LeakIX - Host 153.0.228.203

Host 153.0.228.203

China

CHINA UNICOM China169 Backbone

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 153.0.228.203
Domain: www.frogenjoy.com
Port: 443
URL: https://www.frogenjoy.com

First seen 2021-08-26 05:25
Last seen 2025-12-22 00:28
Open for 1578 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814ed21cfccf68b4b9c718cb6220eb0dbde2
```
Found 6 files trough .DS_Store spidering:

/con
/css
/images
/images/loader的副本.gif
/images.bak
/js
```
  Found on 2025-12-22 00:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e94e7e0b18367b39a0cdae78b18f7a6114
```
Found 5 files trough .DS_Store spidering:

/con
/css
/images
/images.bak
/js
```
  Found on 2025-10-23 00:25
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814ed21cfccf7e9c173a7c7351caf4d2a6aa
```
Found 6 files trough .DS_Store spidering:

/con
/con/img
/css
/images
/images.bak
/js
```
  Found on 2021-08-26 05:25
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 218.29.205.118
Domain: www.ubug.io
Port: 80
URL: http://www.ubug.io

First seen 2023-03-06 00:59
Last seen 2025-11-29 13:00
Open for 999 days

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719223abb16f9dac3525e8db56e4071f00f

Found 16 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2025-11-29 13:00

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9cda557e67cacb8c2f257fdfedbacf531

Found 23 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame/assets
/games/hexGame/assets/images
/games/hexGame/assets/sounds
/games/hexGame/assets/styles
/games/hexGame/dist
/games/hexGame/index.html
/games/hexGame/lib
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2025-11-27 16:50

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e3c1a6e1b8857a4eb80d4d5b9d5503e5d

Found 20 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame/assets
/games/hexGame/dist
/games/hexGame/index.html
/games/hexGame/lib
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2025-11-16 06:14

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb326eecfe4bfac8db4ba1a4d40650cf160

Found 29 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame/assets
/games/hexGame/assets/images
/games/hexGame/assets/sounds
/games/hexGame/assets/styles
/games/hexGame/dist
/games/hexGame/index.html
/games/hexGame/lib
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/images/doutu
/images/doutu/1.jpg
/images/doutu/2.gif
/images/doutu/3.jpg
/images/doutu/4.jpg
/images/testingjavascript-promo
/redirect

Found on 2025-10-28 19:43

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744dde1b6d32007ef7b64059350268401869

Found 12 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/images
/images/doutu
/images/doutu/1.jpg
/images/doutu/2.gif
/images/doutu/3.jpg
/images/doutu/4.jpg
/images/testingjavascript-promo
/redirect

Found on 2025-09-01 20:28

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 123.6.40.248
Domain: ubug.io
Port: 443
URL: https://ubug.io

First seen 2023-03-06 01:00
Last seen 2025-11-27 16:50
Open for 997 days

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea9cda557e67cacb8c2f257fdfedbacf531

Found 23 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame/assets
/games/hexGame/assets/images
/games/hexGame/assets/sounds
/games/hexGame/assets/styles
/games/hexGame/dist
/games/hexGame/index.html
/games/hexGame/lib
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2025-11-27 16:50

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e3c1a6e1b8857a4eb80d4d5b9d5503e5d

Found 20 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame/assets
/games/hexGame/dist
/games/hexGame/index.html
/games/hexGame/lib
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2025-11-27 16:50

Severity: low
Fingerprint: 5f32cf5d6962f09c47dfe71947dfe719223abb16f9dac3525e8db56e4071f00f

Found 16 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2025-11-12 02:44

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744dde1b6d32007ef7b64059350268401869

Found 12 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/images
/images/doutu
/images/doutu/1.jpg
/images/doutu/2.gif
/images/doutu/3.jpg
/images/doutu/4.jpg
/images/testingjavascript-promo
/redirect

Found on 2025-04-22 01:36

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb326eecfe4bfac8db4ba1a4d40650cf160

Found 29 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/h5/assets
/games/h5/images
/games/h5/index.html
/games/hexGame
/games/hexGame/assets
/games/hexGame/assets/images
/games/hexGame/assets/sounds
/games/hexGame/assets/styles
/games/hexGame/dist
/games/hexGame/index.html
/games/hexGame/lib
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/images/doutu
/images/doutu/1.jpg
/images/doutu/2.gif
/images/doutu/3.jpg
/images/doutu/4.jpg
/images/testingjavascript-promo
/redirect

Found on 2024-07-30 15:18

Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e986a22db08a21cab175f3ff92021de65
```
Found 6 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/images
/redirect
```
Found on 2024-02-19 07:21

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a080738b2992b708f583dc585be0174455

Found 13 files trough .DS_Store spidering:

/_redirects
/favicon.ico
/favicons
/games
/games/h5
/games/hexGame
/games/hexGame.png
/games/maze
/games/tracking
/games/tracking.png
/games/wuziqi
/images
/redirect

Found on 2023-03-06 01:00

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 116.177.225.240
Domain: lzji.cn
Port: 443
URL: https://lzji.cn

First seen 2022-11-05 16:13
Last seen 2025-01-26 10:44
Open for 812 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a76295a9cd2ff881a969f79f6ee6a3b0ba9

Found 51 files trough .DS_Store spidering:

/assets
/assets/css
/css
/css/mobile
/dist
/dist/js
/fonts
/fonts/vendor
/images
/images/admin
/images/award
/images/bot
/images/camry
/images/camry_img
/images/collectword
/images/corp
/images/corpClinetRed
/images/corpTask
/images/cutprice
/images/define
/images/defineposter
/images/desc
/images/distribution
/images/emoji
/images/goodscode
/images/gpt
/images/groupPurchase
/images/hypermarket
/images/icon
/images/livefission
/images/livetask
/images/liveturn
/images/login
/images/mallCoupon
/images/market
/images/markPersonal
/images/mobile
/images/mobileCenter
/images/official
/images/pointMall
/images/proxy
/images/share
/images/specialoffer
/images/test
/images/thirdPart
/images/vrheader
/images/yzmpic
/js
/lib
/svg
/vendor

Found on 2025-01-26 10:44

Severity: low
Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a06e009db0f5d368b873a2fdc0a00fd497

Found 13 files trough .DS_Store spidering:

/assets
/assets/css
/css
/css/mobile
/dist
/dist/js
/fonts
/fonts/vendor
/images
/js
/lib
/svg
/vendor

Found on 2024-11-22 18:16

Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af247259b6c8633f00cb043a175e1827b38d4d4
```
Found 9 files trough .DS_Store spidering:

/assets
/css
/dist
/fonts
/images
/js
/lib
/svg
/vendor
```
Found on 2024-11-02 11:23

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d336cbabbd7dd8ab5b85277ade8125ba8

Found 12 files trough .DS_Store spidering:

/assets
/assets/css
/css
/css/mobile
/dist
/dist/js
/fonts
/images
/js
/lib
/svg
/vendor

Found on 2024-09-10 21:11

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877272a0bbaec4b067da061638ea0ce066e8

Found 11 files trough .DS_Store spidering:

/assets
/assets/css
/css
/css/mobile
/dist
/fonts
/images
/js
/lib
/svg
/vendor

Found on 2024-07-18 07:59

Severity: low
Fingerprint: 5f32cf5d6962f09c684e525d684e525dcca2f42b547ac94b615547c351388a1e

Found 27 files trough .DS_Store spidering:

/assets
/css
/css/admin
/css/batch
/css/channel
/css/corpTask
/css/crop
/css/distribution
/css/fan
/css/fonts
/css/groupPurchase
/css/lib
/css/mobile
/css/offline
/css/qrcord
/css/review
/css/scan
/css/subgift
/css/superreply
/css/task
/dist
/fonts
/images
/js
/lib
/svg
/vendor

Found on 2023-06-16 16:27

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877272a0bbae9752f4b6e8602d9d04443bdf

Found 11 files trough .DS_Store spidering:

/assets
/css
/dist
/dist/css
/dist/js
/fonts
/images
/js
/lib
/svg
/vendor

Found on 2023-06-16 16:27

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d336cbabb8fe0009b75006054ad7259c7

Found 12 files trough .DS_Store spidering:

/assets
/css
/css/mobile
/dist
/dist/js
/fonts
/images
/js
/js/mobile
/lib
/svg
/vendor

Found on 2023-05-13 16:18

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d336cbabb8fe0009b7500605435d0c14d

Found 12 files trough .DS_Store spidering:

/assets
/css
/css/mobile
/dist
/dist/js
/fonts
/images
/js
/js/dist
/lib
/svg
/vendor

Found on 2023-03-11 16:12

Severity: low
Fingerprint: 5f32cf5d6962f09c8329733f8329733fa0a2250193180dc12de2311a8bc1ef61
```
Found 10 files trough .DS_Store spidering:

/assets
/css
/css/mobile
/dist
/fonts
/images
/js
/lib
/svg
/vendor
```
Found on 2022-11-05 16:13

Severity: low
Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877272a0bbae9752f4b6fa843b4b9976b809

Found 11 files trough .DS_Store spidering:

/assets
/css
/css/mobile
/dist
/dist/js
/fonts
/images
/js
/lib
/svg
/vendor

Found on 2022-11-05 16:13

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 153.0.228.203
Domain: prepan.top
Port: 443
URL: https://prepan.top

First seen 2023-03-31 08:06
Last seen 2024-04-18 03:43
Open for 383 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb269f27e5
```
[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = https://gitee.com/PrePan/pre-pan-home.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-04-18 03:43
  
  304 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 119.167.229.212
Domain: pay.cmd5.la
Port: 443
URL: https://pay.cmd5.la

First seen 2023-03-11 14:40
Last seen 2024-03-03 07:46
Open for 357 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a7bdeb9d6

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:38 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 19 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961668 - Total Traffic: 6.7 GB - Total Duration: 230998526
CPU Usage: u4.99 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.206 ms/request
79 requests currently being processed, 1 idle workers
KKKCKCKKKKKCCCCCCCKCWCKCKKKKCKKKKKKK_KCCKKKKCKKKKKKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/16/25771K
0.060050254542.20.13196.71
125.39.190.69http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-225289191/3/26095K
0.000052520682.20.02180.42
111.30.172.157http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

2-225245931/39/25568K
0.1102147386909.10.23181.57
219.144.89.115http/1.1tiyu.xlk.la:80GET /14080.html HTTP/1.1

3-225283791/12/25059C
0.026051214985.10.10175.34
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

4-225246471/44/25003K
0.344055532992.20.36177.50
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/22/24956C
0.296049266335.10.16176.21
218.68.87.41http/1.1pay.cmd5.la:443GET /server HTTP/1.1

6-225289032/3/24461K
0.002048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355K
0.001052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111K
0.002047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250891/31/24318K
0.311051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/40/24082K
0.140048630052.20.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/3/23975C
0.006048676952.20.02181.16
111.33.186.98http/1.1pay.cmd5.la:443GET /server HTTP/1.1

12-225288211/5/23991C
0.025045365992.20.03168.40
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

13-225288231/4/23016C
0.015050311082.50.02165.54
117.68.3.38http/1.1cmd5.la:443GET /d2117bf646c79d96.htm HTTP/1.1

14-225288241/4/22974C
0.015048939392.20.03159.09
111.30.172.247http/1.1pay.cmd5.la:443GET /about HTTP/1.1

15-225288251/3/23229C
0.005048424232.20.01166.66
111.33.186.36http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-225288261/3/22854C
0.005044719385.10.02157.57
27.44.206.60http/1.1pay.cmd5.la:443GET /server HTTP/1.1

17-225250941/32/22455C
0.105043369135.10.23156.94
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

18-225288301/6/22632K
0.001043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/3/22269C
0.006041665435.20.02156.33
111.32.204.240http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250950/30/21300W
0.060042768550.00.18150.46
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-225257961/21/21046C
0.095040601915.10.10145.45
111.32.204.171http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

22-225253031/29/21230K
0.090043306782.20.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /about HTTP/1.1

23-225217551/54/21156C
0.436043717495.10.45146.11
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

24-225288321/3/20484K
0.014040964675.10.03146.91
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

25-225253041/33/19671K
0.080041859102.20.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

26-225253051/32/19863K
0.090044404346.90.27135.81
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289441/2/20116K
0.000042643712.20.01138.62
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

28-225288341/3/19017C
0.005040197462.20.01134.93
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

29-225211301/65/18004K
0.300040101866.80.40127.19
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/4/18225K
0.012038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/3/17240K
0.0131139996541.10.01118.32
52.80.148.254http/1.1taobao.366999.com:80GET /m_item.php?id=R0gnMqtVexYq3B4h6R HTTP/1.1

32-225258451/19/16788K
0.070037663302.20.13114.33
111.33.186.11http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

33-225289451/2/16190K
0.010037011085.10.02115.51
122.192.132.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

34-225289462/2/15401K
0.004035882433.10.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

35-225258491/21/14291K
1.120033350132.20.21101.80
111.33.186.11http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

36-225289470/2/14528_
0.000028354600.00.01104.83
218.68.91.40http/1.1pay.cmd5.la:443GET /server HTTP/1.1

37-225289521/3/12821K
0.000029005892.20.0190.75
111.33.186.98http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

38-225289541/1/12323C
0.006027935815.20.0185.17
122.192.132.162http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-225289551/1/12030C
0.006129076086.60.0187.71
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-225289651/1/11246K
0.004227042662.50.0078.14
117.68.3.162http/1.1cmd5.la:443GET /d21614a6a51eafb0.htm HTTP/1.1

41-225258541/17/11029K
0.094026447205.10.1279.32
125.39.190.106http/1.1pay.cmd5.la:443GET /about HTTP/1.1

42-225289661/1/10910K
0.004024819142.20.0077.06
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

43-225258551/22/9277K
0.081127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/17/7697C
0.106022805782.20.1157.40
111.33.186.42http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

45-225258571/18/7245K
0.191024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/22/6635K
0.080620402839.30.1347.19
39.145.32.31http/1.1cmd5.la:443GET /d20cf9b95e57c114.htm HTTP/1.1

47-225289671/1/5380K
0.004016444385.10.0039.53
125.39.190.106http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

48-225289681/3/5207K
0.001017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/1/4583K
0.004014350972.20.0034.00
111.30.172.143http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

50-225289702/2/4826K
0.001019167203.10.00

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ad8f09e46

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:47 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 28 seconds
Server load: 0.05 0.15 0.18
Total accesses: 961782 - Total Traffic: 6.7 GB - Total Duration: 230999372
CPU Usage: u5.14 s48.29 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.179 ms/request
74 requests currently being processed, 6 idle workers
KKK__KKKKKKKK_KKWKKKK_KKK_KKKKKKKKCKKKKKKCKKKKCCC_KCCCKCCCCCCCCK
CCCCCCKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262472/18/25773K
0.062050254543.00.14196.71
111.30.172.157http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

1-225289191/4/26096K
0.0122152521129.20.02180.43
113.219.202.174http/1.1tiyu.xlk.la:80GET /14083.html HTTP/1.1

2-225245931/40/25569K
0.112047386902.20.24181.57
111.30.172.181http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

3-225283790/14/25061_
0.03018751218800.00.12175.35
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

4-225246470/45/25004_
0.350055532990.00.37177.51
122.192.132.16http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-225257921/24/24958K
0.301049266342.20.16176.21
125.39.190.106http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-225289031/4/24462K
0.004048796082.20.01178.84
111.30.172.247http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

7-225288102/6/24357K
0.012052145263.00.02169.72
111.30.172.142http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

8-225289201/3/24112K
0.004047538822.20.01168.91
111.32.204.171http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

9-225250891/32/24319K
0.323051141432.20.27172.00
111.33.186.11http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

10-225252881/41/24083K
0.152048630052.20.55176.56
125.39.190.92http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

11-225288201/5/23977K
0.000048676962.20.02181.16
111.32.204.240http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

12-225288211/7/23993K
0.020045365992.20.03168.41
111.30.172.181http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

13-225288230/6/23018_
0.010050311090.00.02165.55
111.30.172.247http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

14-225288241/6/22976K
0.011048939402.20.03159.10
125.39.190.69http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

15-225288252/5/23231K
0.004048424233.20.02166.66
218.68.87.41http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

16-225288260/4/22855W
0.000044719380.00.02157.58
125.39.190.69http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

17-225250941/34/22457K
0.110043369142.20.23156.95
218.68.91.40http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

18-225288301/7/22633K
0.013043757792.20.03160.96
125.39.190.92http/1.1pay.cmd5.la:443GET /about HTTP/1.1

19-225288311/5/22271K
0.001041665442.20.02156.34
111.32.204.171http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

20-225250951/32/21302K
0.061042768572.20.19150.47
111.30.172.181http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

21-225257960/22/21047_
0.100040601910.00.10145.45
125.39.190.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-225253031/31/21232K
0.0905433068810.00.22148.74
39.145.32.31http/1.1cmd5.la:443GET /d209932684736340.htm HTTP/1.1

23-225217551/56/21158K
0.430043717492.20.45146.12
111.30.172.143http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

24-225288321/5/20486K
0.022040964742.20.04146.92
111.33.186.11http/1.1pay.cmd5.la:443GET /s/432313e27343e20383e29353/_/;/META-INF/maven/com.atlassia

25-225253040/34/19672_
0.080041859100.00.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

26-225253051/33/19864K
0.093044404342.20.28135.81
111.30.172.247http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

27-225289441/3/20117K
0.002042643712.20.01138.62
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

28-225288341/5/19019K
0.000040197462.20.02134.94
125.39.190.92http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

29-225211301/66/18005K
0.312040101862.20.40127.19
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

30-225288351/5/18226K
0.014438575257.10.03128.88
218.60.37.149http/1.1cmd5.la:443GET /60e5ea67c862ad66.htm HTTP/1.1

31-225288361/5/17242K
0.020039996552.20.02118.32
111.30.172.143http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

32-225258451/21/16790K
0.072037663326.90.14114.34
218.68.87.41http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

33-225289451/4/16192K
0.010037011152.20.03115.52
125.39.190.69http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

34-225289461/3/15402C
0.006035882442.20.01109.14
111.32.204.171http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

35-225258491/22/14292K
1.122033350132.20.22101.81
111.32.204.240http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

36-225289471/4/14530K
0.001028354602.30.01104.84
125.39.190.106http/1.1pay.cmd5.la:443GET /s/231323e2932323e2736313e2931313/_/;/META-INF/maven/com.at

37-225289521/4/12822K
0.002029005892.20.0190.76
218.68.91.77http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

38-225289541/4/12326K
0.000527936349.70.0385.19
120.201.25.185http/1.1cmd5.la:443GET /51354a2af44f8046.htm HTTP/1.1

39-225289551/3/12032K
0.001029076222.20.0287.72
111.32.204.240http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

40-225289651/4/11249K
0.002227042828.30.0278.16
39.145.32.33http/1.1cmd5.la:443GET /d20adbba4fb18b43.htm HTTP/1.1

41-225258541/19/11031C
0.096026447382.20.1279.33
125.39.190.106http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

42-225289662/3/10912K
0.003024819153.00.0177.06
111.30.172.157http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

43-225258551/23/9278K
0.083027170632.20.3367.91
111.32.204.240http/1.1pay.cmd5.la:443GET /s/2363e243e2335313e2631313/_/;/META-INF/maven/com.atlassia

44-225258561/19/7699K
0.100422805888.30.1257.41
117.162.33.18http/1.1cmd5.la:443GET /2e1fbb1bcfb3df10.htm HTTP/1.1

45-225258571/19/7246K
0.194024507792.20.1155.99
125.39.190.92http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

46-225258581/23/6636C
0.085020402832.20.1347.19
111.33.186.98http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

47-225289671/2/5381C
0.006016444382.20.0139.54
111.33.186.98http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

48-225289681/4/5208C
0.005317765619.00.0339.83
117.68.3.32http/1.1cmd5.la:443GET /d20bfd0bd4092772.htm HTTP/1.1

49-225289690/2/4584_
0.000014350980.00.0034.01
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

50-22

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a4bb46b38

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:31 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 13 seconds
Server load: 0.07 0.16 0.18
Total accesses: 961581 - Total Traffic: 6.7 GB - Total Duration: 230997546
CPU Usage: u4.92 s48.24 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.227 ms/request
45 requests currently being processed, 0 idle workers
KKKCCCKCKKKCCCKCCCKCKCKCCKKKCKKKKKKKKKRW.C.KCKK.................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/15/25770K
0.061050254535.10.13196.71
111.33.186.98http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

1-225289191/2/26094K
0.000052520685.20.01180.42
111.33.186.42http/1.1pay.cmd5.la:443GET / HTTP/1.1

2-225245931/38/25567K
0.102047386485.10.22181.56
111.33.186.36http/1.1pay.cmd5.la:443GET /about HTTP/1.1

3-225283791/11/25058C
0.026051214985.10.10175.33
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

4-225246471/43/25002C
0.346055532982.10.36177.50
218.68.91.77http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/21/24955C
0.296049266335.10.15176.20
218.68.91.77http/1.1pay.cmd5.la:443GET / HTTP/1.1

6-225289031/1/24459K
0.004648796077.70.01178.83
120.201.25.126http/1.1cmd5.la:443GET /de415b5104aa1d5c.htm HTTP/1.1

7-225288101/2/24353C
0.006452144798.70.01169.71
117.68.3.32http/1.1cmd5.la:443GET /da1a11a7456f8793.htm HTTP/1.1

8-225289201/1/24110K
0.003047538822.20.00168.91
157.255.131.51http/1.1pay.cmd5.la:443GET /server HTTP/1.1

9-225250892/30/24317K
0.310051141434.20.27171.99
180.101.245.250http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

10-225252881/39/24081K
0.141048630050.60.55176.56
111.32.207.223http/1.1cmd5.cc:80GET /plus/jq.php?aid=3 HTTP/1.1

11-225288201/2/23974C
0.006048676955.10.02181.16
157.255.131.51http/1.1pay.cmd5.la:443GET / HTTP/1.1

12-225288211/3/23989C
0.016045362325.00.02168.40
27.44.206.191http/1.1pay.cmd5.la:443GET / HTTP/1.1

13-225288231/2/23014C
0.006050311062.10.01165.54
218.68.87.59http/1.1pay.cmd5.la:443GET / HTTP/1.1

14-225288241/3/22973K
0.004448939398.90.03159.09
61.241.130.164http/1.1cmd5.la:443GET /b5b078335c7e6c0b.htm HTTP/1.1

15-225288251/2/23228C
0.006048424222.10.01166.65
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

16-225288261/2/22853C
0.006044719382.10.01157.57
218.68.91.77http/1.1pay.cmd5.la:443GET / HTTP/1.1

17-225250941/31/22454C
0.106043369132.10.22156.94
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

18-225288303/5/22631K
0.0000437577815.60.03160.96
180.101.244.16http/1.1cmd5.cc:80GET /plus/jq.php?aid=3 HTTP/1.1

19-225288311/2/22268C
0.005041665435.20.01156.33
183.225.22.78http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

20-225250951/30/21300K
0.060042768555.20.18150.46
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

21-225257961/20/21045C
0.096040601915.00.09145.45
157.255.131.164http/1.1pay.cmd5.la:443GET / HTTP/1.1

22-225253032/28/21229K
0.0900433067836.50.20148.73
59.83.208.104http/1.1cmd5.cc:80GET /templets/liwu/css/images/pic1.gif HTTP/1.1

23-225217551/53/21155C
0.436043717485.10.44146.11
218.68.87.59http/1.1pay.cmd5.la:443GET / HTTP/1.1

24-225288321/2/20483C
0.015540964679.00.03146.90
117.68.3.32http/1.1cmd5.la:443GET /f377ba18d7ebb23f.htm HTTP/1.1

25-225253041/32/19670K
0.081041859100.90.17137.47
123.150.77.154http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

26-225253052/31/19862K
0.090044404327.30.27135.80
180.101.245.252http/1.1cmd5.cc:80GET /plus/jq.php?aid=6 HTTP/1.1

27-225289441/1/20115K
0.0016426437111.00.01138.62
117.162.33.18http/1.1cmd5.la:443GET /b1cf266ffb6ed6aa.htm HTTP/1.1

28-225288341/2/19016C
0.006040197465.10.01134.93
122.192.132.16http/1.1pay.cmd5.la:443GET / HTTP/1.1

29-225211301/64/18003K
0.300040101842.20.39127.18
111.30.172.142http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

30-225288351/3/18224K
0.000438575167.50.03128.87
61.241.130.164http/1.1cmd5.la:443GET /3af2967df5e0a1d8.htm HTTP/1.1

31-225288361/2/17239K
0.004039996315.20.01118.32
111.30.172.143http/1.1pay.cmd5.la:443GET / HTTP/1.1

32-225258451/18/16787K
0.071037663290.60.13114.33
183.61.174.130http/1.1cmd5.cc:80GET /plus/jq.php?aid=1 HTTP/1.1

33-225289451/1/16189K
0.01217370110814.80.01115.51
113.219.202.162http/1.1tiyu.xlk.la:80GET /page_36.html HTTP/1.1

34-225289461/1/15400K
0.001035882432.20.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

35-225258491/20/14290K
1.120033350135.20.21101.80
125.39.190.92http/1.1pay.cmd5.la:443GET / HTTP/1.1

36-225289471/2/14528K
0.000028354602.20.01104.83
218.68.91.40http/1.1pay.cmd5.la:443GET /server HTTP/1.1

37-225289521/1/12819K
0.000329002120.40.0090.75
180.101.245.253http/1.1cmd5.cc:80GET /plus/jq.php?aid=1 HTTP/1.1

38-225289540/0/12322R
0.000027935810.00.0085.16
122.192.132.162http/1.1pay.cmd5.la:443

39-225289550/0/12029W
0.000029076060.00.0087.70
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-2-0/0/11245.
0.00106027042630.00.0078.14
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

41-225258541/16/11028C
0.09516264472019.10.1179.32
122.246.31.222http/1.1gupiao.xlk.la:80GET /page_55.html HTTP/1.1

42-2-0/0/10909.
0.00115024819140.00.0077.06
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

43-225258552/21/9276K
0.080027170603.70.3267.90
180.101.245.248http/1.1cmd5.cc:80GET /plus/jq.php?aid=4 HTTP/1.1

44-225258561/16/7696C
0.106022805785.00.1057.40
122.192.132.241http/1.1pay.cmd5.la:443GET / HTTP/1.1

45-225258571/17/7244K
0.192024507782.20.1155.98
111.30.172.143http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

46-225258581/21/6634K
0.071020402705.20.1247.18
111.30.172.142http/1.1pay.cmd5.la:443GET / HTTP/1.1

47-2-0/0/5379.
0.007016444370.00.0039.53
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

48-2-0/0/5204.
0.002321017765320.00.0039.80
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

49-2-0/0/4582.
0.002325014350970.00.0034.00
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

50-2-0/0/4824.
0.002339019167200.00.0035.47
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

51-2-0/0/4447.
0.001988016620420.00.0033.16
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

52-2-0/0/3979

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ab3467f90

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:43 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 24 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961737 - Total Traffic: 6.7 GB - Total Duration: 230998857
CPU Usage: u5.06 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.189 ms/request
80 requests currently being processed, 0 idle workers
CCCKKKKCKCCKKKKKKKCKCKKKKKCCKCKKKCKCCCKKKKKCKKKKKKCKKKKKKKKKKKKK
KKKKKKKKKCKKKKKW
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/16/25771C
0.065050254542.20.13196.71
125.39.190.69http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-225289191/3/26095C
0.005052520682.20.02180.42
111.30.172.157http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

2-225245931/39/25568C
0.1162147386909.10.23181.57
219.144.89.115http/1.1tiyu.xlk.la:80GET /14080.html HTTP/1.1

3-225283791/13/25060K
0.024351215069.50.11175.35
117.68.3.39http/1.1cmd5.la:443GET /d20d48f44df11928.htm HTTP/1.1

4-225246471/45/25004K
0.353055532992.20.37177.51
122.192.132.16http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-225257921/23/24957K
0.294049266342.20.16176.21
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

6-225289031/4/24462K
0.000048796082.20.01178.84
111.30.172.247http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

7-225288101/4/24355C
0.006052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/3/24112K
0.000047538822.20.01168.91
111.32.204.171http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

9-225250891/31/24318C
0.316051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/40/24082C
0.145048630052.20.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/4/23976K
0.004048676962.20.02181.16
218.68.87.41http/1.1pay.cmd5.la:443GET /about HTTP/1.1

12-225288211/6/23992K
0.023045365992.20.03168.40
111.30.172.157http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

13-225288232/6/23018K
0.013050311093.10.02165.55
111.30.172.247http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

14-225288241/5/22975K
0.014048939392.20.03159.09
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

15-225288252/5/23231K
0.000048424233.20.02166.66
218.68.87.41http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

16-225288261/4/22855K
0.003044719382.20.02157.58
218.68.91.40http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

17-225250941/33/22456K
0.113043369132.20.23156.95
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

18-225288301/6/22632C
0.006043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/4/22270K
0.004041665442.50.02156.34
111.33.186.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/31/21301C
0.065042768576.80.18150.47
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-225257961/22/21047K
0.103040601912.20.10145.45
125.39.190.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-225253032/30/21231K
0.093043306783.10.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

23-225217551/55/21157K
0.434043717492.20.45146.12
111.30.172.247http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-225288321/4/20485K
0.022340964748.90.04146.92
61.241.130.164http/1.1cmd5.la:443GET /d20c3f18637cb5ec.htm HTTP/1.1

25-225253042/34/19672K
0.083041859103.10.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

26-225253051/32/19863C
0.096044404346.90.27135.81
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289441/2/20116C
0.006042643712.20.01138.62
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

28-225288341/4/19018K
0.003040197462.20.02134.94
111.32.204.240http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

29-225211301/65/18004C
0.305040101866.80.40127.19
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/5/18226K
0.010438575257.10.03128.88
218.60.37.149http/1.1cmd5.la:443GET /60e5ea67c862ad66.htm HTTP/1.1

31-225288361/4/17241K
0.013039996552.20.02118.32
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

32-225258452/20/16789K
0.073037663303.10.13114.33
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

33-225289451/2/16190C
0.016037011085.10.02115.51
122.192.132.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

34-225289461/3/15402K
0.002035882442.20.01109.14
111.32.204.171http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

35-225258491/21/14291C
1.125033350132.20.21101.80
111.33.186.11http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

36-225289471/3/14529C
0.005028354602.20.01104.83
111.30.172.247http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

37-225289521/3/12821C
0.005029005892.20.0190.75
111.33.186.98http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

38-225289541/2/12324K
0.004027935822.20.0185.17
111.30.172.143http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-225289551/2/12031K
0.004629076229.10.0287.71
218.60.37.119http/1.1cmd5.la:443GET /cbcc5144fabfea1e.htm HTTP/1.1

40-225289651/3/11248K
0.0024270427710.90.0178.16
66.249.66.165http/1.1cmd5.la:443GET /c87afe7c7789176b.htm HTTP/1.1

41-225258541/19/11031K
0.092026447382.20.1279.33
125.39.190.106http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

42-225289661/2/10911K
0.002024819142.20.0077.06
111.30.172.157http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

43-225258551/22/9277C
0.086127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/18/7698K
0.104022805782.20.1157.40
125.39.190.106http/1.1pay.cmd5.la:443GET /server HTTP/1.1

45-225258571/19/7246K
0.190024507792.20.1155.99
125.39.190.92http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

46-225258581/23/6636K
0.081020402832.20.1347.19
111.33.186.98http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

47-225289671/2/5381K
0.002016444382.20.0139.54
111.33.186.98http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

48-225289681/4/5208K
0.001317765619.00.0339.83
117.68.3.32http/1.1cmd5.la:443GET /d20bfd0bd4092772.htm HTTP/1.1

49-225289691/2/4584K
0.002014350982.20.0034.01
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

50-225289702/2/4826C
0.00601916720

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a09a5790a

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:49 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 30 seconds
Server load: 0.05 0.15 0.18
Total accesses: 961794 - Total Traffic: 6.7 GB - Total Duration: 230999423
CPU Usage: u5.15 s48.29 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.176 ms/request
62 requests currently being processed, 18 idle workers
KKKKKKCKCCKKKKKCKKCKK_KKKKKKKK_KKKRKKKKK_KCCKC_K_KKWK_K_______KK
____CCCCCCC_CCKC
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262472/18/25773K
0.063050254543.00.14196.71
111.30.172.157http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

1-225289191/4/26096K
0.0132152521129.20.02180.43
113.219.202.174http/1.1tiyu.xlk.la:80GET /14083.html HTTP/1.1

2-225245931/40/25569K
0.114047386902.20.24181.57
111.30.172.181http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

3-225283791/15/25062K
0.031051218802.20.12175.36
111.30.172.247http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

4-225246471/46/25005K
0.351055532992.20.37177.51
125.39.190.106http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-225257921/24/24958K
0.303049266342.20.16176.21
125.39.190.106http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-225289031/4/24462C
0.006048796082.20.01178.84
111.30.172.247http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

7-225288102/6/24357K
0.014052145263.00.02169.72
111.30.172.142http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

8-225289201/3/24112C
0.006047538822.20.01168.91
111.32.204.171http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

9-225250891/32/24319C
0.325051141432.20.27172.00
111.33.186.11http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

10-225252881/41/24083K
0.154048630052.20.55176.56
125.39.190.92http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

11-225288201/5/23977K
0.002048676962.20.02181.16
111.32.204.240http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

12-225288211/7/23993K
0.021045365992.20.03168.41
111.30.172.181http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

13-225288231/7/23019K
0.010050311092.20.02165.55
218.68.87.41http/1.1pay.cmd5.la:443GET /s/639313e2032323e28323e20363/_/;/META-INF/maven/com.atlass

14-225288241/6/22976K
0.013048939402.20.03159.10
125.39.190.69http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

15-225288252/5/23231C
0.006048424233.20.02166.66
218.68.87.41http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

16-225288261/5/22856K
0.001044719407.00.02157.58
125.39.190.69http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

17-225250941/34/22457K
0.112043369142.20.23156.95
218.68.91.40http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

18-225288301/7/22633C
0.015043757792.20.03160.96
125.39.190.92http/1.1pay.cmd5.la:443GET /about HTTP/1.1

19-225288311/5/22271K
0.003041665442.20.02156.34
111.32.204.171http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

20-225250951/32/21302K
0.063042768572.20.19150.47
111.30.172.181http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

21-225257960/23/21048_
0.1001440602200.00.11145.46
39.145.32.220http/1.1cmd5.la:443GET /d208b33a25330808.htm HTTP/1.1

22-225253031/31/21232K
0.0925433068810.00.22148.74
39.145.32.31http/1.1cmd5.la:443GET /d209932684736340.htm HTTP/1.1

23-225217551/56/21158K
0.432043717492.20.45146.12
111.30.172.143http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

24-225288321/5/20486K
0.024040964742.20.04146.92
111.33.186.11http/1.1pay.cmd5.la:443GET /s/432313e27343e20383e29353/_/;/META-INF/maven/com.atlassia

25-225253041/35/19673K
0.081341859178.30.19137.48
120.201.25.163http/1.1cmd5.la:443GET /da6b6998c6975e77.htm HTTP/1.1

26-225253051/33/19864K
0.094044404342.20.28135.81
111.30.172.247http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

27-225289441/3/20117K
0.004042643712.20.01138.62
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

28-225288341/5/19019K
0.002040197462.20.02134.94
125.39.190.92http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

29-225211301/66/18005K
0.314040101862.20.40127.19
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

30-225288350/5/18226_
0.010438575250.00.03128.88
218.60.37.149http/1.1cmd5.la:443GET /60e5ea67c862ad66.htm HTTP/1.1

31-225288361/5/17242K
0.021039996552.20.02118.32
111.30.172.143http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

32-225258451/21/16790K
0.074037663326.90.14114.34
218.68.87.41http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

33-225289451/4/16192K
0.012037011152.20.03115.52
125.39.190.69http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

34-225289460/3/15402R
0.001035882440.00.01109.14
218.60.37.149http/1.1cmd5.la:443

35-225258491/22/14292K
1.123033350132.20.22101.81
111.32.204.240http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

36-225289471/4/14530K
0.003028354602.30.01104.84
125.39.190.106http/1.1pay.cmd5.la:443GET /s/231323e2932323e2736313e2931313/_/;/META-INF/maven/com.at

37-225289521/4/12822K
0.004029005892.20.0190.76
218.68.91.77http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

38-225289541/4/12326K
0.002527936349.70.0385.19
120.201.25.185http/1.1cmd5.la:443GET /51354a2af44f8046.htm HTTP/1.1

39-225289551/3/12032K
0.003029076222.20.0287.72
111.32.204.240http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

40-225289650/4/11249_
0.000227042820.00.0278.16
39.145.32.33http/1.1cmd5.la:443GET /d20adbba4fb18b43.htm HTTP/1.1

41-225258541/20/11032K
0.100526447488.60.1379.34
218.60.37.119http/1.1cmd5.la:443GET /63ea256472f2633d.htm HTTP/1.1

42-225289662/3/10912C
0.005024819153.00.0177.06
111.30.172.157http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

43-225258551/23/9278C
0.085027170632.20.3367.91
111.32.204.240http/1.1pay.cmd5.la:443GET /s/2363e243e2335313e2631313/_/;/META-INF/maven/com.atlassia

44-225258561/19/7699K
0.102422805888.30.1257.41
117.162.33.18http/1.1cmd5.la:443GET /2e1fbb1bcfb3df10.htm HTTP/1.1

45-225258571/19/7246C
0.196024507792.20.1155.99
125.39.190.92http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

46-225258580/23/6636_
0.080020402830.00.1347.19
111.33.186.98http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

47-225289671/3/5382K
0.000016444382.20.0139.54
111.32.204.240http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

48-225289680/4/5208_
0.000317765610.00.0339.83
117.68.3.32http/1.1cmd5.la:443GET /d20bfd0bd4092772.htm HTTP/1.1

49-225289691/3/4585K
0.001014350982.20.0134.01
218.68.91.40http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

50-22528970

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a47dc1dbe

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:41 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 22 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961705 - Total Traffic: 6.7 GB - Total Duration: 230998593
CPU Usage: u5.03 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.197 ms/request
80 requests currently being processed, 0 idle workers
KKKKKKCKKKKKKKKKKKKKKKKKKKKKKKCKKKKKKKKKKKKKKKKKKKKWKCKCCCCCCCCK
CCCCCCCCCKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/16/25771K
0.063050254542.20.13196.71
125.39.190.69http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-225289191/3/26095K
0.002052520682.20.02180.42
111.30.172.157http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

2-225245931/39/25568K
0.1132147386909.10.23181.57
219.144.89.115http/1.1tiyu.xlk.la:80GET /14080.html HTTP/1.1

3-225283791/13/25060K
0.021351215069.50.11175.35
117.68.3.39http/1.1cmd5.la:443GET /d20d48f44df11928.htm HTTP/1.1

4-225246471/45/25004K
0.350055532992.20.37177.51
122.192.132.16http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-225257921/23/24957K
0.292049266342.20.16176.21
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

6-225289032/3/24461C
0.005048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355K
0.004052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111K
0.004047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250891/31/24318K
0.313051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/40/24082K
0.143048630052.20.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/4/23976K
0.002048676962.20.02181.16
218.68.87.41http/1.1pay.cmd5.la:443GET /about HTTP/1.1

12-225288211/6/23992K
0.021045365992.20.03168.40
111.30.172.157http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

13-225288232/6/23018K
0.010050311093.10.02165.55
111.30.172.247http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

14-225288241/5/22975K
0.012048939392.20.03159.09
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

15-225288251/4/23230K
0.001048424232.20.01166.66
218.68.87.41http/1.1pay.cmd5.la:443GET / HTTP/1.1

16-225288261/4/22855K
0.001044719382.20.02157.58
218.68.91.40http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

17-225250941/33/22456K
0.111043369132.20.23156.95
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

18-225288301/6/22632K
0.004043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/4/22270K
0.002041665442.50.02156.34
111.33.186.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/31/21301K
0.062042768576.80.18150.47
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-225257961/22/21047K
0.100040601912.20.10145.45
125.39.190.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-225253032/30/21231K
0.091043306783.10.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

23-225217551/55/21157K
0.432043717492.20.45146.12
111.30.172.247http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-225288321/4/20485K
0.020340964748.90.04146.92
61.241.130.164http/1.1cmd5.la:443GET /d20c3f18637cb5ec.htm HTTP/1.1

25-225253042/34/19672K
0.080041859103.10.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

26-225253051/32/19863K
0.093044404346.90.27135.81
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289441/2/20116K
0.003042643712.20.01138.62
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

28-225288341/4/19018K
0.001040197462.20.02134.94
111.32.204.240http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

29-225211301/65/18004K
0.303040101866.80.40127.19
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/4/18225C
0.015038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/4/17241K
0.011039996552.20.02118.32
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

32-225258452/20/16789K
0.071037663303.10.13114.33
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

33-225289451/2/16190K
0.013037011085.10.02115.51
122.192.132.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

34-225289461/3/15402K
0.000035882442.20.01109.14
111.32.204.171http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

35-225258491/21/14291K
1.123033350132.20.21101.80
111.33.186.11http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

36-225289471/3/14529K
0.002028354602.20.01104.83
111.30.172.247http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

37-225289521/3/12821K
0.003029005892.20.0190.75
111.33.186.98http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

38-225289541/2/12324K
0.002027935822.20.0185.17
111.30.172.143http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-225289551/2/12031K
0.002629076229.10.0287.71
218.60.37.119http/1.1cmd5.la:443GET /cbcc5144fabfea1e.htm HTTP/1.1

40-225289651/3/11248K
0.0004270427710.90.0178.16
66.249.66.165http/1.1cmd5.la:443GET /c87afe7c7789176b.htm HTTP/1.1

41-225258541/19/11031K
0.090026447382.20.1279.33
125.39.190.106http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

42-225289661/2/10911K
0.000024819142.20.0077.06
111.30.172.157http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

43-225258551/22/9277K
0.083127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/18/7698K
0.102022805782.20.1157.40
125.39.190.106http/1.1pay.cmd5.la:443GET /server HTTP/1.1

45-225258571/18/7245K
0.194024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/22/6635K
0.083620402839.30.1347.19
39.145.32.31http/1.1cmd5.la:443GET /d20cf9b95e57c114.htm HTTP/1.1

47-225289671/2/5381K
0.000016444382.20.0139.54
111.33.186.98http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

48-225289681/3/5207K
0.004017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/2/4584K
0.000014350982.20.0034.01
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

50-225289702/2/4826K

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a4ea1f2f1

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:45 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 26 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961755 - Total Traffic: 6.7 GB - Total Duration: 230998869
CPU Usage: u5.09 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.185 ms/request
78 requests currently being processed, 2 idle workers
KCKCKCKKKK_CCKCKCCKCCKCCKKKKC_KCWKKCCKCCKKKKCKKKKKKKKKCKKKKKKKKC
KKKKKKKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/17/25772K
0.060050254542.20.14196.71
111.30.172.157http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

1-225289191/3/26095C
0.006052520682.20.02180.42
111.30.172.157http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

2-225245931/40/25569K
0.110047386902.20.24181.57
111.30.172.181http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

3-225283791/13/25060C
0.025351215069.50.11175.35
117.68.3.39http/1.1cmd5.la:443GET /d20d48f44df11928.htm HTTP/1.1

4-225246471/45/25004K
0.354055532992.20.37177.51
122.192.132.16http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-225257921/23/24957C
0.296049266342.20.16176.21
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

6-225289031/4/24462K
0.002048796082.20.01178.84
111.30.172.247http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

7-225288102/6/24357K
0.010052145263.00.02169.72
111.30.172.142http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

8-225289201/3/24112K
0.001047538822.20.01168.91
111.32.204.171http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

9-225250891/32/24319K
0.320051141432.20.27172.00
111.33.186.11http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

10-225252880/40/24082_
0.140048630050.00.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/4/23976C
0.006048676962.20.02181.16
218.68.87.41http/1.1pay.cmd5.la:443GET /about HTTP/1.1

12-225288211/6/23992C
0.025045365992.20.03168.40
111.30.172.157http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

13-225288232/6/23018K
0.014050311093.10.02165.55
111.30.172.247http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

14-225288241/5/22975C
0.016048939392.20.03159.09
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

15-225288252/5/23231K
0.001048424233.20.02166.66
218.68.87.41http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

16-225288261/4/22855C
0.005044719382.20.02157.58
218.68.91.40http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

17-225250941/33/22456C
0.115043369132.20.23156.95
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

18-225288301/7/22633K
0.010043757792.20.03160.96
125.39.190.92http/1.1pay.cmd5.la:443GET /about HTTP/1.1

19-225288311/4/22270C
0.006041665442.50.02156.34
111.33.186.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/31/21301C
0.066042768576.80.18150.47
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-225257961/22/21047K
0.104040601912.20.10145.45
125.39.190.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-225253032/30/21231C
0.095043306783.10.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

23-225217551/55/21157C
0.436043717492.20.45146.12
111.30.172.247http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-225288321/5/20486K
0.020040964742.20.04146.92
111.33.186.11http/1.1pay.cmd5.la:443GET /s/432313e27343e20383e29353/_/;/META-INF/maven/com.atlassia

25-225253042/34/19672K
0.084041859103.10.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

26-225253051/33/19864K
0.090044404342.20.28135.81
111.30.172.247http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

27-225289441/3/20117K
0.000042643712.20.01138.62
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

28-225288341/4/19018C
0.005040197462.20.02134.94
111.32.204.240http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

29-225211300/65/18004_
0.300040101860.00.40127.19
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/5/18226K
0.012438575257.10.03128.88
218.60.37.149http/1.1cmd5.la:443GET /60e5ea67c862ad66.htm HTTP/1.1

31-225288361/4/17241C
0.015039996552.20.02118.32
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

32-225258450/20/16789W
0.070037663300.00.13114.33
218.68.87.41http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

33-225289451/3/16191K
0.010337011158.70.03115.52
61.241.130.12http/1.1cmd5.la:443GET /d20b033690df5a4a.htm HTTP/1.1

34-225289461/3/15402K
0.003035882442.20.01109.14
111.32.204.171http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

35-225258491/21/14291C
1.126033350132.20.21101.80
111.33.186.11http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

36-225289471/3/14529C
0.006028354602.20.01104.83
111.30.172.247http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

37-225289521/4/12822K
0.000029005892.20.0190.76
218.68.91.77http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

38-225289541/2/12324C
0.006027935822.20.0185.17
111.30.172.143http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-225289551/2/12031C
0.006629076229.10.0287.71
218.60.37.119http/1.1cmd5.la:443GET /cbcc5144fabfea1e.htm HTTP/1.1

40-225289651/3/11248K
0.0044270427710.90.0178.16
66.249.66.165http/1.1cmd5.la:443GET /c87afe7c7789176b.htm HTTP/1.1

41-225258541/19/11031K
0.094026447382.20.1279.33
125.39.190.106http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

42-225289662/3/10912K
0.001024819153.00.0177.06
111.30.172.157http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

43-225258551/23/9278K
0.080027170632.20.3367.91
111.32.204.240http/1.1pay.cmd5.la:443GET /s/2363e243e2335313e2631313/_/;/META-INF/maven/com.atlassia

44-225258561/18/7698C
0.106022805782.20.1157.40
125.39.190.106http/1.1pay.cmd5.la:443GET /server HTTP/1.1

45-225258571/19/7246K
0.192024507792.20.1155.99
125.39.190.92http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

46-225258581/23/6636K
0.083020402832.20.1347.19
111.33.186.98http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

47-225289671/2/5381K
0.004016444382.20.0139.54
111.33.186.98http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

48-225289681/4/5208K
0.002317765619.00.0339.83
117.68.3.32http/1.1cmd5.la:443GET /d20bfd0bd4092772.htm HTTP/1.1

49-225289691/2/4584K
0.004014350982.20.0034.01
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

50-225289701/3/4827K
0.001019167202.20

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a77115d11

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:37 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 19 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961665 - Total Traffic: 6.7 GB - Total Duration: 230998524
CPU Usage: u4.99 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.207 ms/request
78 requests currently being processed, 2 idle workers
K_KCKCKKKKKCCCCCCCKCCKKCKKKKCWKKKKK_CKCCKKKKCKKKKKKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/16/25771K
0.060050254542.20.13196.71
125.39.190.69http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-225289190/2/26094_
0.000052520680.00.01180.42
111.33.186.42http/1.1pay.cmd5.la:443GET / HTTP/1.1

2-225245931/39/25568K
0.1102147386909.10.23181.57
219.144.89.115http/1.1tiyu.xlk.la:80GET /14080.html HTTP/1.1

3-225283791/12/25059C
0.025051214985.10.10175.34
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

4-225246471/44/25003K
0.344055532992.20.36177.50
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/22/24956C
0.296049266335.10.16176.21
218.68.87.41http/1.1pay.cmd5.la:443GET /server HTTP/1.1

6-225289032/3/24461K
0.002048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355K
0.001052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111K
0.001047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250891/31/24318K
0.310051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/40/24082K
0.140048630052.20.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/3/23975C
0.005048676952.20.02181.16
111.33.186.98http/1.1pay.cmd5.la:443GET /server HTTP/1.1

12-225288211/5/23991C
0.025045365992.20.03168.40
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

13-225288231/4/23016C
0.015050311082.50.02165.54
117.68.3.38http/1.1cmd5.la:443GET /d2117bf646c79d96.htm HTTP/1.1

14-225288241/4/22974C
0.015048939392.20.03159.09
111.30.172.247http/1.1pay.cmd5.la:443GET /about HTTP/1.1

15-225288251/3/23229C
0.005048424232.20.01166.66
111.33.186.36http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-225288261/3/22854C
0.005044719385.10.02157.57
27.44.206.60http/1.1pay.cmd5.la:443GET /server HTTP/1.1

17-225250941/32/22455C
0.105043369135.10.23156.94
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

18-225288301/6/22632K
0.000043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/3/22269C
0.006041665435.20.02156.33
111.32.204.240http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/30/21300C
0.066042768555.20.18150.46
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

21-225257961/21/21046K
0.094040601915.10.10145.45
111.32.204.171http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

22-225253031/29/21230K
0.090043306782.20.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /about HTTP/1.1

23-225217551/54/21156C
0.436043717495.10.45146.11
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

24-225288321/3/20484K
0.014040964675.10.03146.91
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

25-225253041/33/19671K
0.080041859102.20.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

26-225253051/32/19863K
0.090044404346.90.27135.81
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289441/2/20116K
0.000042643712.20.01138.62
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

28-225288341/3/19017C
0.005040197462.20.01134.93
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

29-225211300/64/18003W
0.300040101840.00.39127.18
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/4/18225K
0.011038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/3/17240K
0.0131139996541.10.01118.32
52.80.148.254http/1.1taobao.366999.com:80GET /m_item.php?id=R0gnMqtVexYq3B4h6R HTTP/1.1

32-225258451/19/16788K
0.070037663302.20.13114.33
111.33.186.11http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

33-225289451/2/16190K
0.010037011085.10.02115.51
122.192.132.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

34-225289462/2/15401K
0.003035882433.10.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

35-225258490/20/14290_
1.120033350130.00.21101.80
125.39.190.92http/1.1pay.cmd5.la:443GET / HTTP/1.1

36-225289471/2/14528C
0.006028354602.20.01104.83
218.68.91.40http/1.1pay.cmd5.la:443GET /server HTTP/1.1

37-225289521/3/12821K
0.000029005892.20.0190.75
111.33.186.98http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

38-225289541/1/12323C
0.006027935815.20.0185.17
122.192.132.162http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-225289551/1/12030C
0.006129076086.60.0187.71
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-225289651/1/11246K
0.004227042662.50.0078.14
117.68.3.162http/1.1cmd5.la:443GET /d21614a6a51eafb0.htm HTTP/1.1

41-225258541/17/11029K
0.094026447205.10.1279.32
125.39.190.106http/1.1pay.cmd5.la:443GET /about HTTP/1.1

42-225289661/1/10910K
0.004024819142.20.0077.06
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

43-225258551/22/9277K
0.080127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/17/7697C
0.105022805782.20.1157.40
111.33.186.42http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

45-225258571/18/7245K
0.191024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/22/6635K
0.080620402839.30.1347.19
39.145.32.31http/1.1cmd5.la:443GET /d20cf9b95e57c114.htm HTTP/1.1

47-225289671/1/5380K
0.004016444385.10.0039.53
125.39.190.106http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

48-225289681/3/5207K
0.000017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/1/4583K
0.004014350972.20.0034.00
111.30.172.143http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

50-225289702/2/4826K
0.001019167203.10.0035.48
111.32.204.240http/

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135aee8f51f4

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:41 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 23 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961713 - Total Traffic: 6.7 GB - Total Duration: 230998690
CPU Usage: u5.04 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.195 ms/request
80 requests currently being processed, 0 idle workers
KKKKKKCCCKKKKKKKKKKKKKKKKKKKKKCKKKKKKKKKKKKKKCKKKKCKKKKKKKKKCWCK
CCCCCCCCCCCCCCCC
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/16/25771K
0.064050254542.20.13196.71
125.39.190.69http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-225289191/3/26095K
0.003052520682.20.02180.42
111.30.172.157http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

2-225245931/39/25568K
0.1142147386909.10.23181.57
219.144.89.115http/1.1tiyu.xlk.la:80GET /14080.html HTTP/1.1

3-225283791/13/25060K
0.022351215069.50.11175.35
117.68.3.39http/1.1cmd5.la:443GET /d20d48f44df11928.htm HTTP/1.1

4-225246471/45/25004K
0.351055532992.20.37177.51
122.192.132.16http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-225257921/23/24957K
0.293049266342.20.16176.21
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

6-225289032/3/24461C
0.006048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355C
0.005052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111C
0.005047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250891/31/24318K
0.314051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/40/24082K
0.144048630052.20.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/4/23976K
0.002048676962.20.02181.16
218.68.87.41http/1.1pay.cmd5.la:443GET /about HTTP/1.1

12-225288211/6/23992K
0.022045365992.20.03168.40
111.30.172.157http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

13-225288232/6/23018K
0.011050311093.10.02165.55
111.30.172.247http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

14-225288241/5/22975K
0.013048939392.20.03159.09
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

15-225288251/4/23230K
0.001048424232.20.01166.66
218.68.87.41http/1.1pay.cmd5.la:443GET / HTTP/1.1

16-225288261/4/22855K
0.002044719382.20.02157.58
218.68.91.40http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

17-225250941/33/22456K
0.112043369132.20.23156.95
111.33.186.11http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

18-225288301/6/22632K
0.004043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/4/22270K
0.003041665442.50.02156.34
111.33.186.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/31/21301K
0.063042768576.80.18150.47
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-225257961/22/21047K
0.101040601912.20.10145.45
125.39.190.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-225253032/30/21231K
0.092043306783.10.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

23-225217551/55/21157K
0.433043717492.20.45146.12
111.30.172.247http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-225288321/4/20485K
0.021340964748.90.04146.92
61.241.130.164http/1.1cmd5.la:443GET /d20c3f18637cb5ec.htm HTTP/1.1

25-225253042/34/19672K
0.081041859103.10.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

26-225253051/32/19863K
0.094044404346.90.27135.81
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289441/2/20116K
0.004042643712.20.01138.62
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

28-225288341/4/19018K
0.002040197462.20.02134.94
111.32.204.240http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

29-225211301/65/18004K
0.303040101866.80.40127.19
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/4/18225C
0.015038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/4/17241K
0.012039996552.20.02118.32
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

32-225258452/20/16789K
0.072037663303.10.13114.33
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

33-225289451/2/16190K
0.014037011085.10.02115.51
122.192.132.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

34-225289461/3/15402K
0.000035882442.20.01109.14
111.32.204.171http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

35-225258491/21/14291K
1.123033350132.20.21101.80
111.33.186.11http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

36-225289471/3/14529K
0.003028354602.20.01104.83
111.30.172.247http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

37-225289521/3/12821K
0.004029005892.20.0190.75
111.33.186.98http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

38-225289541/2/12324K
0.003027935822.20.0185.17
111.30.172.143http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-225289551/2/12031K
0.003629076229.10.0287.71
218.60.37.119http/1.1cmd5.la:443GET /cbcc5144fabfea1e.htm HTTP/1.1

40-225289651/3/11248K
0.0014270427710.90.0178.16
66.249.66.165http/1.1cmd5.la:443GET /c87afe7c7789176b.htm HTTP/1.1

41-225258541/19/11031K
0.091026447382.20.1279.33
125.39.190.106http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

42-225289661/2/10911K
0.001024819142.20.0077.06
111.30.172.157http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

43-225258551/22/9277K
0.084127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/18/7698K
0.102022805782.20.1157.40
125.39.190.106http/1.1pay.cmd5.la:443GET /server HTTP/1.1

45-225258571/18/7245C
0.195024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/23/6636K
0.080020402832.20.1347.19
111.33.186.98http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

47-225289671/2/5381K
0.001016444382.20.0139.54
111.33.186.98http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

48-225289681/3/5207K
0.004017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/2/4584K
0.001014350982.20.0034.01
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

50-225289702/2/4826C
0

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a3cbeaeca

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:37 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 18 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961651 - Total Traffic: 6.7 GB - Total Duration: 230998086
CPU Usage: u4.97 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.21 ms/request
74 requests currently being processed, 6 idle workers
CC_KKCKKK_CCKKKKKKKCCK_CKC__KCKKC_KCCWCCKKKWCKCKKKKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/15/25770C
0.066050254535.10.13196.71
111.33.186.98http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

1-225289191/2/26094C
0.006052520685.20.01180.42
111.33.186.42http/1.1pay.cmd5.la:443GET / HTTP/1.1

2-225245930/38/25567_
0.100047386480.00.22181.56
111.33.186.36http/1.1pay.cmd5.la:443GET /about HTTP/1.1

3-225283791/12/25059K
0.024051214985.10.10175.34
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

4-225246471/44/25003K
0.343055532992.20.36177.50
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/22/24956C
0.295049266335.10.16176.21
218.68.87.41http/1.1pay.cmd5.la:443GET /server HTTP/1.1

6-225289032/3/24461K
0.001048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355K
0.000052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111K
0.000047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250890/30/24317_
0.311051141430.00.27171.99
180.101.245.250http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

10-225252881/39/24081C
0.146048630050.60.55176.56
111.32.207.223http/1.1cmd5.cc:80GET /plus/jq.php?aid=3 HTTP/1.1

11-225288201/3/23975C
0.005048676952.20.02181.16
111.33.186.98http/1.1pay.cmd5.la:443GET /server HTTP/1.1

12-225288211/5/23991K
0.024045365992.20.03168.40
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

13-225288231/4/23016K
0.014050311082.50.02165.54
117.68.3.38http/1.1cmd5.la:443GET /d2117bf646c79d96.htm HTTP/1.1

14-225288241/4/22974K
0.014048939392.20.03159.09
111.30.172.247http/1.1pay.cmd5.la:443GET /about HTTP/1.1

15-225288251/3/23229K
0.004048424232.20.01166.66
111.33.186.36http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-225288261/3/22854K
0.004044719385.10.02157.57
27.44.206.60http/1.1pay.cmd5.la:443GET /server HTTP/1.1

17-225250941/32/22455K
0.104043369135.10.23156.94
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

18-225288301/6/22632K
0.000043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/3/22269C
0.005041665435.20.02156.33
111.32.204.240http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/30/21300C
0.065042768555.20.18150.46
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

21-225257961/21/21046K
0.093040601915.10.10145.45
111.32.204.171http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

22-225253030/28/21229_
0.090043306780.00.20148.73
59.83.208.104http/1.1cmd5.cc:80GET /templets/liwu/css/images/pic1.gif HTTP/1.1

23-225217551/54/21156C
0.435043717495.10.45146.11
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

24-225288321/3/20484K
0.013040964675.10.03146.91
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

25-225253041/32/19670C
0.086041859100.90.17137.47
123.150.77.154http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

26-225253050/31/19862_
0.091044404320.00.27135.80
180.101.245.252http/1.1cmd5.cc:80GET /plus/jq.php?aid=6 HTTP/1.1

27-225289440/1/20115_
0.000642643710.00.01138.62
117.162.33.18http/1.1cmd5.la:443GET /b1cf266ffb6ed6aa.htm HTTP/1.1

28-225288341/3/19017K
0.004040197462.20.01134.93
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

29-225211301/64/18003C
0.306040101842.20.39127.18
111.30.172.142http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

30-225288351/4/18225K
0.011038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/3/17240K
0.0121139996541.10.01118.32
52.80.148.254http/1.1taobao.366999.com:80GET /m_item.php?id=R0gnMqtVexYq3B4h6R HTTP/1.1

32-225258451/18/16787C
0.076037663290.60.13114.33
183.61.174.130http/1.1cmd5.cc:80GET /plus/jq.php?aid=1 HTTP/1.1

33-225289450/1/16189_
0.0101737011080.00.01115.51
113.219.202.162http/1.1tiyu.xlk.la:80GET /page_36.html HTTP/1.1

34-225289462/2/15401K
0.003035882433.10.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

35-225258491/20/14290C
1.126033350135.20.21101.80
125.39.190.92http/1.1pay.cmd5.la:443GET / HTTP/1.1

36-225289471/2/14528C
0.005028354602.20.01104.83
218.68.91.40http/1.1pay.cmd5.la:443GET /server HTTP/1.1

37-225289520/1/12819W
0.000029002120.00.0090.75
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

38-225289541/1/12323C
0.005027935815.20.0185.17
122.192.132.162http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-225289551/1/12030C
0.005129076086.60.0187.71
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-225289651/1/11246K
0.003227042662.50.0078.14
117.68.3.162http/1.1cmd5.la:443GET /d21614a6a51eafb0.htm HTTP/1.1

41-225258541/17/11029K
0.093026447205.10.1279.32
125.39.190.106http/1.1pay.cmd5.la:443GET /about HTTP/1.1

42-225289661/1/10910K
0.003024819142.20.0077.06
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

43-225258550/21/9276W
0.080027170600.00.3267.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/17/7697C
0.105022805782.20.1157.40
111.33.186.42http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

45-225258571/18/7245K
0.190024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/21/6634C
0.076020402705.20.1247.18
111.30.172.142http/1.1pay.cmd5.la:443GET / HTTP/1.1

47-225289671/1/5380K
0.003016444385.10.0039.53
125.39.190.106http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

48-225289681/3/5207K
0.000017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/1/4583K
0.003014350972.20.0034.00
111.30.172.143http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

50-225289702/2/4826K
0.000019167203.10.0035.48
111.32.204.240http/1.1pay.cmd5.la:443GET /v

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a715f819b

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:37 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 18 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961654 - Total Traffic: 6.7 GB - Total Duration: 230998465
CPU Usage: u4.97 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.21 ms/request
74 requests currently being processed, 6 idle workers
_C_CKCKKKKCCKKKKKKKCCKRCKCW_KCKK__KCC_CCKKKKCKCKKKKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262470/15/25770_
0.060050254530.00.13196.71
111.33.186.98http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

1-225289191/2/26094C
0.006052520685.20.01180.42
111.33.186.42http/1.1pay.cmd5.la:443GET / HTTP/1.1

2-225245930/38/25567_
0.101047386480.00.22181.56
111.33.186.36http/1.1pay.cmd5.la:443GET /about HTTP/1.1

3-225283791/12/25059C
0.025051214985.10.10175.34
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

4-225246471/44/25003K
0.344055532992.20.36177.50
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/22/24956C
0.295049266335.10.16176.21
218.68.87.41http/1.1pay.cmd5.la:443GET /server HTTP/1.1

6-225289032/3/24461K
0.001048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355K
0.000052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111K
0.001047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250891/31/24318K
0.310051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/39/24081C
0.146048630050.60.55176.56
111.32.207.223http/1.1cmd5.cc:80GET /plus/jq.php?aid=3 HTTP/1.1

11-225288201/3/23975C
0.005048676952.20.02181.16
111.33.186.98http/1.1pay.cmd5.la:443GET /server HTTP/1.1

12-225288211/5/23991K
0.024045365992.20.03168.40
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

13-225288231/4/23016K
0.014050311082.50.02165.54
117.68.3.38http/1.1cmd5.la:443GET /d2117bf646c79d96.htm HTTP/1.1

14-225288241/4/22974K
0.014048939392.20.03159.09
111.30.172.247http/1.1pay.cmd5.la:443GET /about HTTP/1.1

15-225288251/3/23229K
0.004048424232.20.01166.66
111.33.186.36http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-225288261/3/22854K
0.004044719385.10.02157.57
27.44.206.60http/1.1pay.cmd5.la:443GET /server HTTP/1.1

17-225250941/32/22455K
0.104043369135.10.23156.94
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

18-225288301/6/22632K
0.000043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/3/22269C
0.005041665435.20.02156.33
111.32.204.240http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/30/21300C
0.066042768555.20.18150.46
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

21-225257961/21/21046K
0.094040601915.10.10145.45
111.32.204.171http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

22-225253030/28/21229R
0.091043306780.00.20148.73
111.30.172.157http/1.1pay.cmd5.la:443

23-225217551/54/21156C
0.435043717495.10.45146.11
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

24-225288321/3/20484K
0.013040964675.10.03146.91
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

25-225253041/32/19670C
0.086041859100.90.17137.47
123.150.77.154http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

26-225253050/31/19862W
0.090044404320.00.27135.80
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289440/1/20115_
0.000642643710.00.01138.62
117.162.33.18http/1.1cmd5.la:443GET /b1cf266ffb6ed6aa.htm HTTP/1.1

28-225288341/3/19017K
0.004040197462.20.01134.93
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

29-225211301/64/18003C
0.306040101842.20.39127.18
111.30.172.142http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

30-225288351/4/18225K
0.011038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/3/17240K
0.0121139996541.10.01118.32
52.80.148.254http/1.1taobao.366999.com:80GET /m_item.php?id=R0gnMqtVexYq3B4h6R HTTP/1.1

32-225258450/18/16787_
0.070037663290.00.13114.33
183.61.174.130http/1.1cmd5.cc:80GET /plus/jq.php?aid=1 HTTP/1.1

33-225289450/1/16189_
0.0101737011080.00.01115.51
113.219.202.162http/1.1tiyu.xlk.la:80GET /page_36.html HTTP/1.1

34-225289462/2/15401K
0.003035882433.10.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

35-225258491/20/14290C
1.126033350135.20.21101.80
125.39.190.92http/1.1pay.cmd5.la:443GET / HTTP/1.1

36-225289471/2/14528C
0.006028354602.20.01104.83
218.68.91.40http/1.1pay.cmd5.la:443GET /server HTTP/1.1

37-225289520/2/12820_
0.00018829005890.00.0090.75
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

38-225289541/1/12323C
0.005027935815.20.0185.17
122.192.132.162http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-225289551/1/12030C
0.005129076086.60.0187.71
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-225289651/1/11246K
0.003227042662.50.0078.14
117.68.3.162http/1.1cmd5.la:443GET /d21614a6a51eafb0.htm HTTP/1.1

41-225258541/17/11029K
0.093026447205.10.1279.32
125.39.190.106http/1.1pay.cmd5.la:443GET /about HTTP/1.1

42-225289661/1/10910K
0.003024819142.20.0077.06
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

43-225258551/22/9277K
0.080127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/17/7697C
0.105022805782.20.1157.40
111.33.186.42http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

45-225258571/18/7245K
0.190024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/21/6634C
0.076020402705.20.1247.18
111.30.172.142http/1.1pay.cmd5.la:443GET / HTTP/1.1

47-225289671/1/5380K
0.003016444385.10.0039.53
125.39.190.106http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

48-225289681/3/5207K
0.000017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/1/4583K
0.003014350972.20.0034.00
111.30.172.143http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

50-225289702/2/4826K
0.000019167203.10.0035.48
111.32.204.240http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

<

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a1abeada7

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:36 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 17 seconds
Server load: 0.07 0.16 0.18
Total accesses: 961642 - Total Traffic: 6.7 GB - Total Duration: 230998080
CPU Usage: u4.97 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.212 ms/request
67 requests currently being processed, 13 idle workers
CC_KKKK_K_CKKKKKKK_KCK_KKC_CKCKKCCKCC_KKKKK_K_CK_KKKKKKKKKKKKKKK
KKKKKKKKK_KKKW__
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/15/25770C
0.066050254535.10.13196.71
111.33.186.98http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

1-225289191/2/26094C
0.005052520685.20.01180.42
111.33.186.42http/1.1pay.cmd5.la:443GET / HTTP/1.1

2-225245930/38/25567_
0.100047386480.00.22181.56
111.33.186.36http/1.1pay.cmd5.la:443GET /about HTTP/1.1

3-225283791/12/25059K
0.024051214985.10.10175.34
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

4-225246471/44/25003K
0.342055532992.20.36177.50
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/22/24956K
0.294049266335.10.16176.21
218.68.87.41http/1.1pay.cmd5.la:443GET /server HTTP/1.1

6-225289032/3/24461K
0.000048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288100/3/24354_
0.0002352145250.00.02169.72
61.241.130.101http/1.1cmd5.la:443GET /aa789cc5a44468db.htm HTTP/1.1

8-225289201/2/24111K
0.000047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250890/30/24317_
0.310051141430.00.27171.99
180.101.245.250http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

10-225252881/39/24081C
0.145048630050.60.55176.56
111.32.207.223http/1.1cmd5.cc:80GET /plus/jq.php?aid=3 HTTP/1.1

11-225288201/3/23975K
0.004048676952.20.02181.16
111.33.186.98http/1.1pay.cmd5.la:443GET /server HTTP/1.1

12-225288211/5/23991K
0.023045365992.20.03168.40
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

13-225288231/4/23016K
0.013050311082.50.02165.54
117.68.3.38http/1.1cmd5.la:443GET /d2117bf646c79d96.htm HTTP/1.1

14-225288241/4/22974K
0.013048939392.20.03159.09
111.30.172.247http/1.1pay.cmd5.la:443GET /about HTTP/1.1

15-225288251/3/23229K
0.003048424232.20.01166.66
111.33.186.36http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-225288261/3/22854K
0.003044719385.10.02157.57
27.44.206.60http/1.1pay.cmd5.la:443GET /server HTTP/1.1

17-225250941/32/22455K
0.103043369135.10.23156.94
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

18-225288300/5/22631_
0.000043757780.00.03160.96
180.101.244.16http/1.1cmd5.cc:80GET /plus/jq.php?aid=3 HTTP/1.1

19-225288311/3/22269K
0.004041665435.20.02156.33
111.32.204.240http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/30/21300C
0.065042768555.20.18150.46
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

21-225257961/21/21046K
0.093040601915.10.10145.45
111.32.204.171http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

22-225253030/28/21229_
0.090043306780.00.20148.73
59.83.208.104http/1.1cmd5.cc:80GET /templets/liwu/css/images/pic1.gif HTTP/1.1

23-225217551/54/21156K
0.434043717495.10.45146.11
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

24-225288321/3/20484K
0.012040964675.10.03146.91
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

25-225253041/32/19670C
0.085041859100.90.17137.47
123.150.77.154http/1.1cmd5.cc:80GET /plus/jq.php?aid=5 HTTP/1.1

26-225253050/31/19862_
0.090044404320.00.27135.80
180.101.245.252http/1.1cmd5.cc:80GET /plus/jq.php?aid=6 HTTP/1.1

27-225289441/1/20115C
0.0066426437111.00.01138.62
117.162.33.18http/1.1cmd5.la:443GET /b1cf266ffb6ed6aa.htm HTTP/1.1

28-225288341/3/19017K
0.003040197462.20.01134.93
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

29-225211301/64/18003C
0.305040101842.20.39127.18
111.30.172.142http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

30-225288351/4/18225K
0.010038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/3/17240K
0.0111139996541.10.01118.32
52.80.148.254http/1.1taobao.366999.com:80GET /m_item.php?id=R0gnMqtVexYq3B4h6R HTTP/1.1

32-225258451/18/16787C
0.076037663290.60.13114.33
183.61.174.130http/1.1cmd5.cc:80GET /plus/jq.php?aid=1 HTTP/1.1

33-225289451/1/16189C
0.01617370110814.80.01115.51
113.219.202.162http/1.1tiyu.xlk.la:80GET /page_36.html HTTP/1.1

34-225289462/2/15401K
0.002035882433.10.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

35-225258491/20/14290C
1.125033350135.20.21101.80
125.39.190.92http/1.1pay.cmd5.la:443GET / HTTP/1.1

36-225289471/2/14528C
0.005028354602.20.01104.83
218.68.91.40http/1.1pay.cmd5.la:443GET /server HTTP/1.1

37-225289520/1/12819_
0.000329002120.00.0090.75
180.101.245.253http/1.1cmd5.cc:80GET /plus/jq.php?aid=1 HTTP/1.1

38-225289541/1/12323K
0.004027935815.20.0185.17
122.192.132.162http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-225289551/1/12030K
0.004129076086.60.0187.71
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-225289651/1/11246K
0.002227042662.50.0078.14
117.68.3.162http/1.1cmd5.la:443GET /d21614a6a51eafb0.htm HTTP/1.1

41-225258541/17/11029K
0.092026447205.10.1279.32
125.39.190.106http/1.1pay.cmd5.la:443GET /about HTTP/1.1

42-225289661/1/10910K
0.002024819142.20.0077.06
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

43-225258550/21/9276_
0.080027170600.00.3267.90
180.101.245.248http/1.1cmd5.cc:80GET /plus/jq.php?aid=4 HTTP/1.1

44-225258561/17/7697K
0.104022805782.20.1157.40
111.33.186.42http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

45-225258570/17/7244_
0.190024507780.00.1155.98
111.30.172.143http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

46-225258581/21/6634C
0.075020402705.20.1247.18
111.30.172.142http/1.1pay.cmd5.la:443GET / HTTP/1.1

47-225289671/1/5380K
0.002016444385.10.0039.53
125.39.190.106http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

48-225289680/2/5206_
0.000417765520.00.0239.82
58.250.125.156http/1.1cmd5.la:443GET /260bb260dee06544.htm HTTP/1.1

49-225289691/1/4583K
0.002014350972.20.0034.00
111.30.172.143http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

50-225289701/1/4825K
0.002019167202.20.0035.48
111.32.204.240http/1.1pay.cmd5.la:443GET /about HTTP/1.1

51-225289711/1/4448<

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ab46b2441

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2023-03-08T17:32:54

Current Time: Sunday, 03-Mar-2024 15:46:38 CST
Restart Time: Friday, 01-Mar-2024 13:21:18 CST
Parent Server Config. Generation: 3
Parent Server MPM Generation: 2
Server uptime:  2 days 2 hours 25 minutes 19 seconds
Server load: 0.06 0.16 0.18
Total accesses: 961670 - Total Traffic: 6.7 GB - Total Duration: 230998528
CPU Usage: u4.99 s48.28 cu7213.25 cs2711.13 - 5.5% CPU load
5.3 requests/sec - 38.6 kB/second - 7.3 kB/request - 240.206 ms/request
80 requests currently being processed, 0 idle workers
KKKCCCKKKKKCCCCCCCKCKCKCKKKKCKKKKKKKKKCCCKCKCKKCKKKKKKKKKKKKKKKW
KKKKKKKKKKKKKKKK
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-225262471/16/25771K
0.061050254542.20.13196.71
125.39.190.69http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-225289191/3/26095K
0.000052520682.20.02180.42
111.30.172.157http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

2-225245931/39/25568K
0.1112147386909.10.23181.57
219.144.89.115http/1.1tiyu.xlk.la:80GET /14080.html HTTP/1.1

3-225283791/12/25059C
0.026051214985.10.10175.34
111.30.172.181http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

4-225246471/44/25003C
0.345055532992.20.36177.50
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

5-225257921/22/24956C
0.296049266335.10.16176.21
218.68.87.41http/1.1pay.cmd5.la:443GET /server HTTP/1.1

6-225289032/3/24461K
0.002048796073.10.01178.84
111.32.204.171http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

7-225288101/4/24355K
0.001052145252.20.02169.72
125.39.190.106http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

8-225289201/2/24111K
0.002047538822.20.00168.91
111.33.186.36http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

9-225250891/31/24318K
0.311051141432.20.27172.00
111.32.204.171http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

10-225252881/40/24082K
0.140048630052.20.55176.56
125.39.190.106http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-225288201/3/23975C
0.006048676952.20.02181.16
111.33.186.98http/1.1pay.cmd5.la:443GET /server HTTP/1.1

12-225288211/5/23991C
0.025045365992.20.03168.40
111.32.204.240http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

13-225288231/4/23016C
0.016050311082.50.02165.54
117.68.3.38http/1.1cmd5.la:443GET /d2117bf646c79d96.htm HTTP/1.1

14-225288241/4/22974C
0.015048939392.20.03159.09
111.30.172.247http/1.1pay.cmd5.la:443GET /about HTTP/1.1

15-225288251/3/23229C
0.005048424232.20.01166.66
111.33.186.36http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-225288261/3/22854C
0.005044719385.10.02157.57
27.44.206.60http/1.1pay.cmd5.la:443GET /server HTTP/1.1

17-225250941/32/22455C
0.105043369135.10.23156.94
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

18-225288301/6/22632K
0.001043757792.20.03160.96
111.30.172.143http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

19-225288311/3/22269C
0.006041665435.20.02156.33
111.32.204.240http/1.1pay.cmd5.la:443GET / HTTP/1.1

20-225250951/31/21301K
0.060042768576.80.18150.47
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-225257961/21/21046C
0.095040601915.10.10145.45
111.32.204.171http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

22-225253031/29/21230K
0.091043306782.20.21148.73
111.30.172.157http/1.1pay.cmd5.la:443GET /about HTTP/1.1

23-225217551/54/21156C
0.436043717495.10.45146.11
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

24-225288321/3/20484K
0.014040964675.10.03146.91
111.33.186.11http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

25-225253041/33/19671K
0.080041859102.20.18137.47
111.33.186.42http/1.1pay.cmd5.la:443GET /_all_dbs HTTP/1.1

26-225253051/32/19863K
0.091044404346.90.27135.81
111.30.172.142http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-225289441/2/20116K
0.001042643712.20.01138.62
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

28-225288341/3/19017C
0.006040197462.20.01134.93
111.32.204.240http/1.1pay.cmd5.la:443GET /server HTTP/1.1

29-225211301/65/18004K
0.300040101866.80.40127.19
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

30-225288351/4/18225K
0.012038575162.20.03128.88
125.39.190.92http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

31-225288361/3/17240K
0.0131139996541.10.01118.32
52.80.148.254http/1.1taobao.366999.com:80GET /m_item.php?id=R0gnMqtVexYq3B4h6R HTTP/1.1

32-225258451/19/16788K
0.070037663302.20.13114.33
111.33.186.11http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

33-225289451/2/16190K
0.011037011085.10.02115.51
122.192.132.92http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

34-225289462/2/15401K
0.004035882433.10.00109.14
111.33.186.36http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

35-225258491/21/14291K
1.120033350132.20.21101.80
111.33.186.11http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

36-225289471/3/14529K
0.000028354602.20.01104.83
111.30.172.247http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

37-225289521/3/12821K
0.001029005892.20.0190.75
111.33.186.98http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

38-225289541/1/12323C
0.006027935815.20.0185.17
122.192.132.162http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-225289551/1/12030C
0.006129076086.60.0187.71
111.33.186.98http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

40-225289651/1/11246C
0.005227042662.50.0078.14
117.68.3.162http/1.1cmd5.la:443GET /d21614a6a51eafb0.htm HTTP/1.1

41-225258541/17/11029K
0.094026447205.10.1279.32
125.39.190.106http/1.1pay.cmd5.la:443GET /about HTTP/1.1

42-225289661/1/10910C
0.005024819142.20.0077.06
111.30.172.247http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

43-225258551/22/9277K
0.081127170627.00.3367.90
111.30.172.181http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

44-225258561/17/7697C
0.106022805782.20.1157.40
111.33.186.42http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

45-225258571/18/7245K
0.191024507782.50.1155.99
61.241.130.31http/1.1cmd5.la:443GET /d20d7b950388abdb.htm HTTP/1.1

46-225258581/22/6635K
0.080620402839.30.1347.19
39.145.32.31http/1.1cmd5.la:443GET /d20cf9b95e57c114.htm HTTP/1.1

47-225289671/1/5380C
0.005016444385.10.0039.53
125.39.190.106http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

48-225289681/3/5207K
0.001017765535.20.0239.83
111.120.30.160http/1.1orz123.cn:443GET /search/0N75rPHZ-c-50008090.html HTTP/1.1

49-225289691/1/4583K
0.004014350972.20.0034.00
111.30.172.143http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

50-225289702/2/4826K
0.00101916

Found on 2024-03-03 07:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ae4eddf49

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:06 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 49 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032014 - Total Traffic: 96.2 GB - Total Duration: 3703632692
CPU Usage: u110.99 s102.34 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.51 ms/request
69 requests currently being processed, 0 idle workers
KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKRRRKWRKKK.K......K..KK
K.K.......K.....K..........KKK..K...K.......KK..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608882/500/48737K
2.5320510279636.121.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694401/507/49541K
2.6430529505765.218.001672.56
61.151.164.141http/1.1pay.cmd5.la:443GET /s/335313e2430323e23383e29353/_/;/META-INF/maven/com.atlass

2-1836169843/38/49118K
0.1900541169776.81.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/1/49018K
0.0020522070372.20.001583.04
61.151.164.153http/1.1pay.cmd5.la:443GET /about HTTP/1.1

4-1835719171/445/48259K
2.3030504081785.116.821610.67
183.192.179.27http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

5-1836169851/36/46332K
0.2100481935092.21.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529641/603/46920K
3.3207297508524107.727.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/467/46564K
2.4120465228022.220.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169861/35/47611K
0.2027458517942668.91.651559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1303/47175K
7.1720504220812.273.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068721/168/44529K
0.9320503652242.24.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-1836222261/1/46608K
0.0020478147692.20.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749321/375/44512K
2.3630457291835.122.761500.10
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

13-1834768131/1271/44178K
6.5920459117772.261.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891201/279/40276K
1.4730435204925.111.961364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

15-1836222271/1/43544K
0.0020461856542.20.001476.58
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-1835891221/288/41192K
1.4930439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/36/43090K
0.2120440100452.21.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068742/151/39621K
1.00144142685723.69.361306.58
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/580/42530K
3.0630472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090941/107/41935K
0.62344737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919K
0.1430398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090972/114/38983K
0.6130440089816.04.921286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

23-1835155691/886/41032K
4.7830457011972.238.001316.70
123.150.72.31http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-1835243071/766/38912K
4.23273124129621410.135.691304.11
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651K
0.1730398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045K
1.34364148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/942/35344K
4.94244022907525.743.611172.53
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/110/34501K
0.6630372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/103/39543K
0.5840415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-1836222441/1/37393K
0.0010393630582.20.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222451/1/36927K
0.0010367176662.20.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/97/37673K
0.5330367381515.15.061231.54
183.192.179.121http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

33-1835485871/563/34809K
3.0630342534312.227.111141.42
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

34-1835485881/592/34117K
2.9630354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097383/95/35658K
0.5810354893877.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097391/94/33799K
0.49274843353563914.53.461092.08
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916K
0.4830352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/94/32915K
0.5330340112825.23.391085.70
183.192.179.121http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-1836097551/105/33083K
0.5530372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-1836222461/1/33481K
0.0010371661255.10.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222471/1/31830K
0.0000321742282.20.001058.35
61.241.47.147http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a9716c4f4

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:03 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 46 seconds
Server load: 0.05 0.08 0.03
Total accesses: 3031970 - Total Traffic: 96.2 GB - Total Duration: 3703558093
CPU Usage: u110.88 s102.31 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.5 ms/request
48 requests currently being processed, 6 idle workers
_K_.KKWCWCC._C_.KCKKKKK_WKKCKK..K_KKWKKK.........C..K......W..CW
K.K.......C.....K..........KKK..K...K.......KC..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608880/498/48735_
2.5300510279620.021.761579.23
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

1-1835694401/507/49541K
2.6400529505765.218.001672.56
61.151.164.141http/1.1pay.cmd5.la:443GET /s/335313e2430323e23383e29353/_/;/META-INF/maven/com.atlass

2-1836169840/35/49115_
0.192126541169760.01.051617.23
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

3-18-0/0/49017.
0.005170522070370.00.001583.04
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

4-1835719171/445/48259K
2.3000504081785.116.821610.67
183.192.179.27http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

5-1836169851/35/46331K
0.2140481935095.21.321504.93
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

6-1835529640/602/46919W
3.3150508378140.027.361581.66
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/466/46563C
2.4160465228022.120.111522.05
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

8-1836169860/34/47610W
0.2060517793500.01.641559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1302/47174C
7.1750504220802.173.041568.91
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

10-1836068721/167/44528C
0.9360503652242.14.831456.28
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-18-0/0/46607.
0.004910478147690.00.001519.40
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

12-1835749320/374/44511_
2.3600457291830.022.761500.10
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

13-1834768131/1270/44177C
6.5960459117775.061.301427.18
61.241.47.147http/1.1pay.cmd5.la:443GET / HTTP/1.1

14-1835891200/278/40275_
1.4600435204920.011.961364.31
218.68.87.41http/1.1pay.cmd5.la:443GET / HTTP/1.1

15-18-0/0/43543.
0.008570461856540.00.001476.58
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

16-1835891221/288/41192K
1.4900439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/35/43089C
0.2160440100452.11.301428.12
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

18-1836068741/150/39620K
1.0000414268482.29.331306.56
218.68.87.36http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

19-1835507361/580/42530K
3.0600472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090941/107/41935K
0.62044737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919K
0.1400398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090971/113/38982K
0.6100440089805.14.911286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

23-1835155690/885/41031_
4.7800457011970.037.991316.70
120.204.17.223http/1.1pay.cmd5.la:443GET / HTTP/1.1

24-1835243070/765/38911W
4.2060412815900.035.681304.10
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651K
0.1700398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045K
1.34064148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/941/35343C
4.9360402290672.143.591172.50
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

28-1836090981/110/34501K
0.6600372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/103/39543K
0.5810415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-18-0/0/37392.
0.0020940393630570.00.001197.50
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

31-18-0/0/36926.
0.0023670367176660.00.001161.78
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

32-1836097261/97/37673K
0.5300367381515.15.061231.54
183.192.179.121http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

33-1835485870/562/34808_
3.0600342534310.027.111141.42
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

34-1835485881/592/34117K
2.9600354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097381/93/35656K
0.5800354893865.24.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

36-1836097390/93/33798W
0.4570335206690.03.441092.06
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916K
0.4800352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/94/32915K
0.5300340112825.23.391085.70
183.192.179.121http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-1836097551/105/33083K
0.5500372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-18-0/0/33480.
0.005160371661250.00.001072.99
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

41-18-0/0/31829.
0.0080400321742280.00.001058.35
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

42-18-0/0/27685.
0.00130130269626830.00.00902.89
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

43-18-0/0/29816.
0.00130140328514670.00.00980.41
::1http/1.149.233.48.2

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a32ea783f

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:03 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 46 seconds
Server load: 0.05 0.08 0.03
Total accesses: 3031985 - Total Traffic: 96.2 GB - Total Duration: 3703558104
CPU Usage: u110.89 s102.31 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.5 ms/request
55 requests currently being processed, 0 idle workers
KKKKKKWKWCK.KKK.KCKKKKKKWKKWKK..KKKKWKKK.........K..K......K..CW
K.K.......K.....K..........KKK..K...K.......KC..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608881/499/48736K
2.5300510279625.221.761579.23
123.150.72.113http/1.1pay.cmd5.la:443GET / HTTP/1.1

1-1835694401/507/49541K
2.6410529505765.218.001672.56
61.151.164.141http/1.1pay.cmd5.la:443GET /s/335313e2430323e23383e29353/_/;/META-INF/maven/com.atlass

2-1836169841/36/49116K
0.1900541169765.11.051617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/1/49018K
0.0000522070372.20.001583.04
61.151.164.153http/1.1pay.cmd5.la:443GET /about HTTP/1.1

4-1835719171/445/48259K
2.3010504081785.116.821610.67
183.192.179.27http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

5-1836169851/35/46331K
0.2140481935095.21.321504.93
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

6-1835529640/602/46919W
3.3150508378140.027.361581.66
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/467/46564K
2.4100465228022.220.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169860/34/47610W
0.2070517793500.01.641559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1302/47174C
7.1760504220802.173.041568.91
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

10-1836068721/168/44529K
0.9300503652242.24.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-18-0/0/46607.
0.004910478147690.00.001519.40
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

12-1835749321/375/44512K
2.3600457291835.122.761500.10
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

13-1834768131/1271/44178K
6.5900459117772.261.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891201/279/40276K
1.4700435204925.111.961364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

15-18-0/0/43543.
0.008580461856540.00.001476.58
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

16-1835891221/288/41192K
1.4900439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/35/43089C
0.2160440100452.11.301428.12
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

18-1836068741/150/39620K
1.0010414268482.29.331306.56
218.68.87.36http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

19-1835507361/580/42530K
3.0610472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090941/107/41935K
0.62044737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919K
0.1400398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090972/114/38983K
0.6100440089816.04.921286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

23-1835155691/886/41032K
4.7800457011972.238.001316.70
123.150.72.31http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-1835243070/765/38911W
4.2070412815900.035.681304.10
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651K
0.1700398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045K
1.34164148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103080/941/35343W
4.9300402290670.043.591172.50
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/110/34501K
0.6600372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/103/39543K
0.5810415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-18-0/0/37392.
0.0020950393630570.00.001197.50
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

31-18-0/0/36926.
0.0023670367176660.00.001161.78
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

32-1836097261/97/37673K
0.5310367381515.15.061231.54
183.192.179.121http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

33-1835485871/563/34809K
3.0600342534312.227.111141.42
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

34-1835485881/592/34117K
2.9610354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097381/93/35656K
0.5800354893865.24.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

36-1836097390/93/33798W
0.4570335206690.03.441092.06
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916K
0.4800352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/94/32915K
0.5310340112825.23.391085.70
183.192.179.121http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-1836097551/105/33083K
0.5500372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-18-0/0/33480.
0.005160371661250.00.001072.99
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

41-18-0/0/31829.
0.0080400321742280.00.001058.35
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

42-18-0/0/27685.
0.00130130269626830.00.00902.89
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

43

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a4073224f

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:09 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 52 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032097 - Total Traffic: 96.2 GB - Total Duration: 3703632833
CPU Usage: u110.99 s102.38 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.48 ms/request
138 requests currently being processed, 0 idle workers
CKKCKKKCCCCCCCCCCCKKCCCCCCKCCKKKKCRCCCKCKKKKKKKKKCKKCKKKKKKKKKKK
CKCKKKKKKKCKKKKKCKKKKKKKKKKKKCKKCKKKCKKKKKKKCKKKKKKKKKKKKKKKKWKK
KKKRWSWKSS......................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608882/500/48737C
2.5350510279636.121.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694401/508/49542K
2.6400529505762.218.001672.57
218.68.87.59http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

2-1836169843/38/49118K
0.1930541169776.81.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/1/49018C
0.0060522070372.20.001583.04
61.151.164.153http/1.1pay.cmd5.la:443GET /about HTTP/1.1

4-1835719171/446/48260K
2.3000504081782.216.821610.67
218.68.87.80http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-1836169851/36/46332K
0.2130481935092.21.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529641/603/46920K
3.3247297508524107.727.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/467/46564C
2.4150465228022.220.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169861/35/47611C
0.2057458517942668.91.651559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1303/47175C
7.1750504220812.273.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068721/168/44529C
0.9360503652242.24.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-1836222261/1/46608C
0.0050478147692.20.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749321/375/44512C
2.3660457291835.122.761500.10
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

13-1834768131/1271/44178C
6.5950459117772.261.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891201/279/40276C
1.4760435204925.111.961364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

15-1836222271/1/43544C
0.0050461856542.20.001476.58
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-1835891221/288/41192C
1.4960439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/36/43090C
0.2150440100452.21.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068742/151/39621K
1.00444142685723.69.361306.58
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/581/42531K
3.0600472116382.225.901386.28
123.150.77.238http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-1836090941/107/41935C
0.62644737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919C
0.1460398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090972/114/38983C
0.6160440089816.04.921286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

23-1835155691/886/41032C
4.7860457011972.238.001316.70
123.150.72.31http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-1835243071/766/38912C
4.23573124129621410.135.691304.11
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651C
0.1760398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/285/36046K
1.3400414867472.211.941199.30
218.68.87.36http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

27-1835103081/942/35344C
4.94544022907525.743.611172.53
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/110/34501C
0.6660372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/104/39544K
0.5800415883242.34.101250.06
123.150.77.149http/1.1pay.cmd5.la:443GET /s/6383e2834323e2737313e2631313/_/;/META-INF/maven/com.atla

30-1836222441/1/37393K
0.0040393630582.20.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222451/1/36927K
0.0040367176662.20.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/98/37674K
0.5300367381512.25.061231.54
125.39.190.92http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

33-1835485871/563/34809C
3.0660342534312.227.111141.42
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

34-1835485880/592/34117R
2.9600354587680.028.901101.45
218.68.91.77http/1.1pay.cmd5.la:443

35-1836097383/95/35658C
0.5850354893877.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097391/94/33799C
0.49574843353563914.53.461092.08
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916C
0.4860352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/95/32916K
0.5300340112822.23.401085.71
125.39.190.69http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-1836097551/105/33083C
0.5560372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-1836222461/1/33481K
0.0040371661255.10.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222471/1/31830K
0.0040321742282.20.001058.35
61.241.47.147http/1.1pay.cmd5.la:443

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a2dd314da

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:03 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 45 seconds
Server load: 0.05 0.08 0.03
Total accesses: 3031961 - Total Traffic: 96.2 GB - Total Duration: 3703542632
CPU Usage: u110.85 s102.3 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.5 ms/request
42 requests currently being processed, 12 idle workers
CK_.KKWCWCC._C_._CKKW_K_WKKCKK..K_KKW_KR.........C..K......_..CW
K._.......C.....K..........KK_..K..._.......WC..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608881/498/48735C
2.5360510279625.121.761579.23
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

1-1835694401/507/49541K
2.6400529505765.218.001672.56
61.151.164.141http/1.1pay.cmd5.la:443GET /s/335313e2430323e23383e29353/_/;/META-INF/maven/com.atlass

2-1836169840/35/49115_
0.192126541169760.01.051617.23
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

3-18-0/0/49017.
0.005170522070370.00.001583.04
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

4-1835719171/445/48259K
2.3000504081785.116.821610.67
183.192.179.27http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

5-1836169851/35/46331K
0.2140481935095.21.321504.93
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

6-1835529640/602/46919W
3.3150508378140.027.361581.66
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/466/46563C
2.4160465228022.120.111522.05
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

8-1836169860/34/47610W
0.2060517793500.01.641559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1302/47174C
7.1750504220802.173.041568.91
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

10-1836068721/167/44528C
0.9360503652242.14.831456.28
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-18-0/0/46607.
0.004910478147690.00.001519.40
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

12-1835749320/374/44511_
2.3600457291830.022.761500.10
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

13-1834768131/1270/44177C
6.5960459117775.061.301427.18
61.241.47.147http/1.1pay.cmd5.la:443GET / HTTP/1.1

14-1835891200/278/40275_
1.4600435204920.011.961364.31
218.68.87.41http/1.1pay.cmd5.la:443GET / HTTP/1.1

15-18-0/0/43543.
0.008570461856540.00.001476.58
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

16-1835891220/287/41191_
1.4850439646580.010.721322.65
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

17-1836169891/35/43089C
0.2150440100452.11.301428.12
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

18-1836068741/150/39620K
1.0000414268482.29.331306.56
218.68.87.36http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

19-1835507361/580/42530K
3.0600472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090940/106/41934W
0.6200473770140.05.101372.42
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169900/34/38918_
0.141296398381520.01.201254.46
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

22-1836090971/113/38982K
0.6100440089805.14.911286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

23-1835155690/885/41031_
4.7800457011970.037.991316.70
120.204.17.223http/1.1pay.cmd5.la:443GET / HTTP/1.1

24-1835243070/765/38911W
4.2060412815900.035.681304.10
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651K
0.1700398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045K
1.34064148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/941/35343C
4.9360402290672.143.591172.50
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

28-1836090981/110/34501K
0.6600372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/103/39543K
0.5800415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-18-0/0/37392.
0.0020940393630570.00.001197.50
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

31-18-0/0/36926.
0.0023670367176660.00.001161.78
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

32-1836097261/97/37673K
0.5300367381515.15.061231.54
183.192.179.121http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

33-1835485870/562/34808_
3.0600342534310.027.111141.42
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

34-1835485881/592/34117K
2.9600354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097381/93/35656K
0.5800354893865.24.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

36-1836097390/93/33798W
0.4560335206690.03.441092.06
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097510/96/36915_
0.488147352988200.03.741207.68
219.144.89.113http/1.1orz123.cn:443GET / HTTP/1.1

38-1836097541/94/32915K
0.5300340112825.23.391085.70
183.192.179.121http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-1836097550/104/33082R
0.55137197372666890.04.201061.92
123.150.72.31http/1.1pay.cmd5.la:443

40-18-0/0/33480.
0.005160371661250.00.001072.99
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

41-18-0/0/31829.
0.0080400321742280.00.001058.35
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

42-18-0/0/27685.
0.00130130269626830.00.00902.89
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

43-18-0/0/29816.
0.00130140328514670.00.00980.41
::1http/1.149.233.48.245:8090OPTIONS

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a262ebe73

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:11 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 54 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032137 - Total Traffic: 96.2 GB - Total Duration: 3703633357
CPU Usage: u111.01 s102.42 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.46 ms/request
130 requests currently being processed, 19 idle workers
_KCRKCC________KK__KKKKK_KK_KKCCKKK__KKKCCCCCCCCKWCK_KKKKKK_KKK_
KKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKK_KKKKKKKKKKKKCKKKKKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKKKK..............................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608880/500/48737_
2.5300510279630.021.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694402/509/49543K
2.6420529505763.118.001672.57
218.68.87.59http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

2-1836169843/38/49118C
0.1960541169776.81.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222250/1/49018R
0.0010522070370.00.001583.04
123.150.77.238http/1.1pay.cmd5.la:443

4-1835719171/446/48260K
2.3020504081782.216.821610.67
218.68.87.80http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-1836169851/36/46332C
0.2160481935092.21.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529641/603/46920C
3.3267297508524107.727.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719250/467/46564_
2.4110465228020.020.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169860/35/47611_
0.2007458517942660.01.651559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768120/1303/47175_
7.1700504220810.073.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068720/168/44529_
0.9310503652240.04.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-1836222260/1/46608_
0.0000478147690.00.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749320/376/44513_
2.3700457291850.022.771500.11
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_insertnew.php?pwd=744578 HTTP/1.1

13-1834768130/1271/44178_
6.5910459117770.061.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891200/280/40277_
1.47091435206760.011.971364.32
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

15-1836222271/2/43545K
0.0010461856542.20.001476.59
123.150.77.155http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

16-1835891221/289/41193K
1.4910439646582.210.731322.66
123.150.77.198http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

17-1836169890/36/43090_
0.2100440100450.01.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068740/151/39621_
1.0004414268570.09.361306.58
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/581/42531K
3.0620472116382.225.901386.28
123.150.77.238http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-1836090941/108/41936K
0.6210473770232.25.121372.44
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

21-1836169901/36/38920K
0.1410398381532.21.201254.47
218.68.91.77http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

22-1836090971/115/38984K
0.6200440089812.34.921286.75
218.68.87.80http/1.1pay.cmd5.la:443GET /s/834323e2734313e2736313e2931313/_/;/META-INF/maven/com.at

23-1835155691/887/41033K
4.7800457011972.238.001316.70
123.150.77.155http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-1835243070/766/38912_
4.2317312412962140.035.691304.11
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169911/36/37652K
0.1710398474192.21.181218.75
218.68.87.59http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

26-1835891371/285/36046K
1.3420414867472.211.941199.30
218.68.87.36http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

27-1835103080/942/35344_
4.9414402290750.043.611172.53
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/111/34502K
0.6610372999155.17.181168.67
218.68.91.77http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

29-1836091121/104/39544K
0.5820415883242.34.101250.06
123.150.77.149http/1.1pay.cmd5.la:443GET /s/6383e2834323e2737313e2631313/_/;/META-INF/maven/com.atla

30-1836222441/1/37393C
0.0060393630582.20.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222451/1/36927C
0.0060367176662.20.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/98/37674K
0.5320367381512.25.061231.54
125.39.190.92http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

33-1835485871/564/34810K
3.0600342534322.227.111141.42
218.68.87.85http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

34-1835485881/593/34118K
2.9720354587682.228.911101.45
218.68.91.77http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

35-1836097380/95/35658_
0.5800354893870.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097390/94/33799_
0.4917484335356390.03.461092.08
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/98/36917K
0.4810352988202.23.741207.68
123.150.77.238http/1.1pay.cmd5.la:443GET /about HTTP/1.1

38-1836097541/95/32916K
0.5320340112822.23.401085.71
125.39.190.69http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-1836097551/106/33084K
0.5510372666902.24.211061.93
218.68.87.80http/1.1pay.cmd5.la:443GET /about HTTP/1.1

40-1836222461/1/33481C
0.0060371661255.10.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222471/1/31830C
0.0060321742282.20.001058.35
61.241.47.147http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

42-1836222551/1/27686C

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135aadbd4a29

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:13 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 56 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032156 - Total Traffic: 96.2 GB - Total Duration: 3703633379
CPU Usage: u111.01 s102.42 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.45 ms/request
131 requests currently being processed, 18 idle workers
KK_KK__KKKKKKKKKKKWKKKKKKKKKKK__KKKKKKKK________CK_CKCCCCKC_CCK_
KCKCCC_CCCKKCCCCKCCCCCCCCCCKKKCCKCCCKCCCCCCCK_CCCCKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKKKK..............................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608881/501/48738K
2.5300510279632.221.771579.23
123.150.77.155http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

1-1835694402/509/49543K
2.6430529505763.118.001672.57
218.68.87.59http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

2-1836169840/38/49118_
0.1910541169770.01.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/2/49019K
0.0010522070372.20.001583.04
123.150.77.238http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

4-1835719171/446/48260K
2.3040504081782.216.821610.67
218.68.87.80http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-1836169850/36/46332_
0.2100481935090.01.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529640/603/46920_
3.3217297508524100.027.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/468/46565K
2.4110465228022.220.111522.05
218.68.87.59http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

8-1836169861/36/47612K
0.2010517942662.21.651559.05
218.68.87.80http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

9-1834768121/1304/47176K
7.1700504220812.273.041568.91
123.150.72.31http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

10-1836068721/169/44530K
0.9310503652252.24.841456.28
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

11-1836222261/2/46609K
0.0000478147702.20.001519.40
123.150.72.31http/1.1pay.cmd5.la:443GET / HTTP/1.1

12-1835749321/377/44514K
2.3710457291852.222.771500.11
218.68.87.85http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

13-1834768131/1272/44179K
6.5910459117772.261.311427.18
123.150.77.149http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

14-1835891201/281/40278K
1.4700435206762.211.971364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

15-1836222271/2/43545K
0.0030461856542.20.001476.59
123.150.77.155http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

16-1835891221/289/41193K
1.4930439646582.210.731322.66
123.150.77.198http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

17-1836169891/37/43091K
0.2100440100452.21.301428.13
218.68.87.59http/1.1pay.cmd5.la:443GET /s/1373e203e213e2331313/_/;/META-INF/maven/com.atlassian.ji

18-1836068740/151/39621W
1.0000414268570.09.361306.58
125.39.190.92http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/581/42531K
3.0640472116382.225.901386.28
123.150.77.238http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-1836090941/108/41936K
0.6230473770232.25.121372.44
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

21-1836169901/36/38920K
0.1430398381532.21.201254.47
218.68.91.77http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

22-1836090971/115/38984K
0.6210440089812.34.921286.75
218.68.87.80http/1.1pay.cmd5.la:443GET /s/834323e2734313e2736313e2931313/_/;/META-INF/maven/com.at

23-1835155691/887/41033K
4.7820457011972.238.001316.70
123.150.77.155http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-1835243071/767/38913K
4.2310412962142.235.701304.11
218.68.87.59http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

25-1836169911/36/37652K
0.1730398474192.21.181218.75
218.68.87.59http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

26-1835891371/285/36046K
1.3440414867472.211.941199.30
218.68.87.36http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

27-1835103081/943/35345K
4.9410402290752.243.621172.53
218.68.87.36http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

28-1836090981/111/34502K
0.6630372999155.17.181168.67
218.68.91.77http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

29-1836091121/104/39544K
0.5840415883242.34.101250.06
123.150.77.149http/1.1pay.cmd5.la:443GET /s/6383e2834323e2737313e2631313/_/;/META-INF/maven/com.atla

30-1836222440/1/37393_
0.0010393630580.00.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222450/1/36927_
0.0010367176660.00.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/98/37674K
0.5340367381512.25.061231.54
125.39.190.92http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

33-1835485871/564/34810K
3.0620342534322.227.111141.42
218.68.87.85http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

34-1835485881/593/34118K
2.9740354587682.228.911101.45
218.68.91.77http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

35-1836097381/96/35659K
0.5800354893872.24.861141.69
123.150.77.155http/1.1pay.cmd5.la:443GET /s/0393e223e2433323e2332313/_/;/META-INF/maven/com.atlassia

36-1836097391/95/33800K
0.4910335356392.23.461092.08
218.68.91.40http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

37-1836097511/98/36917K
0.4830352988202.23.741207.68
123.150.77.238http/1.1pay.cmd5.la:443GET /about HTTP/1.1

38-1836097541/95/32916K
0.5340340112822.23.401085.71
125.39.190.69http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-1836097551/106/33084K
0.5530372666902.24.211061.93
218.68.87.80http/1.1pay.cmd5.la:443GET /about HTTP/1.1

40-1836222460/1/33481_
0.0010371661250.00.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222470/1/31830_
0.0010321742280.00.001058.35
61.241.47.147http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

42-1836222550/1/27686

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a59894e56

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:09 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 52 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032093 - Total Traffic: 96.2 GB - Total Duration: 3703632777
CPU Usage: u110.99 s102.38 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.48 ms/request
138 requests currently being processed, 0 idle workers
CRKCKKKCCCCCCCCCCCKKCCCCCCCCCKKKKCCCCCKCKKKKKKKKKCKKCKKKKKKKKKKK
CKCKKKKKKKCKKKKKCKKKKKKKKKKKKCKKCKKKCKKKKKKKCKKKKKKKKKKKKKKKKWWK
KKKRRSWRS.......................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608882/500/48737C
2.5350510279636.121.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694400/507/49541R
2.6400529505760.018.001672.56
218.68.87.59http/1.1pay.cmd5.la:443

2-1836169843/38/49118K
0.1930541169776.81.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/1/49018C
0.0060522070372.20.001583.04
61.151.164.153http/1.1pay.cmd5.la:443GET /about HTTP/1.1

4-1835719171/446/48260K
2.3000504081782.216.821610.67
218.68.87.80http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-1836169851/36/46332K
0.2130481935092.21.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529641/603/46920K
3.3247297508524107.727.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/467/46564C
2.4150465228022.220.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169861/35/47611C
0.2057458517942668.91.651559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1303/47175C
7.1750504220812.273.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068721/168/44529C
0.9360503652242.24.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-1836222261/1/46608C
0.0050478147692.20.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749321/375/44512C
2.3660457291835.122.761500.10
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

13-1834768131/1271/44178C
6.5950459117772.261.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891201/279/40276C
1.4760435204925.111.961364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

15-1836222271/1/43544C
0.0050461856542.20.001476.58
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-1835891221/288/41192C
1.4960439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/36/43090C
0.2150440100452.21.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068742/151/39621K
1.00444142685723.69.361306.58
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/581/42531K
3.0600472116382.225.901386.28
123.150.77.238http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-1836090941/107/41935C
0.62644737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919C
0.1460398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090972/114/38983C
0.6160440089816.04.921286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

23-1835155691/886/41032C
4.7860457011972.238.001316.70
123.150.72.31http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-1835243071/766/38912C
4.23573124129621410.135.691304.11
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651C
0.1760398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045C
1.34764148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/942/35344C
4.94544022907525.743.611172.53
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/110/34501C
0.6660372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/104/39544K
0.5800415883242.34.101250.06
123.150.77.149http/1.1pay.cmd5.la:443GET /s/6383e2834323e2737313e2631313/_/;/META-INF/maven/com.atla

30-1836222441/1/37393K
0.0040393630582.20.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222451/1/36927K
0.0040367176662.20.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/98/37674K
0.5300367381512.25.061231.54
125.39.190.92http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

33-1835485871/563/34809C
3.0660342534312.227.111141.42
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

34-1835485881/592/34117C
2.9670354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097383/95/35658C
0.5850354893877.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097391/94/33799C
0.49574843353563914.53.461092.08
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916C
0.4860352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/95/32916K
0.5300340112822.23.401085.71
125.39.190.69http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-1836097551/105/33083C
0.5560372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-1836222461/1/33481K
0.0040371661255.10.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222471/1/31830K
0.0040321742282.20.001058.35
61.241.47.147http/1.1pay.cmd5.la:443GET /.git/config HTTP

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ae2fbe38e

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:07 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 50 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032033 - Total Traffic: 96.2 GB - Total Duration: 3703632709
CPU Usage: u110.99 s102.35 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.5 ms/request
85 requests currently being processed, 0 idle workers
KKKKKKKKKKKKKKKKKKKKKKKKKKKKKCKKKKKKKKKKKKKKKKKKKKKKKRKKKKKKKWKK
KKKKRKKKK.K.....K..........KKK..K...K.......KK..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process





<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608882/500/48737K
2.5330510279636.121.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694401/507/49541K
2.6440529505765.218.001672.56
61.151.164.141http/1.1pay.cmd5.la:443GET /s/335313e2430323e23383e29353/_/;/META-INF/maven/com.atlass

2-1836169843/38/49118K
0.1910541169776.81.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/1/49018K
0.0030522070372.20.001583.04
61.151.164.153http/1.1pay.cmd5.la:443GET /about HTTP/1.1

4-1835719171/445/48259K
2.3040504081785.116.821610.67
183.192.179.27http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

5-1836169851/36/46332K
0.2110481935092.21.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529641/603/46920K
3.3217297508524107.727.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/467/46564K
2.4130465228022.220.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169861/35/47611K
0.2037458517942668.91.651559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1303/47175K
7.1730504220812.273.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068721/168/44529K
0.9330503652242.24.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-1836222261/1/46608K
0.0030478147692.20.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749321/375/44512K
2.3640457291835.122.761500.10
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

13-1834768131/1271/44178K
6.5930459117772.261.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891201/279/40276K
1.4740435204925.111.961364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

15-1836222271/1/43544K
0.0030461856542.20.001476.58
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-1835891221/288/41192K
1.4940439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/36/43090K
0.2130440100452.21.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068742/151/39621K
1.00244142685723.69.361306.58
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/580/42530K
3.0640472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090941/107/41935K
0.62444737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919K
0.1440398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090972/114/38983K
0.6140440089816.04.921286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

23-1835155691/886/41032K
4.7840457011972.238.001316.70
123.150.72.31http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-1835243071/766/38912K
4.23373124129621410.135.691304.11
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651K
0.1740398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045K
1.34464148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/942/35344K
4.94344022907525.743.611172.53
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/110/34501K
0.6640372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/103/39543C
0.5850415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-1836222441/1/37393K
0.0020393630582.20.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222451/1/36927K
0.0020367176662.20.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/97/37673K
0.5340367381515.15.061231.54
183.192.179.121http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

33-1835485871/563/34809K
3.0640342534312.227.111141.42
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

34-1835485881/592/34117K
2.9640354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097383/95/35658K
0.5820354893877.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097391/94/33799K
0.49374843353563914.53.461092.08
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916K
0.4840352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/94/32915K
0.5340340112825.23.391085.70
183.192.179.121http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-1836097551/105/33083K
0.5540372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-1836222461/1/33481K
0.0020371661255.10.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222471/1/31830K
0.0010321742282.20.001058.35
61.241.47.147http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ac25a68f2

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:04 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 47 seconds
Server load: 0.05 0.08 0.03
Total accesses: 3031999 - Total Traffic: 96.2 GB - Total Duration: 3703602624
CPU Usage: u110.96 s102.32 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.51 ms/request
57 requests currently being processed, 0 idle workers
KKKKKCWKKKKKKKKKKKWKKKKKKKKKKK..KKKKKKKK.........K..K......K..CW
K.K.......K.....K..........KKK..K...K.......KK..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608882/500/48737K
2.5300510279636.121.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694401/507/49541K
2.6420529505765.218.001672.56
61.151.164.141http/1.1pay.cmd5.la:443GET /s/335313e2430323e23383e29353/_/;/META-INF/maven/com.atlass

2-1836169842/37/49117K
0.1900541169776.01.051617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

3-1836222251/1/49018K
0.0010522070372.20.001583.04
61.151.164.153http/1.1pay.cmd5.la:443GET /about HTTP/1.1

4-1835719171/445/48259K
2.3020504081785.116.821610.67
183.192.179.27http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

5-1836169851/35/46331C
0.2150481935095.21.321504.93
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

6-1835529640/602/46919W
3.3160508378140.027.361581.66
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/467/46564K
2.4110465228022.220.111522.05
123.150.77.149http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

8-1836169861/35/47611K
0.2007458517942668.91.651559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1303/47175K
7.1700504220812.273.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068721/168/44529K
0.9310503652242.24.841456.28
183.192.178.160http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

11-1836222261/1/46608K
0.0000478147692.20.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749321/375/44512K
2.3610457291835.122.761500.10
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

13-1834768131/1271/44178K
6.5910459117772.261.301427.18
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

14-1835891201/279/40276K
1.4710435204925.111.961364.32
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

15-1836222271/1/43544K
0.0000461856542.20.001476.58
218.68.87.80http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

16-1835891221/288/41192K
1.4910439646582.210.721322.65
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

17-1836169891/36/43090K
0.2100440100452.21.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068741/150/39620W
1.0000414268482.29.331306.56
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/580/42530K
3.0620472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090941/107/41935K
0.62144737702322.85.121372.44
123.150.77.155http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

21-1836169901/35/38919K
0.1410398381525.11.201254.47
123.150.72.31http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

22-1836090972/114/38983K
0.6110440089816.04.921286.74
183.192.178.160http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

23-1835155691/886/41032K
4.7810457011972.238.001316.70
123.150.72.31http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-1835243071/766/38912K
4.23073124129621410.135.691304.11
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169912/35/37651K
0.1710398474196.11.171218.74
123.150.77.198http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

26-1835891371/284/36045K
1.34264148674725.811.931199.30
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/942/35344K
4.94144022907525.743.611172.53
218.68.87.59http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

28-1836090981/110/34501K
0.6610372999155.27.171168.66
123.150.77.238http/1.1pay.cmd5.la:443GET /s/730313e2834323e2737313e2631313/_/;/META-INF/maven/com.at

29-1836091121/103/39543K
0.5820415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-18-0/0/37392.
0.0020960393630570.00.001197.50
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

31-18-0/0/36926.
0.0023680367176660.00.001161.78
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

32-1836097261/97/37673K
0.5320367381515.15.061231.54
183.192.179.121http/1.1pay.cmd5.la:443GET /.vscode/sftp.json HTTP/1.1

33-1835485871/563/34809K
3.0610342534312.227.111141.42
123.150.77.155http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

34-1835485881/592/34117K
2.9620354587685.128.901101.45
101.91.62.171http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

35-1836097383/95/35658K
0.5800354893877.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097391/94/33799K
0.49074843353563914.53.461092.08
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097511/97/36916K
0.4810352988202.23.741207.68
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

38-1836097541/94/32915K
0.5320340112825.23.391085.70
183.192.179.121http/1.1pay.cmd5.la:443GET / HTTP/1.1

39-1836097551/105/33083K
0.5510372666895.14.201061.93
123.150.72.31http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

40-18-0/0/33480.
0.005170371661250.00.001072.99
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

41-18-0/0/31829.
0.0080410321742280.00.001058.35
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

42-18-0/0/27685.
0.00130140269626830.00.00902.89
:

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135a8064f78b

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:12 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 55 seconds
Server load: 0.04 0.07 0.03
Total accesses: 3032148 - Total Traffic: 96.2 GB - Total Duration: 3703633369
CPU Usage: u111.01 s102.42 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.46 ms/request
134 requests currently being processed, 15 idle workers
_KCKKC_KK_K_KK_KK__KKKKKKKKKKK__KKK_KKKK__CCCCCCCKCCWCCCCKC_CCK_
KCKCCCCCCKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKKK_KKKKKKKKKKKKKKKKKK
KKKKKKKKKKKKKKKKKK..............................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608880/500/48737_
2.5310510279630.021.771579.23
123.150.72.113http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

1-1835694402/509/49543K
2.6420529505763.118.001672.57
218.68.87.59http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

2-1836169843/38/49118C
0.1960541169776.81.061617.24
123.150.72.113http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

3-1836222251/2/49019K
0.0000522070372.20.001583.04
123.150.77.238http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

4-1835719171/446/48260K
2.3030504081782.216.821610.67
218.68.87.80http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

5-1836169851/36/46332C
0.2160481935092.21.321504.93
61.241.37.126http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

6-1835529640/603/46920_
3.3207297508524100.027.371581.67
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/468/46565K
2.4100465228022.220.111522.05
218.68.87.59http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

8-1836169861/36/47612K
0.2000517942662.21.651559.05
218.68.87.80http/1.1pay.cmd5.la:443GET /info.php HTTP/1.1

9-1834768120/1303/47175_
7.1710504220810.073.041568.91
218.68.87.80http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

10-1836068721/169/44530K
0.9300503652252.24.841456.28
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

11-1836222260/1/46608_
0.0010478147690.00.001519.40
218.68.87.36http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

12-1835749321/377/44514K
2.3700457291852.222.771500.11
218.68.87.85http/1.1pay.cmd5.la:443GET /.DS_Store HTTP/1.1

13-1834768131/1272/44179K
6.5900459117772.261.311427.18
123.150.77.149http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

14-1835891200/280/40277_
1.47191435206760.011.971364.32
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

15-1836222271/2/43545K
0.0020461856542.20.001476.59
123.150.77.155http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

16-1835891221/289/41193K
1.4910439646582.210.731322.66
123.150.77.198http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

17-1836169890/36/43090_
0.2110440100450.01.301428.12
218.68.87.41http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

18-1836068740/151/39621_
1.0004414268570.09.361306.58
218.68.87.36http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

19-1835507361/581/42531K
3.0630472116382.225.901386.28
123.150.77.238http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-1836090941/108/41936K
0.6220473770232.25.121372.44
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

21-1836169901/36/38920K
0.1420398381532.21.201254.47
218.68.91.77http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

22-1836090971/115/38984K
0.6200440089812.34.921286.75
218.68.87.80http/1.1pay.cmd5.la:443GET /s/834323e2734313e2736313e2931313/_/;/META-INF/maven/com.at

23-1835155691/887/41033K
4.7810457011972.238.001316.70
123.150.77.155http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

24-1835243071/767/38913K
4.2300412962142.235.701304.11
218.68.87.59http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

25-1836169911/36/37652K
0.1720398474192.21.181218.75
218.68.87.59http/1.1pay.cmd5.la:443GET /login.action HTTP/1.1

26-1835891371/285/36046K
1.3430414867472.211.941199.30
218.68.87.36http/1.1pay.cmd5.la:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

27-1835103081/943/35345K
4.9400402290752.243.621172.53
218.68.87.36http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

28-1836090981/111/34502K
0.6620372999155.17.181168.67
218.68.91.77http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

29-1836091121/104/39544K
0.5830415883242.34.101250.06
123.150.77.149http/1.1pay.cmd5.la:443GET /s/6383e2834323e2737313e2631313/_/;/META-INF/maven/com.atla

30-1836222440/1/37393_
0.0000393630580.00.001197.51
123.150.77.238http/1.1pay.cmd5.la:443GET /s/731313e203e213e2331313/_/;/META-INF/maven/com.atlassian.

31-1836222450/1/36927_
0.0000367176660.00.001161.78
123.150.72.113http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

32-1836097261/98/37674K
0.5330367381512.25.061231.54
125.39.190.92http/1.1pay.cmd5.la:443GET /api/search?folderIds=0 HTTP/1.1

33-1835485871/564/34810K
3.0610342534322.227.111141.42
218.68.87.85http/1.1pay.cmd5.la:443GET /config.json HTTP/1.1

34-1835485881/593/34118K
2.9730354587682.228.911101.45
218.68.91.77http/1.1pay.cmd5.la:443GET /telescope/requests HTTP/1.1

35-1836097380/95/35658_
0.5810354893870.04.861141.69
123.150.77.149http/1.1pay.cmd5.la:443GET /v2/_catalog HTTP/1.1

36-1836097391/95/33800K
0.4900335356392.23.461092.08
218.68.91.40http/1.1pay.cmd5.la:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

37-1836097511/98/36917K
0.4820352988202.23.741207.68
123.150.77.238http/1.1pay.cmd5.la:443GET /about HTTP/1.1

38-1836097541/95/32916K
0.5330340112822.23.401085.71
125.39.190.69http/1.1pay.cmd5.la:443GET /about HTTP/1.1

39-1836097551/106/33084K
0.5520372666902.24.211061.93
218.68.87.80http/1.1pay.cmd5.la:443GET /about HTTP/1.1

40-1836222460/1/33481_
0.0000371661250.00.011072.99
125.39.190.69http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

41-1836222470/1/31830_
0.0000321742280.00.001058.35
61.241.47.147http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

42-1836222551/1/27686C
0.0060269626

Found on 2023-03-11 14:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31c53d135ac53d135ad86316be

Apache Status

Apache Server Status for pay.cmd5.la (via 10.0.33.16)

Server Version: Apache/2.4.41 (Ubuntu) mod_fastcgi/mod_fastcgi-SNAP-0910052141 OpenSSL/1.1.1f
Server MPM: prefork
Server Built: 2022-01-05T14:49:56

Current Time: Saturday, 11-Mar-2023 22:41:02 CST
Restart Time: Tuesday, 21-Feb-2023 14:21:17 CST
Parent Server Config. Generation: 19
Parent Server MPM Generation: 18
Server uptime:  18 days 8 hours 19 minutes 45 seconds
Server load: 0.05 0.08 0.03
Total accesses: 3031946 - Total Traffic: 96.2 GB - Total Duration: 3703542616
CPU Usage: u110.83 s102.29 cu14538.6 cs3883.06 - 1.18% CPU load
1.91 requests/sec - 63.6 kB/second - 33.3 kB/request - 1221.51 ms/request
37 requests currently being processed, 17 idle workers
CR_.RKWCWCC.CCC._CKK__RCW_WC_K..R_R_W_R_.........C.._......_..KW
_._.......C....._..........RK_..K..._.......WC..................
................................................................
............................................W...................
................................................................
................................................................
................................W...............................
............................................W...................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1835608881/498/48735C
2.5360510279625.121.761579.23
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

1-1835694400/506/49540R
2.64170529505760.017.991672.56
61.151.164.141http/1.1pay.cmd5.la:443

2-1836169840/35/49115_
0.191126541169760.01.051617.23
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

3-18-0/0/49017.
0.005160522070370.00.001583.04
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

4-1835719170/444/48258R
2.3019209504081780.016.811610.67
183.192.179.27http/1.1pay.cmd5.la:443

5-1836169851/35/46331K
0.2130481935095.21.321504.93
218.68.91.77http/1.1pay.cmd5.la:443GET /.git/config HTTP/1.1

6-1835529640/602/46919W
3.3140508378140.027.361581.66
122.246.31.204http/1.1taobao.com.366999.com:80GET /s/hPbwkrjcg4DahPnx1s3W2uDUo8u0kfOFhfzvkK7rgq3QhPnx2Oe4VzDq

7-1835719251/466/46563C
2.4150465228022.120.111522.05
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

8-1836169860/34/47610W
0.2050517793500.01.641559.04
122.246.30.211http/1.1taobao.com.366999.com:80GET /item/WBqmQ9SQk0rYaq8Im8.html HTTP/1.1

9-1834768121/1302/47174C
7.1750504220802.173.041568.91
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

10-1836068721/167/44528C
0.9360503652242.14.831456.28
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

11-18-0/0/46607.
0.004900478147690.00.001519.40
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

12-1835749321/374/44511C
2.3660457291835.022.761500.10
218.68.87.36http/1.1pay.cmd5.la:443GET / HTTP/1.1

13-1834768131/1270/44177C
6.5950459117775.061.301427.18
61.241.47.147http/1.1pay.cmd5.la:443GET / HTTP/1.1

14-1835891201/278/40275C
1.4660435204925.011.961364.31
218.68.87.41http/1.1pay.cmd5.la:443GET / HTTP/1.1

15-18-0/0/43543.
0.008560461856540.00.001476.58
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

16-1835891220/287/41191_
1.4850439646580.010.721322.65
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

17-1836169891/35/43089C
0.2150440100452.11.301428.12
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

18-1836068741/150/39620K
1.0000414268482.29.331306.56
218.68.87.36http/1.1pay.cmd5.la:443GET /.env HTTP/1.1

19-1835507361/580/42530K
3.0600472116382.225.901386.27
218.68.87.36http/1.1pay.cmd5.la:443GET /debug/default/view?panel=config HTTP/1.1

20-1836090940/106/41934_
0.62130473770140.05.101372.42
218.68.87.80http/1.1pay.cmd5.la:443GET / HTTP/1.1

21-1836169900/34/38918_
0.141196398381520.01.201254.46
127.0.0.1http/1.1cmd5.la:443HEAD /cron/cmd5_sendmail.php?pwd=744578 HTTP/1.1

22-1836090970/112/38981R
0.61152440089800.04.911286.74
183.192.178.160http/1.1pay.cmd5.la:443

23-1835155691/885/41031C
4.7860457011975.137.991316.70
120.204.17.223http/1.1pay.cmd5.la:443GET / HTTP/1.1

24-1835243070/765/38911W
4.2060412815900.035.681304.10
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/ivbEkrfDRdv0yqzjsw-c-50020485-s-6-11.html HTTP/1.1

25-1836169910/33/37649_
0.1615221398474190.01.171218.74
122.246.30.31http/1.1taobao.com.366999.com:80GET /images/CxYxB0FOSh0KDyJZUxgMUQcMaxRdGUpQAg1qAkIYClMHByFYW0V

26-1835891370/283/36044W
1.3300414867330.011.911199.27
61.151.164.140http/1.1pay.cmd5.la:443GET /server-status HTTP/1.1

27-1835103081/941/35343C
4.9350402290672.143.591172.50
218.68.87.85http/1.1pay.cmd5.la:443GET / HTTP/1.1

28-1836090980/109/34500_
0.6615164372999150.07.171168.66
122.246.31.222http/1.1taobao.com.366999.com:80GET /images/CxYxB0FOSh0KDyJZUxgMUQcMaxRdGUpQAg1qAkIYClMHByFYW0V

29-1836091121/103/39543K
0.5800415883245.04.101250.06
117.68.3.38http/1.1cmd5.la:443GET /cache/yayataobao.txt HTTP/1.1

30-18-0/0/37392.
0.0020940393630570.00.001197.50
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

31-18-0/0/36926.
0.0023660367176660.00.001161.78
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

32-1836097260/96/37672R
0.53222367381510.05.051231.54
183.192.179.121http/1.1pay.cmd5.la:443

33-1835485870/562/34808_
3.0600342534310.027.111141.42
218.68.91.40http/1.1pay.cmd5.la:443GET / HTTP/1.1

34-1835485880/591/34116R
2.961696354587680.028.901101.45
101.91.62.171http/1.1pay.cmd5.la:443

35-1836097380/92/35655_
0.5714245354893860.04.861141.68
122.246.30.220http/1.1taobao.com.366999.com:80GET /images/CxYxB0FOSh0KDyJZUxgMUQcMaxRdGUpQAg1qAkIYClMHByFYW0d

36-1836097390/93/33798W
0.4560335206690.03.441092.06
122.246.31.49http/1.1taobao.com.366999.com:80GET /s/hurYkIjTgY75iuvW2vXp1cTSoOe4VzKrkvii-c-33-s-7-p-4-2.html

37-1836097510/96/36915_
0.487147352988200.03.741207.68
219.144.89.113http/1.1orz123.cn:443GET / HTTP/1.1

38-1836097540/93/32914R
0.53221340112810.03.391085.70
183.192.179.121http/1.1pay.cmd5.la:443

39-1836097550/104/33082_
0.55137197372666890.04.201061.92
122.246.31.173http/1.1taobao.com.366999.com:80GET /item/6WRGKauyxgyxr82HKd.html HTTP/1.1

40-18-0/0/33480.
0.005150371661250.00.001072.99
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

41-18-0/0/31829.
0.0080390321742280.00.001058.35
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

42-18-0/0/27685.
0.00130120269626830.00.00902.89
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

43-18-0/0/29816.
0.00130130328514670.00.00980.41
::1http/1.149.233.48.245:8090OPTIONS * HTTP/1.0

44-18-0/0/32025.
0.00

Found on 2023-03-11 14:40

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 153.0.228.203
Domain: pay.ddz.red
Port: 443
URL: https://pay.ddz.red

First seen 2023-03-04 04:47
Last seen 2024-03-03 05:16
Open for 365 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220c1217e8
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:nmgliangwei/pay.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[user]
	email = nmgliangwei@gmail.com
	name = nmgliangwei
```
  Found on 2024-03-03 05:16
  
  313 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 153.0.228.203
Domain: bgtudzh.cn
Port: 443
URL: https://bgtudzh.cn

First seen 2023-03-11 09:38
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dda99fb9ada99fb9ada99fb9ada99fb9a
```
Found 1 files trough .DS_Store spidering:

/static
```
  Found on 2023-03-11 09:38
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 153.0.228.203
Domain: expo.difute.com
Port: 443
URL: https://expo.difute.com

First seen 2023-03-10 14:48
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d29c9543a29c9543a29c9543a29c9543a
```
Found 1 files trough .DS_Store spidering:

/uploads
```
  Found on 2023-03-10 14:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 153.0.228.203
Domain: img.fenxs.cn
Port: 80
URL: http://img.fenxs.cn

First seen 2023-03-06 13:56
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af2472519eb8e80af258b98d30593a04a2cccff
```
Found 9 files trough .DS_Store spidering:

/.htaccess
/css
/favicon.ico
/index.php
/js
/mix-manifest.json
/robots.txt
/storage
/web.config
```
  Found on 2023-03-06 13:56
Create report

Domain summary

pay.cmd5.la 25 lzji.cn 11 ubug.io 7 www.ubug.io 5 www.frogenjoy.com 3 prepan.top 1 pay.ddz.red 1 bgtudzh.cn 1 expo.difute.com 1 img.fenxs.cn 1

10 recorded

Host 153.0.228.203

China

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

Apache server-status page is publicly available

Git configuration and history exposed

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Domain summary