/1.0

0-8425547410/67/20139_
1.422405828570.00.0730.87
127.0.0.1http/1.1default:7080GET /main.48f1bbcf6201c5ea.js HTTP/1.0

0-8425547410/77/20240_
1.441706048780.00.0832.18
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-8425547410/68/20093_
1.422305879650.00.0731.17
127.0.0.1http/1.1default:7080GET /cast-crew/?movieid=481849 HTTP/1.0

0-8425547410/80/20179_
1.44405856040.00.0931.71
127.0.0.1http/1.1default:7080GET /p/product_main_img_33c14b7a0467f1bc23e7d59f16e58ae1 HTTP/1

0-8425547410/72/20029_
1.441705928800.00.1331.59
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-8425547410/68/20201_
1.44005742260.00.0831.94
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-8425547410/71/19919_
1.42406007420.00.0831.69
127.0.0.1http/1.1default:7080GET /main.58a95e8d8659972f.js HTTP/1.0

0-8425547410/74/20119_
1.44305894770.00.0831.43
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-8425547410/72/20092_
1.42305861160.00.0831.75
127.0.0.1http/1.1default:7080GET /main.702787bb88cacd05b11d.js HTTP/1.0

0-8425547410/79/20167_
1.44205902690.00.1032.11
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-8425547410/68/20064_
1.44106054610.00.0831.43
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-8425547410/73/20273_
1.432606035470.00.0932.01
127.0.0.1http/1.1default:7080GET /package/dynamic_js/052355b33aa284cc76967061007eac6fefae9d4

0-8425547410/81/20085_
1.43105885740.00.0831.35
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-8425547410/75/20078_
1.402605819390.00.1131.64
127.0.0.1http/1.1default:7080GET /.env.example HTTP/1.0

0-8425547410/79/20041_
1.43005841070.00.0931.32
127.0.0.1http/1.1default:7080GET /package/dynamic_js/048fa3053c370aea887f517323b190398c2fe52

0-8425547410/77/20067_
1.432405908560.00.1131.93
127.0.0.1http/1.1default:7080GET /package/dynamic_js/36b55042526fc51c735e1ac51f845e93c8d813a

0-8425547410/72/20165_
1.432605742910.00.1031.46
127.0.0.1http/1.1default:7080GET /package/dynamic_js/185fc49e7cbfb81d04d4e36e96846104f364cc4

0-8425547410/76/20093_
1.402605834150.00.0931.44
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz%

0-8425547410/68/19906_
1.432605934300.00.0731.63
127.0.0.1http/1.1default:7080GET /package/dynamic_js/11530e64f1040d92633c20c26d4c19fe92c2d9a

0-8425547410/66/20091_
1.402605930440.00.0932.07
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=bitcoin-sport.org HTTP/

0-8425547410/63/20135_
1.432405919680.00.0932.18
127.0.0.1http/1.1default:7080GET /package/dynamic_js/48c889d4f074be3c11d2a9aa14999e5c81e4318

0-8425547410/84/20146_
1.38243245802810.00.1532.03
127.0.0.1http/1.1robinautopilot.com:7081POST /wp-login.php HTTP/1.0

1-8425547420/105/31682_
2.22117994620.00.1348.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/124/31641_
2.22108065960.00.2049.60
127.0.0.1http/1.1default:7080GET /package/dynamic_js/91bffd6b1bd42ff8acc67240c7a8b382e6c9639

1-8425547420/123/31639_
2.22008186240.00.1749.81
127.0.0.1http/1.1default:7080GET /profile.php?id=224453 HTTP/1.0

1-8425547420/129/31613_
2.22107841600.00.1649.65
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-8425547420/116/31591_
2.22008192540.00.1349.28
127.0.0.1http/1.1default:7080GET /package/dynamic_js/8a82f8172ed0fda7dbe314b70738018ff4693e8

1-8425547420/121/31519_
2.22009967510.00.1349.13
127.0.0.1http/1.1default:7080GET /package/dynamic_js/a8d0dbecfae07a8db959506db9dc23249690674

1-8425547420/122/31660_
2.22408038580.00.1749.83
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/117/31740_
2.22008002730.00.1748.13
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-8425547420/120/31495_
2.22008133880.00.1349.24
127.0.0.1http/1.1default:7080GET /package/dynamic_js/90a4f2e10656f9e1c80c0c66836218eead17a96

1-8425547421/117/31567W
2.21007982720.00.1349.68
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-8425547420/112/31656_
2.22008019480.00.1250.18
127.0.0.1http/1.1default:7080GET /p/product_main_img_e6fd5f6d99288ad4bf341869d90b7ef6 HTTP/1

1-8425547420/115/31511_
2.21407921260.00.1448.56
127.0.0.1http/1.1default:7080GET /crew/?profileid=1211937 HTTP/1.0

1-8425547420/120/31513_
2.221008121360.00.1249.15
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/126/31785_
2.22308149440.00.2149.15
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-8425547420/101/31759_
2.21408123830.00.1249.92
127.0.0.1http/1.1default:7080GET /package/dynamic_js/2a3f09a40c9d3d29b51271b66fac894cdd51494

1-8425547420/121/31647_
2.211009106740.00.1549.35
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz%

1-8425547420/127/31765_
2.22308097220.00.1749.77
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/121/31546_
2.20307914950.00.1848.82
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/131/31763_
2.22408152960.00.1448.96
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/103/31622_
2.22308138760.00.1749.47
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=370365 HTTP/1.0

1-8425547420/115/31795_
2.222010072700.00.1850.33
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-8425547420/117/31759_
2.22108232540.00.1649.23
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-8425547420/124/31831_
2.22107993210.00.1649.69
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz%

1-842554742

Found on 2025-04-18 15:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77043501ab3a

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Wednesday, 16-Apr-2025 14:25:18 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 63
Parent Server MPM Generation: 62
Server uptime:  6 days 19 hours 6 minutes 12 seconds
Server load: 0.17 0.16 0.10
Total accesses: 1023704 - Total Traffic: 1.6 GB - Total Duration: 31977269
CPU Usage: u17.37 s24.46 cu590.94 cs418.04 - .179% CPU load
1.74 requests/sec - 2903 B/second - 1665 B/request - 31.2368 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
02106177no0yes025000
12106178no0yes124000
Sum200 149000

______________________________W___________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-6221061770/90/16080_
2.531305564420.00.1925.99
127.0.0.1http/1.1default:7080GET /p/luminite-ii-jacket/women_mountain_tops_jackets?pp=25 HTT

0-6221061770/87/15967_
2.531205290640.00.2325.73
127.0.0.1http/1.1audi-encounter.com:7081GET / HTTP/1.0

0-6221061770/95/16064_
2.53705295430.00.1725.86
127.0.0.1http/1.1default:7080GET /static/js/main.335d17a0.js HTTP/1.0

0-6221061770/93/16005_
2.531505388590.00.2025.37
127.0.0.1http/1.1audi-encounter.com:7081GET /sitemap.xml HTTP/1.0

0-6221061770/89/16066_
2.511305541180.00.2226.46
127.0.0.1http/1.1default:7080GET /main-WTCAS2AO.js HTTP/1.0

0-6221061770/93/16020_
2.53605333430.00.2225.29
127.0.0.1http/1.1default:7080GET /static/js/main.36e5ec99.js HTTP/1.0

0-6221061770/96/15997_
2.531005334400.00.2325.73
127.0.0.1http/1.1default:7080GET /package/dynamic_js/e313c55db568951985459b8dc72a601bb19d68a

0-6221061770/81/15942_
2.49705421990.00.2325.48
127.0.0.1http/1.1default:7080GET /assets/js/app.js HTTP/1.0

0-6221061770/87/16015_
2.46605252050.00.2525.81
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-6221061770/87/15818_
2.511005432390.00.2025.67
127.0.0.1http/1.1default:7080GET /main.457ddfd2b1341056.js HTTP/1.0

0-6221061770/89/16012_
2.53305401930.00.2025.36
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-6221061770/92/15929_
2.512605279670.00.1625.45
127.0.0.1http/1.1default:7080GET /gists/cache HTTP/1.0

0-6221061770/86/16018_
2.51305410360.00.2125.97
127.0.0.1http/1.1default:7080GET /main.b610bd7c7b9b7a47.js HTTP/1.0

0-6221061770/91/16003_
2.4717155570410.00.2825.38
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0

0-6221061770/92/16134_
2.53105534490.00.1925.93
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-6221061770/92/15956_
2.462405407630.00.1925.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-6221061770/81/15985_
2.51242495255710.00.1625.57
127.0.0.1http/1.1robinautopilot.com:7081GET /robots.txt HTTP/1.0

0-6221061770/94/15945_
2.511805303970.00.2025.25
127.0.0.1http/1.1default:7080GET /profile.php?id=114419 HTTP/1.0

0-6221061770/95/15995_
2.521705393880.00.2425.76
127.0.0.1http/1.1audi-encounter.com:7080GET /robots.txt HTTP/1.0

0-6221061770/92/16020_
2.51232035277320.00.2125.60
127.0.0.1http/1.1robinautopilot.com:7081POST /xmlrpc.php HTTP/1.0

0-6221061770/78/15952_
2.512305267910.00.1725.24
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

0-6221061770/86/15847_
2.471605438580.00.2125.23
127.0.0.1http/1.1audi-encounter.com:7081HEAD / HTTP/1.0

0-6221061770/85/15976_
2.521605415190.00.1525.56
127.0.0.1http/1.1default:7080GET /package/dynamic_js/8a82f8172ed0fda7dbe314b70738018ff4693e8

0-6221061770/96/16094_
2.521605399030.00.2026.03
127.0.0.1http/1.1default:7080GET /package/dynamic_js/81361875dcdb133893cbb29f77487781bd31d66

0-6221061770/84/15930_
2.511705284840.00.2125.74
127.0.0.1http/1.1default:7080GET /package/dynamic_js/784245312a05d33ae694c74388342d13cd25c74

1-6221061780/145/25007_
3.78107123680.00.3039.14
127.0.0.1http/1.1audi-encounter.com:7081GET / HTTP/1.0

1-6221061780/143/24981_
3.78207209900.00.3339.81
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-6221061780/151/24928_
3.78107350670.00.2839.86
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-6221061780/149/24829_
3.78206971590.00.2439.39
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

1-6221061780/154/24942_
3.78207350840.00.3439.55
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-6221061781/152/24840W
3.75009076610.00.4439.46
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-6221061780/140/25000_
3.74207070370.00.2939.67
127.0.0.1http/1.1default:7080GET /js/contact_me.js HTTP/1.0

1-6221061780/140/25004_
3.77207100300.00.2438.48
127.0.0.1http/1.1default:7080GET /phpinfo.php HTTP/1.0

1-6221061780/149/24760_
3.78007274090.00.3039.19
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-6221061780/146/24979_
3.78007135750.00.2939.76
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-6221061780/156/24993_
3.78507179230.00.4439.85
127.0.0.1http/1.1default:7080GET /static/js/main.48389ac6.js HTTP/1.0

1-6221061780/131/24801_
3.78607126650.00.2938.92
127.0.0.1http/1.1audi-encounter.com:7080GET / HTTP/1.0

1-6221061780/138/24837_
3.76507231930.00.2339.26
127.0.0.1http/1.1default:7080GET /package/dynamic_js/af58896ce0256c58237b9bb2007f484e1439d89

1-6221061780/155/24969_
3.78007260330.00.2739.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-6221061780/141/25113_
3.78007254150.00.3240.16
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-6221061780/155/24944_
3.78508243620.00.2939.61
127.0.0.1http/1.1default:7080GET /static/js/main.602cea98.chunk.js HTTP/1.0

1-6221061780/136/24986_
3.76507268100.00.2939.96
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-6221061780/150/24887_
3.78507084620.00.3138.83
127.0.0.1http/1.1default:7080GET /static/js/main.4aa2819f.js HTTP/1.0

1-6221061780/142/25022_
3.76507323970.00.3038.93
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-6221061780/147/25018_
3.74207282480.00.3139.06
127.0.0.1http/1.1default:7080GET /package/dynamic_js/2a3f09a40c9d3d29b51271b66fac894cdd51494

1-6221061780/142/25110_
3.78109236150.00.2439.85
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-6221061780/155/25037_
3.78407390120.00.2439.37
127.0.0.1http/1.1default:7080GET /static/js/main.87c766e3.js HTTP/1.0

1-6221061780/141/25102_
3.78307192110.00.2739.92
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-6221061780/143/24932_
3.78207281970.00.4039.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-6221061780/152/24913_
3.74307257770.00.32

Found on 2025-04-16 14:25

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77048ef86d83

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Monday, 14-Apr-2025 14:56:05 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 45
Parent Server MPM Generation: 44
Server uptime:  4 days 19 hours 36 minutes 59 seconds
Server load: 0.05 0.10 0.15
Total accesses: 681907 - Total Traffic: 1.1 GB - Total Duration: 24393563
CPU Usage: u13.52 s18.92 cu413.62 cs283.12 - .175% CPU load
1.64 requests/sec - 2872 B/second - 1753 B/request - 35.7726 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01735506no0yes025000
11735507no0yes124000
Sum200 149000

_________________________W________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4417355060/149/10925_
2.712804437600.00.2418.46
127.0.0.1http/1.1audi-encounter.com:7081GET /feed/ HTTP/1.0

0-4417355060/147/10861_
2.753404276410.00.1418.44
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-4417355060/152/10876_
2.752504214810.00.1818.42
127.0.0.1http/1.1default:7080GET /pt/Win-Wan-Tan/1503661 HTTP/1.0

0-4417355060/144/10793_
2.752504275380.00.1718.12
127.0.0.1http/1.1default:7080GET /Norma-Emilie-Jennings/387706 HTTP/1.0

0-4417355060/141/10852_
2.742504427230.00.1518.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-4417355060/154/10849_
2.702504258150.00.1518.22
127.0.0.1http/1.1default:7080GET /William-Blain/1774698 HTTP/1.0

0-4417355060/148/10828_
2.752004244370.00.1518.39
127.0.0.1http/1.1default:7080GET /Guadalupe-Lopez-De-Vargas/1668680/ HTTP/1.0

0-4417355060/134/10819_
2.752504302040.00.1918.17
127.0.0.1http/1.1default:7080GET /Salvatore-Mamone/1722375 HTTP/1.0

0-4417355060/140/10915_
2.752404233510.00.1418.52
127.0.0.1http/1.1default:7080GET /LUCIA-GEBARA/1838881 HTTP/1.0

0-4417355060/143/10737_
2.722404332900.00.1718.56
127.0.0.1http/1.1default:7080GET /Stephen-Delaporte/468763 HTTP/1.0

0-4417355060/137/10892_
2.751304355070.00.1418.38
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

0-4417355060/141/10695_
2.722004171340.00.2117.91
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-4417355060/155/10849_
2.751104289220.00.2118.47
127.0.0.1http/1.1default:7080GET /ROVIE-DDUYA/1838657 HTTP/1.0

0-4417355060/158/10877_
2.70004378560.00.1918.05
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-4417355060/139/10929_
2.75004367660.00.2018.45
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-4417355060/137/10836_
2.744204287310.00.1917.89
127.0.0.1http/1.1default:7080GET /Betty-Priest/457329 HTTP/1.0

0-4417355060/132/10839_
2.741104153040.00.1518.33
127.0.0.1http/1.1default:7080GET /Grace-Eileen-Gamley/1742588 HTTP/1.0

0-4417355060/144/10811_
2.75504233270.00.1818.21
203.189.135.53http/1.1default:7080GET / HTTP/1.0

0-4417355060/156/10857_
2.744304310260.00.2718.23
127.0.0.1http/1.1default:7080GET /pt/Duk-Sam-Hyun/1585967 HTTP/1.0

0-4417355060/138/10762_
2.693404231540.00.1918.28
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-4417355060/142/10836_
2.752804164220.00.1417.82
127.0.0.1http/1.1default:7080GET /Jaland-Kobi-SMALL/1755540/qr?utm_source=ha&utm_medium=qr&u

0-4417355060/131/10731_
2.744304349410.00.1618.10
127.0.0.1http/1.1default:7080GET /Bernard-R-Yuzon/1487880 HTTP/1.0

0-4417355060/155/10895_
2.742504341550.00.2318.57
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2015/06/Top-10-HTC-One-M9-Plus-Cases-Co

0-4417355060/147/10893_
2.753804299610.00.1518.79
127.0.0.1http/1.1default:7080GET /MARK-ANTHONY-MELAES/1765438 HTTP/1.0

0-4417355060/147/10771_
2.753004236750.00.1718.31
127.0.0.1http/1.1default:7080GET /ALEJANDRA-HERNAN/1810283 HTTP/1.0

1-4417355071/268/16447W
4.66005173370.00.3127.17
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-4417355070/257/16434_
4.67305196540.00.3027.38
127.0.0.1http/1.1default:7080GET /TEH-LEONG-HUAT/1796542 HTTP/1.0

1-4417355070/259/16447_
4.68705507520.00.3727.57
127.0.0.1http/1.1default:7080GET /Patricia-Eileen-Logan/1335669 HTTP/1.0

1-4417355070/263/16367_
4.68305045790.00.3427.21
127.0.0.1http/1.1default:7080GET /Yap-Chye-Seng/1497666/qr HTTP/1.0

1-4417355070/267/16431_
4.66705325250.00.3527.41
127.0.0.1http/1.1default:7080GET /Zacarias-Balcazar-Gomez/1679310/ HTTP/1.0

1-4417355070/258/16367_
4.66707182540.00.3627.44
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4417355070/266/16389_
4.67005093200.00.3727.04
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-4417355070/282/16531_
4.68005190780.00.3626.39
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-4417355070/274/16305_
4.67005170780.00.3627.31
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4417355070/282/16440_
4.68005225840.00.4527.39
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4417355070/250/16392_
4.68005303670.00.4227.64
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-4417355070/248/16303_
4.67005252410.00.3327.09
127.0.0.1http/1.1default:7080GET /email?url=http://www.heavenaddress.com/Garth-McKeown/17205

1-4417355070/254/16363_
4.68005344500.00.3027.33
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4417355070/275/16402_
4.68005310870.00.3826.95
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-4417355070/263/16662_
4.67005367290.00.3427.92
127.0.0.1http/1.1default:7080GET /sitemap.xml HTTP/1.0

1-4417355070/260/16401_
4.68006303030.00.3127.57
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-4417355070/261/16442_
4.68005250520.00.3927.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-4417355070/250/16370_
4.68005164190.00.3026.81
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-4417355070/257/16530_
4.65005415290.00.3627.13
127.0.0.1http/1.1default:7080GET /pt/Joyce-Pyers/890911 HTTP/1.0

1-4417355070/281/16559_
4.68005330540.00.3427.04
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-4417355070/277/16595_
4.68707272460.00.3627.61
127.0.0.1http/1.1default:7080GET /Ivan-Romanowski/464058 HTTP/1.0

1-4417355070/256/16491_
4.66005405850.00.2827.43
127.0.0.1http/1.1default:7080GET /David-Paul-Holzheimer/441395 HTTP/1.0

1-4417355070/249/16440_
4.68805285360.00.2727.47
127.0.0.1http/1.1default:7080GET /zh-CN/Perlita-Cabacoy-Hayden/468887 HTTP/1.0

1-4417355070/248/16459_
4.68005337840.00.3027.05
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-4417355070/268/16412_
4.68005308770.00.2826.91

Found on 2025-04-14 14:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704510b8fd7

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Saturday, 12-Apr-2025 23:41:17 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 30
Parent Server MPM Generation: 29
Server uptime:  3 days 4 hours 22 minutes 11 seconds
Server load: 0.05 0.05 0.08
Total accesses: 401027 - Total Traffic: 739.1 MB - Total Duration: 21503274
CPU Usage: u7.13 s10.88 cu291.13 cs187.9 - .181% CPU load
1.46 requests/sec - 2818 B/second - 1932 B/request - 53.6205 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01437994no0yes025000
11437995no0yes124000
Sum200 149000

______________________________________________W___..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2914379940/40/6729_
0.66104022810.00.0412.49
127.0.0.1http/1.1default:7080GET /uploads/xleet.php HTTP/1.0

0-2914379940/44/6656_
0.65103864750.00.0512.44
127.0.0.1http/1.1default:7080GET /Keith-Knapman/1474841 HTTP/1.0

0-2914379940/42/6663_
0.66103793490.00.0412.28
127.0.0.1http/1.1default:7080GET /wp-admin/css/colors/coffee/index.php HTTP/1.0

0-2914379940/41/6643_
0.66003859700.00.0412.47
127.0.0.1http/1.1default:7080GET /Joan-Gavin/915230 HTTP/1.0

0-2914379940/41/6718_
0.64003998730.00.0912.93
127.0.0.1http/1.1default:7080GET /wp-apxupx.php HTTP/1.0

0-2914379940/44/6618_
0.66403851990.00.0412.26
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-2914379940/40/6636_
0.66303857220.00.0412.45
127.0.0.1http/1.1default:7080GET /cgi-bin/cgi-bin/about.php7 HTTP/1.0

0-2914379940/43/6598_
0.64303858150.00.0712.24
127.0.0.1http/1.1default:7080GET /ova-tools.php HTTP/1.0

0-2914379940/48/6697_
0.66303818880.00.0412.66
127.0.0.1http/1.1default:7080GET /wp-content/themes/travelscape/json.php HTTP/1.0

0-2914379940/42/6604_
0.66303868660.00.0412.57
127.0.0.1http/1.1default:7080GET /wp-includes/css/core.php HTTP/1.0

0-2914379940/43/6766_
0.66303910620.00.0512.33
127.0.0.1http/1.1default:7080GET /wp-content/plugins/wp-help/index.php HTTP/1.0

0-2914379940/41/6600_
0.66303769980.00.0712.36
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2914379940/44/6647_
0.66303865370.00.0412.58
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2914379940/47/6646_
0.66303913910.00.0412.16
127.0.0.1http/1.1default:7080GET /db.php HTTP/1.0

0-2914379940/49/6686_
0.66203839590.00.0512.46
127.0.0.1http/1.1default:7080GET /wp-includes/ID3/install.php HTTP/1.0

0-2914379940/41/6636_
0.66203877250.00.0412.14
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-2914379940/42/6630_
0.64203738210.00.0712.27
127.0.0.1http/1.1default:7080GET /.well-known/about.php HTTP/1.0

0-2914379940/47/6652_
0.66203839750.00.0512.30
127.0.0.1http/1.1default:7080GET /4price.php HTTP/1.0

0-2914379940/39/6674_
0.66203886650.00.0412.18
127.0.0.1http/1.1default:7080GET /wp-content/fw.php HTTP/1.0

0-2914379940/37/6622_
0.66203796550.00.0412.36
127.0.0.1http/1.1default:7080GET /wp-content/file.php HTTP/1.0

0-2914379940/41/6683_
0.66203775660.00.0412.30
127.0.0.1http/1.1default:7080GET /.well-known/cong.php HTTP/1.0

0-2914379940/37/6604_
0.66203931420.00.0412.17
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-2914379940/49/6645_
0.66103894480.00.0512.78
127.0.0.1http/1.1default:7080GET /xl2023.php HTTP/1.0

0-2914379940/41/6672_
0.66103885640.00.0412.67
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2914379940/46/6640_
0.66103842310.00.0412.65
127.0.0.1http/1.1default:7080GET /Warren-Lindsay-Brown/1421750 HTTP/1.0

1-2914379950/56/9368_
0.90004469190.00.0716.87
127.0.0.1http/1.1default:7080GET /wp-admin/fx.php HTTP/1.0

1-2914379950/59/9514_
0.88404569580.00.0917.31
127.0.0.1http/1.1default:7080GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.0

1-2914379950/50/9456_
0.90404727580.00.0817.40
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2914379950/54/9302_
0.90404368190.00.0717.10
127.0.0.1http/1.1default:7080GET /plugin.php HTTP/1.0

1-2914379950/49/9345_
0.86404518040.00.0517.30
127.0.0.1http/1.1default:7080GET /buy.php HTTP/1.0

1-2914379950/60/9335_
0.90406404260.00.1117.43
127.0.0.1http/1.1default:7080GET /wp-admin/includes/mar.php HTTP/1.0

1-2914379950/61/9319_
0.91404411820.00.1116.91
127.0.0.1http/1.1default:7080GET /wp-content/plugins/pwnd-1/as.php HTTP/1.0

1-2914379950/50/9410_
0.90404487070.00.0816.47
127.0.0.1http/1.1default:7080GET /wp-includes/theme-compat/about.php HTTP/1.0

1-2914379950/50/9291_
0.88404490540.00.0817.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2914379950/51/9349_
0.91104481400.00.0516.95
127.0.0.1http/1.1default:7080GET /.wp-cli/as.php HTTP/1.0

1-2914379950/58/9432_
0.91304568920.00.0617.56
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-2914379950/57/9340_
0.90104501490.00.0617.07
127.0.0.1http/1.1default:7080GET /wp-includes/SimplePie/admin.php HTTP/1.0

1-2914379950/60/9317_
0.91104585020.00.0617.25
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2914379950/52/9404_
0.91104536690.00.0517.06
127.0.0.1http/1.1default:7080GET /vendor/composer/index.php HTTP/1.0

1-2914379950/67/9477_
0.91104617310.00.0717.06
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2914379950/51/9360_
0.91005559600.00.0517.43
127.0.0.1http/1.1default:7080GET /wp-content/product.php HTTP/1.0

1-2914379950/60/9332_
0.91004527000.00.0717.21
127.0.0.1http/1.1default:7080GET /zh-CN/Sharon-Roberta-Raschke/1415746 HTTP/1.0

1-2914379950/56/9366_
0.91004499670.00.0616.86
127.0.0.1http/1.1default:7080GET /.well-known/acme-challenge/atomlib.php HTTP/1.0

1-2914379950/57/9466_
0.91004622170.00.0617.26
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2914379950/52/9468_
0.90004617340.00.0517.30
127.0.0.1http/1.1default:7080GET /wp-content/batm.php HTTP/1.0

1-2914379950/54/9516_
0.91006538220.00.0517.50
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz/

1-2914379951/59/9471W
0.90004666810.00.0817.21
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2914379950/57/9397_
0.91004618330.00.0617.26
127.0.0.1http/1.1default:7080GET /wp-atom.php HTTP/1.0

1-2914379950/51/9323_
0.87004551030.00.0516.84
127.0.0.1http/1.1default:7080GET /ae.php HTTP/1.0

1-2914379950/63/9304_
0.92004533480.00.0716.88
127.0.0.1http/1.1default:7080

Found on 2025-04-12 23:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704ea134048

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2025-04-03T09:05:48

Current Time: Thursday, 10-Apr-2025 20:21:42 UTC
Restart Time: Wednesday, 09-Apr-2025 19:19:06 UTC
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  1 day 1 hour 2 minutes 35 seconds
Server load: 0.24 0.29 0.24
Total accesses: 91351 - Total Traffic: 140.4 MB - Total Duration: 1406789
CPU Usage: u7.47 s7.18 cu41.9 cs31.12 - .0972% CPU load
1.01 requests/sec - 1632 B/second - 1611 B/request - 15.3998 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01028164no0yes025000
11028165no0yes124000
Sum200 149000

________________________________________W_________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-910281640/153/1647_
3.49120211590.00.292.72
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/142/1592_
3.4910172690.00.252.50
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/143/1637_
3.4820186950.00.202.41
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/144/1585_
3.4630178560.00.212.48
127.0.0.1http/1.1default:7080HEAD /main HTTP/1.0

0-910281640/158/1622_
3.5030226540.00.272.72
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/115/1580_
3.5030176880.00.242.32
127.0.0.1http/1.1default:7080GET /p/1-10-95-ram-ext-cab-clear-body?pp=15 HTTP/1.0

0-910281640/138/1559_
3.4940149120.00.232.55
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-910281640/151/1555_
3.5100193820.00.262.45
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/140/1601_
3.5030146350.00.242.29
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/154/1600_
3.50120201400.00.232.61
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/157/1649_
3.5010222670.00.212.32
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/141/1603_
3.49140182830.00.222.57
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=kip.uinbanten.ac.id%2FP

0-910281640/136/1612_
3.5010222570.00.192.54
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-910281640/138/1563_
3.5040186780.00.252.24
127.0.0.1http/1.1default:7080GET /@vite/env HTTP/1.0

0-910281640/127/1575_
3.46120174550.00.202.64
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/143/1634_
3.5040195000.00.212.43
127.0.0.1http/1.1default:7080GET /p/graphic-bantam-st-galaxy/cruiserboards HTTP/1.0

0-910281640/137/1582_
3.5010150580.00.182.39
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-910281640/152/1628_
3.4940179760.00.242.66
127.0.0.1http/1.1audi-encounter.com:7081GET /97b235f3e3521108824479899632/5443f2b57eei3393t7m30.dz HTTP

0-910281640/131/1587_
3.50100180470.00.172.32
127.0.0.1http/1.1default:7080GET /p/cha-cha-chihuahua HTTP/1.0

0-910281640/142/1601_
3.50120137990.00.212.10
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-910281640/147/1586_
3.50120165660.00.282.39
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

0-910281640/137/1534_
3.50110209400.00.212.37
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/133/1605_
3.50120179490.00.202.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-910281640/145/1568_
3.49110165840.00.192.47
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

0-910281640/143/1585_
3.5020208250.00.212.38
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-910281650/236/2042_
5.4900264430.00.363.15
127.0.0.1http/1.1default:7080GET /p/1-10-02-ram-clear-body?pp=15 HTTP/1.0

1-910281650/218/2061_
5.49110240990.00.323.22
127.0.0.1http/1.1default:7080GET /products/productdetail/part_number=CEA5210/374.0 HTTP/1.0

1-910281650/222/2101_
5.5130299780.00.403.30
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

1-910281650/235/2022_
5.4950243700.00.343.04
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/224/2059_
5.51515260860.00.343.30
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0

1-910281650/219/2021_
5.4850255200.00.363.09
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-910281650/218/2040_
5.4910270300.00.323.15
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-910281650/228/2099_
5.5130287640.00.382.96
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-910281650/211/1992_
5.4950263290.00.333.02
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/227/2080_
5.4950292370.00.363.25
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-910281650/239/2050_
5.5140270990.00.373.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/237/2075_
5.5100228600.00.333.05
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/235/2114_
5.4840286190.00.433.40
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-910281650/230/2022_
5.49100253400.00.333.05
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/244/2057_
5.4900267460.00.373.17
127.0.0.1http/1.1default:7080GET /p/1-10-nissan-titan-clear-body/rc-trucks_1-10-truck-bodies

1-910281651/221/2036W
5.49001118920.00.453.06
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-910281650/228/2044_
5.49110269810.00.343.23
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/218/2044_
5.5120240140.00.343.07
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-910281650/234/2150_
5.49100295920.00.353.38
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/225/2071_
5.5140246110.00.343.11
127.0.0.1http/1.1default:7080GET /c/faskolor-paint-shop_paint-masks-1-10-scale HTTP/1.0

1-910281650/217/2097_
5.51002236500.00.373.29
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-910281650/228/2079_
5.515248266830.00.343.08
127.0.0.1http/1.1robinautopilot.com:7081GET /97b235f3e3521108824479899632/5443f2b57eei3393t7m30.dz HTTP

1-910281650/221/2062_
5.5110294370.00.343.40
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-910281650/228/2012_
5.5057257180.00.353.03
127.0.0.1http/1.1robinautopilot.com:7081POST /wp-cron.php?doing_wp_cron=1744316496.25554203987121582031

1-910281650/219/2031_
5.5150250860.00.333.01
127.0.0.1http/1.1default:7080GET / HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation

Found on 2025-04-10 20:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770427b8387c

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Monday, 07-Apr-2025 08:20:16 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 31
Parent Server MPM Generation: 30
Server uptime:  3 days 13 hours 18 minutes 46 seconds
Server load: 0.15 0.13 0.09
Total accesses: 290541 - Total Traffic: 461.3 MB - Total Duration: 4618759
CPU Usage: u16.08 s17.03 cu131.74 cs94.57 - .0845% CPU load
.946 requests/sec - 1575 B/second - 1664 B/request - 15.8971 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
0463301no0yes025000
1463302no0yes124000
Sum200 149000

___________________________________________W______..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-304633010/197/4613_
5.79390753680.00.367.63
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2014/10/Top-10-Best-Portable-Charger-Ex

0-304633010/208/4679_
5.80150690180.00.317.04
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/205/4588_
5.8110708670.00.327.00
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-304633010/195/4710_
5.79160818230.00.307.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/203/4753_
5.79310684040.00.357.48
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=132654 HTTP/1.0

0-304633010/206/4625_
5.79260838920.00.347.19
127.0.0.1http/1.1default:7080GET /favicon.ico HTTP/1.0

0-304633010/205/4595_
5.7410707310.00.347.25
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/204/4610_
5.8120654080.00.337.16
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/176/4657_
5.77418753730.00.267.54
127.0.0.1http/1.1robinautopilot.com:7081POST /wp-cron.php?doing_wp_cron=1744013805.21839499473571777343

0-304633010/204/4649_
5.79200753320.00.337.38
127.0.0.1http/1.1default:7080GET /static/images/nopic.png HTTP/1.0

0-304633010/199/4615_
5.7820731870.00.327.49
127.0.0.1http/1.1audi-encounter.com:7081GET /09aca031f120231329/04493ca76fei140at9m98.dz HTTP/1.0

0-304633010/206/4640_
5.79410734430.00.387.66
127.0.0.1http/1.1default:7080GET /Ducatiusa-0.zip HTTP/1.0

0-304633010/210/4683_
5.79260769050.00.327.61
127.0.0.1http/1.1default:7080GET /static/images/nopic.png HTTP/1.0

0-304633010/213/4611_
5.79120704650.00.367.59
127.0.0.1http/1.1default:7080GET /?s=Agni%2BScott HTTP/1.0

0-304633010/208/4709_
5.79390736930.00.357.49
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/207/4646_
5.8100764110.00.367.29
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-304633010/191/4633_
5.77200766220.00.317.33
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/200/4706_
5.8110739370.00.317.38
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

0-304633010/189/4636_
5.75160748520.00.307.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/197/4606_
5.79410713730.00.317.25
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/206/4737_
5.8120754290.00.377.48
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-304633010/194/4657_
5.8130733680.00.317.22
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/211/4630_
5.79410823330.00.337.41
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=136160 HTTP/1.0

0-304633010/201/4648_
5.80120765780.00.317.37
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-304633010/217/4667_
5.79170708760.00.357.32
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/351/7063_
11.162201090440.00.6410.83
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-304633020/379/6998_
11.17001088440.00.7311.23
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-304633020/363/6989_
11.143601122800.00.6711.36
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/357/7005_
11.152401085990.00.6010.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/358/6990_
11.16901070710.00.6110.80
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/347/6993_
11.162401117410.00.6311.52
127.0.0.1http/1.1audi-encounter.com:7081GET /bluereturn-whitereturn/ HTTP/1.0

1-304633020/365/6952_
11.161001099260.00.6411.25
127.0.0.1http/1.1audi-encounter.com:7081GET /bukatsu/ HTTP/1.0

1-304633020/338/6972_
11.16201128170.00.6210.95
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/364/6863_
11.16901091150.00.7010.92
127.0.0.1http/1.1default:7080GET /c/ships_warships HTTP/1.0

1-304633020/342/6967_
11.161101106870.00.6010.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/377/6997_
11.163601125320.00.6610.99
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/365/6994_
11.163101115150.00.6710.96
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2015/09/Best-Apple-iPad-Mini-4-Cases-Co

1-304633020/328/6920_
11.15101039400.00.5510.69
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/351/6955_
11.153501074660.00.6511.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/363/6981_
11.17101049020.00.6710.53
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-304633020/352/6968_
11.16901193400.00.6111.04
127.0.0.1http/1.1default:7080GET /Site.zip HTTP/1.0

1-304633020/349/6950_
11.161001141170.00.6611.29
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/362/7060_
11.16901141510.00.6411.14
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633021/384/6907W
11.14001155110.00.6911.32
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-304633020/343/6892_
11.164001111000.00.6110.85
127.0.0.1http/1.1default:7080GET /Ducatiusa-0.shptron.com.zip HTTP/1.0

1-304633020/348/6938_
11.15201055800.00.6111.19
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/358/6936_
11.153101086560.00.6611.16
127.0.0.1http/1.1default:7080GET /cast-crew?movieid=135305 HTTP/1.0

1-304633020/353/6932_
11.152201141170.00.6411.17
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-304633020/338/7000_
11.163501108010.00.6111.35
127.0.0.1http/1.1default:7080GET /culturehacker/files/2012/01/IMG_20120103_232356.jpg HTTP/1

1-304633020/367/7016_
11.17201091940.00.7010.86
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of o

Found on 2025-04-07 08:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77047b146725

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Friday, 04-Apr-2025 03:43:25 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  8 hours 41 minutes 55 seconds
Server load: 0.19 0.19 0.11
Total accesses: 21057 - Total Traffic: 35.2 MB - Total Duration: 324123
CPU Usage: u5.25 s4.09 cu4.56 cs3.21 - .0546% CPU load
.672 requests/sec - 1179 B/second - 1753 B/request - 15.3926 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
035468no0yes025000
135469no0yes124000
Sum200 149000

_____________________________________________W____..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2354680/137/314_
2.9210045990.00.280.56
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2016/03/Best-Samsung-Galaxy-S7-Edge-Cas

0-2354680/128/307_
2.961028870.00.210.44
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-2354680/129/310_
2.901057220.00.230.50
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/129/311_
2.9012045720.00.250.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/133/321_
2.939053330.00.210.55
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/129/313_
2.9611070020.00.260.58
127.0.0.1http/1.1default:7080GET /login.action HTTP/1.0

0-2354680/129/322_
2.969041510.00.280.51
127.0.0.1http/1.1default:7080GET /config.json HTTP/1.0

0-2354680/123/301_
2.948051440.00.220.46
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/143/326_
2.964068060.00.360.66
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/110/282_
2.968039410.00.160.41
127.0.0.1http/1.1default:7080GET /info.php HTTP/1.0

0-2354680/136/326_
2.964046640.00.240.50
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/150/329_
2.968045880.00.310.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/127/321_
2.964050600.00.200.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/134/321_
2.954045220.00.230.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/132/327_
2.962050550.00.210.56
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-2354680/132/320_
2.964040340.00.230.49
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/131/302_
2.962059350.00.230.52
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/131/321_
2.963042620.00.250.57
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2354680/134/328_
2.962063330.00.300.60
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/124/308_
2.954028480.00.240.52
127.0.0.1http/1.1audi-encounter.com:7081HEAD /wp-content/plugins/wp-automatic/xl2024.php HTTP/1.0

0-2354680/144/340_
2.962066530.00.260.53
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-2354680/136/329_
2.962033410.00.250.48
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/139/323_
2.968064690.00.240.56
127.0.0.1http/1.1default:7080GET /telescope/requests HTTP/1.0

0-2354680/129/303_
2.9612049300.00.200.49
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-2354680/140/330_
2.9610047400.00.270.56
127.0.0.1http/1.1default:7080GET /.DS_Store HTTP/1.0

1-2354690/242/531_
4.9614082880.00.520.95
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2354690/237/516_
4.9612060970.00.460.84
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2354690/228/539_
4.961086240.00.430.88
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/228/529_
4.968074620.00.400.85
127.0.0.1http/1.1default:7080GET /?rest_route=/wp/v2/users/ HTTP/1.0

1-2354690/234/502_
4.960076510.00.410.80
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2354690/226/522_
4.9610089220.00.450.92
127.0.0.1http/1.1default:7080GET /.env HTTP/1.0

1-2354690/226/522_
4.968076290.00.440.89
127.0.0.1http/1.1default:7080GET /c/hamburgers-performance-products_valve-covers-fabricated-

1-2354690/238/523_
4.969075040.00.390.86
127.0.0.1http/1.1default:7080GET /.git/config HTTP/1.0

1-2354690/237/528_
4.9611077460.00.410.85
127.0.0.1http/1.1default:7080GET /_all_dbs HTTP/1.0

1-2354690/229/522_
4.9412092800.00.370.87
127.0.0.1http/1.1default:7080GET /blog/category/biz/ HTTP/1.0

1-2354690/238/520_
4.9613086700.00.430.91
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2354690/236/512_
4.969078280.00.430.89
127.0.0.1http/1.1default:7080GET /s/039313e2137313e27363e2237313/_/;/META-INF/maven/com.atla

1-2354690/234/532_
4.9515094330.00.430.90
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/218/513_
4.9615082100.00.340.88
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/239/552_
4.955072610.00.380.89
127.0.0.1http/1.1audi-encounter.com:7081GET /tag/%E6%96%B0%E5%AE%BF/ HTTP/1.0

1-2354690/227/516_
4.9511082260.00.420.84
127.0.0.1http/1.1default:7080GET /c/accessories_atv_handlebars-mirrors?i=all&t=1&s=part_numb

1-2354690/224/513_
4.9315069060.00.440.86
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/236/538_
4.9516075420.00.410.80
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/226/515_
4.9615077250.00.470.87
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-2354690/231/531_
4.963090420.00.490.99
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354691/226/528W
4.940081140.00.470.93
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2354690/226/529_
4.9614074940.00.370.85
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-2354690/233/526_
4.965075530.00.440.86
127.0.0.1http/1.1default:7080GET /maria-wern-season-5/ HTTP/1.0

1-2354690/235/520_
4.9613094240.00.510.92
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/237/543_
4.9481978760.00.530.93
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 Du

Found on 2025-04-04 03:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e77047bbce867

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Friday, 04-Apr-2025 03:43:13 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  8 hours 41 minutes 43 seconds
Server load: 0.25 0.20 0.11
Total accesses: 21032 - Total Traffic: 35.2 MB - Total Duration: 324120
CPU Usage: u5.25 s4.09 cu4.56 cs3.21 - .0547% CPU load
.672 requests/sec - 1179 B/second - 1754 B/request - 15.4108 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
035468no0yes025000
135469no0yes124000
Sum200 149000

__________________________W_______________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2354680/137/314_
2.9260045990.00.280.56
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2016/03/Best-Samsung-Galaxy-S7-Edge-Cas

0-2354680/127/306_
2.963028870.00.210.44
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/129/310_
2.903057220.00.230.50
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/129/311_
2.900045720.00.250.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/133/321_
2.9356053330.00.210.55
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/128/312_
2.9560070010.00.260.58
127.0.0.1http/1.1default:7080GET /memorials/PHmLAEepgKLADlJgDIy6YIF7onTex4dZ/media/m_687y6zA

0-2354680/128/321_
2.9556041510.00.280.51
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=roseporn.com HTTP/1.0

0-2354680/123/301_
2.9456051440.00.220.46
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/142/325_
2.9531068060.00.360.66
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/109/281_
2.9456039400.00.160.41
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/135/325_
2.9531046640.00.240.50
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/149/328_
2.9556045870.00.310.58
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/126/320_
2.9534050600.00.200.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/134/321_
2.9534045220.00.230.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/131/326_
2.969050550.00.210.56
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/132/320_
2.9623040340.00.230.49
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/131/302_
2.963059350.00.230.52
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/130/320_
2.9611042620.00.250.56
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/133/327_
2.954063330.00.300.60
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/124/308_
2.9531028480.00.240.52
127.0.0.1http/1.1audi-encounter.com:7081HEAD /wp-content/plugins/wp-automatic/xl2024.php HTTP/1.0

0-2354680/143/339_
2.953066530.00.260.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/136/329_
2.964033410.00.250.48
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/138/322_
2.9556064690.00.240.56
127.0.0.1http/1.1default:7080GET /__media__/js/netsoltrademark.php?d=online-payday-loan.xyz/

0-2354680/129/303_
2.960049300.00.200.49
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-2354680/139/329_
2.9560047400.00.270.56
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/242/531_
4.962082880.00.520.95
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2354691/236/515W
4.950060960.00.460.84
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2354690/227/538_
4.946086230.00.430.88
127.0.0.1http/1.1default:7080GET /c/concrete_blades_dry-cutting-segmented-rim_mk-699d HTTP/1

1-2354690/227/528_
4.9522074620.00.400.85
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/233/501_
4.955076510.00.410.80
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/225/521_
4.9527089220.00.450.91
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/225/521_
4.9523076290.00.440.89
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/237/522_
4.9527075040.00.390.86
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/236/527_
4.9528077460.00.410.85
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-2354690/229/522_
4.9431092800.00.370.87
127.0.0.1http/1.1default:7080GET /blog/category/biz/ HTTP/1.0

1-2354690/238/520_
4.960086700.00.430.91
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2354690/235/511_
4.9427078280.00.420.89
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/234/532_
4.953094330.00.430.90
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/218/513_
4.963082100.00.340.88
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/239/552_
4.9515072610.00.380.89
127.0.0.1http/1.1audi-encounter.com:7081GET /tag/%E6%96%B0%E5%AE%BF/ HTTP/1.0

1-2354690/227/516_
4.9528082260.00.420.84
127.0.0.1http/1.1default:7080GET /c/accessories_atv_handlebars-mirrors?i=all&t=1&s=part_numb

1-2354690/224/513_
4.933069060.00.440.86
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/236/538_
4.954075420.00.410.80
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/226/515_
4.963077250.00.470.87
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-2354690/230/530_
4.956090410.00.490.99
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/226/528_
4.945081140.00.470.93
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/226/529_
4.962074940.00.370.85
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-2354690/232/525_
4.9517075530.00.440.85
127.0.0.1http/1.1default:7080GET /wp-content/uploads/2014/12/Top-10-Best-Portable-Wireless-B

1-2354690/235/520_
4.961094240.00.510.92
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/237/543_
4.94221978760.00.530.93
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes tr

Found on 2025-04-04 03:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704a245e0f8

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Friday, 04-Apr-2025 02:33:54 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  7 hours 32 minutes 24 seconds
Server load: 0.09 0.11 0.09
Total accesses: 18207 - Total Traffic: 31.0 MB - Total Duration: 315619
CPU Usage: u4.1 s3.13 cu4.56 cs3.21 - .0553% CPU load
.671 requests/sec - 1197 B/second - 1785 B/request - 17.335 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
035468no0yes025000
135469no0yes124000
Sum200 149000

________________________________________W_________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2354680/100/277_
2.223043160.00.240.51
127.0.0.1http/1.1default:7080GET /?id=212&url=http%3A%2F%2Fwww.tourisme-essonne.com%2Findex.

0-2354680/85/264_
2.224028660.00.140.36
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/84/265_
2.224057150.00.180.45
127.0.0.1http/1.1audi-encounter.com:7081GET / HTTP/1.0

0-2354680/83/265_
2.240045580.00.190.48
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-2354680/84/272_
2.2213053250.00.150.49
127.0.0.1http/1.1default:7080GET /assets/memorials/zRIY2vmY5ZddDRbu1ohkyJXha6cN0HiQ/media/m_

0-2354680/89/273_
2.220067540.00.210.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/88/281_
2.2214041060.00.170.40
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=75875 HTTP/1.0

0-2354680/92/270_
2.227051240.00.160.41
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/98/281_
2.2212062650.00.260.56
127.0.0.1http/1.1default:7080GET /assets/memorials/zRIY2vmY5ZddDRbu1ohkyJXha6cN0HiQ/media/m_

0-2354680/79/251_
2.229039370.00.130.38
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/92/282_
2.225046380.00.160.42
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/94/273_
2.209043630.00.210.49
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/89/283_
2.207048520.00.150.48
127.0.0.1http/1.1default:7080GET /radar/2010/11/16/pulse-brooklyn-superhero-supply/ HTTP/1.0

0-2354680/95/282_
2.226045140.00.190.48
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/91/286_
2.205050490.00.160.52
127.0.0.1http/1.1default:7080GET /profile.php?id=207235 HTTP/1.0

0-2354680/87/275_
2.225040250.00.170.44
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2354680/95/266_
2.224059110.00.170.45
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-2354680/86/276_
2.225040030.00.200.51
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-2354680/93/287_
2.214063070.00.220.52
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/82/266_
2.226028400.00.190.47
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/100/296_
2.214058800.00.180.45
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/88/281_
2.224033330.00.190.42
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/97/281_
2.240062200.00.190.52
127.0.0.1http/1.1default:7080GET /login.action HTTP/1.0

0-2354680/91/265_
2.224049230.00.160.44
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2354680/98/288_
2.2431947330.00.220.51
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0

1-2354690/166/455_
3.773077690.00.360.79
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/162/441_
3.772058510.00.370.75
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2354690/160/471_
3.762078850.00.320.77
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/157/458_
3.7519071680.00.320.76
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/161/429_
3.750076370.00.310.71
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/161/457_
3.771086830.00.340.81
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2354690/155/451_
3.7718076050.00.320.77
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/163/448_
3.771074820.00.290.77
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2354690/162/453_
3.771077100.00.300.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/157/450_
3.7719082770.00.280.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/165/447_
3.770083230.00.350.83
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2354690/161/437_
3.7718078010.00.330.80
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/167/465_
3.7711091680.00.320.78
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/150/445_
3.765079620.00.260.79
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=55854 HTTP/1.0

1-2354690/162/475_
3.7714072410.00.280.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354691/150/439W
3.770081920.00.300.72
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2354690/147/436_
3.772068730.00.320.74
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-2354690/157/459_
3.773074990.00.270.66
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2354690/159/448_
3.7614072520.00.370.76
127.0.0.1http/1.1default:7080GET /follow-the-money-shame-win-c21-drama-awards/ HTTP/1.0

1-2354690/163/463_
3.7114085970.00.390.88
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/159/461_
3.775080660.00.350.81
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/155/458_
3.772074750.00.290.76
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/159/452_
3.772075270.00.320.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/162/447_
3.772091670.00.420.83
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/170/476_
3.7714078310.00.390.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection

Found on 2025-04-04 02:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704b67af62f

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Friday, 04-Apr-2025 02:33:53 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  7 hours 32 minutes 23 seconds
Server load: 0.09 0.11 0.09
Total accesses: 18204 - Total Traffic: 31.0 MB - Total Duration: 315618
CPU Usage: u4.1 s3.13 cu4.56 cs3.21 - .0553% CPU load
.671 requests/sec - 1197 B/second - 1785 B/request - 17.3378 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
035468no0yes025000
135469no0yes124000
Sum200 149000

___________________________________W______________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2354680/100/277_
2.222043160.00.240.51
127.0.0.1http/1.1default:7080GET /?id=212&url=http%3A%2F%2Fwww.tourisme-essonne.com%2Findex.

0-2354680/85/264_
2.223028660.00.140.36
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/84/265_
2.223057150.00.180.45
127.0.0.1http/1.1audi-encounter.com:7081GET / HTTP/1.0

0-2354680/82/264_
2.2225045580.00.190.48
127.0.0.1http/1.1default:7080GET /cache/76204f54d8cc9bc5f91becc7c80815b8_w62_h60.jpg HTTP/1.

0-2354680/84/272_
2.2212053250.00.150.49
127.0.0.1http/1.1default:7080GET /assets/memorials/zRIY2vmY5ZddDRbu1ohkyJXha6cN0HiQ/media/m_

0-2354680/89/273_
2.2220067540.00.210.53
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/88/281_
2.2213041060.00.170.40
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=75875 HTTP/1.0

0-2354680/92/270_
2.226051240.00.160.41
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/98/281_
2.2211062650.00.260.56
127.0.0.1http/1.1default:7080GET /assets/memorials/zRIY2vmY5ZddDRbu1ohkyJXha6cN0HiQ/media/m_

0-2354680/79/251_
2.228039370.00.130.38
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/92/282_
2.224046380.00.160.42
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/94/273_
2.208043630.00.210.49
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/89/283_
2.206048520.00.150.48
127.0.0.1http/1.1default:7080GET /radar/2010/11/16/pulse-brooklyn-superhero-supply/ HTTP/1.0

0-2354680/95/282_
2.225045140.00.190.48
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/91/286_
2.204050490.00.160.52
127.0.0.1http/1.1default:7080GET /profile.php?id=207235 HTTP/1.0

0-2354680/87/275_
2.224040250.00.170.44
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2354680/95/266_
2.223059110.00.170.45
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-2354680/86/276_
2.224040030.00.200.51
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

0-2354680/93/287_
2.213063070.00.220.52
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/82/266_
2.225028400.00.190.47
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/100/296_
2.213058800.00.180.45
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/88/281_
2.223033330.00.190.42
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-2354680/96/280_
2.2214062200.00.190.52
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-2354680/91/265_
2.223049230.00.160.44
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-2354680/98/288_
2.2421947330.00.220.51
127.0.0.1http/1.1robinautopilot.com:7081GET / HTTP/1.0

1-2354690/166/455_
3.772077690.00.360.79
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/162/441_
3.771058510.00.370.75
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2354690/160/471_
3.761078850.00.320.77
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/157/458_
3.7518071680.00.320.76
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/161/429_
3.7519076370.00.310.71
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/161/457_
3.770086830.00.340.81
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2354690/155/451_
3.7717076050.00.320.77
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/163/448_
3.770074820.00.290.77
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

1-2354690/162/453_
3.770077100.00.300.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/157/450_
3.7718082770.00.280.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354691/164/446W
3.770083220.00.340.82
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

1-2354690/161/437_
3.7717078010.00.330.80
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/167/465_
3.7710091680.00.320.78
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/150/445_
3.764079620.00.260.79
127.0.0.1http/1.1default:7080GET /viewtopic.php?id=55854 HTTP/1.0

1-2354690/162/475_
3.7713072410.00.280.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/150/439_
3.7718081920.00.300.72
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/147/436_
3.772068730.00.320.74
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-2354690/157/459_
3.772074990.00.270.66
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-2354690/159/448_
3.7613072520.00.370.76
127.0.0.1http/1.1default:7080GET /follow-the-money-shame-win-c21-drama-awards/ HTTP/1.0

1-2354690/163/463_
3.7113085970.00.390.88
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/159/461_
3.774080660.00.350.81
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/155/458_
3.771074750.00.290.76
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-2354690/159/452_
3.771075270.00.320.74
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/162/447_
3.771091670.00.420.83
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-2354690/170/476_
3.7713078310.00.390.79
127.0.0.1http/1.1default:7080GET / HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 Chi

Found on 2025-04-04 02:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e7704da1dba81

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Thursday, 03-Apr-2025 19:51:57 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  50 minutes 27 seconds
Server load: 0.04 0.09 0.08
Total accesses: 3658 - Total Traffic: 4.8 MB - Total Duration: 25749
CPU Usage: u1.22 s1.03 cu.01 cs.01 - .075% CPU load
1.21 requests/sec - 1672 B/second - 1383 B/request - 7.03909 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03652no0yes124000
13653no0yes025000
Sum200 149000

____________W_____________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-136520/51/52_
0.7831594440.00.080.08
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-includes/js/jquery/jquery-migrate.m

0-136520/50/51_
0.8110110.00.060.06
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-136520/55/56_
0.813809650.00.080.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/56/56_
0.81202250.00.100.10
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-136520/57/57_
0.81303260.00.070.07
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-136520/50/51_
0.8124021620.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/59/59_
0.8130110.00.060.06
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-136520/54/54_
0.815602570.00.090.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/60/60_
0.781518415720.00.070.07
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-includes/js/jquery/ui/core.min.js H

0-136520/45/45_
0.810050.00.050.05
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/64/64_
0.81005060.00.070.07
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/51/51_
0.811904200.00.080.08
127.0.0.1http/1.1default:7080GET /culturehacker/files/2011/04/diddy.jpg HTTP/1.0

0-136521/52/52W
0.81006630.00.110.11
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-136520/60/60_
0.80611521710.00.090.09
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-content/plugins/elementor/assets/js

0-136520/55/55_
0.811301750.00.060.06
127.0.0.1http/1.1default:7080GET /login/ HTTP/1.0

0-136520/56/56_
0.81150240.00.090.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/50/50_
0.81402350.00.080.08
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/55/55_
0.811402180.00.060.06
127.0.0.1http/1.1default:7080GET /app/ HTTP/1.0

0-136520/55/55_
0.80404320.00.090.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/56/56_
0.814070.00.060.06
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/54/54_
0.80403210.00.060.06
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/57/57_
0.81304020.00.060.06
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/56/56_
0.81301620.00.090.09
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-136520/50/50_
0.80303140.00.050.05
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/59/59_
0.81004090.00.070.07
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-136530/97/98_
1.291011120.00.140.14
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-136530/90/91_
1.271409990.00.100.10
127.0.0.1http/1.1default:7080GET /culturehacker/files/2011/04/diddy.jpg HTTP/1.0

1-136530/96/96_
1.281003340.00.130.13
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-136530/93/93_
1.29103890.00.110.11
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-136530/85/85_
1.29206000.00.120.12
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-136530/96/96_
1.29408370.00.150.15
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/85/85_
1.26101712030.00.120.12
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-includes/js/dist/i18n.min.js HTTP/1

1-136530/88/88_
1.298011010.00.110.11
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/93/93_
1.29405070.00.140.14
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/95/95_
1.29206730.00.120.12
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-136530/88/88_
1.28805010.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/79/79_
1.27407710.00.120.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/94/94_
1.29305060.00.110.11
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-136530/84/84_
1.29405790.00.120.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/93/93_
1.29403490.00.130.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/88/88_
1.28908640.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/86/86_
1.27103760.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/101/101_
1.281407970.00.120.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/92/92_
1.29301910.00.100.10
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-136530/99/99_
1.294010290.00.130.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/86/86_
1.281005210.00.100.10
127.0.0.1http/1.1default:7080GET /p/weve-got-your-border-pastel/weve-got-your-border?pp=8 HT

1-136530/94/94_
1.27004900.00.110.11
127.0.0.1http/1.1default:7080GET /wordpress/wp-content/uploads/2019/08/Baltasar_Kormakur-1.j

1-136530/88/88_
1.28405520.00.110.11
127.0.0.1http/1.1default:7080GET /.well-known/security.txt HTTP/1.0

1-136530/95/95_
1.29008100.00.130.13
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-136530/100/100_
1.29101960.00.110.11
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child

Found on 2025-04-03 19:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31172e7704172e770432b64022

Apache Status

Apache Server Status for nordicdrama.com (via 86.38.247.135)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/3.0.2
Server MPM: event
Server Built: 2024-03-18T13:41:27

Current Time: Thursday, 03-Apr-2025 19:51:58 UTC
Restart Time: Thursday, 03-Apr-2025 19:01:29 UTC
Parent Server Config. Generation: 2
Parent Server MPM Generation: 1
Server uptime:  50 minutes 28 seconds
Server load: 0.04 0.09 0.08
Total accesses: 3659 - Total Traffic: 4.8 MB - Total Duration: 25750
CPU Usage: u1.23 s1.03 cu.01 cs.01 - .0753% CPU load
1.21 requests/sec - 1672 B/second - 1384 B/request - 7.03744 ms/request
1 requests currently being processed, 49 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03652no0yes124000
13653no0yes025000
Sum200 149000

_______W__________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-136520/51/52_
0.7841594440.00.080.08
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-includes/js/jquery/jquery-migrate.m

0-136520/50/51_
0.8110110.00.060.06
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0

0-136520/55/56_
0.813909650.00.080.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/56/56_
0.81202250.00.100.10
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

0-136520/57/57_
0.81403260.00.070.07
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

0-136520/50/51_
0.8124021620.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/59/59_
0.8140110.00.060.06
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-136521/54/54W
0.81002570.00.090.09
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-136520/60/60_
0.781518415720.00.070.07
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-includes/js/jquery/ui/core.min.js H

0-136520/45/45_
0.810050.00.050.05
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/64/64_
0.81005060.00.070.07
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/51/51_
0.812004200.00.080.08
127.0.0.1http/1.1default:7080GET /culturehacker/files/2011/04/diddy.jpg HTTP/1.0

0-136520/53/53_
0.82006630.00.110.11
127.0.0.1http/1.1default:7080GET /server-status HTTP/1.0

0-136520/60/60_
0.8001521710.00.090.09
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-content/plugins/elementor/assets/js

0-136520/55/55_
0.811401750.00.060.06
127.0.0.1http/1.1default:7080GET /login/ HTTP/1.0

0-136520/56/56_
0.81150240.00.090.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/50/50_
0.81502350.00.080.08
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/55/55_
0.811402180.00.060.06
127.0.0.1http/1.1default:7080GET /app/ HTTP/1.0

0-136520/55/55_
0.80504320.00.090.09
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/56/56_
0.815070.00.060.06
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/54/54_
0.80503210.00.060.06
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/57/57_
0.81404020.00.060.06
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/56/56_
0.81401620.00.090.09
127.0.0.1http/1.1default:7080GET /actuator/env HTTP/1.0

0-136520/50/50_
0.80403140.00.050.05
127.0.0.1http/1.1default:7080GET / HTTP/1.0

0-136520/59/59_
0.81004090.00.070.07
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-136530/97/98_
1.292011120.00.140.14
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-136530/90/91_
1.271409990.00.100.10
127.0.0.1http/1.1default:7080GET /culturehacker/files/2011/04/diddy.jpg HTTP/1.0

1-136530/96/96_
1.281103340.00.130.13
127.0.0.1http/1.1default:7080GET /robots.txt HTTP/1.0

1-136530/93/93_
1.29203890.00.110.11
127.0.0.1http/1.1default:7080GET /debug/default/view?panel=config HTTP/1.0

1-136530/85/85_
1.29306000.00.120.12
127.0.0.1http/1.1default:7080GET /about HTTP/1.0

1-136530/96/96_
1.29408370.00.150.15
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/85/85_
1.26101712030.00.120.12
127.0.0.1http/1.1robinautopilot.com:7081GET //robinautopilot.com/wp-includes/js/dist/i18n.min.js HTTP/1

1-136530/88/88_
1.299011010.00.110.11
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/93/93_
1.29405070.00.140.14
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/95/95_
1.29306730.00.120.12
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-136530/88/88_
1.28905010.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/79/79_
1.27407710.00.120.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/94/94_
1.29305060.00.110.11
127.0.0.1http/1.1default:7080GET /server HTTP/1.0

1-136530/84/84_
1.29505790.00.120.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/93/93_
1.29403490.00.130.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/88/88_
1.281008640.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/86/86_
1.27203760.00.100.10
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/101/101_
1.281407970.00.120.12
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/92/92_
1.29301910.00.100.10
127.0.0.1http/1.1default:7080GET /.vscode/sftp.json HTTP/1.0

1-136530/99/99_
1.294010290.00.130.13
127.0.0.1http/1.1default:7080GET / HTTP/1.0

1-136530/86/86_
1.281005210.00.100.10
127.0.0.1http/1.1default:7080GET /p/weve-got-your-border-pastel/weve-got-your-border?pp=8 HT

1-136530/94/94_
1.27104900.00.110.11
127.0.0.1http/1.1default:7080GET /wordpress/wp-content/uploads/2019/08/Baltasar_Kormakur-1.j

1-136530/88/88_
1.28405520.00.110.11
127.0.0.1http/1.1default:7080GET /.well-known/security.txt HTTP/1.0

1-136530/95/95_
1.29108100.00.130.13
127.0.0.1http/1.1default:7080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-136530/100/100_
1.29101960.00.110.11
127.0.0.1http/1.1default:7080GET /v2/_catalog HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child

Found on 2025-04-03 19:51

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: round1bet.com
Port: 443
URL: https://round1bet.com

First seen 2025-07-18 17:46
Last seen 2026-02-04 19:23
Open for 201 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fbf3ed66387189dce2457b7d12457b7d1
```
Found 3 files trough .DS_Store spidering:

/index.html
/photo
/videos
```
  Found on 2026-02-04 19:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: fetchquips.click
Port: 443
URL: https://fetchquips.click

First seen 2025-08-11 17:04
Last seen 2026-02-04 18:01
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9ca02bdfe42a43336b17d1c962bda9d2e
```
Found 5 files trough .DS_Store spidering:

/composer.json
/composer.lock
/includes
/index.php
/vendor
```
  Found on 2026-02-04 18:01
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: uncmali.com
Port: 443
URL: https://uncmali.com

First seen 2023-12-20 01:14
Last seen 2026-02-01 21:11
Open for 774 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f81cb3a648fa5c65ce807031040d55f78a4

Found 41 files trough .DS_Store spidering:

/assets
/assets/dashboard
/assets/dnef
/assets/file-manager
/assets/frontend
/assets/index.html
/assets/installer
/assets/translation
/assets/uncmali
/assets/uncmali/css
/assets/uncmali/fonts
/assets/uncmali/images
/assets/uncmali/js
/assets/uncmali/js/appear.js
/assets/uncmali/js/bootstrap.min.js
/assets/uncmali/js/color-settings.js
/assets/uncmali/js/isotope.js
/assets/uncmali/js/jquery-ui.js
/assets/uncmali/js/jquery.bootstrap-touchspin.js
/assets/uncmali/js/jquery.countdown.js
/assets/uncmali/js/jquery.fancybox.js
/assets/uncmali/js/jquery.js
/assets/uncmali/js/jquery.mCustomScrollbar.concat.min.js
/assets/uncmali/js/main-slider-script.js
/assets/uncmali/js/map-script-2.js
/assets/uncmali/js/map-script.js
/assets/uncmali/js/mixitup.js
/assets/uncmali/js/owl.js
/assets/uncmali/js/popper.min.js
/assets/uncmali/js/Real3d-flipbook
/assets/uncmali/js/script.js
/assets/uncmali/js/validate.js
/assets/uncmali/js/wow.js
/assets/uncmali/plugins
/core
/favicon.ico
/index.php
/mix-manifest.json
/robots.txt
/uploads
/web.config

Found on 2026-02-01 21:11

Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146bd60b51bdde8d6b1ec144a9ea56bd5d64

Found 21 files trough .DS_Store spidering:

/assets
/assets/dashboard
/assets/dnef
/assets/file-manager
/assets/frontend
/assets/index.html
/assets/installer
/assets/translation
/assets/uncmali
/assets/uncmali/css
/assets/uncmali/fonts
/assets/uncmali/images
/assets/uncmali/js
/assets/uncmali/plugins
/core
/favicon.ico
/index.php
/mix-manifest.json
/robots.txt
/uploads
/web.config

Found on 2025-12-01 01:41

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7191bd86887f1729d901a31add8bebaeb39

Found 16 files trough .DS_Store spidering:

/assets
/assets/dashboard
/assets/dnef
/assets/file-manager
/assets/frontend
/assets/index.html
/assets/installer
/assets/translation
/assets/uncmali
/core
/favicon.ico
/index.php
/mix-manifest.json
/robots.txt
/uploads
/web.config

Found on 2025-11-07 07:00

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: www.dinsosbengkulu.org
Port: 80
URL: http://www.dinsosbengkulu.org

First seen 2025-05-17 00:09
Last seen 2026-01-23 11:11
Open for 251 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-23 11:11
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: salehhalid.my.id
Port: 443
URL: https://salehhalid.my.id

First seen 2025-12-07 10:59
Last seen 2026-01-02 16:13
Open for 26 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221c89e9a2
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/salehhjaber/mandirimeubel.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2026-01-02 16:13
  
  269 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tg-zh.com
Port: 80
URL: http://tg-zh.com

First seen 2025-11-14 04:13
- Severity: low
  Fingerprint: 5f32cf5d6962f09c668fcbec668fcbec155f04c3be1ce55f2278c9e5499ecb39
```
Found 17 files trough .DS_Store spidering:

/1d.png
/404.html
/aliplay.html
/css
/DPlayer.min.js
/favicon.ico
/hls.js
/js
/play.html
/static
/static/app.css
/static/daxiang
/static/dd
/static/loading.gif
/static/m1
/static/video-placeholder.png
/static/xo
```
  Found on 2025-11-14 04:13
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: bitcoinloginwallet.com
Port: 443
URL: https://bitcoinloginwallet.com

First seen 2025-10-19 12:46
Last seen 2025-11-04 21:05
Open for 16 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522955a8e1d
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/imaad666/bitlogin.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2025-11-04 21:05
  
  306 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: yihuazhiming.com
Port: 80
URL: http://yihuazhiming.com

First seen 2025-10-11 23:47
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949b
```
Found 33 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/m1/css
/static/m1/favicon.ico
/static/m1/favicon.png
/static/m1/fonts
/static/m1/js
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-10-11 23:47
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: steinwldsummx.com
Port: 443
URL: https://steinwldsummx.com

First seen 2025-09-20 07:07
Last seen 2025-10-07 13:35
Open for 17 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522975c2c20
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:900direct/core.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
[lfs]
	repositoryformatversion = 0
```
  Found on 2025-10-07 13:35
  
  303 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: losfiziobistrot.it
Port: 443
URL: https://losfiziobistrot.it

First seen 2022-08-01 15:40
Last seen 2025-08-21 11:04
Open for 1115 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737d3d578f6e7c97979b3630403a3ac86b98c6f37790
```
[core]
	bare = false
	repositoryformatversion = 0
	filemode = true
	ignorecase = true
	precomposeunicode = true
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab.pigre.co/araba-fenice/menu-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-08-21 11:04
  
  323 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: losfiziobistrot.it
Port: 80
URL: http://losfiziobistrot.it

First seen 2024-02-12 13:46
Last seen 2025-08-21 11:04
Open for 555 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737d3d578f6e7c97979b3630403a3ac86b98c6f37790
```
[core]
	bare = false
	repositoryformatversion = 0
	filemode = true
	ignorecase = true
	precomposeunicode = true
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab.pigre.co/araba-fenice/menu-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-08-21 11:04
  
  323 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: shopik-wayz.icu
Port: 443
URL: https://shopik-wayz.icu

First seen 2025-05-17 02:06
Last seen 2025-08-04 20:34
Open for 79 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522f0dd8b91
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@gitlab.com:Glerr/BELIUS-ALV.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2025-08-04 20:34
  
  260 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: hblajitong.com
Port: 80
URL: http://hblajitong.com

First seen 2025-06-14 04:00
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949b
```
Found 33 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/m1/css
/static/m1/favicon.ico
/static/m1/favicon.png
/static/m1/fonts
/static/m1/js
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-06-14 04:00
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: faskcup.com
Port: 80
URL: http://faskcup.com

First seen 2025-04-08 23:14
Last seen 2025-04-17 00:01
Open for 8 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d819fde85819fde85819fde85819fde85
```
Found 1 files trough .DS_Store spidering:

/js
```
  Found on 2025-04-17 00:01
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: istanamakswin.site
Port: 443
URL: https://istanamakswin.site

First seen 2024-09-18 06:49
Last seen 2024-09-30 03:58
Open for 11 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a761852385ae6a353c21de60e73cb40d814

Found 51 files trough .DS_Store spidering:

/common
/common/assets
/common/assets/luckySpin
/common/assets/luckySpin/BG-min.jpg
/common/assets/luckySpin/BG-origin.jpg
/common/assets/luckySpin/button-spin-origin.png
/common/assets/luckySpin/coins-0.5-origin.png
/common/assets/luckySpin/confetti-0.5-origin.png
/common/assets/luckySpin/confetti-min.png
/common/assets/luckySpin/confetti-origin.png
/common/assets/luckySpin/hand-origin.png
/common/assets/luckySpin/idr-1-origin.png
/common/assets/luckySpin/idr-2-origin.png
/common/assets/luckySpin/machine-origin.png
/common/assets/luckySpin/machine-prize-bg-origin.png
/common/assets/luckySpin/panel-prize-origin.png
/common/assets/luckySpin/stick-bar-origin.png
/common/assets/luckySpin/stick-dot-origin.png
/common/assets/luckySpin/title-min.png
/common/assets/luckySpin/title-origin.png
/common/assets/luckyWheel
/lottery-flagship
/lottery-flagship/colors
/lottery-super88
/lottery-super88/assets
/lottery-super88/assets/black
/lottery-super88/assets/common
/lottery-super88/assets/common/mobilePage
/lottery-super88/colors
/lottery-template1
/lottery-template1/assets
/lottery-template1/assets/home
/lottery-template1/assets/memo
/lottery-template1/assets/sports
/lottery-template1/colors
/lottery-template4
/lottery-template4/assets
/lottery-template4/assets/blue-black
/lottery-template4/assets/default
/lottery-template4/assets/greek
/lottery-template4/assets/menu
/lottery-template4/colors
/lottery-template5
/lottery-template6
/lottery-template7
/lottery-template8
/lottery-template9
/lottery-toto
/lottery-zentogel
/wallet-template2th88
/wallet-triseven

Found on 2024-09-30 03:58

Severity: medium
Fingerprint: 5f32cf5d6962f09c92dfb71592dfb7157e120c438dc3f72708188b5a64721dc4

Found 45 files trough .DS_Store spidering:

/common
/common/assets
/common/assets/luckySpin
/common/assets/luckySpin/BG-min.jpg
/common/assets/luckySpin/BG-origin.jpg
/common/assets/luckySpin/button-spin-origin.png
/common/assets/luckySpin/coins-0.5-origin.png
/common/assets/luckySpin/confetti-0.5-origin.png
/common/assets/luckySpin/confetti-min.png
/common/assets/luckySpin/confetti-origin.png
/common/assets/luckySpin/hand-origin.png
/common/assets/luckySpin/idr-1-origin.png
/common/assets/luckySpin/idr-2-origin.png
/common/assets/luckySpin/machine-origin.png
/common/assets/luckySpin/machine-prize-bg-origin.png
/common/assets/luckySpin/panel-prize-origin.png
/common/assets/luckySpin/stick-bar-origin.png
/common/assets/luckySpin/stick-dot-origin.png
/common/assets/luckySpin/title-min.png
/common/assets/luckySpin/title-origin.png
/common/assets/luckyWheel
/lottery-flagship
/lottery-flagship/colors
/lottery-super88
/lottery-super88/assets
/lottery-super88/assets/black
/lottery-super88/assets/common
/lottery-super88/assets/common/mobilePage
/lottery-super88/colors
/lottery-template1
/lottery-template1/assets
/lottery-template1/assets/home
/lottery-template1/assets/memo
/lottery-template1/assets/sports
/lottery-template1/colors
/lottery-template4
/lottery-template5
/lottery-template6
/lottery-template7
/lottery-template8
/lottery-template9
/lottery-toto
/lottery-zentogel
/wallet-template2th88
/wallet-triseven

Found on 2024-09-28 05:58

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447781be40b915a5319074387239e07a008

Found 18 files trough .DS_Store spidering:

/lottery-super88
/lottery-super88/assets
/lottery-super88/assets/black
/lottery-super88/assets/common
/lottery-super88/assets/common/mobilePage
/lottery-super88/colors
/lottery-template4
/lottery-template4/assets
/lottery-template4/assets/blue-black
/lottery-template4/assets/default
/lottery-template4/assets/greek
/lottery-template4/assets/menu
/lottery-template4/colors
/lottery-template8
/lottery-template8/assets
/lottery-template8/assets/common
/lottery-template8/assets/common/sports
/lottery-template8/colors

Found on 2024-09-24 12:32

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: etena.claims
Port: 443
URL: https://etena.claims

First seen 2024-08-07 19:35
Last seen 2024-08-28 01:00
Open for 20 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6d
```
Found 1 files trough .DS_Store spidering:

/img
```
  Found on 2024-08-28 01:00
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: markworld.io
Port: 443
URL: https://markworld.io

First seen 2022-09-21 08:10
Last seen 2024-01-12 07:35
Open for 477 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a154f931
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/rejoin751/Project_N_MRK_markword_io.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2024-01-12 07:35
  
  279 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: lesssasingio.tk
Port: 443
URL: https://lesssasingio.tk

First seen 2022-08-31 08:48
Last seen 2023-12-24 03:51
Open for 479 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 03:51
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: connuescotanke.tk
Port: 443
URL: https://connuescotanke.tk

First seen 2022-10-13 01:21
Last seen 2023-09-07 02:02
Open for 329 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-13 01:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: dragciovide.gq
Port: 80
URL: http://dragciovide.gq

First seen 2022-10-31 01:01
Last seen 2023-09-05 20:42
Open for 309 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-31 01:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: dragciovide.gq
Port: 443
URL: https://dragciovide.gq

First seen 2022-10-31 01:01
Last seen 2023-09-05 20:42
Open for 309 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-31 01:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tiobloccalifunkrar.tk
Port: 443
URL: https://tiobloccalifunkrar.tk

First seen 2023-01-06 03:03
Last seen 2023-09-02 04:56
Open for 239 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-06 03:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ececol.tk
Port: 443
URL: https://ececol.tk

First seen 2022-09-12 18:35
Last seen 2023-09-02 01:28
Open for 354 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-12 18:35
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ececol.tk
Port: 80
URL: http://ececol.tk

First seen 2022-09-12 18:35
Last seen 2023-09-02 01:28
Open for 354 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-12 18:35
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: burgiladicticapt.cf
Port: 443
URL: https://burgiladicticapt.cf

First seen 2023-06-10 03:53
Last seen 2023-09-01 07:24
Open for 83 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-10 03:53
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: myesnowcallotili.tk
Port: 80
URL: http://myesnowcallotili.tk

First seen 2023-07-21 08:49
Last seen 2023-09-01 01:28
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-07-21 08:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: trachewmetnighte.gq
Port: 443
URL: https://trachewmetnighte.gq

First seen 2022-09-10 20:19
Last seen 2023-08-31 19:35
Open for 354 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-10 20:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: trachewmetnighte.gq
Port: 80
URL: http://trachewmetnighte.gq

First seen 2022-09-10 20:19
Last seen 2023-08-31 19:35
Open for 354 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-10 20:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: dugonin.tk
Port: 80
URL: http://dugonin.tk

First seen 2023-01-07 06:56
Last seen 2023-08-31 06:51
Open for 235 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-07 06:56
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: terptherso.tk
Port: 80
URL: http://terptherso.tk

First seen 2022-10-14 12:03
Last seen 2023-08-30 02:16
Open for 319 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 12:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: soultpespingrede.tk
Port: 80
URL: http://soultpespingrede.tk

First seen 2022-12-13 02:43
Last seen 2023-08-28 14:16
Open for 258 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-13 02:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: zeomilynan.tk
Port: 443
URL: https://zeomilynan.tk

First seen 2022-12-12 03:53
Last seen 2023-08-27 21:24
Open for 258 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-12 03:53
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: koilorryref.cf
Port: 80
URL: http://koilorryref.cf

First seen 2022-10-13 01:25
Last seen 2023-08-26 21:02
Open for 317 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-13 01:25
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: schofenun.tk
Port: 443
URL: https://schofenun.tk

First seen 2022-10-22 02:30
Last seen 2023-08-22 12:56
Open for 304 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-22 02:30
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: riedirwhistworkgodda.tk
Port: 80
URL: http://riedirwhistworkgodda.tk

First seen 2022-10-14 02:11
Last seen 2023-08-21 18:58
Open for 311 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-14 02:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: erulsa.tk
Port: 443
URL: https://erulsa.tk

First seen 2022-12-12 01:10
Last seen 2023-08-20 18:18
Open for 251 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-12 01:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: nintnaro.tk
Port: 80
URL: http://nintnaro.tk

First seen 2023-06-20 02:08
Last seen 2023-08-18 02:52
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-20 02:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: nintnaro.tk
Port: 443
URL: https://nintnaro.tk

First seen 2023-06-20 02:08
Last seen 2023-08-18 02:52
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-20 02:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: scootapreapsekaca.tk
Port: 443
URL: https://scootapreapsekaca.tk

First seen 2022-09-14 02:49
Last seen 2023-08-15 05:58
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-14 02:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tranolafovlapa.cf
Port: 443
URL: https://tranolafovlapa.cf

First seen 2023-01-11 19:44
Last seen 2023-08-15 05:32
Open for 215 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-11 19:44
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tranolafovlapa.cf
Port: 80
URL: http://tranolafovlapa.cf

First seen 2023-01-11 19:44
Last seen 2023-08-15 05:32
Open for 215 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-11 19:44
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: effopila.tk
Port: 80
URL: http://effopila.tk

First seen 2022-10-30 02:07
Last seen 2023-08-12 07:19
Open for 286 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-30 02:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: effopila.tk
Port: 443
URL: https://effopila.tk

First seen 2022-10-30 02:07
Last seen 2023-08-12 07:19
Open for 286 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-30 02:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: schuspiaran.tk
Port: 443
URL: https://schuspiaran.tk

First seen 2023-06-09 03:26
Last seen 2023-08-07 18:26
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-09 03:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: restresjeosen.tk
Port: 80
URL: http://restresjeosen.tk

First seen 2023-06-08 03:59
Last seen 2023-08-06 11:10
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-08 03:59
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: slaportuwatchson.tk
Port: 443
URL: https://slaportuwatchson.tk

First seen 2023-04-05 03:34
Last seen 2023-08-01 12:51
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-04-05 03:34
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: slaportuwatchson.tk
Port: 80
URL: http://slaportuwatchson.tk

First seen 2023-04-05 03:34
Last seen 2023-08-01 12:51
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-04-05 03:34
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: enagrahlothi.tk
Port: 443
URL: https://enagrahlothi.tk

First seen 2022-08-31 01:14
Last seen 2023-08-01 03:25
Open for 335 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-31 01:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: zadanwinnnapitem.tk
Port: 443
URL: https://zadanwinnnapitem.tk

First seen 2022-10-25 04:52
Last seen 2023-07-28 06:53
Open for 276 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-25 04:52
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ruauvonliylay.tk
Port: 80
URL: http://ruauvonliylay.tk

First seen 2022-09-16 02:42
Last seen 2023-07-15 08:31
Open for 302 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 02:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ruauvonliylay.tk
Port: 443
URL: https://ruauvonliylay.tk

First seen 2022-09-16 02:42
Last seen 2023-07-15 08:31
Open for 302 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 02:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: unneybidic.tk
Port: 443
URL: https://unneybidic.tk

First seen 2022-10-24 01:03
Last seen 2023-07-03 13:43
Open for 252 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-24 01:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: isicbarthornminddweb.ml
Port: 80
URL: http://isicbarthornminddweb.ml

First seen 2023-01-07 05:26
Last seen 2023-07-03 09:06
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-01-07 05:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: isicbarthornminddweb.ml
Port: 443
URL: https://isicbarthornminddweb.ml

First seen 2023-01-07 05:26
Last seen 2023-07-03 09:06
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-01-07 05:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tirichen.ml
Port: 443
URL: https://tirichen.ml

First seen 2023-06-28 04:26
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-28 04:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tirichen.ml
Port: 80
URL: http://tirichen.ml

First seen 2023-06-28 04:26
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-28 04:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: tuponyscocimi.ml
Port: 443
URL: https://tuponyscocimi.ml

First seen 2023-01-01 03:25
Last seen 2023-06-27 14:35
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-01-01 03:25
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: rentplicabpresminswor.ml
Port: 443
URL: https://rentplicabpresminswor.ml

First seen 2022-09-26 18:43
Last seen 2023-06-21 15:39
Open for 267 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 18:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: enstanagmausum.tk
Port: 443
URL: https://enstanagmausum.tk

First seen 2022-12-25 03:45
Last seen 2023-06-20 07:07
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-25 03:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: thaimope.gq
Port: 443
URL: https://thaimope.gq

First seen 2023-06-11 04:23
Last seen 2023-06-11 04:23
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-11 04:23
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: telsberviameto.tk
Port: 80
URL: http://telsberviameto.tk

First seen 2023-06-09 04:39
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-09 04:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: laclohe.ml
Port: 443
URL: https://laclohe.ml

First seen 2023-06-01 02:02
Last seen 2023-06-01 02:03
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-01 02:02
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: rabculesscimebol.tk
Port: 80
URL: http://rabculesscimebol.tk

First seen 2022-11-07 01:35
Last seen 2023-05-31 10:01
Open for 205 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-07 01:35
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: trapelun.cf
Port: 443
URL: https://trapelun.cf

First seen 2023-05-23 05:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-23 05:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: trapelun.cf
Port: 80
URL: http://trapelun.cf

First seen 2023-05-23 05:10
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-23 05:10
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: forwardwonderwft.art
Port: 80
URL: http://forwardwonderwft.art

First seen 2023-03-06 17:48
Last seen 2023-05-04 18:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652223a160a9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/evoprogram/eu-landers.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-03-06 17:48
  
  265 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 104.21.71.213
Domain: forwardwonderwft.art
Port: 443
URL: https://forwardwonderwft.art

First seen 2023-03-06 17:48
Last seen 2023-05-04 18:17
Open for 59 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652223a160a9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/evoprogram/eu-landers.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2023-03-06 17:48
  
  265 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: preslokeabseger.ml
Port: 80
URL: http://preslokeabseger.ml

First seen 2022-09-16 08:08
Last seen 2023-03-23 22:36
Open for 188 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-16 08:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ciamili.cf
Port: 80
URL: http://ciamili.cf

First seen 2023-03-20 01:00
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-03-20 01:00
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ciamili.cf
Port: 443
URL: https://ciamili.cf

First seen 2023-03-20 01:00
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-03-20 01:00
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ramthelylo.tk
Port: 443
URL: https://ramthelylo.tk

First seen 2023-03-18 01:20
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-03-18 01:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: ramthelylo.tk
Port: 80
URL: http://ramthelylo.tk

First seen 2023-03-18 01:20
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-03-18 01:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: parsiesigntex.tk
Port: 80
URL: http://parsiesigntex.tk

First seen 2023-03-18 01:16
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-03-18 01:16
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: parsiesigntex.tk
Port: 443
URL: https://parsiesigntex.tk

First seen 2023-03-18 01:16
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-03-18 01:16
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: uask.one
Port: 443
URL: https://uask.one

First seen 2023-03-12 08:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a67a4eee648173f936b91e689dd4bb8e3
```
Found 19 files trough .DS_Store spidering:

/qa-cache
/qa-content
/qa-external-example
/qa-include
/qa-include/ajax
/qa-include/app
/qa-include/db
/qa-include/lang
/qa-include/pages
/qa-include/pages/admin
/qa-include/plugins
/qa-include/Q2A
/qa-include/util
/qa-include/vendor
/qa-lang
/qa-plugin
/qa-src
/qa-tests
/qa-theme
```
  Found on 2023-03-12 08:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: c2cbuyit.com
Port: 443
URL: https://c2cbuyit.com

First seen 2023-02-25 15:13
Last seen 2023-03-05 16:44
Open for 8 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa544751bf49c00ac27b4a0dc1f6c5dc9154e8
```
Found 18 files trough .DS_Store spidering:

/.git
/.idea
/.idea/shelf
/.idea/shelf/Uncommitted_changes_before_Update_at_2023_2_24_下午9_46_[Default_Changelist]
/.idea/shelf/Uncommitted_changes_before_Update_at_2023_2_24_下午9_46_[Default_Changelist]1
/.vscode
/css
/images
/images/bg
/images/blog
/images/campaign
/images/convenience
/images/gallery
/images/ico
/images/others
/images/product
/js
/webfonts
```
  Found on 2023-03-05 16:44
- Severity: low
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe626f729bd484660da108dc445846ba75
```
Found 15 files trough .DS_Store spidering:

/.git
/.idea
/.vscode
/css
/images
/images/bg
/images/blog
/images/campaign
/images/convenience
/images/gallery
/images/ico
/images/others
/images/product
/js
/webfonts
```
  Found on 2023-02-25 15:13
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: c2cbuyit.com
Port: 80
URL: http://c2cbuyit.com

First seen 2023-02-25 15:13
Last seen 2023-03-05 16:44
Open for 8 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa544751bf49c00ac27b4a0dc1f6c5dc9154e8
```
Found 18 files trough .DS_Store spidering:

/.git
/.idea
/.idea/shelf
/.idea/shelf/Uncommitted_changes_before_Update_at_2023_2_24_下午9_46_[Default_Changelist]
/.idea/shelf/Uncommitted_changes_before_Update_at_2023_2_24_下午9_46_[Default_Changelist]1
/.vscode
/css
/images
/images/bg
/images/blog
/images/campaign
/images/convenience
/images/gallery
/images/ico
/images/others
/images/product
/js
/webfonts
```
  Found on 2023-03-05 16:44
- Severity: low
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbe626f729bd484660da108dc445846ba75
```
Found 15 files trough .DS_Store spidering:

/.git
/.idea
/.vscode
/css
/images
/images/bg
/images/blog
/images/campaign
/images/convenience
/images/gallery
/images/ico
/images/others
/images/product
/js
/webfonts
```
  Found on 2023-02-25 15:13
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: conlexethytitt.cf
Port: 443
URL: https://conlexethytitt.cf

First seen 2023-02-27 00:30
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-27 00:30
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: conlexethytitt.cf
Port: 80
URL: http://conlexethytitt.cf

First seen 2023-02-27 00:30
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-27 00:30
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: blanavuw.tk
Port: 443
URL: https://blanavuw.tk

First seen 2022-11-26 17:01
Last seen 2023-02-04 03:31
Open for 69 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-26 17:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: blanavuw.tk
Port: 80
URL: http://blanavuw.tk

First seen 2022-11-26 17:01
Last seen 2023-02-04 03:31
Open for 69 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-26 17:01
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.171.190
Domain: alphabot.tehix.agency
Port: 443
URL: https://alphabot.tehix.agency

First seen 2023-01-22 16:42
Last seen 2023-01-22 16:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ce84f4d3ce84f4d34c08bd11

Apache Status

Apache Server Status for alphabot.tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9 Phusion_Passenger/6.0.13
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Sunday, 22-Jan-2023 16:42:37 UTC
Restart Time: Friday, 04-Nov-2022 22:48:15 UTC
Parent Server Config. Generation: 220
Parent Server MPM Generation: 219
Server uptime:  78 days 17 hours 54 minutes 21 seconds
Server load: 1.68 1.32 0.87
Total accesses: 2032948 - Total Traffic: 200.1 GB - Total Duration: 1698467524
CPU Usage: u162.4 s161.2 cu27941.1 cs4304.47 - .479% CPU load
.299 requests/sec - 30.8 kB/second - 103.2 kB/request - 835.47 ms/request
3 requests currently being processed, 47 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
1381998no0yes124000
3381997no1yes223000
Sum201 347000

.........................______________W__________..............
...........___________________W____L............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-216-0/0/25247.
0.003207323431211394760.00.002576.95
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25176.
0.003207323683211401610.00.002504.60
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25214.
0.003207323144218942180.00.002632.54
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/24915.
0.003207325195209683170.00.002589.34
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25098.
0.003207328844215482240.00.002677.44
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25194.
0.003207328688209875750.00.002593.09
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25219.
0.003207328007210521510.00.002601.26
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25312.
0.003207323427215490540.00.002653.36
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25134.
0.003207323357211433480.00.002626.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25123.
0.003207326816213516520.00.002563.12
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25285.
0.003207328892213695270.00.002656.57
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25175.
0.003207329125208548980.00.002559.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25328.
0.003207320722214357860.00.002605.17
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-216-0/0/25086.
0.003207323548212244890.00.002642.40
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25012.
0.003207330541210745540.00.002559.33
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25046.
0.003207323233207481190.00.002592.26
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25176.
0.003207325659217617500.00.002699.67
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25121.
0.003207329092209641910.00.002534.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25260.
0.003207329016215171580.00.002649.19
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25148.
0.003207333521212081240.00.002585.57
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25253.
0.003207330215213879540.00.002621.69
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/24979.
0.00320731809214250900.00.002498.98
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-216-0/0/25150.
0.003207328883212778850.00.002552.72
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25067.
0.003207323643211762130.00.002561.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25227.
0.003207328404214355650.00.002647.97
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

1-2193819980/0/31047_
0.009575257764650.00.003161.58
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31093_
0.009553258417650.00.003129.89
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31070_
0.009589260649310.00.003246.16
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31173_
0.009538261857720.00.003188.07
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/1/31200_
0.0196263871980.00.003215.15
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2193819980/1/31188_
0.029763259925390.00.003186.17
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31099_
0.009566257409800.00.003200.01
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31143_
0.009553266873410.00.003256.03
127.0.0.1http/1.1

1-2193819980/0/31045_
0.009578260820700.00.003201.50
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/1/31239_
0.03216263276870.00.003226.05
127.0.0.1http/1.1alphabot.tehix.agency:7081GET /info.php HTTP/1.0

1-2193819980/0/30961_
0.002571258979980.00.003206.57
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/1/31163_
0.0426261333780.00.003239.52
127.0.0.1http/1.1alphabot.tehix.agency:7081GET / HTTP/1.0

1-2193819980/0/30897_
0.002564263402350.00.003173.82
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/1/31072_
0.0426264049650.00.003265.37
127.0.0.1http/1.1alphabot.tehix.agency:7081GET / HTTP/1.0

1-2193819981/0/31027W
0.0000260551620.00.003275.67
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31057_
0.0094262449840.00.003239.72
127.0.0.1http/1.1alphabot.tehix.agency:7081GET / HTTP/1.0

1-2193819980/1/31095_
0.0605261716010.00.003175.59
127.0.0.1http/1.1alphabot.tehix.agency:7081GET / HTTP/1.0

1-2193819980/0/31020_
0.000534259544110.00.003129.49
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31082_
0.009553261829730.00.003328.43
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31054_
0.0091891259612930.00.003177.80
127.0.0.1http/1.1inbalance.hr:7081GET /proizvod/para-protex/?add-to-cart=10864 HTTP/1.0

1-2193819980/0/31228_
0.009536260876050.00.003183.22
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31167_
0.009550257002250.00.003129.78
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31069_
0.009584259596640.00.003206.05
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31143_
0.009558263869770.00.003262.69
127.0.0.1<

Found on 2023-01-22 16:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ce84f4d3ce84f4d335b49bba

Apache Status

Apache Server Status for alphabot.tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9 Phusion_Passenger/6.0.13
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Sunday, 22-Jan-2023 16:42:34 UTC
Restart Time: Friday, 04-Nov-2022 22:48:15 UTC
Parent Server Config. Generation: 220
Parent Server MPM Generation: 219
Server uptime:  78 days 17 hours 54 minutes 19 seconds
Server load: 1.73 1.32 0.87
Total accesses: 2032921 - Total Traffic: 200.1 GB - Total Duration: 1698465699
CPU Usage: u162.24 s161.14 cu27941.1 cs4304.47 - .479% CPU load
.299 requests/sec - 30.8 kB/second - 103.2 kB/request - 835.48 ms/request
3 requests currently being processed, 47 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
1381998no0yes025000
3381997no1yes322000
Sum201 347000

........................._________________________..............
...........R____LW__________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-216-0/0/25247.
0.003207023431211394760.00.002576.95
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25176.
0.003207023683211401610.00.002504.60
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25214.
0.003207023144218942180.00.002632.54
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/24915.
0.003207025195209683170.00.002589.34
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25098.
0.003207028844215482240.00.002677.44
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25194.
0.003207028688209875750.00.002593.09
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25219.
0.003207028007210521510.00.002601.26
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25312.
0.003207023427215490540.00.002653.36
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25134.
0.003207023357211433480.00.002626.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25123.
0.003207026816213516520.00.002563.12
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25285.
0.003207028892213695270.00.002656.57
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25175.
0.003207029125208548980.00.002559.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25328.
0.003207020722214357860.00.002605.17
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-216-0/0/25086.
0.003207023548212244890.00.002642.40
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25012.
0.003207030541210745540.00.002559.33
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25046.
0.003207023233207481190.00.002592.26
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25176.
0.003207025659217617500.00.002699.67
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25121.
0.003207029092209641910.00.002534.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25260.
0.003207029016215171580.00.002649.19
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25148.
0.003207033521212081240.00.002585.57
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25253.
0.003207030215213879540.00.002621.69
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/24979.
0.00320701809214250900.00.002498.98
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-216-0/0/25150.
0.003207028883212778850.00.002552.72
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25067.
0.003207023643211762130.00.002561.29
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

0-216-0/0/25227.
0.003207028404214355650.00.002647.97
127.0.0.1http/1.1tehix.hr:7081POST /favicon.ico/wp-login.php HTTP/1.0

1-2193819980/0/31047_
0.007575257764650.00.003161.58
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31093_
0.007553258417650.00.003129.89
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31070_
0.007589260649310.00.003246.16
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31173_
0.007538261857720.00.003188.07
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/1/31200_
0.0176263871980.00.003215.15
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2193819980/1/31188_
0.026763259925390.00.003186.17
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31099_
0.007566257409800.00.003200.01
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31143_
0.007553266873410.00.003256.03
127.0.0.1http/1.1

1-2193819980/0/31045_
0.006578260820700.00.003201.50
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31238_
0.007562263276700.00.003226.05
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/30961_
0.007571258979980.00.003206.57
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31162_
0.007611261333720.00.003239.52
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/30897_
0.007564263402350.00.003173.82
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31071_
0.007581264049580.00.003265.37
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31027_
0.0073260551620.00.003275.67
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2193819980/0/31057_
0.0074262449840.00.003239.72
127.0.0.1http/1.1alphabot.tehix.agency:7081GET / HTTP/1.0

1-2193819980/0/31094_
0.007641261715960.00.003175.59
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31020_
0.007534259544110.00.003129.49
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31082_
0.007553261829730.00.003328.43
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31054_
0.0071891259612930.00.003177.80
127.0.0.1http/1.1inbalance.hr:7081GET /proizvod/para-protex/?add-to-cart=10864 HTTP/1.0

1-2193819980/0/31228_
0.007536260876050.00.003183.22
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31167_
0.007550257002250.00.003129.78
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31069_
0.007584259596640.00.003206.05
127.0.0.1http/1.1tehix.com:7081POST //xmlrpc.php HTTP/1.0

1-2193819980/0/31143_
0.007558263869770.00.003262.69
127.0.0.

Found on 2023-01-22 16:42

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: osmorhale.ga
Port: 443
URL: https://osmorhale.ga

First seen 2022-09-14 15:39
Last seen 2023-01-12 22:17
Open for 120 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2022-09-14 15:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: osmorhale.ga
Port: 80
URL: http://osmorhale.ga

First seen 2022-09-14 15:39
Last seen 2023-01-12 22:17
Open for 120 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2022-09-14 15:39
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.171.190
Domain: tehix.agency
Port: 443
URL: https://tehix.agency

First seen 2022-09-14 11:59
Last seen 2023-01-10 19:33
Open for 118 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31db21d418db21d4182930840b

Apache Status

Apache Server Status for tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9 Phusion_Passenger/6.0.13
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Tuesday, 10-Jan-2023 19:33:38 UTC
Restart Time: Friday, 04-Nov-2022 22:48:15 UTC
Parent Server Config. Generation: 182
Parent Server MPM Generation: 181
Server uptime:  66 days 20 hours 45 minutes 23 seconds
Server load: 0.32 0.24 0.27
Total accesses: 1786628 - Total Traffic: 192.0 GB - Total Duration: 1523685271
CPU Usage: u292.02 s161.43 cu24737.1 cs3789.6 - .502% CPU load
.309 requests/sec - 34.8 kB/second - 112.7 kB/request - 852.827 ms/request
2 requests currently being processed, 48 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01932905no0yes025000
31932908no0yes223000
Sum200 248000

_________________________.......................................
..........._W_____________W_________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-18119329050/124/21911_
38.054735189062410.02.192477.04
205.185.118.237http/1.1default:7080POST /boaform/admin/formLogin HTTP/1.0

0-18119329050/118/21790_
38.2906186846140.03.472404.29
127.0.0.1http/1.1tehix.agency:7081GET /.git/config HTTP/1.0

0-18119329050/123/21872_
38.094651404194668860.04.642530.19
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-18119329050/120/21582_
38.171326186988490.04.822493.75
127.0.0.1http/1.1tehix.agency:7081GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?

0-18119329050/129/21749_
38.26021192137060.03.722570.12
127.0.0.1http/1.1tehix.agency:7081GET /s/331323e21373e21323e2430313/_/;/META-INF/maven/com.atlass

0-18119329050/118/21884_
38.2406186867400.04.312492.73
127.0.0.1http/1.1tehix.agency:7081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-18119329050/130/21832_
38.2207186335400.04.152488.50
127.0.0.1http/1.1tehix.agency:7081GET /telescope/requests HTTP/1.0

0-18119329050/118/21948_
38.181258191055200.03.672551.07
127.0.0.1http/1.1tehix.agency:7081GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.0

0-18119329050/118/21737_
37.53465348187215210.04.022515.62
127.0.0.1http/1.1tehix.hr:7081GET /feed/ HTTP/1.0

0-18119329050/125/21770_
37.941324189244070.04.672456.73
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min

0-18119329050/118/21898_
38.152101561190175430.04.792562.17
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-18119329050/133/21811_
37.931324185502460.03.452461.57
127.0.0.1http/1.1tehix.com:7081GET /wp-content/themes/obelisk/js/waypoints.min.js?ver=6.1.1 HT

0-18119329050/122/21942_
38.2181143189846430.02.602500.69
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-18119329050/126/21784_
38.1713210189970450.03.112546.41
127.0.0.1http/1.1tehix.agency:7081GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css

0-18119329050/122/21684_
38.28010185467340.05.062467.23
127.0.0.1http/1.1tehix.agency:7081GET /v2/_catalog HTTP/1.0

0-18119329050/114/21709_
38.2606184481610.04.222498.88
127.0.0.1http/1.1tehix.agency:7081GET /.vscode/sftp.json HTTP/1.0

0-18119329050/119/21808_
37.8807194802360.02.792589.34
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/obelisk_plugin/assets/lib/font-awesome/

0-18119329050/128/21779_
37.431326186686650.03.262434.90
127.0.0.1http/1.1tehix.hr:7081GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.0

0-18119329050/122/21909_
38.28010191775780.04.442549.45
127.0.0.1http/1.1tehix.agency:7081GET /login.action HTTP/1.0

0-18119329050/117/21792_
37.8906187570030.04.812487.62
127.0.0.1http/1.1tehix.com:7081GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2 HTTP/1.0

0-18119329050/139/21876_
38.26052190438450.02.942527.59
127.0.0.1http/1.1tehix.agency:7081GET /info.php HTTP/1.0

0-18119329050/111/21616_
37.812108188781090.02.112390.73
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/s

0-18119329050/112/21782_
37.9707187920690.05.402441.50
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/obelisk_plugin/assets/fonts/peicon/Pe-i

0-18119329050/123/21761_
38.1613214187592130.05.332453.70
127.0.0.1http/1.1tehix.agency:7081POST /wp-cron.php?doing_wp_cron=1673379085.76063203811645507812

0-18119329050/121/21833_
38.102318190356110.05.282541.76
92.118.39.29http/1.1default:7080POST / HTTP/1.0

1-171-0/0/29556.
0.0036694825247384980.00.003123.37
127.0.0.1http/1.1tehix.hr:7081GET /wp-includes/sodium_compat/src/Core32/Poly1305/?C=N%3BO%3DD

1-171-0/0/29563.
0.0036694815247736570.00.003086.88
127.0.0.1http/1.1inbalance.hr:7081POST /wp-cron.php?doing_wp_cron=1673012073.64794111251831054687

1-171-0/0/29583.
0.0036694814250018610.00.003201.34
127.0.0.1http/1.1tehix.com:7081POST /wp-cron.php?doing_wp_cron=1673012125.03912210464477539062

1-171-0/0/29717.
0.00366948231251553930.00.003148.88
127.0.0.1http/1.1tehix.hr:7081GET /hashtag/beast/ HTTP/1.0

1-171-0/0/29709.
0.00366948298253468260.00.003168.85
127.0.0.1http/1.1tehix.hr:7081POST /?wordfence_syncAttackData=1673012202.7996 HTTP/1.0

1-171-0/0/29705.
0.00366948286249086550.00.003143.74
127.0.0.1http/1.1tehix.hr:7081GET /scenarij-za-film-edge-of-tomorrow-2-je-gotov/ HTTP/1.0

1-171-0/0/29613.
0.00366948927247167420.00.003163.91
127.0.0.1http/1.1tehix.hr:7081GET /tagovi/the-expendables/feed/ HTTP/1.0

1-171-0/0/29684.
0.00366948639256823260.00.003219.66
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-171-0/0/29528.
0.00366948988250235000.00.003157.16
127.0.0.1http/1.1tehix.hr:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29725.
0.00366948310252650110.00.003190.41
127.0.0.1http/1.1tehix.hr:7081GET /tehix-news-ep1 HTTP/1.0

1-171-0/0/29480.
0.00366948537249066600.00.003167.94
127.0.0.1http/1.1tehix.com:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29642.
0.00366948302250301170.00.003199.15
127.0.0.1http/1.1tehix.hr:7081GET /tagovi/world-of-warplanes/ HTTP/1.0

1-171-0/0/29426.
0.00366948268252959860.00.003127.84
127.0.0.1http/1.1tehix.hr:7081GET /football-manager-2023-donosi-licencirana-uefa-natjecanja/ 

1-171-0/0/29585.
0.00366948112253603440.00.003227.98
127.0.0.1http/1.1tehix.agency:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29548.
0.00366948238249911970.00.003236.42
127.0.0.1http/1.1tehix.hr:7081GET /hashtag/diego-luna/ HTTP/1.0

1-171-0/0/29544.
0.00366948617251882380.00.003198.99
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-171-0/0/29597.
0.00366948762251510640.00.003133.59
127.0.0.1http/1.1tehix.hr:7081GET /wp-admin/admin-post.php HTTP/1.0

1-171-0/0/29524.
0.003669484249115290.00.003091.22
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-171-0/0/29581.
0.00366948243251317350.00.003289.22
127.0.0.1http/1.1tehix.hr:7081GET /rss HTTP/1.0

1-171-0/0/29576.
0.003669489249141950.00.003137.32
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/20221212_024100-1068x801.jpg HTTP/1.0

1-171-0/0/29729.
0.00366948561250423120.00.003143.64
127.0.0.1http/1.1tehix.com:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29677.
0.003669483246321270.00.003085.03
127.0.0.1http/1

Found on 2023-01-10 19:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31db21d418db21d418b15b6031

Apache Status

Apache Server Status for tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9 Phusion_Passenger/6.0.13
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Tuesday, 10-Jan-2023 19:33:38 UTC
Restart Time: Friday, 04-Nov-2022 22:48:15 UTC
Parent Server Config. Generation: 182
Parent Server MPM Generation: 181
Server uptime:  66 days 20 hours 45 minutes 22 seconds
Server load: 0.17 0.21 0.26
Total accesses: 1786615 - Total Traffic: 192.0 GB - Total Duration: 1523684368
CPU Usage: u291.87 s161.41 cu24737.1 cs3789.6 - .502% CPU load
.309 requests/sec - 34.8 kB/second - 112.7 kB/request - 852.833 ms/request
5 requests currently being processed, 45 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01932905no0yes124000
31932908no0yes421000
Sum200 545000

____________________W____.......................................
...........____W______L_W___W_______............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-18119329050/124/21911_
38.054725189062410.02.192477.04
205.185.118.237http/1.1default:7080POST /boaform/admin/formLogin HTTP/1.0

0-18119329050/117/21789_
38.045143186846080.03.462404.29
152.89.196.211http/1.1default-185_223_31_222:7081GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.0

0-18119329050/123/21872_
38.094651404194668860.04.642530.19
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-18119329050/120/21582_
38.171316186988490.04.822493.75
127.0.0.1http/1.1tehix.agency:7081GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?

0-18119329050/129/21749_
38.26021192137060.03.722570.12
127.0.0.1http/1.1tehix.agency:7081GET /s/331323e21373e21323e2430313/_/;/META-INF/maven/com.atlass

0-18119329050/118/21884_
38.2406186867400.04.312492.73
127.0.0.1http/1.1tehix.agency:7081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

0-18119329050/130/21832_
38.2207186335400.04.152488.50
127.0.0.1http/1.1tehix.agency:7081GET /telescope/requests HTTP/1.0

0-18119329050/118/21948_
38.181248191055200.03.672551.07
127.0.0.1http/1.1tehix.agency:7081GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.0

0-18119329050/118/21737_
37.53465348187215210.04.022515.62
127.0.0.1http/1.1tehix.hr:7081GET /feed/ HTTP/1.0

0-18119329050/125/21770_
37.941314189244070.04.672456.73
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min

0-18119329050/118/21898_
38.152101561190175430.04.792562.17
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-18119329050/133/21811_
37.931324185502460.03.452461.57
127.0.0.1http/1.1tehix.com:7081GET /wp-content/themes/obelisk/js/waypoints.min.js?ver=6.1.1 HT

0-18119329050/122/21942_
38.2181143189846430.02.602500.69
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-18119329050/126/21784_
38.1713110189970450.03.112546.41
127.0.0.1http/1.1tehix.agency:7081GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css

0-18119329050/121/21683_
38.045864185467240.05.062467.22
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

0-18119329050/114/21709_
38.2606184481610.04.222498.88
127.0.0.1http/1.1tehix.agency:7081GET /.vscode/sftp.json HTTP/1.0

0-18119329050/119/21808_
37.8807194802360.02.792589.34
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/obelisk_plugin/assets/lib/font-awesome/

0-18119329050/128/21779_
37.431316186686650.03.262434.90
127.0.0.1http/1.1tehix.hr:7081GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.0

0-18119329050/121/21908_
37.725869191775680.04.442549.44
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/WebSummit_AG-Growth-large.png HTTP/1.0

0-18119329050/117/21792_
37.8906187570030.04.812487.62
127.0.0.1http/1.1tehix.com:7081GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2 HTTP/1.0

0-18119329050/139/21876_
38.26052190438450.02.942527.59
127.0.0.1http/1.1tehix.agency:7081GET /info.php HTTP/1.0

0-18119329050/111/21616_
37.812108188781090.02.112390.73
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/s

0-18119329050/112/21782_
37.9707187920690.05.402441.50
127.0.0.1http/1.1tehix.com:7081GET /wp-content/plugins/obelisk_plugin/assets/fonts/peicon/Pe-i

0-18119329050/123/21761_
38.1613214187592130.05.332453.70
127.0.0.1http/1.1tehix.agency:7081POST /wp-cron.php?doing_wp_cron=1673379085.76063203811645507812

0-18119329050/121/21833_
38.102308190356110.05.282541.76
92.118.39.29http/1.1default:7080POST / HTTP/1.0

1-171-0/0/29556.
0.0036694725247384980.00.003123.37
127.0.0.1http/1.1tehix.hr:7081GET /wp-includes/sodium_compat/src/Core32/Poly1305/?C=N%3BO%3DD

1-171-0/0/29563.
0.0036694715247736570.00.003086.88
127.0.0.1http/1.1inbalance.hr:7081POST /wp-cron.php?doing_wp_cron=1673012073.64794111251831054687

1-171-0/0/29583.
0.0036694714250018610.00.003201.34
127.0.0.1http/1.1tehix.com:7081POST /wp-cron.php?doing_wp_cron=1673012125.03912210464477539062

1-171-0/0/29717.
0.00366947231251553930.00.003148.88
127.0.0.1http/1.1tehix.hr:7081GET /hashtag/beast/ HTTP/1.0

1-171-0/0/29709.
0.00366947298253468260.00.003168.85
127.0.0.1http/1.1tehix.hr:7081POST /?wordfence_syncAttackData=1673012202.7996 HTTP/1.0

1-171-0/0/29705.
0.00366947286249086550.00.003143.74
127.0.0.1http/1.1tehix.hr:7081GET /scenarij-za-film-edge-of-tomorrow-2-je-gotov/ HTTP/1.0

1-171-0/0/29613.
0.00366947927247167420.00.003163.91
127.0.0.1http/1.1tehix.hr:7081GET /tagovi/the-expendables/feed/ HTTP/1.0

1-171-0/0/29684.
0.00366947639256823260.00.003219.66
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-171-0/0/29528.
0.00366947988250235000.00.003157.16
127.0.0.1http/1.1tehix.hr:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29725.
0.00366947310252650110.00.003190.41
127.0.0.1http/1.1tehix.hr:7081GET /tehix-news-ep1 HTTP/1.0

1-171-0/0/29480.
0.00366947537249066600.00.003167.94
127.0.0.1http/1.1tehix.com:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29642.
0.00366947302250301170.00.003199.15
127.0.0.1http/1.1tehix.hr:7081GET /tagovi/world-of-warplanes/ HTTP/1.0

1-171-0/0/29426.
0.00366947268252959860.00.003127.84
127.0.0.1http/1.1tehix.hr:7081GET /football-manager-2023-donosi-licencirana-uefa-natjecanja/ 

1-171-0/0/29585.
0.00366947112253603440.00.003227.98
127.0.0.1http/1.1tehix.agency:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29548.
0.00366947238249911970.00.003236.42
127.0.0.1http/1.1tehix.hr:7081GET /hashtag/diego-luna/ HTTP/1.0

1-171-0/0/29544.
0.00366947617251882380.00.003198.99
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-171-0/0/29597.
0.00366947762251510640.00.003133.59
127.0.0.1http/1.1tehix.hr:7081GET /wp-admin/admin-post.php HTTP/1.0

1-171-0/0/29524.
0.003669474249115290.00.003091.22
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-171-0/0/29581.
0.00366947243251317350.00.003289.22
127.0.0.1http/1.1tehix.hr:7081GET /rss HTTP/1.0

1-171-0/0/29576.
0.003669479249141950.00.003137.32
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/20221212_024100-1068x801.jpg HTTP/1.0

1-171-0/0/29729.
0.00366947561250423120.00.003143.64
127.0.0.1http/1.1tehix.com:7081POST /xmlrpc.php HTTP/1.0

1-171-0/0/29677.
0.0036694732463212

Found on 2023-01-10 19:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31db21d418db21d418d90ea038

Apache Status

Apache Server Status for tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9 Phusion_Passenger/6.0.13
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Saturday, 12-Nov-2022 12:07:53 UTC
Restart Time: Friday, 04-Nov-2022 22:48:15 UTC
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  7 days 13 hours 19 minutes 37 seconds
Server load: 0.28 0.19 0.23
Total accesses: 160108 - Total Traffic: 20.8 GB - Total Duration: 165474291
CPU Usage: u231.82 s50.93 cu2385.03 cs391.39 - .469% CPU load
.245 requests/sec - 33.4 kB/second - 136.1 kB/request - 1033.52 ms/request
3 requests currently being processed, 47 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01005157no0yes322000
11005158no0yes025000
Sum200 347000

_W_W_W____________________________________________..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2410051570/487/3032_
205.54134131317250.039.87360.86
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051571/499/3043W
205.700032044590.046.67382.68
127.0.0.1http/1.1tehix.agency:7081GET /server-status HTTP/1.0

0-2410051570/469/3039_
205.700933428560.043.68393.28
127.0.0.1http/1.1tehix.agency:7081GET /config.json HTTP/1.0

0-2410051571/456/2955W
205.082030777650.046.16380.02
127.0.0.1http/1.1tehix.hr:7081GET /televizija/ HTTP/1.0

0-2410051570/485/3032_
205.6702431444820.047.29408.63
127.0.0.1http/1.1tehix.agency:7081GET /about HTTP/1.0

0-2410051571/475/3029W
204.380032053640.043.59415.56
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/468/3036_
205.191391830446040.041.21394.95
127.0.0.1http/1.1tehix.hr:7081GET /monsterverse-se-nastavlja/%5C%22https:%5C/%5C/www.tehix.hr

0-2410051570/474/3001_
205.40051730661110.040.61363.99
127.0.0.1http/1.1tehix.agency:7081POST /wp-login.php HTTP/1.0

0-2410051570/484/3012_
205.65029631127920.040.90379.52
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/473/2980_
205.580832005470.041.66386.92
127.0.0.1http/1.1tehix.agency:7081GET /.env HTTP/1.0

0-2410051570/468/3072_
205.0155442431003620.046.00401.57
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-2410051570/495/2994_
205.6701130219920.057.74368.17
127.0.0.1http/1.1tehix.agency:7081GET /login.action HTTP/1.0

0-2410051570/490/3068_
205.550831777120.047.70394.58
127.0.0.1http/1.1tehix.agency:7081GET /telescope/requests HTTP/1.0

0-2410051570/466/3003_
205.710831570690.035.01408.50
127.0.0.1http/1.1tehix.agency:7081GET /s/039313e2137313e27363e2237313/_/;/META-INF/maven/com.atla

0-2410051570/476/3017_
205.54028330509860.040.68371.34
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/497/3057_
205.52130130814910.044.00379.38
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/474/3063_
205.6001932889450.037.45413.96
127.0.0.1http/1.1tehix.agency:7081GET /s/331323e21373e21323e2430313/_/;/META-INF/maven/com.atlass

0-2410051570/461/3032_
205.4001431329370.030.80368.41
127.0.0.1http/1.1tehix.agency:7081POST /wp-cron.php?doing_wp_cron=1668254817.79765200614929199218

0-2410051570/478/3086_
205.171430831664620.032.22392.49
127.0.0.1http/1.1tehix.hr:7081GET /dungeons-dragons-honor-among-thieves/ HTTP/1.0

0-2410051570/494/3061_
205.560731409170.052.46414.60
127.0.0.1http/1.1tehix.agency:7081GET /debug/default/view?panel=config HTTP/1.0

0-2410051570/463/2996_
205.4147531850810.047.07389.21
152.89.196.211http/1.1default:7080GET /actuator/gateway/routes HTTP/1.0

0-2410051570/477/3025_
205.421438230905010.038.20360.59
127.0.0.1http/1.1tehix.hr:7081POST /wp-login.php HTTP/1.0

0-2410051570/475/2997_
205.580830870930.049.07400.14
127.0.0.1http/1.1tehix.agency:7081GET /.DS_Store HTTP/1.0

0-2410051570/487/3014_
204.7057128931147920.044.13376.02
127.0.0.1http/1.1inbalance.hr:7081GET /non-vestibulum-lacus-sociosqu/ HTTP/1.0

0-2410051570/468/3079_
205.45134632406740.033.82394.47
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

1-2410051580/101/3114_
42.26117429740930.04.86386.54
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2410051580/98/3156_
42.320933467050.09.02457.50
127.0.0.1http/1.1tehix.agency:7081PUT /api/v2/cmdb/system/admin/admin HTTP/1.0

1-2410051580/99/3065_
42.24024730569560.06.33424.53
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/93/3137_
42.01249532136330.09.49420.00
164.92.135.200http/1.1default-185_223_31_222:7081GET /telescope/requests HTTP/1.0

1-2410051580/95/3168_
42.4303232637610.010.05418.33
127.0.0.1http/1.1tehix.agency:7081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2410051580/104/3154_
42.150425732028690.08.14435.95
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-2410051580/113/3102_
42.39037631071430.015.92412.18
127.0.0.1http/1.1tehix.agency:7081GET /?rest_route=/wp/v2/users/ HTTP/1.0

1-2410051580/92/3151R
42.2424924733156550.07.91444.10
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/90/3151_
42.2424928931679740.04.52425.04
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/99/3146_
42.3703533426240.010.26447.02
127.0.0.1http/1.1tehix.agency:7081GET /info.php HTTP/1.0

1-2410051580/98/3088_
42.1801030332780.011.50422.95
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Favoriti-su-ispali-a-Furia-nastavlja-br

1-2410051580/103/3135_
42.31138132320930.08.00447.75
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

1-2410051580/102/3156_
41.9411724431672420.09.02400.85
127.0.0.1http/1.1tehix.hr:7081GET /borderlands-3-je-zavrsen-i-spreman-za-proizvodnju/%5C%22ht

1-2410051580/86/3121_
42.28103405832701370.010.22457.70
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/2016/09/IOS-ICON-5.png HTTP/1.0

1-2410051580/105/3090_
42.410732271680.07.41450.23
127.0.0.1http/1.1tehix.agency:7081GET /api/search?folderIds=0 HTTP/1.0

1-2410051580/96/3111_
42.340833346360.08.32460.63
127.0.0.1http/1.1tehix.agency:7081GET /.git/config HTTP/1.0

1-2410051580/103/3141_
42.200431714350.05.94415.43
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2410051580/98/3087_
41.49103466831049620.06.53421.53
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-2410051580/103/3155_
42.26145431261910.010.61432.08
185.122.204.30http/1.1default:7080GET / HTTP/1.0

1-2410051580/102/3108_
42.24177431201100.08.79419.07
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2410051580/104/3194_
42.3902932159210.010.41454.11
127.0.0.1http/1.1tehix.agency:7081GET /server-status HTTP/1.0

1-2410051580/98/3094_
42.3902031311880.03.03401.50
127.0.0.1http/1.1tehix.agency:7081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2410051580/96/3115_
42.02177331421150.07.56404.14
164.92.135.200http/1.1default-185_223_31_222:7081GET /config.json HTTP/

Found on 2022-11-12 12:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31db21d418db21d4182fc74663

Apache Status

Apache Server Status for tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9 Phusion_Passenger/6.0.13
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Saturday, 12-Nov-2022 12:07:53 UTC
Restart Time: Friday, 04-Nov-2022 22:48:15 UTC
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  7 days 13 hours 19 minutes 37 seconds
Server load: 0.28 0.19 0.23
Total accesses: 160095 - Total Traffic: 20.8 GB - Total Duration: 165473436
CPU Usage: u231.67 s50.89 cu2385.03 cs391.39 - .469% CPU load
.245 requests/sec - 33.4 kB/second - 136.1 kB/request - 1033.6 ms/request
6 requests currently being processed, 44 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
01005157no0yes322000
11005158no0yes322000
Sum200 644000

___W____W_______L______________W_____________WW___..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2410051570/487/3032_
205.54034131317250.039.87360.86
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/498/3042_
204.437134532044310.046.66382.68
127.0.0.1http/1.1tehix.hr:7081GET /feed/ HTTP/1.0

0-2410051570/468/3038_
205.375736533428460.043.67393.27
127.0.0.1http/1.1tehix.hr:7081POST /wp-login.php HTTP/1.0

0-2410051571/456/2955W
205.081030777650.046.16380.02
127.0.0.1http/1.1tehix.hr:7081GET /televizija/ HTTP/1.0

0-2410051570/484/3031_
205.3482394931444580.047.28408.63
127.0.0.1http/1.1tehix.hr:7081GET /sony-objavio-prvi-sluzbeni-trailer-za-horor-film-the-grudg

0-2410051570/475/3029_
204.3882932053640.043.59415.56
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Favoriti-su-ispali-a-Furia-nastavlja-br

0-2410051570/468/3036_
205.190391830446040.041.21394.95
127.0.0.1http/1.1tehix.hr:7081GET /monsterverse-se-nastavlja/%5C%22https:%5C/%5C/www.tehix.hr

0-2410051570/474/3001_
205.405551730661110.040.61363.99
127.0.0.1http/1.1tehix.agency:7081POST /wp-login.php HTTP/1.0

0-2410051571/483/3011W
205.340031124950.040.89379.51
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/473/2980_
205.580832005470.041.66386.92
127.0.0.1http/1.1tehix.agency:7081GET /.env HTTP/1.0

0-2410051570/468/3072_
205.0155442431003620.046.00401.57
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-2410051570/494/2993_
205.357142930219800.057.74368.17
127.0.0.1http/1.1tehix.hr:7081POST /xmlrpc.php HTTP/1.0

0-2410051570/490/3068_
205.550831777120.047.70394.58
127.0.0.1http/1.1tehix.agency:7081GET /telescope/requests HTTP/1.0

0-2410051570/465/3002_
205.3856331570610.035.00408.50
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

0-2410051570/476/3017_
205.54028330509860.040.68371.34
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051570/497/3057_
205.52030130814910.044.00379.38
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-2410051571/473/3062L
205.3201932889450.037.45413.95
127.0.0.1http/1.1tehix.agency:7081GET /s/331323e21373e21323e2430313/_/;/META-INF/maven/com.atlass

0-2410051570/461/3032_
205.40551431329370.030.80368.41
127.0.0.1http/1.1tehix.agency:7081POST /wp-cron.php?doing_wp_cron=1668254817.79765200614929199218

0-2410051570/478/3086_
205.170430831664620.032.22392.49
127.0.0.1http/1.1tehix.hr:7081GET /dungeons-dragons-honor-among-thieves/ HTTP/1.0

0-2410051570/494/3061_
205.560731409170.052.46414.60
127.0.0.1http/1.1tehix.agency:7081GET /debug/default/view?panel=config HTTP/1.0

0-2410051570/463/2996_
205.4146531850810.047.07389.21
152.89.196.211http/1.1default:7080GET /actuator/gateway/routes HTTP/1.0

0-2410051570/477/3025_
205.421338230905010.038.20360.59
127.0.0.1http/1.1tehix.hr:7081POST /wp-login.php HTTP/1.0

0-2410051570/475/2997_
205.580830870930.049.07400.14
127.0.0.1http/1.1tehix.agency:7081GET /.DS_Store HTTP/1.0

0-2410051570/487/3014_
204.7056128931147920.044.13376.02
127.0.0.1http/1.1inbalance.hr:7081GET /non-vestibulum-lacus-sociosqu/ HTTP/1.0

0-2410051570/468/3079_
205.45134632406740.033.82394.47
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

1-2410051580/101/3114_
42.26117429740930.04.86386.54
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2410051580/98/3156_
42.320933467050.09.02457.50
127.0.0.1http/1.1tehix.agency:7081PUT /api/v2/cmdb/system/admin/admin HTTP/1.0

1-2410051580/99/3065_
42.2424824730569560.06.33424.53
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/93/3137_
42.01248532136330.09.49420.00
164.92.135.200http/1.1default-185_223_31_222:7081GET /telescope/requests HTTP/1.0

1-2410051580/94/3167_
41.7447625032637290.010.05418.33
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/104/3154_
42.150425732028690.08.14435.95
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-2410051581/112/3101W
42.040031067660.015.92412.17
127.0.0.1http/1.1tehix.agency:7081GET /?rest_route=/wp/v2/users/ HTTP/1.0

1-2410051580/92/3151_
42.2424824733156550.07.91444.10
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/90/3151_
42.2424828931679740.04.52425.04
127.0.0.1http/1.1tehix.hr:7081GET /index.php HTTP/1.0

1-2410051580/99/3146_
42.3703533426240.010.26447.02
127.0.0.1http/1.1tehix.agency:7081GET /info.php HTTP/1.0

1-2410051580/98/3088_
42.185221030332780.011.50422.95
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Favoriti-su-ispali-a-Furia-nastavlja-br

1-2410051580/103/3135_
42.31138132320930.08.00447.75
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

1-2410051580/102/3156_
41.9411724431672420.09.02400.85
127.0.0.1http/1.1tehix.hr:7081GET /borderlands-3-je-zavrsen-i-spreman-za-proizvodnju/%5C%22ht

1-2410051580/86/3121_
42.28102405832701370.010.22457.70
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/2016/09/IOS-ICON-5.png HTTP/1.0

1-2410051580/104/3089_
42.20514932271600.07.41450.23
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Navi-napokon-sastavio-Valorant-tim-za-s

1-2410051580/96/3111_
42.340833346360.08.32460.63
127.0.0.1http/1.1tehix.agency:7081GET /.git/config HTTP/1.0

1-2410051580/103/3141_
42.20476431714350.05.94415.43
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2410051580/98/3087_
41.49102466831049620.06.53421.53
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

1-2410051580/103/3155_
42.26145431261910.010.61432.08
185.122.204.30http/1.1default:7080GET / HTTP/1.0

1-2410051580/102/3108_
42.24176431201100.08.79419.07
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

1-2410051581/103/3193W
41.960032158920.010.40454.10
127.0.0.1http/1.1tehix.agency:7081GET /server-status HTTP/1.0

1-2410051581/97/3093L
42.1602031311880.03.02401.50
127.0.0.1http/1.1tehix.agency:7081GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2410051580/96/3115_
42.02176331421150.07.56404.14
164.92.135.200http/1.1default-185_223_31

Found on 2022-11-12 12:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31db21d418db21d418eb2e4e8a

Apache Status

Apache Server Status for tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Wednesday, 14-Sep-2022 12:00:48 UTC
Restart Time: Thursday, 14-Jul-2022 22:46:30 UTC
Parent Server Config. Generation: 167
Parent Server MPM Generation: 166
Server uptime:  61 days 13 hours 14 minutes 17 seconds
Server load: 0.35 0.44 0.45
Total accesses: 947905 - Total Traffic: 222.9 GB - Total Duration: 881302682
CPU Usage: u169.19 s132.13 cu12947.3 cs2285.82 - .292% CPU load
.178 requests/sec - 43.9 kB/second - 246.6 kB/request - 929.737 ms/request
2 requests currently being processed, 73 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03140642no0yes025000
23278357no0yes223000
33278405no0yes025000
Sum300 273000

_________________________.........................____W_________
____W_______________________________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-16631406420/43/9868_
18.21028183675500.08.172165.49
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/39/9798_
19.00160625183230520.014.932196.61
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/avatars/33/ HTTP/1.0

0-16631406420/36/9921_
18.17160438585510640.09.622324.37
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

0-16631406420/35/9938_
18.3422324983404170.014.412271.13
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/50/9840_
19.0101684086440.016.972199.07
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-16631406420/35/9805_
18.28271384636330.06.722248.76
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

0-16631406420/42/9909_
18.51271373882592170.011.652207.36
127.0.0.1http/1.1tehix.hr:7081GET /ghost-recon-wildlands HTTP/1.0

0-16631406420/46/9912_
18.2636625085360400.09.092250.40
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/46/9860_
18.43108983574790.013.642184.13
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_

0-16631406420/37/9864_
18.47380783025060.015.732165.73
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Predstavljen-novi-trailer-za-God-of-War

0-16631406420/41/9950_
19.020584960180.07.012237.73
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-16631406420/40/9782_
18.97174530383046510.07.852199.68
127.0.0.1http/1.1tehix.hr:7081GET /.well-known/acme-challenge/gPrFy8JRpwqhuUbM4_C5mrAppLSsbMg

0-16631406420/40/9807_
18.93208397583871920.010.642197.19
127.0.0.1http/1.1tehix.hr:7081GET / HTTP/1.0

0-16631406420/39/9900_
18.71232386485668110.014.082276.53
127.0.0.1http/1.1tehix.hr:7081GET /template-featured-image-horizontal/?utm_source=rss&utm_med

0-16631406420/39/9874_
19.040780876040.010.882154.59
127.0.0.1http/1.1tehix.agency:7081GET /.git/config HTTP/1.0

0-16631406420/40/9830_
18.96194378380945570.08.502195.45
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/2019/10/Igre-koje-mo%C5%BEete-o%C4%8Dek

0-16631406420/37/9846_
18.61257392181054200.05.942119.13
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/?utm_sour

0-16631406420/41/9864_
18.3719424188296120.016.802279.74
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/38/9847_
18.49327486363250.04.592221.45
45.83.66.182http/1.1default-185_223_31_222:7081GET / HTTP/1.0

0-16631406420/39/9840_
18.81223395284102740.06.782187.20
127.0.0.1http/1.1tehix.hr:7081GET /template-excerpt-defined/?utm_source=rss&utm_medium=rss&ut

0-16631406420/35/9793_
19.0110849683449260.010.192185.02
127.0.0.1http/1.1tehix.hr:7081GET /wp-login.php HTTP/1.0

0-16631406420/45/9912_
18.39174786129460.017.352269.89
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Nikola-Deskovic-large.png HTTP/1.0

0-16631406420/40/9871_
18.48366422083197120.09.052168.58
127.0.0.1http/1.1tehix.hr:7081GET /nvidia-predstavlja-quadro-rtx-a6000-i-a40/a6k HTTP/1.0

0-16631406420/37/9863_
18.3620826183331720.08.492229.02
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/37/9841_
17.98232882449100.011.942159.58
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/maxresdefault-12-324x400.jpg HTTP/1.0

1-166-0/0/18861.
0.00184821765211205240.00.005975.01
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18709.
0.00184840019215857350.00.005968.53
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-tra HTTP/1.0

1-166-0/0/18856.
0.00184841214212438150.00.006013.50
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ra HTTP/1.0

1-166-0/0/18721.
0.00184840698207831680.00.005912.94
127.0.0.1http/1.1tehix.hr:7081GET /pred HTTP/1.0

1-166-0/0/18901.
0.00184839881210244880.00.005890.17
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi- HTTP/1.0

1-166-0/0/18818.
0.00184839573211611480.00.005972.65
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen- HTTP/1.0

1-166-0/0/18824.
0.00184841554214481120.00.006035.13
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18819.
0.00184840716210638720.00.005824.56
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-w HTTP/1.0

1-166-0/0/18782.
0.00184823351208000440.00.005855.23
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18776.
0.00184842969208252280.00.005823.04
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18790.
0.00184818148210526700.00.005887.23
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18746.
0.00184821944210158140.00.005866.31
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18732.
0.00184839748212311100.00.005993.04
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi- HTTP/1.0

1-166-0/0/18861.
0.00184841635215039390.00.005976.29
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18711.
0.00184838721212877370.00.005914.90
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18783.
0.00184839876207271830.00.005828.87
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi HTTP/1.0

1-166-0/0/18824.
0.00184843031214510360.00.005998.07
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18855.
0.00184840108213668470.00.005935.64
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi HTTP/1.0

1-166-0/0/18805.
0.00184840469212778790.00.005918.67
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-g HTTP/1.0

1-166-0/0/18857.
0.00184840434211069790.00.006001.88
127.0.0.1http/1.1tehix.hr:7081GET /preds HTTP/1.0

1-166-0/0/18892.
0.00184821026210780370.00.005971.78
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

Found on 2022-09-14 12:00

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31db21d418db21d418f464c080

Apache Status

Apache Server Status for tehix.agency (via 185.223.31.222)

Server Version: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f mod_fcgid/2.3.9
Server MPM: event
Server Built: 2022-06-14T13:30:55

Current Time: Wednesday, 14-Sep-2022 12:00:49 UTC
Restart Time: Thursday, 14-Jul-2022 22:46:30 UTC
Parent Server Config. Generation: 167
Parent Server MPM Generation: 166
Server uptime:  61 days 13 hours 14 minutes 18 seconds
Server load: 0.32 0.43 0.45
Total accesses: 947926 - Total Traffic: 222.9 GB - Total Duration: 881302795
CPU Usage: u169.31 s132.16 cu12947.3 cs2285.82 - .292% CPU load
.178 requests/sec - 43.9 kB/second - 246.6 kB/request - 929.717 ms/request
2 requests currently being processed, 73 idle workers



SlotPIDStoppingConnections
ThreadsAsync connections
totalacceptingbusyidlewritingkeep-aliveclosing
03140642no0yes025000
23278357no0yes124000
33278405no0yes124000
Sum300 273000

_________________________.........................______________
__W______________________W__________............................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-16631406420/43/9868_
18.21128183675500.08.172165.49
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/39/9798_
19.00161625183230520.014.932196.61
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/avatars/33/ HTTP/1.0

0-16631406420/36/9921_
18.17161438585510640.09.622324.37
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

0-16631406420/35/9938_
18.34024983404170.014.412271.13
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/50/9840_
19.0121684086440.016.972199.07
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-16631406420/35/9805_
18.281384636330.06.722248.76
127.0.0.1http/1.1server.local:7050GET /httpd-status?auto HTTP/1.1

0-16631406420/42/9909_
18.511373882592170.011.652207.36
127.0.0.1http/1.1tehix.hr:7081GET /ghost-recon-wildlands HTTP/1.0

0-16631406420/47/9913_
19.051585360460.09.092250.40
127.0.0.1http/1.1tehix.agency:7081GET /about HTTP/1.0

0-16631406420/46/9860_
18.43110983574790.013.642184.13
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_

0-16631406420/38/9865_
19.051583025110.015.732165.73
127.0.0.1http/1.1tehix.agency:7081GET /login.action HTTP/1.0

0-16631406420/41/9950_
19.021584960180.07.012237.73
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-16631406420/40/9782_
18.97175530383046510.07.852199.68
127.0.0.1http/1.1tehix.hr:7081GET /.well-known/acme-challenge/gPrFy8JRpwqhuUbM4_C5mrAppLSsbMg

0-16631406420/41/9808_
19.080383871950.010.652197.19
127.0.0.1http/1.1tehix.agency:7081GET /.git/config HTTP/1.0

0-16631406420/40/9901_
19.070485668160.014.082276.54
127.0.0.1http/1.1tehix.agency:7081GET /?rest_route=/wp/v2/users/ HTTP/1.0

0-16631406420/39/9874_
19.041780876040.010.882154.59
127.0.0.1http/1.1tehix.agency:7081GET /.git/config HTTP/1.0

0-16631406420/40/9830_
18.96196378380945570.08.502195.45
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/2019/10/Igre-koje-mo%C5%BEete-o%C4%8Dek

0-16631406420/38/9847_
19.060481054250.05.942119.13
127.0.0.1http/1.1tehix.agency:7081GET / HTTP/1.0

0-16631406420/41/9864_
18.3719624188296120.016.802279.74
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/38/9847_
18.491486363250.04.592221.45
45.83.66.182http/1.1default-185_223_31_222:7081GET / HTTP/1.0

0-16631406420/40/9841_
19.080384102770.06.782187.20
127.0.0.1http/1.1tehix.agency:7081GET /debug/default/view?panel=config HTTP/1.0

0-16631406420/35/9793_
19.0111049683449260.010.192185.02
127.0.0.1http/1.1tehix.hr:7081GET /wp-login.php HTTP/1.0

0-16631406420/45/9912_
18.39175786129460.017.352269.89
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/Nikola-Deskovic-large.png HTTP/1.0

0-16631406420/41/9872_
19.061583197180.09.052168.58
127.0.0.1http/1.1tehix.agency:7081GET /v2/_catalog HTTP/1.0

0-16631406420/37/9863_
18.36026183331720.08.492229.02
127.0.0.1http/1.1tehix.hr:7081POST //xmlrpc.php HTTP/1.0

0-16631406420/37/9841_
17.980882449100.011.942159.58
127.0.0.1http/1.1tehix.hr:7081GET /wp-content/uploads/maxresdefault-12-324x400.jpg HTTP/1.0

1-166-0/0/18861.
0.00184921765211205240.00.005975.01
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18709.
0.00184940019215857350.00.005968.53
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-tra HTTP/1.0

1-166-0/0/18856.
0.00184941214212438150.00.006013.50
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ra HTTP/1.0

1-166-0/0/18721.
0.00184940698207831680.00.005912.94
127.0.0.1http/1.1tehix.hr:7081GET /pred HTTP/1.0

1-166-0/0/18901.
0.00184939881210244880.00.005890.17
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi- HTTP/1.0

1-166-0/0/18818.
0.00184939573211611480.00.005972.65
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen- HTTP/1.0

1-166-0/0/18824.
0.00184941554214481120.00.006035.13
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18819.
0.00184940716210638720.00.005824.56
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-w HTTP/1.0

1-166-0/0/18782.
0.00184923351208000440.00.005855.23
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18776.
0.00184942969208252280.00.005823.04
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18790.
0.00184918148210526700.00.005887.23
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18746.
0.00184921944210158140.00.005866.31
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18732.
0.00184939748212311100.00.005993.04
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi- HTTP/1.0

1-166-0/0/18861.
0.00184941635215039390.00.005976.29
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18711.
0.00184938721212877370.00.005914.90
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18783.
0.00184939876207271830.00.005828.87
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi HTTP/1.0

1-166-0/0/18824.
0.00184943031214510360.00.005998.07
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18855.
0.00184940108213668470.00.005935.64
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi HTTP/1.0

1-166-0/0/18805.
0.00184940469212778790.00.005918.67
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-g HTTP/1.0

1-166-0/0/18857.
0.00184940434211069790.00.006001.88
127.0.0.1http/1.1tehix.hr:7081GET /preds HTTP/1.0

1-166-0/0/18892.
0.00184921026210780370.00.005971.78
127.0.0.1http/1.1tehix.hr:7081GET /predstavljen-novi-trailer-za-god-of-war-ragnarok/ HTTP/1.0

1-166-0/0/18599.
0.00184923886209210460.00.005936.97
127.0.0.1http/

Found on 2022-09-14 11:59

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: giharosysmawi.ga
Port: 80
URL: http://giharosysmawi.ga

First seen 2022-09-02 00:51
Last seen 2022-12-29 15:07
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-02 00:51
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: gumdecataroter.ga
Port: 443
URL: https://gumdecataroter.ga

First seen 2022-10-21 00:56
Last seen 2022-12-19 03:06
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-21 00:56
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: huytomtebullkingwin.ga
Port: 80
URL: http://huytomtebullkingwin.ga

First seen 2022-10-20 02:42
Last seen 2022-12-16 14:48
Open for 57 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-20 02:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: huytomtebullkingwin.ga
Port: 443
URL: https://huytomtebullkingwin.ga

First seen 2022-10-20 02:42
Last seen 2022-12-16 14:48
Open for 57 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-20 02:42
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 104.21.71.213
Domain: kocexchange.com
Port: 80
URL: http://kocexchange.com

First seen 2022-12-14 20:54
Last seen 2022-12-14 20:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310db3a8af0db3a8af9934648e

Apache Status

Apache Server Status for kocexchange.com (via 103.186.101.162)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2022-06-23T12:51:37

Current Time: Thursday, 15-Dec-2022 03:54:31 +07
Restart Time: Monday, 28-Nov-2022 15:07:03 +07
Parent Server Config. Generation: 113
Parent Server MPM Generation: 112
Server uptime:  16 days 12 hours 47 minutes 28 seconds
Server load: 0.53 0.66 0.71
Total accesses: 405663 - Total Traffic: 5.3 GB
CPU Usage: u2080.17 s1890.6 cu0 cs0 - .278% CPU load
.284 requests/sec - 4020 B/second - 13.8 kB/request
1 requests currently being processed, 9 idle workers
______._W_._....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-11286240/3947/41387_
86.59000.028.64532.48
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /.env HTTP/1.0

1-112304130/1646/38979_
48.54000.012.08507.83
45.33.108.188http/1.1sv03.congdulieu.com:8080GET /.env HTTP/1.0

2-112102260/10649/41994_
313.93010.079.81523.93
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /server-status HTTP/1.0

3-112260910/4280/36768_
107.65000.033.95540.83
2a03:b0c0:1:d0::d0a:a001http/1.1sv03.congdulieu.com:8080GET / HTTP/1.0

4-11294640/3946/39184_
90.1102560.028.57518.07
51.210.182.66http/1.1sieuthidenchum.com:8443HEAD /en-chum/en-chum-chau-au/en-chum-chao-thy-tinh/ HTTP/1.0

5-112102230/10657/38266_
305.30000.080.73462.15
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-112-0/0/37692.
215.51146772710.00.00519.41
103.186.101.162http/1.1

7-112111210/10634/38484_
316.56000.080.56504.37
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /.DS_Store HTTP/1.0

8-112123040/10617/23053W
301.22000.079.72277.80
45.33.108.188http/1.1sv03.congdulieu.com:8080GET /server-status HTTP/1.0

9-112123070/10599/26372_
314.00000.079.25317.67
45.33.108.188http/1.1sv03.congdulieu.com:8080GET /.DS_Store HTTP/1.0

10-112-0/0/15046.
253.3151267690.00.00174.34
103.186.101.162http/1.1

11-112260940/4256/8224_
108.12000.032.31109.56
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /s/039313e2137313e27363e2237313/_/;/META-INF/maven/com.atla

12-78-0/0/2233.
0.794587345970.00.0039.31
103.186.101.162http/1.1

13-78-0/0/823.
47.094587366830.00.0021.15
103.186.101.162http/1.1

14-78-0/0/301.
22.7845872149740.00.0015.66
103.186.101.162http/1.1

15-78-0/0/90.
2.624587388490.00.0011.21
103.186.101.162http/1.1

16-78-0/0/606.
26.9245875512820.00.0016.05
103.186.101.162http/1.1

17-78-0/0/390.
48.714587306660.00.0017.78
103.186.101.162http/1.1

18-86-0/0/6143.
0.0214473000.00.00109.84
185.3.94.68http/1.1travietjapan.com:8080GET /server-status HTTP/1.0

19-78-0/0/47.
4.454587356860.00.006.51
103.186.101.162http/1.1

20-78-0/0/1614.
264.983890494580.00.0036.38
103.186.101.162http/1.1

21-78-0/0/1137.
177.724207794610.00.0023.77
103.186.101.162http/1.1

22-78-0/0/63.
24.244587246090.00.009.30
103.186.101.162http/1.1

23-79-0/0/4057.
319.90258252780.00.0089.71
103.186.101.162http/1.1

24-78-0/0/78.
10.954587278920.00.0011.61
103.186.101.162http/1.1

25-78-0/0/68.
35.7445872267300.00.009.84
103.186.101.162http/1.1

26-78-0/0/76.
46.194587267080.00.0010.89
103.186.101.162http/1.1

27-78-0/0/2414.
444.12336562130.00.0049.25
128.14.134.134http/1.1sv03.congdulieu.com:8443GET / HTTP/1.0

28-78-0/0/53.
19.254587316640.00.007.58
103.186.101.162http/1.1

29-78-0/0/5.
1.634587648620.00.000.81
103.186.101.162http/1.1

30-78-0/0/16.
11.834587286900.00.002.25
103.186.101.162http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 2 miss

Found on 2022-12-14 20:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310db3a8af0db3a8aff2da4711

Apache Status

Apache Server Status for kocexchange.com (via 103.186.101.162)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2022-06-23T12:51:37

Current Time: Thursday, 15-Dec-2022 03:54:30 +07
Restart Time: Monday, 28-Nov-2022 15:07:03 +07
Parent Server Config. Generation: 113
Parent Server MPM Generation: 112
Server uptime:  16 days 12 hours 47 minutes 27 seconds
Server load: 0.53 0.66 0.71
Total accesses: 405652 - Total Traffic: 5.3 GB
CPU Usage: u2080.17 s1890.6 cu0 cs0 - .278% CPU load
.284 requests/sec - 4020 B/second - 13.8 kB/request
3 requests currently being processed, 7 idle workers
_WW_W_.___._....................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-11286240/3946/41386_
86.59010.028.64532.48
2a03:b0c0:1:d0::d13:b001http/1.1sv03.congdulieu.com:8080GET / HTTP/1.0

1-112304131/1645/38978C
48.54002.012.08507.82
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /.git/config HTTP/1.0

2-112102260/10648/41993W
313.93000.079.80523.92
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /server-status HTTP/1.0

3-112260910/4279/36767_
107.65000.033.95540.83
45.79.116.239http/1.1sv03.congdulieu.com:8080PUT /api/v2/cmdb/system/admin/admin HTTP/1.0

4-11294640/3945/39183W
90.11000.028.56518.07
51.210.182.66http/1.1sieuthidenchum.com:8443HEAD /en-chum/en-chum-chau-au/en-chum-chao-thy-tinh/ HTTP/1.0

5-112102230/10656/38265_
305.30000.080.73462.15
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /telescope/requests HTTP/1.0

6-112-0/0/37692.
215.51146772710.00.00519.41
103.186.101.162http/1.1

7-112111210/10633/38483_
316.56000.080.56504.36
45.79.116.239http/1.1sv03.congdulieu.com:8080GET / HTTP/1.0

8-112123040/10616/23052R
301.22010.079.72277.80
103.186.101.162http/1.1

9-112123070/10598/26371_
314.00000.079.25317.67
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /info.php HTTP/1.0

10-112-0/0/15046.
253.3151267690.00.00174.34
103.186.101.162http/1.1

11-112260940/4255/8223_
108.12010.032.31109.56
45.79.116.239http/1.1sv03.congdulieu.com:8080GET /?rest_route=/wp/v2/users/ HTTP/1.0

12-78-0/0/2233.
0.794587335970.00.0039.31
103.186.101.162http/1.1

13-78-0/0/823.
47.094587356830.00.0021.15
103.186.101.162http/1.1

14-78-0/0/301.
22.7845872049740.00.0015.66
103.186.101.162http/1.1

15-78-0/0/90.
2.624587378490.00.0011.21
103.186.101.162http/1.1

16-78-0/0/606.
26.9245875412820.00.0016.05
103.186.101.162http/1.1

17-78-0/0/390.
48.714587296660.00.0017.78
103.186.101.162http/1.1

18-86-0/0/6143.
0.0214472900.00.00109.84
185.3.94.68http/1.1travietjapan.com:8080GET /server-status HTTP/1.0

19-78-0/0/47.
4.454587346860.00.006.51
103.186.101.162http/1.1

20-78-0/0/1614.
264.983890484580.00.0036.38
103.186.101.162http/1.1

21-78-0/0/1137.
177.724207794610.00.0023.77
103.186.101.162http/1.1

22-78-0/0/63.
24.244587236090.00.009.30
103.186.101.162http/1.1

23-79-0/0/4057.
319.90258252780.00.0089.71
103.186.101.162http/1.1

24-78-0/0/78.
10.954587268920.00.0011.61
103.186.101.162http/1.1

25-78-0/0/68.
35.7445872167300.00.009.84
103.186.101.162http/1.1

26-78-0/0/76.
46.194587257080.00.0010.89
103.186.101.162http/1.1

27-78-0/0/2414.
444.12336562130.00.0049.25
128.14.134.134http/1.1sv03.congdulieu.com:8443GET / HTTP/1.0

28-78-0/0/53.
19.254587306640.00.007.58
103.186.101.162http/1.1

29-78-0/0/5.
1.634587638620.00.000.81
103.186.101.162http/1.1

30-78-0/0/16.
11.834587276900.00.002.25
103.186.101.162http/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 2 miss

Found on 2022-12-14 20:54

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: permucomsiodelfu.ml
Port: 80
URL: http://permucomsiodelfu.ml

First seen 2022-09-22 06:51
Last seen 2022-11-20 09:14
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-22 06:51
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: permucomsiodelfu.ml
Port: 443
URL: https://permucomsiodelfu.ml

First seen 2022-09-22 06:51
Last seen 2022-11-20 09:14
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-22 06:51
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: icbereclo.tk
Port: 443
URL: https://icbereclo.tk

First seen 2022-10-15 02:08
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-15 02:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: onsabtecounsevi.tk
Port: 443
URL: https://onsabtecounsevi.tk

First seen 2022-09-27 00:59
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-27 00:59
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: kholarvesedgni.ml
Port: 80
URL: http://kholarvesedgni.ml

First seen 2022-08-31 15:19
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-31 15:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: salorscir.tk
Port: 80
URL: http://salorscir.tk

First seen 2022-08-29 23:20
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-29 23:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.71.213
Domain: salorscir.tk
Port: 443
URL: https://salorscir.tk

First seen 2022-08-29 23:20
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-08-29 23:20
Create report

Open service 104.21.71.213:80 · 2025stellarlogic.pics

2026-01-26 15:41

HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Jan 2026 15:41:45 GMT
Content-Length: 0
Connection: close
Location: https://2025stellarlogic.pics/
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oF1PY10mph6xXQPAS3mM8WalovPak5svD4iOyPoL8KU5Vo%2B%2BkU8IvR%2FeG2jQH3w9WgO%2BfuFDi91Qwkd8U%2FZz8hshkk8zFhb7acvZ0cBteco8kugS6g%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfEdge;dur=8,cfOrigin;dur=0
Server: cloudflare
CF-RAY: 9c411dc5797ef54f-YYZ
alt-svc: h3=":443"; ma=86400

Found 2026-01-26 by HttpPlugin

Host 104.21.71.213

United States

Software information

MacOS file listing through .DS_Store file

Apache server-status page is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

Git configuration and history exposed

Git configuration and history exposed

Git configuration and history exposed

Git configuration and history exposed

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

Git configuration and history exposed

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file