LeakIX - Host 172.67.144.10

Host 172.67.144.10

United States

GMO-Z com NetDesign Holdings Co., Ltd.

Software information

CloudPanel 2.5.2

tcp/8443

cloudflare

tcp/443 tcp/80 tcp/8443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 172.67.144.10
Domain: poauth.oskabulut.com
Port: 443
URL: https://poauth.oskabulut.com

First seen 2025-11-08 09:29
Last seen 2026-01-09 08:29
Open for 61 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494739e5dbbd5cc72cd1b6d6680bc25385d941c0d0

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/AuthLookups/DeleteById/{id}
DELETE /api/AuthLookups/DeletesById
DELETE /api/Controllers/DeleteById/{id}
DELETE /api/Controllers/DeletesById
DELETE /api/Countries/DeleteById/{id}
DELETE /api/Countries/DeletesById
DELETE /api/Districtes/DeleteById/{id}
DELETE /api/Districtes/DeletesById
DELETE /api/Methods/DeleteById/{id}
DELETE /api/Methods/DeletesById
DELETE /api/Modules/DeleteById/{id}
DELETE /api/Modules/DeletesById
DELETE /api/Organization/DeleteById/{id}
DELETE /api/Organization/DeletesById
DELETE /api/Provinces/DeleteById/{id}
DELETE /api/Provinces/DeletesById
DELETE /api/RoleMethods/DeleteById/{id}
DELETE /api/RoleMethods/DeletesById
DELETE /api/Roles/DeleteById/{id}
DELETE /api/Roles/DeletesById
DELETE /api/UserRoles/DeleteById/{id}
DELETE /api/UserRoles/DeletesById
DELETE /api/Users/DeleteById/{id}
DELETE /api/Users/DeletesById
GET /WeatherForecast
GET /api/Auth/ActivateUser/{value}
GET /api/Auth/CheckUser
GET /api/AuthLookups
GET /api/AuthLookups/GetAllList
GET /api/AuthLookups/GetAllListByParentId/{id}
GET /api/AuthLookups/GetById/{id}
GET /api/AuthLookups/GetList
GET /api/AuthLookups/GetListByParentId/{id}
GET /api/AuthLookups/GetLookupItemChildsByKey/{key}
GET /api/AuthLookups/GetLookups
GET /api/AuthLookups/GetLookupsByKey/{key}
GET /api/AuthLookups/GetLookupsByParentId/{id}
GET /api/AuthLookups/GetTreeLookupItemsByKey
GET /api/AuthLookups/GetTreeNodeItemsByKey
GET /api/Controllers
GET /api/Controllers/GetAllList
GET /api/Controllers/GetAllListByParentId/{id}
GET /api/Controllers/GetById/{id}
GET /api/Controllers/GetList
GET /api/Controllers/GetListByParentId/{id}
GET /api/Controllers/GetLookups
GET /api/Controllers/GetLookupsByParentId/{id}
GET /api/Controllers/GetTreeListByParentId/{id}
GET /api/Countries
GET /api/Countries/GetAllList
GET /api/Countries/GetAllListByParentId/{id}
GET /api/Countries/GetById/{id}
GET /api/Countries/GetList
GET /api/Countries/GetListByParentId/{id}
GET /api/Countries/GetLookups
GET /api/Countries/GetLookupsByParentId/{id}
GET /api/Districtes
GET /api/Districtes/GetAllList
GET /api/Districtes/GetAllListByParentId/{id}
GET /api/Districtes/GetById/{id}
GET /api/Districtes/GetList
GET /api/Districtes/GetListByParentId/{id}
GET /api/Districtes/GetLookups
GET /api/Districtes/GetLookupsByParentId/{id}
GET /api/Methods
GET /api/Methods/GetAllList
GET /api/Methods/GetAllListByParentId/{id}
GET /api/Methods/GetById/{id}
GET /api/Methods/GetList
GET /api/Methods/GetListByParentId/{id}
GET /api/Methods/GetLookups
GET /api/Methods/GetLookupsByParentId/{id}
GET /api/Modules
GET /api/Modules/GetAllList
GET /api/Modules/GetAllListByParentId/{id}
GET /api/Modules/GetById/{id}
GET /api/Modules/GetList
GET /api/Modules/GetListByParentId/{id}
GET /api/Modules/GetLookups
GET /api/Modules/GetLookupsByParentId/{id}
GET /api/Modules/GetModulesByRoleId/{id}
GET /api/Modules/GetModulesByUserId/{id}
GET /api/Modules/GetTreeList
GET /api/Modules/GetTreeList/{id}
GET /api/Organization
GET /api/Organization/GetAllList
GET /api/Organization/GetAllListByParentId/{id}
GET /api/Organization/GetById/{id}
GET /api/Organization/GetChildList
GET /api/Organization/GetChildLookups
GET /api/Organization/GetLicenceById/{id}
GET /api/Organization/GetList
GET /api/Organization/GetListByParentId/{id}
GET /api/Organization/GetLogo
GET /api/Organization/GetLookups
GET /api/Organization/GetLookupsByParentId/{id}
GET /api/Organization/GetPendingApprovalCount
GET /api/Organization/GetPendingApprovalList
GET /api/Organization/GetSelfChildList
GET /api/Organization/GetSelfChildLookups
GET /api/Organization/GetTreeList/{id}
GET /api/Organization/GetTreeLookups
GET /api/Provinces
GET /api/Provinces/GetAllList
GET /api/Provinces/GetAllListByParentId/{id}
GET /api/Provinces/GetById/{id}
GET /api/Provinces/GetList
GET /api/Provinces/GetListByParentId/{id}
GET /api/Provinces/GetLookups
GET /api/Provinces/GetLookupsByParentId/{id}
GET /api/RoleMethods
GET /api/RoleMethods/GetAllList
GET /api/RoleMethods/GetAllListByParentId/{id}
GET /api/RoleMethods/GetById/{id}
GET /api/RoleMethods/GetList
GET /api/RoleMethods/GetListByParentId/{id}
GET /api/RoleMethods/GetLookups
GET /api/RoleMethods/GetLookupsByParentId/{id}
GET /api/RoleMethods/GetModulesByRoleId/{id}
GET /api/RoleMethods/GetRoleMethodsByRoleId/{id}
GET /api/Roles
GET /api/Roles/GetAllList
GET /api/Roles/GetAllListByParentId/{id}
GET /api/Roles/GetById/{id}
GET /api/Roles/GetList
GET /api/Roles/GetListByParentId/{id}
GET /api/Roles/GetLookups
GET /api/Roles/GetLookupsByParentId/{id}
GET /api/Roles/GetRolesByModuleId/{id}
GET /api/Roles/GetRolesWithoutUser/{id}
GET /api/Test
GET /api/UserRoles
GET /api/UserRoles/GetAllList
GET /api/UserRoles/GetAllListByParentId/{id}
GET /api/UserRoles/GetById/{id}
GET /api/UserRoles/GetList
GET /api/UserRoles/GetListByParentId/{id}
GET /api/UserRoles/GetLookups
GET /api/UserRoles/GetLookupsByParentId/{id}
GET /api/UserRoles/GetRoleUsers/{id}
GET /api/UserRoles/GetUserRoles/{id}
GET /api/Users
GET /api/Users/GetAllList
GET /api/Users/GetAllListByParentId/{id}
GET /api/Users/GetApprovedUsers
GET /api/Users/GetAvailableUsersByRoleId/{id}
GET /api/Users/GetById/{id}
GET /api/Users/GetList
GET /api/Users/GetListByParentId/{id}
GET /api/Users/GetListInfo
GET /api/Users/GetLookups
GET /api/Users/GetLookupsByParentId/{id}
GET /api/Users/GetPendingUsers
GET /api/Users/GetRejectedUsers
GET /api/Users/GetTableList
GET /api/Users/GetUserRoleKeys
GET /api/Users/HasUserByEmailOrgIdAsync/{email}
POST /api/Auth/ChangePassword
POST /api/Auth/CheckNewPasswordExpire
POST /api/Auth/FindCode
POST /api/Auth/ForgotPassword
POST /api/Auth/HasCompanyByEmail
POST /api/Auth/HasCompanyByName
POST /api/Auth/HasCompanyByPhone
POST /api/Auth/HasCompanyByTaxNo
POST /api/Auth/HasUserByEmail
POST /api/Auth/HasUserByIdNo
POST /api/Auth/HasUserByPhone
POST /api/Auth/NewPassword
POST /api/Auth/Register
POST /api/Auth/login
POST /api/Auth/logout
POST /api/AuthLookups/Add
POST /api/AuthLookups/Search
POST /api/Controllers/Add
POST /api/Controllers/Search
POST /api/Countries/Add
POST /api/Countries/Search
POST /api/Districtes/Add
POST /api/Districtes/Search
POST /api/Methods/Add
POST /api/Methods/Search
POST /api/Modules/Add
POST /api/Modules/Search
POST /api/Organization/Add
POST /api/Organization/AddWithFile
POST /api/Organization/Search
POST /api/Provinces/Add
POST /api/Provinces/Search
POST /api/RoleMethods/Add
POST /api/RoleMethods/AddRoleMethodForRole/{id}
POST /api/RoleMethods/Search
POST /api/Roles/Add
POST /api/Roles/Search
POST /api/UserRoles/Add
POST /api/UserRoles/AddRolesToUser
POST /api/UserRoles/AddUsersToRole
POST /api/UserRoles/Search
POST /api/Users/Add
POST /api/Users/ApproveUser
POST /api/Users/RejectUser
POST /api/Users/Search
PUT /api/AuthLookups/Update
PUT /api/Controllers/Update
PUT /api/Countries/Update
PUT /api/Districtes/Update
PUT /api/Methods/Update
PUT /api/Modules/Update
PUT /api/Organization/SetApprove
PUT /api/Organization/Update
PUT /api/Organization/UpdateLicence
PUT /api/Provinces/Update
PUT /api/RoleMethods/Update
PUT /api/Roles/Update
PUT /api/UserRoles/Update
PUT /api/Users/Update

Found on 2026-01-09 08:29

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: raccooncraft.uk
Port: 443
URL: https://raccooncraft.uk

First seen 2025-09-08 04:09
Last seen 2026-01-04 11:19
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2026-01-04 11:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: hbf.goshendao.com
Port: 443
URL: https://hbf.goshendao.com

First seen 2024-01-24 18:03
Last seen 2026-01-03 00:55
Open for 709 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b804e72a6fdbbd9b17b7f6f47d0ca56ec
```
Found 14 files trough .DS_Store spidering:

/android-chrome-192x192.png
/android-chrome-512x512.png
/apple-touch-icon.png
/BongBear 01.png
/BongBear 23.png
/BongBear 57.png
/BongBear 62.png
/favicon-16x16.png
/favicon-32x32.png
/favicon.ico
/Goshen_Horizontal_With_Color.png
/nectarine.gif
/site.webmanifest
/thirdweb.svg
```
  Found on 2026-01-03 00:55
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: mghkcuan.cc
Port: 443
URL: https://mghkcuan.cc

First seen 2024-12-14 03:49
Last seen 2026-01-02 23:28
Open for 384 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df139a1678

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/white
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/qr
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/va
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/Maintenance/gameMT
/template/alpha/desktop/assets/7winbet/img/Maintenance/games
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook

Found on 2026-01-02 23:28

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df2728235f

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg

Found on 2025-12-01 05:33

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193dd5522a3d95d73832101a8d379d81292

Found 36 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-29 11:19

Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45e7880e7d12ff5e81f47e5999206d7535

Found 30 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-23 02:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bd53ac2c85bb142a19dd6321012ce2ec5c

Found 38 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-11-16 22:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3dff993b044

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/white
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata

Found on 2025-11-08 19:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df431456ef

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino

Found on 2025-11-02 10:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c88c2190688c219061d32035ec632256a9804734eadc3f10c

Found 107 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-10-29 09:06

Severity: medium
Fingerprint: 5f32cf5d6962f09c8ee05d8b8ee05d8b6d0b3c2b5ae4df5b8f99131bdfdaadbd

Found 124 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-10-26 14:00

Severity: medium
Fingerprint: 5f32cf5d6962f09c778888b4778888b4254f9024ff9259f4f01f0310b01a7f46

Found 40 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-10-25 11:27

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3dfc70f6c7c

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88

Found on 2025-10-23 15:57

Severity: medium
Fingerprint: 5f32cf5d6962f09c2d9d96002d9d960017d08b18e5887b208f2546c491751e6e

Found 109 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot
/template/alpha/desktop/assets/klik99
/template/alpha/desktop/assets/klikslots
/template/alpha/desktop/assets/klubslot
/template/alpha/desktop/assets/koinid
/template/alpha/desktop/assets/koinslots
/template/alpha/desktop/assets/koinvegas
/template/alpha/desktop/assets/landslot
/template/alpha/desktop/assets/ligaplay88
/template/alpha/desktop/assets/maniaslot
/template/alpha/desktop/assets/megahoki88
/template/alpha/desktop/assets/nagagg
/template/alpha/desktop/assets/niagabet
/template/alpha/desktop/assets/nyalabet
/template/alpha/desktop/assets/permatabet
/template/alpha/desktop/assets/playslots88
/template/alpha/desktop/assets/powernet
/template/alpha/desktop/assets/qq88bet
/template/alpha/desktop/assets/shienslot
/template/alpha/desktop/assets/shiobet
/template/alpha/desktop/assets/simplebet8
/template/alpha/desktop/assets/slotasiabet
/template/alpha/desktop/assets/slotid88
/template/alpha/desktop/assets/slotsgg
/template/alpha/desktop/assets/stasiunplay
/template/alpha/desktop/assets/tester
/template/alpha/desktop/assets/tester2
/template/alpha/desktop/assets/tradisibet
/template/alpha/desktop/assets/ubocash
/template/alpha/desktop/assets/vegasgg
/template/alpha/desktop/assets/vegashoki88
/template/alpha/desktop/assets/vipbet88
/template/alpha/desktop/assets/visabet88
/template/alpha/desktop/assets/winslots8
/template/alpha/desktop/master
/template/alpha/mobile
/template/bolatangkas
/template/casino
/template/dewa21crypto
/template/dewagames
/template/dewatangkas
/template/idncash
/template/kdslots
/template/luckysafe
/template/tangkas
/template/template1
/web.config

Found on 2025-10-21 22:06

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df81606fa7

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/btpn.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/danamon.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/kospin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank/white
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bca.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bni.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/bri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/cimb.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/dana.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/gopay.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/jenius.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/linkaja.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mandiri.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/maybank.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/mega.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/ovo.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/panin.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/permata.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/qr
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo/va
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak

Found on 2025-10-19 05:02

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b766f95f5ff25d5e97fa1ae3df143f7f6e

Found 128 files trough .DS_Store spidering:

/css
/favicon.ico
/img
/img/placeholder
/index.php
/js
/mix-manifest.json
/plugins
/sw.js
/template
/template/alpha
/template/alpha/assets
/template/alpha/assets/css
/template/alpha/assets/favico
/template/alpha/assets/font
/template/alpha/assets/img
/template/alpha/assets/img/depositvirtual
/template/alpha/assets/img/depositvirtual/qr
/template/alpha/assets/img/download
/template/alpha/assets/img/games
/template/alpha/assets/img/icon
/template/alpha/assets/img/maintenance
/template/alpha/assets/img/maintenance/desktop
/template/alpha/assets/img/maintenance/mobile
/template/alpha/assets/js
/template/alpha/desktop
/template/alpha/desktop/assets
/template/alpha/desktop/assets/7winbet
/template/alpha/desktop/assets/7winbet/css
/template/alpha/desktop/assets/7winbet/img
/template/alpha/desktop/assets/7winbet/img/download
/template/alpha/desktop/assets/7winbet/img/esport
/template/alpha/desktop/assets/7winbet/img/esport/Auto Chess.webp
/template/alpha/desktop/assets/7winbet/img/esport/CSGO.webp
/template/alpha/desktop/assets/7winbet/img/esport/Dota 2.webp
/template/alpha/desktop/assets/7winbet/img/esport/esport-banner.webp
/template/alpha/desktop/assets/7winbet/img/esport/FIFA.webp
/template/alpha/desktop/assets/7winbet/img/esport/KOG.webp
/template/alpha/desktop/assets/7winbet/img/esport/LOL.webp
/template/alpha/desktop/assets/7winbet/img/esport/ML.webp
/template/alpha/desktop/assets/7winbet/img/esport/Overwatch.webp
/template/alpha/desktop/assets/7winbet/img/esport/PUBG.webp
/template/alpha/desktop/assets/7winbet/img/esport/Rainbow 6.webp
/template/alpha/desktop/assets/7winbet/img/esport/Star Craft.webp
/template/alpha/desktop/assets/7winbet/img/esport/Valorant.webp
/template/alpha/desktop/assets/7winbet/img/home
/template/alpha/desktop/assets/7winbet/img/home/Banner-min.webp
/template/alpha/desktop/assets/7winbet/img/home/Device.webp
/template/alpha/desktop/assets/7winbet/img/home/Easy-Steps.gif
/template/alpha/desktop/assets/7winbet/img/home/Live-Chat.webp
/template/alpha/desktop/assets/7winbet/img/home/Our Game
/template/alpha/desktop/assets/7winbet/img/home/Our Game/Idnlive
/template/alpha/desktop/assets/7winbet/img/home/Our Game/LiveCasino
/template/alpha/desktop/assets/7winbet/img/home/Provider
/template/alpha/desktop/assets/7winbet/img/idnlive
/template/alpha/desktop/assets/7winbet/img/livecasino
/template/alpha/desktop/assets/7winbet/img/logo
/template/alpha/desktop/assets/7winbet/img/logo/arrow-down.webp
/template/alpha/desktop/assets/7winbet/img/logo/arrow-up.webp
/template/alpha/desktop/assets/7winbet/img/logo/bank
/template/alpha/desktop/assets/7winbet/img/logo/bank-depo
/template/alpha/desktop/assets/7winbet/img/logo/bank-footer
/template/alpha/desktop/assets/7winbet/img/logo/bannervoucher-reseller.webp
/template/alpha/desktop/assets/7winbet/img/logo/BMM-Testlabs.webp
/template/alpha/desktop/assets/7winbet/img/logo/Caution.webp
/template/alpha/desktop/assets/7winbet/img/logo/cautious.webp
/template/alpha/desktop/assets/7winbet/img/logo/check.webp
/template/alpha/desktop/assets/7winbet/img/logo/cross.webp
/template/alpha/desktop/assets/7winbet/img/logo/favicon.webp
/template/alpha/desktop/assets/7winbet/img/logo/flag
/template/alpha/desktop/assets/7winbet/img/logo/history-game.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-uk.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag-vn.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-flag.webp
/template/alpha/desktop/assets/7winbet/img/logo/ico-id.webp
/template/alpha/desktop/assets/7winbet/img/logo/idnlive
/template/alpha/desktop/assets/7winbet/img/logo/logo.webp
/template/alpha/desktop/assets/7winbet/img/logo/new-bonus-dwb.gif
/template/alpha/desktop/assets/7winbet/img/logo/no-enter.webp
/template/alpha/desktop/assets/7winbet/img/logo/Pagcor.webp
/template/alpha/desktop/assets/7winbet/img/logo/ring-bell.webp
/template/alpha/desktop/assets/7winbet/img/logo/slots
/template/alpha/desktop/assets/7winbet/img/logo/tembak
/template/alpha/desktop/assets/7winbet/img/logo/template-background.webp
/template/alpha/desktop/assets/7winbet/img/logo/voucher88.webp
/template/alpha/desktop/assets/7winbet/img/Maintenance
/template/alpha/desktop/assets/7winbet/img/poker
/template/alpha/desktop/assets/7winbet/img/referral
/template/alpha/desktop/assets/7winbet/img/register
/template/alpha/desktop/assets/7winbet/img/Slots
/template/alpha/desktop/assets/7winbet/img/Sportbook
/template/alpha/desktop/assets/7winbet/img/tangkas
/template/alpha/desktop/assets/7winbet/img/tembak
/template/alpha/desktop/assets/7winbet/img/togel
/template/alpha/desktop/assets/ajaibslots
/template/alpha/desktop/assets/alphaslot88
/template/alpha/desktop/assets/anekaslots
/template/alpha/desktop/assets/areaslots
/template/alpha/desktop/assets/asianwin88
/template/alpha/desktop/assets/betcoin
/template/alpha/desktop/assets/bethoki77
/template/alpha/desktop/assets/betslots88
/template/alpha/desktop/assets/bolagg
/template/alpha/desktop/assets/capital303
/template/alpha/desktop/assets/caspo777
/template/alpha/desktop/assets/cemeslot
/template/alpha/desktop/assets/coin303
/template/alpha/desktop/assets/dash86
/template/alpha/desktop/assets/dewata
/template/alpha/desktop/assets/duniabet
/template/alpha/desktop/assets/enterslots
/template/alpha/desktop/assets/exabet88
/template/alpha/desktop/assets/gaskeunbet
/template/alpha/desktop/assets/gladiator88
/template/alpha/desktop/assets/gobetasia
/template/alpha/desktop/assets/holyslots
/template/alpha/desktop/assets/ibetwin
/template/alpha/desktop/assets/idncash
/template/alpha/desktop/assets/idngg
/template/alpha/desktop/assets/ihokibet
/template/alpha/desktop/assets/ilucky88
/template/alpha/desktop/assets/indogame888
/template/alpha/desktop/assets/indoslots
/template/alpha/desktop/assets/jagoslots
/template/alpha/desktop/assets/javaplay88
/template/alpha/desktop/assets/kemonbet
/template/alpha/desktop/assets/kerabatslot

Found on 2025-10-13 02:30

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: learningjaguar.com
Port: 443
URL: https://learningjaguar.com

First seen 2025-08-19 11:23
Last seen 2026-01-02 22:50
Open for 136 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2026-01-02 22:50
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: goblinminer.goshendao.com
Port: 443
URL: https://goblinminer.goshendao.com

First seen 2024-03-12 12:18
Last seen 2026-01-02 21:21
Open for 661 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a0dbac5c7382ab438f37f2b7a94cdfb347
```
Found 13 files trough .DS_Store spidering:

/10.png
/11.png
/8.png
/9.png
/android-chrome-192x192.png
/android-chrome-512x512.png
/apple-touch-icon.png
/blue_crystal.gif
/favicon-16x16.png
/favicon-32x32.png
/favicon.ico
/site.webmanifest
/thirdweb.svg
```
  Found on 2026-01-02 21:21
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: dagop.dagiles.co.uk
Port: 443
URL: https://dagop.dagiles.co.uk

First seen 2023-10-10 10:50
Last seen 2026-01-02 19:39
Open for 815 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522c2f4ae7f

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:tomgrant1310/DAGOP.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
	vscode-merge-base = origin/master
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	bugfix = bugfix/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[gitflow "path"]
	hooks = /home/dagop/.git/hooks

Found on 2026-01-02 19:39

531 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227852807f

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:tomgrant1310/DAGOP.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	bugfix = bugfix/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[gitflow "path"]
	hooks = /home/dagop/.git/hooks

Found on 2024-08-05 02:09

496 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: learningjaguar.com
Port: 8443
URL: https://learningjaguar.com:8443

First seen 2025-08-19 11:23
Last seen 2026-01-02 18:56
Open for 136 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2026-01-02 18:56
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: explore.museumca.org
Port: 80
URL: http://explore.museumca.org

First seen 2024-01-02 13:41
Last seen 2026-01-02 17:00
Open for 731 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222726f193
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	fetch = +refs/heads/*:refs/remotes/origin/*
	url = https://kbenedicto@bitbucket.org/omca/explore.git
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 17:00
  
  274 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: pecem.sat.gobmx.pw
Port: 443
URL: https://pecem.sat.gobmx.pw

First seen 2025-12-05 14:47
Last seen 2026-01-02 14:47
Open for 28 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522bdc99d48
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Flighelephant33/pre-sistema-jenny.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 14:47
  
  355 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: pecem.sat.gobmx.pw
Port: 80
URL: http://pecem.sat.gobmx.pw

First seen 2025-12-02 17:14
Last seen 2026-01-02 14:47
Open for 30 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522bdc99d48
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://github.com/Flighelephant33/pre-sistema-jenny.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
```
  Found on 2026-01-02 14:47
  
  355 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: budgetharborx.com
Port: 443
URL: https://budgetharborx.com

First seen 2025-09-19 18:55
Last seen 2026-01-02 10:57
Open for 104 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522975c2c20
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:900direct/core.git
	fetch = +refs/heads/master:refs/remotes/origin/master
[branch "master"]
	remote = origin
	merge = refs/heads/master
[lfs]
	repositoryformatversion = 0
```
  Found on 2026-01-02 10:57
  
  303 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: explore.museumca.org
Port: 443
URL: https://explore.museumca.org

First seen 2024-01-02 13:41
Last seen 2026-01-02 06:41
Open for 730 days
- Severity: high
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222726f193
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	fetch = +refs/heads/*:refs/remotes/origin/*
	url = https://kbenedicto@bitbucket.org/omca/explore.git
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2026-01-02 06:41
  
  274 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: gizemdoganbeautystudio.com
Port: 80
URL: http://gizemdoganbeautystudio.com

First seen 2025-08-29 15:33
Last seen 2026-01-01 07:13
Open for 124 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522525aa14a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://git.kodfu.com/Kodfu/superpare-landing.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
[branch "live"]
	remote = origin
	merge = refs/heads/live
```
  Found on 2026-01-01 07:13
  
  328 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: 336703.com
Port: 80
URL: http://336703.com

First seen 2025-09-25 10:48
Last seen 2025-12-26 18:56
Open for 92 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87723895af61cd42b26629229826d7fb797e
```
Found 11 files trough .DS_Store spidering:

/imgs
/imgs/android_btn.png
/imgs/bg.png
/imgs/continue_btn.png
/imgs/corp.png
/imgs/faviconk8.ico
/imgs/ios_btn.png
/imgs/logo.png
/imgs/sponsors-1.png
/imgs/sponsors-2.png
/imgs/sponsors-3.png
```
  Found on 2025-12-26 18:56
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.144.10
Domain: anlpharmaceuticals.com
Port: 443
URL: https://anlpharmaceuticals.com

First seen 2025-05-28 15:22
Last seen 2025-12-26 05:19
Open for 211 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3126118d7826118d787adafda3

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.11)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 26-Dec-2025 05:20:22 UTC
Restart Time: Tuesday, 09-Dec-2025 06:24:27 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  16 days 22 hours 55 minutes 54 seconds
Server load: 1.73 1.06 0.91
Total accesses: 45973976 - Total Traffic: 32.8 GB
CPU Usage: u120.82 s15.55 cu0 cs0 - .00931% CPU load
31.4 requests/sec - 23.5 kB/second - 766 B/request
26 requests currently being processed, 5 idle workers
__KKKK_KKK_CKKKCWKWWCKK_KWCKKKK.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-04086470/191/1290939_
2.750140.00.15950.12
10.161.117.240172.17.0.11:80NULL

1-04086260/289/1287042_
3.810130.00.20945.07
10.161.117.240172.17.0.11:80GET /wp/wp-admin/install.php HTTP/1.1

2-04086991/9/1285731K
0.494150.80.01941.92
10.161.117.203172.17.0.11:80GET / HTTP/1.1

3-04086532/178/1275598K
2.503142.00.14935.83
10.161.117.131172.17.0.11:80GET / HTTP/1.1

4-04087061/2/1277810K
0.420130.80.00935.03
10.161.117.164172.17.0.11:80GET / HTTP/1.1

5-04087001/9/1248975K
0.473111.10.01915.44
10.161.117.203172.17.0.11:80GET /wp-admin/setup-config.php HTTP/1.1

6-04086900/26/1256586_
0.680120.00.02920.86
10.161.117.203172.17.0.11:80GET /blog/.env HTTP/1.1

7-04086921/107/1244459K
1.693160.90.08913.03
10.161.117.240172.17.0.11:80GET / HTTP/1.1

8-040870157/60/1241175K
1.070840.60.04907.99
10.161.117.131172.17.0.11:80GET /wp-content/uploads/ HTTP/1.1

9-04087021/7/1229659K
0.433181.20.01900.63
10.161.117.164172.17.0.11:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

10-04086560/133/1224589_
1.950130.00.10897.32
10.161.117.240172.17.0.11:80NULL

11-04086813/75/1223468C
1.260134.00.06895.59
10.161.117.203172.17.0.11:80NULL

12-04087071/2/1211669K
0.390130.70.00887.08
10.161.117.131172.17.0.11:80GET / HTTP/1.1

13-04087081/1/1197353K
0.4004301.10.00878.45
10.161.117.203172.17.0.11:80GET /favicon.ico HTTP/1.1

14-040865192/251/1186798K
3.410751.50.17868.52
10.161.117.164172.17.0.11:80GET /777.php HTTP/1.1

15-04086831/115/1183413C
1.801150.70.08865.07
10.161.117.240172.17.0.11:80GET /cgi-bin/.env HTTP/1.1

16-04087090/0/1175368W
2.72000.00.00859.21
10.161.117.164172.17.0.11:80GET / HTTP/1.1

17-04087031/8/1144182K
0.473110.80.01842.63
10.161.117.164172.17.0.11:80GET / HTTP/1.1

18-04087100/0/1137192W
0.99000.00.00833.40
10.161.117.131172.17.0.11:80GET /config/*.json HTTP/1.1

19-04087040/10/1126010W
0.49000.00.01826.18
10.161.117.164172.17.0.11:80GET /server-status HTTP/1.1

20-04086711/46/1107928C
0.940120.80.04812.46
10.161.117.203172.17.0.11:80NULL

21-040867216/74/1099604K
1.250129.00.06805.40
10.161.117.164172.17.0.11:80GET /wp-includes/images/ HTTP/1.1

22-04086291/114/1079403K
1.803120.50.10791.48
10.161.117.164172.17.0.11:80HEAD / HTTP/1.1

23-04087110/0/1058609_
0.40000.00.00779.20
10.161.117.240

24-04086941/17/1037447K
0.560150.90.01758.82
10.161.117.131172.17.0.11:80HEAD / HTTP/1.1

25-04087120/0/1027559W
0.77000.00.00750.50
10.161.117.203172.17.0.11:80GET / HTTP/1.1

26-04086951/103/1002450C
1.490141.10.03730.16
10.161.117.240172.17.0.11:80GET / HTTP/1.1

27-04086961/12/961017K
0.520130.60.01703.10
10.161.117.203172.17.0.11:80GET / HTTP/1.1

28-040861513/316/947202K
4.140119.20.23690.64
10.161.117.164172.17.0.11:80GET /info.php HTTP/1.1

29-04086971/15/906882K
0.560131.00.01660.08
10.161.117.240172.17.0.11:80GET / HTTP/1.1

30-040869875/79/885501K
1.2701242.30.04645.92
10.161.117.240172.17.0.11:80GET /v2.php HTTP/1.1

31-0-0/0/851605.
1.509500.00.00621.71
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

32-0-0/0/822178.
0.437700.00.00598.69
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

33-0-0/0/785692.
0.3988900.00.00572.53
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

34-0-0/0/743732.
0.7586100.00.00542.02
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

35-0-0/0/711073.
0.5088100.00.00517.00
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

36-0-0/0/657072.
0.6582900.00.00479.86
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

37-0-0/0/614662.
0.4188200.00.00446.36
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

38-0-0/0/594941.
0.5185700.00.00431.53
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

39-0-0/0/533237.
1.12113200.00.00386.68
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

40-0-0/0/478551.
0.70113100.00.00345.53
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

41-0-0/0/425889.
1.89312300.00.00308.62
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

42-0-0/0/386438.
0.44321900.00.00279.50
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

43-0-0/0/347155.
0.36323800.00.00251.36
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

44-0-0/0/304012.
0.40322000.00.00219.31
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

45-0-0/0/271711.
0.69317200.00.00196.37
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

46-0-0/0/242313.
0.57319400.00.00174.57
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

47-0-0/0/205485.
2.18306000.00.00148.86
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

48-0-0/0/173946.
0.46320600.00.00124.61
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

49-0-0/0/152088.
1.91296600.00.00110.11
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

50-0-0/0/135550.
0.00323900.00.0097.08
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

51-0-0/0/111363.
0.38321500.00.0080.33
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

52-0-0/0/89552.
0.46320400.00.0066.36
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

53-0-0/0/75813.
0.401041400.00.0054.77
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

54-0-0/0/72919.
0.401042800.00.0052.12
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

55-0-0/0/57072.
0.491040000.00.0041.55
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

56-0-0/0/48680.
1.391145100.00.0035.39
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

57-0-0/0/49722.
0.451161600.00.0036.22
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

58-0-0/0/44099.
0.391162400.00.0031.70
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

59-0-0/0/34505.
0.381162800.00.0025.11
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

60-0-0/0/37014.
0.001163900.00.0026.70
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

61-0-0/0/30517.
0.4211632

Found on 2025-12-26 05:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae1fb3b8090

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Monday, 22-Dec-2025 05:31:07 UTC
Restart Time: Tuesday, 09-Dec-2025 06:24:47 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 days 23 hours 6 minutes 19 seconds
Server load: 3.57 3.43 3.29
Total accesses: 35947955 - Total Traffic: 25.7 GB
CPU Usage: u92.19 s7.37 cu0 cs0 - .00889% CPU load
32.1 requests/sec - 24.0 kB/second - 766 B/request
18 requests currently being processed, 9 idle workers
KKCCKKKKK__KCK_K_K_C__.._...C.W......_.K........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-03030581/128/1040095K
1.11370.90.10762.72
10.161.117.164172.17.0.7:80GET /cy.php HTTP/1.1

1-030293749/663/1040096K
4.644627.10.47764.67
10.161.117.164172.17.0.7:80GET /rh.php HTTP/1.1

2-03030611/17/1034931C
0.36070.60.01757.88
10.161.117.203172.17.0.7:80NULL

3-03030381/74/1019836C
0.75071.00.06751.45
10.161.117.203172.17.0.7:80GET http://www.tryout.com/1/2/jobs/jobs/jobs/contact_us/contact

4-03030671/4/1017695K
0.29470.90.00742.91
10.161.117.131172.17.0.7:80GET /robots.txt HTTP/1.1

5-03030401/130/1005602K
1.12461.00.10736.29
10.161.117.131172.17.0.7:80GET / HTTP/1.1

6-030306210/24/1010254K
0.420137.60.02741.07
10.161.117.164172.17.0.7:80GET / HTTP/1.1

7-03030211/83/1000094K
0.84160.90.07733.49
10.161.117.164172.17.0.7:80GET /content.php HTTP/1.1

8-03030421/42/990243K
0.53471.20.04726.31
10.161.117.240172.17.0.7:80GET /?fbclid=IwZXh0bgNhZW0CMTEAc3J0YwZhcHBfaWQMMjU2MjgxMDQwNTU4

9-03030600/25/982700_
0.44080.00.02720.14
10.161.117.164172.17.0.7:80NULL

10-03030630/17/973927_
0.36080.00.01712.19
10.161.117.240172.17.0.7:80GET http://www.tryout.com/1/2/jobs/jobs/jobs/jobs/contact_us/pr

11-03030432/124/961052K
1.06381.50.08704.43
10.161.117.203172.17.0.7:80GET / HTTP/1.1

12-03029651/504/960580C
3.58071.10.35704.09
10.161.117.164172.17.0.7:80GET / HTTP/1.1

13-030306467/69/951696K
0.690849.40.05696.61
10.161.117.240172.17.0.7:80GET /wp-admin/css/colors/blue/about.php HTTP/1.1

14-03030650/29/955993_
0.47070.00.02700.43
10.161.117.131172.17.0.7:80GET / HTTP/1.1

15-030304413/42/932004K
0.540718.90.04684.06
10.161.117.131172.17.0.7:80POST /wp-login.php HTTP/1.1

16-03030450/41/921578_
0.54070.00.04675.02
10.161.117.203172.17.0.7:80NULL

17-03030681/4/908394K
0.29081.10.00664.08
10.161.117.131172.17.0.7:80GET / HTTP/1.1

18-03030660/9/904459_
0.32060.00.01661.54
10.161.117.164172.17.0.7:80GET /robots.txt HTTP/1.1

19-03030231/147/892550C
1.22171.40.10652.48
10.161.117.203172.17.0.7:80NULL

20-03030690/2/882772_
0.28090.00.00646.83
10.161.117.203172.17.0.7:80GET http://ottawamortgageexpert.ca/kerri-raymond/affordability-

21-03029040/337/878897_
2.69080.00.35644.14
10.161.117.131172.17.0.7:80GET http://ottawamortgageexpert.ca/kerri-raymond/affordability-

22-0-0/0/853524.
0.603200.00.00627.65
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

23-0-0/0/849034.
0.279100.00.00621.02
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

24-03030490/43/843215_
0.540100.00.03615.55
10.161.117.240172.17.0.7:80GET /__media__/js/netsoltrademark.php?d=gayporno.online/searche

25-0-0/0/799232.
2.156000.00.00584.48
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

26-0-0/0/791079.
0.387600.00.00580.71
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

27-0-0/0/764388.
0.269700.00.00558.02
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

28-03029551/411/739670C
3.03000.20.35540.04
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

29-0-0/0/724019.
0.288800.00.00527.74
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

30-03030531/125/696323W
1.08001.00.09509.29
10.161.117.240172.17.0.7:80GET /server-status HTTP/1.1

31-0-0/0/671228.
0.316200.00.00487.54
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

32-0-0/0/629290.
1.638900.00.00459.04
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

33-0-0/0/594722.
0.259600.00.00432.78
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

34-0-0/0/563525.
2.047500.00.00410.99
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

35-0-0/0/525499.
0.444800.00.00382.60
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

36-0-0/0/496801.
0.009800.00.00360.27
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

37-03030310/257/465045_
1.96060.00.19337.76
10.161.117.131172.17.0.7:80GET /index.php?a=2&b=1&lang=1904&lbu=13379084&p=13086&pp=18793 

38-0-0/0/429753.
0.3612000.00.00310.97
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

39-03030331/168/398168K
1.36080.90.13288.52
10.161.117.203172.17.0.7:80GET / HTTP/1.1

40-0-0/0/345911.
0.3113300.00.00252.49
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

41-0-0/0/312336.
0.399300.00.00226.24
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

42-0-0/0/279671.
0.2764000.00.00202.41
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0-0/0/252039.
0.0064800.00.00181.31
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

44-0-0/0/211764.
1.0633700.00.00151.73
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/187857.
0.3563500.00.00136.81
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/163654.
0.3061700.00.00118.19
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-0-0/0/125115.
0.2963100.00.0089.82
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

48-0-0/0/111304.
1.2951200.00.0080.40
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0-0/0/96724.
0.2962300.00.0070.41
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/80754.
0.6057700.00.0057.99
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/66552.
0.2763200.00.0047.97
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/64038.
0.2763600.00.0046.19
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/48934.
1.1449700.00.0035.27
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/47115.
0.0064700.00.0033.84
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/39483.
0.3094800.00.0029.37
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/37810.
1.3471000.00.0027.17
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/27867.
0.3791000.00.0020.08
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/27208.
0.0097100.00.0019.36
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

59-0-0/0/31374.
0.422207400.00.0022.40
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

60-0-0/0/26245.
0.282218500.00.0018.70
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

61

Found on 2025-12-22 05:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3125118b9725118b97188d5765

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.10)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 02-Nov-2025 13:04:12 UTC
Restart Time: Tuesday, 07-Oct-2025 19:25:43 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  25 days 17 hours 38 minutes 29 seconds
Server load: 1.76 2.59 3.09
Total accesses: 51528015 - Total Traffic: 36.2 GB
CPU Usage: u92.91 s12.08 cu0 cs0 - .00472% CPU load
23.2 requests/sec - 17.1 kB/second - 754 B/request
18 requests currently being processed, 8 idle workers
_KK_K_KKK_K_KK.C.K..K.__W._.C....K.K.K......K...................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-06363870/152/1466525_
1.24070.00.111059.20
10.161.117.131172.17.0.10:80GET / HTTP/1.1

1-063634170/250/1470857K
1.950641.30.161059.60
10.161.117.131172.17.0.10:80GET /article.php HTTP/1.1

2-063641672/77/1449063K
0.730741.60.051046.71
10.161.117.240172.17.0.10:80GET /wp-includes/fonts/themes.php HTTP/1.1

3-06364240/8/1459921_
0.350100.00.011049.54
10.161.117.203172.17.0.10:80GET / HTTP/1.1

4-06364141/44/1436900K
0.56270.90.041034.54
10.161.117.131172.17.0.10:80GET / HTTP/1.1

5-06364250/0/1431665_
0.42000.00.001030.98
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

6-06364181/25/1423032K
0.44180.90.021024.66
10.161.117.164172.17.0.10:80GET / HTTP/1.1

7-06364191/17/1399490K
0.37170.80.021010.19
10.161.117.203172.17.0.10:80GET /robots.txt HTTP/1.1

8-06363561/89/1402401K
0.87071.20.081011.05
10.161.117.131172.17.0.10:80GET /assets/images/thumbnails/assets/templates/common-core/lib/

9-06364200/19/1387102_
0.38090.00.021001.20
10.161.117.164172.17.0.10:80GET /abcd.php HTTP/1.1

10-06364151/28/1380105K
0.51170.80.03992.76
10.161.117.164172.17.0.10:80GET /pmonachello HTTP/1.1

11-06364210/13/1386297_
0.35170.00.011000.55
10.161.117.240172.17.0.10:80GET /favicon.ico HTTP/1.1

12-063642227/29/1370535K
0.450717.50.02987.19
10.161.117.164172.17.0.10:80GET /wp-includes/block-patterns/index.php HTTP/1.1

13-063642310/18/1355032K
0.40086.40.01975.80
10.161.117.203172.17.0.10:80GET /wp-content/plugins/seoplugins/index.php HTTP/1.1

14-0-0/0/1330412.
1.781400.00.00957.98
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

15-06363931/62/1331554C
0.67181.00.05959.39
10.161.117.203172.17.0.10:80GET /servlet/Cart?cart_id=10567923// HTTP/1.1

16-0-0/0/1320379.
2.667300.00.00950.77
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

17-06363941/59/1302386K
0.69260.60.06938.88
10.161.117.164172.17.0.10:80GET / HTTP/1.1

18-0-0/0/1282960.
0.3710200.00.00925.54
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

19-0-0/0/1273699.
0.968900.00.00916.28
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

20-06363961/50/1263132K
0.62471.20.05908.13
10.161.117.203172.17.0.10:80GET /wp-admin/setup-config.php HTTP/1.1

21-0-0/0/1240898.
0.309200.00.00896.42
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

22-06363990/40/1227369_
0.53080.00.04884.01
10.161.117.240172.17.0.10:80GET /index.php/blog?format=feed&type=rss HTTP/1.1

23-06363330/228/1204469_
1.76070.00.18867.71
10.161.117.164172.17.0.10:80GET / HTTP/1.1

24-06363745/198/1182639W
1.55005.10.12851.04
10.161.117.131172.17.0.10:80GET /server-status HTTP/1.1

25-0-0/0/1156891.
1.131300.00.00834.41
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

26-06364010/44/1135743_
0.56060.00.04815.17
10.161.117.164172.17.0.10:80GET /.config.yaml HTTP/1.1

27-0-0/0/1097850.
1.193300.00.00790.94
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

28-06364021/46/1071146C
0.56061.20.04771.89
10.161.117.203172.17.0.10:80NULL

29-0-0/0/1025781.
0.279700.00.00736.71
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

30-0-0/0/984736.
0.279900.00.00706.87
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

31-0-0/0/956939.
0.269800.00.00685.79
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

32-0-0/0/904171.
1.558100.00.00649.28
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

33-06363591/116/863238K
1.06171.10.10617.48
10.161.117.131172.17.0.10:80GET /index.php/vod/detail/id/52787.html HTTP/1.1

34-0-0/0/805197.
0.923100.00.00578.64
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

35-06364061/35/758857K
0.49081.10.03544.95
10.161.117.240172.17.0.10:80GET /sammy-jenkins/?utm_source=rss&utm_medium=rss&utm_campaign=

36-0-0/0/713844.
0.2610300.00.00512.17
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

37-06364086/35/664195K
0.48373.40.03476.22
10.161.117.203172.17.0.10:80GET /file17.php HTTP/1.1

38-0-0/0/618592.
1.114900.00.00442.21
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

39-0-0/0/568716.
1.741100.00.00406.39
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

40-0-0/0/499692.
0.309400.00.00357.20
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

41-0-0/0/451890.
0.336900.00.00321.71
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

42-0-0/0/404726.
0.2610000.00.00287.16
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

43-0-0/0/354410.
0.624100.00.00252.34
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

44-063641216/47/319122K
0.581710.10.04226.83
10.161.117.203172.17.0.10:80GET /.well-known/worksec.php HTTP/1.1

45-0-0/0/265571.
1.5012000.00.00188.25
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

46-0-0/0/239078.
1.1136000.00.00170.56
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

47-0-0/0/205345.
1.2348800.00.00145.32
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

48-0-0/0/174375.
0.3365400.00.00123.94
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

49-0-0/0/164075.
0.5099900.00.00117.19
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

50-0-0/0/135105.
0.30106400.00.0096.00
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

51-0-0/0/121818.
0.30106700.00.0086.47
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

52-0-0/0/99347.
0.30105300.00.0071.15
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

53-0-0/0/95949.
1.4570100.00.0068.37
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

54-0-0/0/89029.
0.42100600.00.0063.39
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

55-0-0/0/80541.
0.35408400.00.0057.09
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

56-0-0/0/67330.
0.43403900.00.0048.12
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

57-0-0/0/57310.
0.29410800.00.0041.04
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

58-0-0/0/56763.
0.34408700.00.0040.42
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

59-0-0/0/49478.
0.38406400.00.0035.01
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

60-0-0/0/41708.
0.27413400.00.0030.3

Found on 2025-11-02 13:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae12f0ec035

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 10-Oct-2025 17:14:55 UTC
Restart Time: Tuesday, 07-Oct-2025 19:24:42 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 21 hours 50 minutes 12 seconds
Server load: 3.25 3.36 3.37
Total accesses: 4461695 - Total Traffic: 3.3 GB
CPU Usage: u70.71 s5.04 cu0 cs0 - .0301% CPU load
17.7 requests/sec - 13.6 kB/second - 787 B/request
22 requests currently being processed, 8 idle workers
KK_WKKK__K__.K.K_KC..KK_K.K..CC.._.KK.K.KK......................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0674871/17/143970K
0.431120.70.01107.67
10.161.117.240172.17.0.7:80GET /.env HTTP/1.1

1-06749488/90/146307K
0.990968.10.07109.28
10.161.117.164172.17.0.7:80GET /alfa.php HTTP/1.1

2-0674950/9/141692_
0.320100.00.01106.29
10.161.117.164

3-0674700/72/140084W
0.87000.00.04104.92
10.161.117.131172.17.0.7:80GET /server-status HTTP/1.1

4-0674961/35/138580K
0.574111.20.02103.94
10.161.117.240172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

5-0674401/57/138444K
0.80291.00.05104.67
10.161.117.131172.17.0.7:80GET / HTTP/1.1

6-0673731/255/137438K
2.543110.80.18103.42
10.161.117.203172.17.0.7:80GET / HTTP/1.1

7-0675040/2/136096_
0.26070.00.00103.15
10.161.117.240172.17.0.7:80GET / HTTP/1.1

8-0674720/17/139526_
0.390130.00.01103.75
10.161.117.164172.17.0.7:80NULL

9-0674581/153/133006K
1.582111.20.10100.96
10.161.117.203172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

10-0674490/92/136213_
1.10080.00.07101.84
10.161.117.131172.17.0.7:80GET / HTTP/1.1

11-0674980/36/132728_
0.530120.00.0299.37
10.161.117.164172.17.0.7:80NULL

12-0-0/0/129460.
0.251700.00.0097.91
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

13-0674572/159/131216K
1.653111.30.1098.27
10.161.117.131172.17.0.7:80GET /wp-login.php HTTP/1.1

14-0-0/0/129359.
0.001800.00.0097.24
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

15-0675011/6/130409K
0.291100.90.0197.91
10.161.117.164172.17.0.7:80GET / HTTP/1.1

16-0674600/33/129476_
0.520110.00.0397.40
10.161.117.240172.17.0.7:80GET / HTTP/1.1

17-0675021/5/123771K
0.313120.90.0093.94
10.161.117.164172.17.0.7:80GET /ads.txt HTTP/1.1

18-0674651/86/121442C
1.001101.00.0591.35
10.161.117.203172.17.0.7:80NULL

19-0-0/0/118822.
2.241600.00.0090.41
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

20-0-0/0/118994.
0.24900.00.0089.47
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

21-0674671/35/119769K
0.571120.90.0390.05
10.161.117.164172.17.0.7:80GET / HTTP/1.1

22-0674681/120/113712K
1.31060.90.0985.82
10.161.117.203172.17.0.7:80GET /install.php HTTP/1.1

23-0674760/18/111098_
0.41060.00.0283.82
10.161.117.240

24-06743081/164/108037K
1.6801155.30.1281.20
10.161.117.203172.17.0.7:80GET /pages.php HTTP/1.1

25-0-0/0/105303.
0.805400.00.0078.80
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

26-0674771/23/101362K
0.43291.20.0276.22
10.161.117.203172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

27-0-0/0/90958.
0.3038100.00.0068.57
10.161.117.131172.17.0.7:80NULL

28-0-0/0/95228.
0.274200.00.0071.07
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

29-0674781/16/81774C
0.39070.90.0161.68
10.161.117.131172.17.0.7:80NULL

30-0674791/18/80057C
0.410131.00.0260.00
10.161.117.131172.17.0.7:80NULL

31-0-0/0/76733.
3.674500.00.0057.50
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

32-0-0/0/68080.
2.201400.00.0051.20
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

33-0674800/18/64329_
0.400120.00.0248.01
10.161.117.240172.17.0.7:80NULL

34-0-0/0/57247.
0.401500.00.0042.91
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

35-0674822/17/51031K
0.40191.60.0238.04
10.161.117.131172.17.0.7:80GET / HTTP/1.1

36-0674371/193/46404K
1.971100.80.1334.61
10.161.117.131172.17.0.7:80GET / HTTP/1.1

37-0-0/0/42587.
0.005500.00.0031.65
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

38-0674841/18/34450K
0.412101.20.0225.52
10.161.117.164172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

39-0-0/0/32270.
0.264000.00.0023.96
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

40-0674861/16/26742K
0.382100.90.0119.78
10.161.117.131172.17.0.7:80GET / HTTP/1.1

41-0673981/257/24515K
2.56471.20.1818.32
10.161.117.240172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

42-0-0/0/21472.
0.264300.00.0015.80
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0-0/0/12432.
1.736500.00.009.21
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

44-0-0/0/11554.
0.3954900.00.008.17
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/10081.
0.6345100.00.007.58
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/9377.
0.4050000.00.006.88
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-0-0/0/8567.
0.00558200.00.006.20
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

48-0-0/0/5912.
0.64544900.00.004.55
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0-0/0/5262.
0.26557200.00.003.88
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/5126.
0.85550900.00.003.72
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/4144.
0.27556900.00.003.15
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/3986.
0.25558000.00.002.85
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/3274.
1.51534300.00.002.43
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/2824.
0.34553900.00.002.00
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/1554.
0.29556700.00.001.22
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/1375.
1.15553200.00.001.02
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/3276.
0.28557600.00.002.38
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/1989.
0.281167900.00.001.43
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

59-0-0/0/1367.
0.001170600.00.000.96
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

60-0-0/0/927.
1.011149000.00.000.72
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

61-0-0/0/607.
0.282242800.00.000.46
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

62-0-0/0/1046.
0.592231200.00.000.78
127.0.0.1172.17.0.7:80

Found on 2025-10-10 17:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae11b72f8e6

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 08-Oct-2025 08:17:58 UTC
Restart Time: Tuesday, 07-Oct-2025 19:24:42 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 hours 53 minutes 16 seconds
Server load: 1.80 2.07 2.50
Total accesses: 645126 - Total Traffic: 505.9 MB
CPU Usage: u67.49 s4.68 cu0 cs0 - .156% CPU load
13.9 requests/sec - 11.2 kB/second - 822 B/request
15 requests currently being processed, 8 idle workers
_WK.KK_K_.___KKKKK.KK.KK..._.K_.................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0112850/77/23026_
0.971110.00.0618.04
10.161.117.240172.17.0.7:80GET / HTTP/1.1

1-0113160/35/23610W
0.56000.00.0218.57
10.161.117.240172.17.0.7:80GET /server-status HTTP/1.1

2-01129413/45/23285K
0.63077.90.0418.19
10.161.117.203172.17.0.7:80GET /file21.php HTTP/1.1

3-0-0/0/22816.
0.49000.00.0017.84
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

4-0113141/12/23931K
0.333101.20.0118.54
10.161.117.131172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

5-0113181/4/24500K
0.28090.80.0019.18
10.161.117.240172.17.0.7:80GET /sftp-config.json HTTP/1.1

6-0113170/8/21853_
0.310100.00.0117.10
10.161.117.203172.17.0.7:80GET /favicon.ico HTTP/1.1

7-0112951/40/22399K
0.644131.20.0417.74
10.161.117.131172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

8-0112870/73/21590_
0.890100.00.0616.92
10.161.117.131172.17.0.7:80POST /xmlrpc.php HTTP/1.1

9-0-0/0/21531.
0.63200.00.0016.99
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

10-0113190/3/22002_
0.280100.00.0017.29
10.161.117.164172.17.0.7:80NULL

11-0112980/34/22185_
0.55090.00.0417.27
10.161.117.164172.17.0.7:80GET / HTTP/1.1

12-0112760/155/20673_
1.660110.00.1116.26
10.161.117.240172.17.0.7:80GET /.well-known/acme-challenge/ZdZ3PEvs4roZZnc11dvxas3uCAfHIOz

13-0113101/18/21727K
0.412100.60.0217.04
10.161.117.131172.17.0.7:80GET / HTTP/1.1

14-0113201/2/21506K
0.264101.10.0016.76
10.161.117.164172.17.0.7:80GET /wp-admin/css/ HTTP/1.1

15-0113111/28/21106K
0.49191.00.0316.59
10.161.117.131172.17.0.7:80GET / HTTP/1.1

16-0112561/109/21902K
1.22361.20.1017.24
10.161.117.203172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

17-0112781/68/20410K
0.824100.80.0616.00
10.161.117.203172.17.0.7:80GET /category/audio/feed/ HTTP/1.1

18-0-0/0/19060.
0.66100.00.0014.99
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

19-0113211/6/18255K
0.31091.20.0114.53
10.161.117.164172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

20-0112121/145/18005K
1.570110.60.1414.06
10.161.117.203172.17.0.7:80GET /.env HTTP/1.1

21-0-0/0/18364.
0.574700.00.0014.38
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

22-0112691/164/17400K
1.691121.20.1213.61
10.161.117.164172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

23-0112701/179/17716K
1.900140.80.1513.77
10.161.117.164172.17.0.7:80GET / HTTP/1.1

24-0-0/0/16968.
1.825000.00.0013.18
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

25-0-0/0/14379.
0.564900.00.0011.45
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

26-0-0/0/14574.
0.269300.00.0011.35
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

27-0112800/164/12531_
1.700100.00.139.82
10.161.117.164172.17.0.7:80GET / HTTP/1.1

28-0-0/0/11400.
0.268900.00.009.00
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

29-0112921/55/9416K
0.760100.90.057.45
10.161.117.131172.17.0.7:80GET / HTTP/1.1

30-0112830/74/8440_
0.930130.00.076.82
10.161.117.131172.17.0.7:80NULL

31-0-0/0/7072.
0.601600.00.005.74
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

32-0-0/0/5825.
0.318700.00.004.60
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

33-0-0/0/5224.
0.297800.00.004.20
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

34-0-0/0/4445.
0.3133100.00.003.60
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

35-0-0/0/4395.
0.2635310.00.003.36
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

36-0-0/0/3177.
0.2834300.00.002.48
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

37-0-0/0/1985.
0.8821600.00.001.56
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

38-0-0/0/1233.
0.68105500.00.000.98
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

39-0-0/0/1431.
1.32107100.00.001.13
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

40-0-0/0/892.
1.01101000.00.000.73
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

41-0-0/0/1053.
0.38232200.00.000.83
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

42-0-0/0/636.
0.40231600.00.000.56
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0-0/0/134.
0.27436100.00.000.11
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

44-0-0/0/899.
1.05416600.00.000.55
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/538.
0.59426200.00.000.39
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/1115.
1.64413200.00.000.80
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-0-0/0/706.
1.68429100.00.000.54
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

48-0-0/0/343.
0.26437100.00.000.29
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0-0/0/654.
1.08421800.00.000.46
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/782.
0.29434800.00.000.57
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/241.
0.00437400.00.000.16
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/437.
0.54429200.00.000.32
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/233.
0.60426400.00.000.18
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/120.
0.27436900.00.000.09
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/34.
0.31434900.00.000.03
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/49.
0.54429300.00.000.04
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/94.
0.261203300.00.000.07
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/88.
0.253010500.00.000.07
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

59-0-0/0/153.
1.442994500.00.000.12
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

60-0-0/0/64.
0.283008600.00.000.05
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

61-0-0/0/50.
0.253013000.00.000.03
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

62-0-0/0/32.
0.403006600.00.000.02
127.0.0.1172.17.0.7:80

Found on 2025-10-08 08:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3126118d7826118d78e9f9f589

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.11)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 25-Sep-2025 07:45:09 UTC
Restart Time: Wednesday, 17-Sep-2025 15:06:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 days 16 hours 38 minutes 43 seconds
Server load: 0.50 0.64 0.69
Total accesses: 15388094 - Total Traffic: 10.9 GB
CPU Usage: u112.94 s9.38 cu0 cs0 - .0184% CPU load
23.1 requests/sec - 17.3 kB/second - 763 B/request
27 requests currently being processed, 9 idle workers
CKCK_KK_K__KK_KKKKKKKCK._K_KCKWK_K_.KK..........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01936971/104/450561C
1.59000.20.07329.47
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

1-01937136/213/450389K
2.950165.20.16328.31
10.161.117.240172.17.0.11:80GET /favicon.ico HTTP/1.1

2-01937401/12/447501C
0.510191.10.01325.37
10.161.117.164172.17.0.11:80GET / HTTP/1.1

3-019373262/72/445151K
1.2401343.90.05325.25
10.161.117.203172.17.0.11:80GET /theme.php HTTP/1.1

4-01937220/24/437429_
0.660100.00.02319.59
10.161.117.240172.17.0.11:80NULL

5-019374149/55/444977K
1.0001536.00.04324.21
10.161.117.203172.17.0.11:80GET /wp-content/plugins/wp-login.php HTTP/1.1

6-019364078/267/436430K
3.6301450.90.20318.26
10.161.117.203172.17.0.11:80GET //templates/Raees/index.php HTTP/1.1

7-01937290/36/435698_
0.800110.00.03317.19
10.161.117.131172.17.0.11:80NULL

8-01936081/336/424650K
4.532151.10.27309.86
10.161.117.240172.17.0.11:80GET / HTTP/1.1

9-01937180/30/426877_
0.710120.00.03310.53
10.161.117.131172.17.0.11:80NULL

10-01937300/44/425088_
0.890120.00.04309.95
10.161.117.131172.17.0.11:80GET / HTTP/1.1

11-01937241/55/423790K
0.980151.30.04309.02
10.161.117.164172.17.0.11:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

12-019374248/49/422484K
0.9101236.80.04308.25
10.161.117.240172.17.0.11:80GET /wp-admin/maint/go.php HTTP/1.1

13-01937150/49/408706_
0.930130.00.04298.46
10.161.117.131172.17.0.11:80NULL

14-019373332/42/416409K
0.8401618.40.03303.21
10.161.117.131172.17.0.11:80GET /wp-content/dropdown.php HTTP/1.1

15-01937342/18/404048K
0.550131.50.02295.60
10.161.117.203172.17.0.11:80GET /wp-includes/js/jquery/jquery.js HTTP/1.1

16-019374340/42/399299K
0.8101329.10.03291.63
10.161.117.240172.17.0.11:80GET /t.php HTTP/1.1

17-019371762/82/401096K
1.3401443.80.06291.58
10.161.117.203172.17.0.11:80GET /404.php HTTP/1.1

18-01937011/87/390389K
1.443221.20.07284.19
10.161.117.164172.17.0.11:80GET /wp-admin/setup-config.php HTTP/1.1

19-01937441/5/394897K
0.410160.80.00287.78
10.161.117.240172.17.0.11:80GET / HTTP/1.1

20-019370390/196/385362K
2.7201352.50.12280.77
10.161.117.203172.17.0.11:80GET /repeater.php HTTP/1.1

21-01936231/217/384692C
2.980121.00.18279.48
10.161.117.131172.17.0.11:80NULL

22-01937351/16/370345K
0.531141.20.01269.23
10.161.117.240172.17.0.11:80GET /wp-admin/setup-config.php HTTP/1.1

23-0-0/0/367325.
1.70700.00.00267.89
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

24-01937450/7/360183_
0.430130.00.01262.55
10.161.117.164172.17.0.11:80GET / HTTP/1.1

25-01936891/82/350517K
1.374141.20.07256.32
10.161.117.131172.17.0.11:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

26-01937190/119/346925_
1.750120.00.09252.72
10.161.117.131172.17.0.11:80GET / HTTP/1.1

27-01937201/123/335387K
1.851121.10.08243.31
10.161.117.203172.17.0.11:80GET /data/afficheimg/1483064251055739082.png HTTP/1.1

28-01937272/67/329715C
1.200151.50.05239.99
10.161.117.164172.17.0.11:80NULL

29-01937361/16/317850K
0.552130.50.01230.57
10.161.117.203172.17.0.11:80GET / HTTP/1.1

30-01936720/173/300561W
2.44000.00.12218.24
10.161.117.131172.17.0.11:80GET /server-status HTTP/1.1

31-01936731/86/280604K
1.420140.80.08204.41
10.161.117.203172.17.0.11:80GET / HTTP/1.1

32-01937370/11/280922_
0.450130.00.01204.14
10.161.117.240172.17.0.11:80POST /xmlrpc.php HTTP/1.1

33-01937091/147/254756K
2.154111.20.11185.93
10.161.117.240172.17.0.11:80GET /wp-admin/setup-config.php HTTP/1.1

34-01937380/106/238957_
1.590110.00.08172.99
10.161.117.240172.17.0.11:80GET /?feed=rss2 HTTP/1.1

35-0-0/0/218661.
0.32800.00.00158.57
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

36-01936771/93/205996K
1.562181.20.09149.42
10.161.117.164172.17.0.11:80GET /wp-admin/setup-config.php HTTP/1.1

37-01937391/12/186480K
0.503120.80.01135.34
10.161.117.131172.17.0.11:80GET / HTTP/1.1

38-0-0/0/174381.
0.6114100.00.00126.45
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

39-0-0/0/156525.
0.837900.00.00112.99
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

40-0-0/0/145531.
0.39116200.00.00105.40
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

41-0-0/0/120222.
0.48115900.00.0087.00
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

42-0-0/0/109283.
0.36268100.00.0079.28
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

43-0-0/0/88387.
0.00404300.00.0063.84
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

44-0-0/0/74481.
0.40620600.00.0053.62
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

45-0-0/0/63146.
0.00621700.00.0046.06
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

46-0-0/0/57786.
2.05590400.00.0041.57
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

47-0-0/0/46922.
0.38620500.00.0033.66
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

48-0-0/0/34809.
0.361226400.00.0025.12
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

49-0-0/0/36098.
0.561221500.00.0026.22
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

50-0-0/0/30696.
0.001226800.00.0022.30
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

51-0-0/0/24069.
0.351225500.00.0017.43
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

52-0-0/0/25032.
0.401224600.00.0018.33
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

53-0-0/0/22412.
0.551220900.00.0016.82
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

54-0-0/0/18880.
1.641221300.00.0013.61
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

55-0-0/0/20273.
1.591787900.00.0014.35
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

56-0-0/0/14862.
0.881785900.00.0010.93
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

57-0-0/0/14445.
0.421796100.00.0010.53
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

58-0-0/0/12028.
0.421796000.00.008.58
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

59-0-0/0/11226.
0.381797100.00.008.21
127.0.0.1172.17.0.11:80OPTIONS * HTTP/1.0

60-0-0/0/13675.
2.92

Found on 2025-09-25 07:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3125118b9725118b9725053375

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.10)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 23-Sep-2025 16:26:43 UTC
Restart Time: Thursday, 18-Sep-2025 20:34:33 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 19 hours 52 minutes 9 seconds
Server load: 3.69 3.93 3.99
Total accesses: 10176278 - Total Traffic: 7.2 GB
CPU Usage: u87.18 s5.65 cu0 cs0 - .0223% CPU load
24.4 requests/sec - 18.0 kB/second - 757 B/request
20 requests currently being processed, 10 idle workers
KK_KK_WKK.K.__.KKKK.K._K.___..KK..KK.._K......_...............K.
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-012213263/345/298832K
2.750938.10.23215.85
10.161.117.164172.17.0.10:80GET /wsa.php HTTP/1.1

1-01222032/73/302295K
0.792241.90.05218.92
10.161.117.240172.17.0.10:80GET / HTTP/1.1

2-01221770/237/301268_
1.94070.00.15218.06
10.161.117.164172.17.0.10:80NULL

3-01221681/341/293450K
2.73281.20.23212.75
10.161.117.240172.17.0.10:80GET /wp-admin/setup-config.php HTTP/1.1

4-01222351/12/296173K
0.36271.30.01214.41
10.161.117.131172.17.0.10:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

5-01222360/18/298384_
0.43080.00.02215.37
10.161.117.203172.17.0.10:80GET /robots.txt HTTP/1.1

6-01222213/29/293449W
0.50002.80.02211.88
10.161.117.240172.17.0.10:80GET /server-status HTTP/1.1

7-01222171/23/284822K
0.44080.70.02206.09
10.161.117.164172.17.0.10:80GET /media/system/js/core.js HTTP/1.1

8-012212319/358/288438K
2.9401210.70.27207.90
10.161.117.131172.17.0.10:80GET /atomlib.php HTTP/1.1

9-0-0/0/287257.
0.331600.00.00207.82
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

10-012221992/98/279615K
0.980767.60.07203.14
10.161.117.131172.17.0.10:80GET /wp-content/blogs.dir/about.php HTTP/1.1

11-0-0/0/281971.
0.391500.00.00204.10
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

12-01222230/16/279129_
0.390110.00.01201.89
10.161.117.240172.17.0.10:80NULL

13-01222380/101/278124_
1.01070.00.07201.03
10.161.117.240172.17.0.10:80GET /wp-includes/fonts/themes.php HTTP/1.1

14-0-0/0/274404.
0.314100.00.00198.50
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

15-012222584/100/273972K
0.950748.20.06197.83
10.161.117.131172.17.0.10:80GET /wp-includes/js/jcrop/Jcrop.php HTTP/1.1

16-01222261/22/263363K
0.41071.30.02190.92
10.161.117.240172.17.0.10:80GET /wp-admin/setup-config.php HTTP/1.1

17-01222011/164/265723K
1.44181.20.10192.25
10.161.117.131172.17.0.10:80GET /wp-admin/setup-config.php HTTP/1.1

18-01222021/149/264814K
1.31180.90.09190.73
10.161.117.131172.17.0.10:80GET / HTTP/1.1

19-0-0/0/254915.
6.344200.00.00184.21
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

20-01222046/147/255140K
1.360132.50.09184.42
10.161.117.164172.17.0.10:80HEAD /nutbar.rar HTTP/1.1

21-0-0/0/251708.
0.331300.00.00181.75
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

22-01222280/70/243685_
0.790110.00.04176.40
10.161.117.203172.17.0.10:80NULL

23-01221893/84/243090K
0.93081.80.07175.08
10.161.117.131172.17.0.10:80GET /admin.php HTTP/1.1

24-0-0/0/237408.
0.763900.00.00171.83
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

25-01221910/170/232660_
1.65060.00.10167.70
10.161.117.240172.17.0.10:80GET / HTTP/1.1

26-01222060/81/222339_
0.92160.00.05160.41
10.161.117.164172.17.0.10:80GET / HTTP/1.1

27-01221930/230/218410_
1.90070.00.16157.39
10.161.117.164172.17.0.10:80GET / HTTP/1.1

28-0-0/0/212357.
1.54200.00.00153.45
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

29-0-0/0/202831.
0.37800.00.00146.93
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

30-01222081/34/201145K
0.57080.80.03145.76
10.161.117.203172.17.0.10:80GET /wp-content/themes/twentytwentytwo/assets/fonts/index.php H

31-01222091/110/188018K
1.05471.10.07135.92
10.161.117.203172.17.0.10:80GET / HTTP/1.1

32-0-0/0/171726.
0.92700.00.00124.04
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

33-0-0/0/168983.
0.293100.00.00121.64
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

34-01222123/42/154012K
0.61072.10.03111.83
10.161.117.203172.17.0.10:80GET /editor.php HTTP/1.1

35-01222313/24/145435K
0.51072.90.02104.44
10.161.117.131172.17.0.10:80GET /v2/_catalog HTTP/1.1

36-0-0/0/146381.
1.033700.00.00105.08
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

37-0-0/0/125499.
0.444300.00.0091.00
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

38-01222320/95/114941_
0.92070.00.0682.71
10.161.117.203172.17.0.10:80GET / HTTP/1.0

39-01222331/70/102604K
0.75260.90.0473.47
10.161.117.203172.17.0.10:80GET / HTTP/1.1

40-0-0/0/93156.
0.314000.00.0066.35
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

41-0-0/0/77678.
0.6320000.00.0056.09
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

42-0-0/0/72064.
1.8219700.00.0052.07
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

43-0-0/0/59972.
0.2825400.00.0042.87
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

44-0-0/0/48700.
1.3313300.00.0035.17
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

45-0-0/0/40255.
2.017500.00.0029.20
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

46-01221490/168/33352_
1.48070.00.1224.09
10.161.117.164172.17.0.10:80GET /kbsnredoshchkw.html HTTP/1.1

47-0-0/0/30832.
0.3821100.00.0022.10
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

48-0-0/0/26284.
0.2725100.00.0018.81
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

49-0-0/0/22020.
0.3821400.00.0015.57
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

50-0-0/0/18728.
1.862100.00.0013.48
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

51-0-0/0/16399.
0.4119500.00.0011.84
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

52-0-0/0/15244.
1.689500.00.0011.03
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

53-0-0/0/12107.
0.2725600.00.008.98
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

54-0-0/0/12150.
1.2213700.00.008.68
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

55-0-0/0/11579.
0.9816200.00.008.40
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

56-0-0/0/12135.
0.3524900.00.008.83
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

57-0-0/0/10429.
1.5812800.00.007.46
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

58-0-0/0/7799.
0.0025800.00.005.47
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

59-0-0/0/8439.
0.3325000.00.006.04
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

60-0-0/0/6105.
0.7620500.00.004.24
127.0.0.1172.17.0.10:80OPTIONS * HTTP/1.0

61-0-0/0/3991.

Found on 2025-09-23 16:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3195860fa895860fa82f25b04a

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.4)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 12-Sep-2025 18:19:04 UTC
Restart Time: Wednesday, 10-Sep-2025 19:49:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 22 hours 29 minutes 46 seconds
Server load: 1.10 1.17 1.13
Total accesses: 3115380 - Total Traffic: 2.3 GB
CPU Usage: u60.28 s4.82 cu0 cs0 - .0389% CPU load
18.6 requests/sec - 14.2 kB/second - 783 B/request
46 requests currently being processed, 24 idle workers
CK_WKKK_KK_KKKKKKKKKKK_K___C__K_K_KK_K_KKKK_KKCKKK_KKK_KK_______
KKK_KK..........................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0468231/229/98963C
3.211120.60.2173.75
10.161.117.131172.17.0.4:80NULL

1-0468331/235/100521K
3.074130.80.1674.37
10.161.117.131172.17.0.4:80GET /static/theme_api/vendor/fastclick-1aa08cb3c7aa70d268d24d59

2-0469090/1/96188_
0.3503740.00.0071.99
10.161.117.164172.17.0.4:80NULL

3-0468690/171/98340W
2.30000.00.1173.66
10.161.117.164172.17.0.4:80GET /server-status HTTP/1.1

4-0469101/1/97898K
0.3443570.80.0073.35
10.161.117.164172.17.0.4:80GET /static/theme_api/vendor/fastclick-1aa08cb3c7aa70d268d24d59

5-04685080/141/101053K
1.9821245.00.0974.75
10.161.117.240172.17.0.4:80GET /gold.php HTTP/1.1

6-04687944/50/96342K
0.9201226.90.0371.90
10.161.117.164172.17.0.4:80GET /wp-includes/style-engine/ HTTP/1.1

7-0468520/54/98067_
1.020110.00.0473.38
10.161.117.203172.17.0.4:80GET /wp-login.php HTTP/1.1

8-04688020/28/92584K
0.6501411.80.0269.29
10.161.117.203172.17.0.4:80GET /file7.php HTTP/1.1

9-0468941/5/91673K
0.404120.90.0168.68
10.161.117.164172.17.0.4:80GET /static/theme_api/vendor/masonry.pkgd-4.2.2.min-8d645c617da

10-0468700/24/95992_
0.64080.00.0271.40
10.161.117.131172.17.0.4:80NULL

11-04687179/109/90042K
1.632957.40.0867.61
10.161.117.240172.17.0.4:80GET /admin/function.php/install.php HTTP/1.1

12-04687289/108/89238K
1.5701250.80.0766.69
10.161.117.240172.17.0.4:80GET /wp-admin/maint/index.php HTTP/1.1

13-04685727/33/88647K
0.7901425.50.0366.23
10.161.117.131172.17.0.4:80GET /shoucang/?_gid=129248&_sId=0 HTTP/1.1

14-0469111/1/89260K
0.3743910.80.0066.45
10.161.117.240172.17.0.4:80GET /static/theme_api/vendor/jquery.fitvid-1.1-3c6ad5325f55063e

15-0469121/2/88570K
0.393110.90.0065.80
10.161.117.240172.17.0.4:80GET / HTTP/1.1

16-0469131/1/84615K
0.3333470.90.0063.06
10.161.117.203172.17.0.4:80GET /static/theme_api/vendor/jquery.mousewheel-3.1.13.min-88ade

17-04683629/116/86070K
1.7221216.00.0764.35
10.161.117.203172.17.0.4:80GET /Webb.php HTTP/1.1

18-0468961/4/85236K
0.403170.90.0063.78
10.161.117.131172.17.0.4:80GET /static/theme_api/common/bundles/cookie-banner.bundle-b1823

19-0469141/1/81752K
0.3633880.80.0060.96
10.161.117.131172.17.0.4:80GET /static/theme_api/vendor/jquery.fitvid-1.1-3c6ad5325f55063e

20-0469151/1/81737K
0.3533690.80.0061.41
10.161.117.164172.17.0.4:80GET /static/theme_api/vendor/fastclick-1aa08cb3c7aa70d268d24d59

21-04678187/385/80900K
4.8811052.70.2660.36
10.161.117.164172.17.0.4:80GET /jp.php HTTP/1.1

22-0467970/259/80223_
3.380120.00.1759.51
10.161.117.240172.17.0.4:80NULL

23-0467891/193/78510K
2.66180.80.1458.14
10.161.117.131172.17.0.4:80GET /robots.txt HTTP/1.1

24-0468610/61/73243_
1.080140.00.0554.46
10.161.117.203172.17.0.4:80NULL

25-0468970/6/74678_
0.400120.00.0156.00
10.161.117.240172.17.0.4:80GET /favicon.ico HTTP/1.1

26-0468650/43/69615_
0.870100.00.0351.95
10.161.117.164172.17.0.4:80GET /galerie/les-3-soeurs HTTP/1.1

27-0468741/32/66226C
0.760141.00.0249.51
10.161.117.131172.17.0.4:80GET /robots.txt HTTP/1.1

28-0468760/36/64528_
0.770130.00.0248.20
10.161.117.240172.17.0.4:80NULL

29-0468840/12/63856_
0.520120.00.0147.71
10.161.117.240172.17.0.4:80GET / HTTP/1.1

30-0468771/20/60186K
0.584120.90.0245.56
10.161.117.203172.17.0.4:80GET /static/theme_api/vendor/jquery.jscrollpane-2.0.22.min-d071

31-0468420/105/54120_
1.610130.00.0741.12
10.161.117.203172.17.0.4:80NULL

32-0469161/1/50792K
0.3623870.80.0038.02
10.161.117.240172.17.0.4:80GET /images/s.gif HTTP/1.1

33-0469170/2/47267_
0.350110.00.0035.55
10.161.117.203172.17.0.4:80GET / HTTP/1.1

34-0468871/12/42814K
0.524120.80.0132.16
10.161.117.131172.17.0.4:80GET /static/theme_api/vendor/scrollDelta-1-b6e8272491eb8c644331

35-0468461/72/37033K
1.213120.90.0627.80
10.161.117.203172.17.0.4:80GET /static/theme_api/vendor/jquery.jscrollpane-2.0.22.min-d071

36-0468490/73/35143_
1.220150.00.0626.21
10.161.117.240172.17.0.4:80NULL

37-0468881/9/31245K
0.441130.50.0123.47
10.161.117.203172.17.0.4:80HEAD /web.tar.gz HTTP/1.1

38-0468890/17/29280_
0.520130.00.0121.95
10.161.117.131172.17.0.4:80NULL

39-0469181/1/25241K
0.3723840.60.0018.79
10.161.117.131172.17.0.4:80GET /.env HTTP/1.1

40-0468991/5/20024K
0.391100.90.0014.93
10.161.117.240172.17.0.4:80GET / HTTP/1.1

41-0469001/8/17698K
0.432131.10.0113.03
10.161.117.131172.17.0.4:80GET /robots.txt HTTP/1.1

42-0469011/4/13003K
0.383110.80.009.67
10.161.117.164172.17.0.4:80GET /images/bigstockphoto_sexy_woman_1097190.jpg HTTP/1.1

43-0469020/5/10987_
0.380170.00.008.30
10.161.117.164172.17.0.4:80POST /xmlrpc.php HTTP/1.1

44-0469031/7/9391K
0.400120.70.017.07
10.161.117.203172.17.0.4:80GET /wordpress/ HTTP/1.1

45-0469041/3/7008K
0.37380.90.005.32
10.161.117.240172.17.0.4:80GET /static/theme_api/vendor/viewport-units-buggyfill-0.5.4-383

46-0469051/5/5271C
0.38000.20.004.05
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

47-04690658/58/3361K
1.0401541.80.042.67
10.161.117.203172.17.0.4:80GET /packed.php HTTP/1.1

48-0469071/4/3185K
0.400110.70.002.51
10.161.117.131172.17.0.4:80GET / HTTP/1.1

49-0469191/2/2607K
0.382130.90.001.98
10.161.117.240172.17.0.4:80GET /robots.txt HTTP/1.1

50-0469200/2/3688_
0.410150.00.002.71
10.161.117.131

51-0469211/2/3016K
0.362120.90.002.29
10.161.117.131172.17.0.4:80GET /revisi.php HTTP/1.1

52-0469221/2/3226K
0.362140.60.002.39
10.161.117.164172.17.0.4:80GET /akc.php HTTP/1.1

53-0469231/1/3940K
0.3624081.10.002.95
10.161.117.164172.17.0.4:80GET /robots.txt HTTP/1.1

54-0469240/1/1919_
0.3506740.00.001.43
10.161.117.131172.17.0.4:80GET / HTTP/1.1

55-0469251/1/1499K
0.3515050.80.001.13
10.161.117.164172.17.0.4:80GET /trg6sn7sr/tong-su-quan-bao-ve-minh-beo.php HTTP/1.1

56-0469261/1/1481K
0.3507220.70.001.14
10.161.117.240172.17.0.4:80GET / HTTP/1.1

57-0469270/1/1709_
0.3405780.00.001.33
10.161.117.203172.17.0.4:80GET /favicon.ico HTTP/1.1

58-0469280/1/

Found on 2025-09-12 18:18

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb319686113d9686113db9c4fcc7

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Saturday, 06-Sep-2025 13:23:01 UTC
Restart Time: Thursday, 21-Aug-2025 13:54:18 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 days 23 hours 28 minutes 43 seconds
Server load: 1.51 1.47 1.52
Total accesses: 41335040 - Total Traffic: 27.8 GB
CPU Usage: u150.13 s11.6 cu0 cs0 - .0117% CPU load
29.9 requests/sec - 21.1 kB/second - 722 B/request
31 requests currently being processed, 6 idle workers
KKKKKKKCKKKKK_KKKKKKKK__KKW_CCKK_K.K..K_........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-040148456/372/1135134K
3.6301439.10.27785.78
10.161.117.192172.17.0.3:80GET /new.php HTTP/1.1

1-040153886/220/1133800K
2.280853.50.17784.07
10.161.117.192172.17.0.3:80GET /wp-includes/blocks/autoload_classmap.php HTTP/1.1

2-040150365/519/1115142K
4.870647.60.36772.95
10.161.117.163172.17.0.3:80GET /wp-Owl.php HTTP/1.1

3-04015702/66/1114003K
0.84481.50.04771.48
10.161.117.245172.17.0.3:80GET / HTTP/1.1

4-04015561/176/1120334K
1.902101.20.12773.68
10.161.117.241172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

5-040156213/126/1113061K
1.430177.80.09769.53
10.161.117.245172.17.0.3:80GET /MARIJUANA.php HTTP/1.1

6-040155887/122/1098022K
1.370782.70.11760.10
10.161.117.192172.17.0.3:80GET /wp-gr.php HTTP/1.1

7-04015781/44/1097803C
0.620111.10.03762.72
10.161.117.163172.17.0.3:80GET / HTTP/1.1

8-04015851/13/1078732K
0.374101.20.01747.60
10.161.117.192172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

9-04015171/225/1073105K
2.31491.20.15743.35
10.161.117.241172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

10-04015891/6/1069347K
0.31081.20.01742.31
10.161.117.239172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

11-040158617/27/1069497K
0.510910.20.02741.15
10.161.117.163172.17.0.3:80GET /wp-cron.php HTTP/1.1

12-04015641/74/1048685K
0.924111.20.06726.41
10.161.117.163172.17.0.3:80POST /wp-json/sure-triggers/v1/automation/action HTTP/1.1

13-04015960/2/1054723_
0.270100.00.00730.65
10.161.117.192172.17.0.3:80HEAD / HTTP/1.1

14-04014261/633/1032610K
5.95261.20.46715.97
10.161.117.163172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

15-04015882/107/1036811K
1.204101.50.08717.50
10.161.117.245172.17.0.3:80GET / HTTP/1.1

16-04015901/2/1025279K
0.28481.30.00709.98
10.161.117.241172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

17-04015661/170/1014974K
1.862100.90.12701.21
10.161.117.192172.17.0.3:80GET /.vscode/sftp.json HTTP/1.1

18-04015911/6/1016100K
0.30090.80.01701.98
10.161.117.239172.17.0.3:80GET / HTTP/1.1

19-04015921/2/1010126K
0.25391.20.00697.01
10.161.117.163172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

20-040157963/171/1000028K
1.814815.80.08690.48
10.161.117.163172.17.0.3:80GET /dlex.php HTTP/1.1

21-04015932/4/979455K
0.30492.00.00676.94
10.161.117.239172.17.0.3:80GET /favicon.ico HTTP/1.1

22-04014130/676/963380_
6.25090.00.50665.61
10.161.117.239172.17.0.3:80POST //www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php H

23-04015970/1/948989_
0.2702960.00.00655.73
10.161.117.163172.17.0.3:80GET /.well-known/acme-challenge/-WX2CXDG0tPXJXTLITI8aRVZVNMD7Db

24-040148177/517/940946K
4.870655.50.38648.75
10.161.117.241172.17.0.3:80GET /.well-known/about.php HTTP/1.1

25-040154544/133/916348K
1.420932.30.09633.80
10.161.117.163172.17.0.3:80GET /wp-includes/js/dist/development/ HTTP/1.1

26-04015940/3/906525W
0.27000.00.00624.59
10.161.117.245172.17.0.3:80GET /server-status HTTP/1.1

27-04015730/40/877095_
0.640100.00.03605.97
10.161.117.239172.17.0.3:80NULL

28-04015951/2/853825C
0.271100.70.00592.56
10.161.117.245172.17.0.3:80NULL

29-04015751/146/832181C
1.540140.70.09573.29
10.161.117.241172.17.0.3:80GET / HTTP/1.1

30-04015351/266/804299K
2.662110.70.19553.39
10.161.117.239172.17.0.3:80GET /sendgrid.env HTTP/1.1

31-040153634/258/784837K
2.5301024.40.19539.65
10.161.117.192172.17.0.3:80GET /wp-includes/PHPMailer/purna.php HTTP/1.1

32-04015760/27/753222_
0.510100.00.03517.48
10.161.117.192172.17.0.3:80GET / HTTP/1.1

33-04015981/1/727936K
0.2602981.20.00500.46
10.161.117.245172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

34-0-0/0/700474.
1.091200.00.00480.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-040158137/61/654529K
0.8201320.80.04448.79
10.161.117.239172.17.0.3:80GET /aucxzso.php HTTP/1.1

36-0-0/0/619659.
3.862600.00.00423.02
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/578306.
0.274700.00.00394.19
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-04015501/169/529073K
1.75280.90.12362.72
10.161.117.239172.17.0.3:80GET /wp-admin/akcc.php HTTP/1.1

39-04015830/16/499266_
0.40090.00.01341.67
10.161.117.192172.17.0.3:80NULL

40-0-0/0/452617.
0.284900.00.00307.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/422548.
0.2615800.00.00287.41
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0-0/0/373150.
0.479400.00.00253.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/326168.
2.2067900.00.00223.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-0-0/0/294463.
3.7336200.00.00199.66
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/248221.
8.7713600.00.00168.37
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/234427.
2.0674700.00.00158.20
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/197097.
14.52167500.00.00133.12
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/173641.
0.70191000.00.00116.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/139543.
0.28192200.00.0093.92
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/140219.
0.28193100.00.0093.98
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/107374.
0.56183600.00.0071.51
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/89140.
0.00193200.00.0059.95
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/85752.
1.58167400.00.0057.58
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/73969.
1.89186000.00.0050.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/65446.
0.27348300.00.0044.03
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/52393.
5.76303000.00.0035.37
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/45859.
0.97339800.00.0030.95
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/42744.
0.31346800.00.0029.13
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/41240.

Found on 2025-09-06 13:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb319686113d9686113da202a244

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 24-Aug-2025 21:12:47 UTC
Restart Time: Wednesday, 20-Aug-2025 21:47:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 23 hours 25 minutes 26 seconds
Server load: 2.51 2.23 2.23
Total accesses: 10402594 - Total Traffic: 6.9 GB
CPU Usage: u124.05 s12.15 cu0 cs0 - .0396% CPU load
30.3 requests/sec - 21.1 kB/second - 713 B/request
36 requests currently being processed, 1 idle workers
_KWKKKKKCKCKKKK.KKC.KKKKKKKKKC.K..KKKK.K.K..K...K...............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01086030/256/259076_
2.45070.00.17177.33
10.161.117.241172.17.0.3:80NULL

1-01086831/14/259476K
0.390120.60.01176.87
10.161.117.239172.17.0.3:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

2-01086610/52/262688W
0.73000.00.04177.91
10.161.117.241172.17.0.3:80GET /server-status HTTP/1.1

3-010868613/17/260665K
0.42078.00.01176.64
10.161.117.192172.17.0.3:80GET /aa.php HTTP/1.1

4-010865710/61/256025K
0.83065.80.05174.41
10.161.117.241172.17.0.3:80GET /wp-links.php HTTP/1.1

5-01086681/119/257182K
1.29490.80.07174.88
10.161.117.245172.17.0.3:80GET / HTTP/1.1

6-010868741/43/256117K
0.610929.20.03173.64
10.161.117.239172.17.0.3:80GET /wp-admin/images/index.php HTTP/1.1

7-01086881/4/259991K
0.28081.00.00176.21
10.161.117.245172.17.0.3:80GET / HTTP/1.1

8-01086501/94/253485C
1.050211.00.07172.07
10.161.117.239172.17.0.3:80NULL

9-010866913/38/252920K
0.57497.40.03171.39
10.161.117.241172.17.0.3:80GET /xex.php HTTP/1.1

10-01086891/1/248563C
0.2502701.10.00169.70
10.161.117.163172.17.0.3:80GET /{pboot:if((\"file_put_co\".\"ntents\")(\"temp.php\",(\"base6\".\"4_

11-01086521/148/250250K
1.56191.30.10169.93
10.161.117.192172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

12-01086701/39/246117K
0.59090.60.03166.75
10.161.117.241172.17.0.3:80HEAD /blog HTTP/1.1

13-01086711/20/246667K
0.46471.20.02167.40
10.161.117.192172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

14-01086291/243/245754K
2.400115.30.15168.07
10.161.117.239172.17.0.3:80GET / HTTP/1.1

15-0-0/0/240856.
0.521700.00.00164.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

16-01086732/57/241811K
0.77381.50.04164.64
10.161.117.245172.17.0.3:80GET / HTTP/1.1

17-01086631/213/241378K
2.10491.30.15163.86
10.161.117.163172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

18-01086843/8/233498C
0.321103.10.01158.73
10.161.117.245172.17.0.3:80NULL

19-0-0/0/229714.
0.262300.00.00157.10
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

20-01086561/87/225366K
1.050111.20.06153.98
10.161.117.245172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

21-01086741/28/230753K
0.50290.90.02157.31
10.161.117.239172.17.0.3:80GET / HTTP/1.1

22-01086591/134/227429K
1.392120.80.08154.64
10.161.117.245172.17.0.3:80GET / HTTP/1.1

23-01086761/115/227088K
1.24480.90.06154.63
10.161.117.163172.17.0.3:80GET / HTTP/1.1

24-010861487/261/225962K
2.580756.20.17153.60
10.161.117.239172.17.0.3:80GET /wp-includes/blocks/site-title/index.php HTTP/1.1

25-01086651/44/219924K
0.641110.90.04150.17
10.161.117.241172.17.0.3:80GET / HTTP/1.1

26-01086811/42/220566K
0.60191.30.03149.63
10.161.117.192172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

27-010867753/68/216108K
0.830831.30.05146.98
10.161.117.163172.17.0.3:80GET /wp-content/about.php HTTP/1.1

28-01086311/195/213386K
1.96081.00.14144.63
10.161.117.245172.17.0.3:80GET / HTTP/1.1

29-01086201/142/205405C
1.460161.00.10139.83
10.161.117.192172.17.0.3:80NULL

30-0-0/0/204966.
0.911800.00.00139.46
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-01086781/17/195839K
0.43291.30.02133.53
10.161.117.192172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

32-0-0/0/191789.
2.123400.00.00130.53
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/193170.
0.303800.00.00131.37
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-01086244/285/183893K
2.870122.30.22125.69
10.161.117.239172.17.0.3:80GET /wp-admin/classwithtostring.php HTTP/1.1

35-01086801/114/178890K
1.321100.70.08123.29
10.161.117.239172.17.0.3:80GET / HTTP/1.1

36-01086821/13/169604K
0.374130.80.01114.89
10.161.117.239172.17.0.3:80GET /robots.txt HTTP/1.1

37-01086351/187/169156K
1.86481.30.12114.29
10.161.117.241172.17.0.3:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

38-0-0/0/153136.
1.094500.00.00104.42
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-01086371/176/148269K
1.77181.10.13101.20
10.161.117.245172.17.0.3:80POST /xmlrpc.php HTTP/1.1

40-0-0/0/138961.
4.3916100.00.0094.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-010860150/191/130886K
1.9301230.60.1488.93
10.161.117.241172.17.0.3:80GET /alfa-rexhp1.p HTTP/1.1

42-0-0/0/120009.
0.3513400.00.0081.38
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

43-0-0/0/114973.
0.6211800.00.0077.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

44-01085731/520/103954K
4.72061.00.3470.48
10.161.117.192172.17.0.3:80GET /v2/_catalog HTTP/1.1

45-0-0/0/92213.
0.2516500.00.0063.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/85193.
0.3215900.00.0057.57
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/73282.
0.4313500.00.0049.83
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-010864361/243/63755K
2.330945.50.1543.43
10.161.117.245172.17.0.3:80GET /.well-known/acme-challenge/file.php HTTP/1.1

49-0-0/0/58329.
0.5113900.00.0039.15
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/52614.
0.2755400.00.0035.91
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/40106.
0.0055700.00.0027.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/35323.
0.2854900.00.0023.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/32669.
2.59197500.00.0021.71
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/27800.
0.29230000.00.0018.66
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/24570.
0.28230700.00.0016.68
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/19981.
0.26231000.00.0013.55
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/18319.
0.33226600.00.0012.33
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/14745.
0.30229900.00.009.96
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/13802.
1.15225200.0

Found on 2025-08-24 21:12

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3194860dc794860dc772dc39fa

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.5)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 22-Aug-2025 22:35:44 UTC
Restart Time: Thursday, 21-Aug-2025 13:54:18 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 8 hours 41 minutes 25 seconds
Server load: 5.12 4.47 4.45
Total accesses: 3533996 - Total Traffic: 2.3 GB
CPU Usage: u95.35 s8.87 cu0 cs0 - .0886% CPU load
30 requests/sec - 20.6 kB/second - 702 B/request
31 requests currently being processed, 5 idle workers
W..KKKK..KKK_KKKC__WWKK_KCKKKKKKKKK.WK.KK._.....................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0371210/15/85616W
0.36000.00.0157.65
10.161.117.163172.17.0.5:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

1-0-0/0/87214.
0.96200.00.0058.95
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

2-0-0/0/85673.
1.39900.00.0057.50
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

3-03709714/132/86270K
1.420910.80.0957.86
10.161.117.239172.17.0.5:80GET /wp-includes/rest-api/endpoints/class-wp-rest-attachment-co

4-03703167/91/84771K
0.9911145.30.0757.14
10.161.117.163172.17.0.5:80GET /wp-content/plugins/linkpreview/ HTTP/1.1

5-0371191/28/87561K
0.48191.30.0258.53
10.161.117.239172.17.0.5:80GET /wp-admin/setup-config.php HTTP/1.1

6-03707586/221/85885K
2.040950.30.1258.03
10.161.117.241172.17.0.5:80GET /wp-configs.php HTTP/1.1

7-0-0/0/85556.
0.40400.00.0057.47
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

8-0-0/0/88794.
0.29500.00.0059.14
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

9-0370771/112/84775K
1.14180.80.0956.67
10.161.117.245172.17.0.5:80GET /robots.txt HTTP/1.1

10-03709921/97/83839K
0.980912.10.0656.47
10.161.117.192172.17.0.5:80GET /j.php HTTP/1.1

11-03712319/25/81876K
0.420911.40.0254.57
10.161.117.239172.17.0.5:80GET /site-info.php HTTP/1.1

12-0370440/321/84844_
2.780120.00.2256.47
10.161.117.192172.17.0.5:80GET /1234.php HTTP/1.1

13-0371241/21/82737K
0.392120.90.0155.44
10.161.117.192172.17.0.5:80GET / HTTP/1.1

14-0371011/91/82808K
0.98491.30.0655.30
10.161.117.163172.17.0.5:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

15-03712516/40/81134K
0.5821314.30.0254.45
10.161.117.192172.17.0.5:80GET http://www.closerlevel.org:80/cms/wp-includes/wlwmanifest.x

16-03703334/333/81866C
2.9301219.60.2354.70
10.161.117.163172.17.0.5:80NULL

17-0370700/217/81939_
1.940150.00.1354.95
10.161.117.245172.17.0.5:80HEAD /WWW HTTP/1.1

18-0371020/164/79800_
1.53070.00.1153.14
10.161.117.163172.17.0.5:80POST /xmlrpc.php HTTP/1.1

19-0371030/136/75375W
1.32000.00.0950.92
10.161.117.241172.17.0.5:80HEAD /wordpress HTTP/1.1

20-0369790/9/76182W
0.3155600.00.0151.52
10.161.117.239172.17.0.5:80GET / HTTP/1.1

21-0371181/25/80315K
0.451190.70.0253.72
10.161.117.241172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

22-03707189/209/79999K
1.8701150.60.1353.50
10.161.117.245172.17.0.5:80GET /cgi-bin/ HTTP/1.1

23-0370930/101/77708_
1.020110.00.0751.56
10.161.117.241172.17.0.5:80NULL

24-0371041/139/77616K
1.34290.70.1052.15
10.161.117.239172.17.0.5:80GET / HTTP/1.1

25-0371261/108/72199C
1.13081.00.0848.57
10.161.117.192172.17.0.5:80GET / HTTP/1.1

26-0371051/137/75529K
1.322120.90.0950.51
10.161.117.239172.17.0.5:80GET /static/common/user/uedit/php/controller.php?action=catchim

27-0371271/4/70764K
0.31470.90.0047.45
10.161.117.245172.17.0.5:80GET / HTTP/1.1

28-03711096/103/72461K
1.060861.50.0748.72
10.161.117.239172.17.0.5:80GET /edit.php HTTP/1.1

29-0371074/177/72352K
1.70192.50.1148.57
10.161.117.241172.17.0.5:80GET /class-wp-http-proxy.php HTTP/1.1

30-03707262/171/68540K
1.590939.40.1246.29
10.161.117.192172.17.0.5:80GET /wp-includes/blocks/button/ HTTP/1.1

31-03708474/140/66761K
1.320542.70.0945.11
10.161.117.163172.17.0.5:80GET /wp-includes/block-supports/ HTTP/1.1

32-0371281/7/67118K
0.350170.60.0145.60
10.161.117.192172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

33-0370851/171/66554K
1.63180.60.1144.25
10.161.117.192172.17.0.5:80HEAD /ABOUT_US.aspx HTTP/1.1

34-03712910/18/63269K
0.370143.90.0142.19
10.161.117.163172.17.0.5:80HEAD /home HTTP/1.1

35-0-0/0/63429.
0.267900.00.0042.06
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

36-0370860/146/59476W
1.41000.00.1039.93
10.161.117.239172.17.0.5:80GET /server-status HTTP/1.1

37-0370871/123/56706K
1.210120.90.0837.94
10.161.117.239172.17.0.5:80GET / HTTP/1.1

38-0-0/0/54992.
1.308200.00.0036.75
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

39-0371121/48/51792K
0.62380.60.0334.72
10.161.117.239172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

40-0371131/32/48192K
0.502101.30.0232.30
10.161.117.241172.17.0.5:80POST /wp-json/litespeed/v1/cdn_status HTTP/1.1

41-0-0/0/46025.
1.28800.00.0030.84
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

42-0371150/58/39746_
0.71080.00.0426.63
10.161.117.245172.17.0.5:80GET / HTTP/1.1

43-0-0/0/40964.
0.0045500.00.0027.27
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

44-0-0/0/36300.
0.3342600.00.0024.22
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

45-0-0/0/32551.
2.5536300.00.0021.80
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

46-0-0/0/27750.
1.4934100.00.0018.60
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

47-0-0/0/26248.
1.8359800.00.0017.49
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

48-0-0/0/23614.
0.4389600.00.0015.81
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

49-0-0/0/22179.
0.6187800.00.0014.92
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

50-0-0/0/18187.
0.3690700.00.0012.17
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

51-0-0/0/13829.
0.0094900.00.009.21
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

52-0-0/0/13611.
0.49456100.00.009.08
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

53-0-0/0/9694.
0.33458200.00.006.32
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

54-0-0/0/11438.
0.91454700.00.007.44
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

55-0-0/0/7358.
0.50458000.00.004.87
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

56-0-0/0/8648.
0.60454900.00.005.61
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

57-0-0/0/6673.
0.34455900.00.004.43
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

58-0-0/0/6432.
0.00460700.00.004.18
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

59-0-0/0/5861.
0.39458700.00.003.85
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

60-0<

Found on 2025-08-22 22:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3195860fa895860fa82ec82a39

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.4)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 20-Aug-2025 22:29:34 UTC
Restart Time: Wednesday, 20-Aug-2025 21:40:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  49 minutes 1 second
Server load: 3.51 3.55 3.99
Total accesses: 84215 - Total Traffic: 57.9 MB
CPU Usage: u71.18 s4.61 cu0 cs0 - 2.58% CPU load
28.6 requests/sec - 20.2 kB/second - 720 B/request
29 requests currently being processed, 8 idle workers
WCKCK_C___KK_KCKK_KK.KK.K__KKKKKKCKK..K.......KK................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-011250/84/2106W
0.93000.00.061.40
10.161.117.192172.17.0.4:80GET /server-status HTTP/1.1

1-0114928/49/2268C
0.641916.30.031.56
10.161.117.239172.17.0.4:80NULL

2-011271/50/1454K
0.671100.60.040.98
10.161.117.241172.17.0.4:80GET /.env HTTP/1.1

3-011351/66/1792C
0.820251.10.061.23
10.161.117.245172.17.0.4:80GET / HTTP/1.1

4-011502/37/1454K
0.57491.30.031.04
10.161.117.245172.17.0.4:80POST / HTTP/1.1

5-011550/16/2008_
0.37090.00.011.35
10.161.117.241172.17.0.4:80GET / HTTP/1.1

6-0113755/204/1751C
1.921940.40.121.20
10.161.117.241172.17.0.4:80NULL

7-011610/2/1859_
0.29070.00.001.27
10.161.117.192172.17.0.4:80GET / HTTP/1.1

8-011510/47/2013_
0.680100.00.051.37
10.161.117.163172.17.0.4:80GET / HTTP/1.1

9-011280/48/1998_
0.67090.00.041.40
10.161.117.241172.17.0.4:80GET /wp-content/ HTTP/1.1

10-011541/19/1611K
0.45271.20.021.11
10.161.117.192172.17.0.4:80GET /wp-admin/setup-config.php HTTP/1.1

11-011391/108/1867K
1.15170.60.061.26
10.161.117.163172.17.0.4:80HEAD /OLD HTTP/1.1

12-09560/538/1731_
4.64090.00.331.22
10.161.117.192172.17.0.4:80NULL

13-011562/9/1680K
0.321131.20.011.15
10.161.117.245172.17.0.4:80GET /ot.php HTTP/1.1

14-011622/3/2057C
0.27091.40.001.38
10.161.117.241172.17.0.4:80NULL

15-0115723/54/1834K
0.6701713.70.031.28
10.161.117.239172.17.0.4:80GET /simple.php HTTP/1.1

16-0111227/154/1780K
1.450815.40.111.20
10.161.117.241172.17.0.4:80GET /file6.php HTTP/1.1

17-011580/7/1870_
0.290110.00.011.28
10.161.117.241172.17.0.4:80NULL

18-011591/6/1656K
0.280120.90.001.18
10.161.117.239172.17.0.4:80GET /ws.php HTTP/1.1

19-010771/124/1554K
1.311100.90.091.10
10.161.117.192172.17.0.4:80GET / HTTP/1.1

20-0-0/0/1547.
1.90000.00.001.09
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

21-0113143/114/1792K
1.2401225.40.091.25
10.161.117.241172.17.0.4:80GET /wp-content/themes/wp-pridmag/init.php HTTP/1.1

22-011131/254/1875K
2.28181.10.141.25
10.161.117.163172.17.0.4:80GET /gdftps.php HTTP/1.1

23-0-0/0/1486.
0.26100.00.001.01
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

24-011641/4/1102K
0.29160.90.000.79
10.161.117.245172.17.0.4:80GET / HTTP/1.1

25-011450/81/1590_
0.920120.00.051.08
10.161.117.239172.17.0.4:80GET / HTTP/1.1

26-011440/134/1516_
1.36080.00.081.01
10.161.117.245172.17.0.4:80HEAD /home HTTP/1.1

27-011652/3/1551K
0.27491.20.001.06
10.161.117.163172.17.0.4:80GET /ot.php HTTP/1.1

28-011332/138/1814K
1.380101.40.091.22
10.161.117.245172.17.0.4:80GET / HTTP/1.1

29-011661/3/1632K
0.28290.90.001.17
10.161.117.192172.17.0.4:80GET /wp-content/IXR/index.php HTTP/1.1

30-0111771/262/2035K
2.310741.50.161.33
10.161.117.239172.17.0.4:80GET /mm.php HTTP/1.1

31-0103928/182/1967K
1.7341025.60.131.34
10.161.117.163172.17.0.4:80GET /category/%E6%9C%AA%E5%88%86%E9%A1%9E/71/ HTTP/1.1

32-011342/112/1628K
1.194181.20.101.14
10.161.117.192172.17.0.4:80GET /ot.php HTTP/1.1

33-010051/260/1313C
2.39080.60.200.95
10.161.117.241172.17.0.4:80NULL

34-011085/159/1840K
1.550113.10.121.26
10.161.117.241172.17.0.4:80GET /wp-admin/css/colors/modern/ HTTP/1.1

35-011181/73/1486K
0.88350.60.051.05
10.161.117.163172.17.0.4:80GET /ot.php HTTP/1.1

36-0-0/0/1339.
0.25200.00.000.92
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

37-0-0/0/1251.
0.289100.00.000.84
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

38-010951/90/1369K
1.01070.60.070.97
10.161.117.245172.17.0.4:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

39-0-0/0/1098.
0.6811200.00.000.72
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

40-0-0/0/1178.
1.4619400.00.000.83
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

41-0-0/0/1524.
1.531500.00.001.03
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

42-0-0/0/1040.
0.8715400.00.000.71
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

43-0-0/0/1308.
0.4317300.00.000.87
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

44-0-0/0/1132.
1.1914200.00.000.81
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

45-0-0/0/1225.
0.4120800.00.000.82
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

46-011211/68/841K
0.81180.60.060.59
10.161.117.192172.17.0.4:80HEAD /BACKUP HTTP/1.1

47-011221/104/1207K
1.112100.70.080.83
10.161.117.163172.17.0.4:80GET /.env HTTP/1.1

48-0-0/0/562.
0.5515700.00.000.40
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

49-0-0/0/894.
0.4214900.00.000.62
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

50-0-0/0/608.
2.4623300.00.000.43
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

51-0-0/0/592.
0.2937900.00.000.41
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

52-0-0/0/333.
0.4831900.00.000.24
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

53-0-0/0/385.
1.2529700.00.000.26
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

54-0-0/0/168.
0.3435800.00.000.12
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

55-0-0/0/83.
0.3071700.00.000.05
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

56-0-0/0/452.
2.1936600.00.000.32
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

57-0-0/0/235.
0.8865600.00.000.17
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

58-0-0/0/508.
0.2474500.00.000.35
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

59-0-0/0/39.
0.2873800.00.000.03
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

60-0-0/0/423.
1.3768000.00.000.32
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

61-0-0/0/90.
0.8061690.00.000.07
10.161.117.192172.17.0.4:80GET / HTTP/1.1

62-0-0/0/176.
0.4772600.00.000.10
127.0.0.

Found on 2025-08-20 22:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb319686113d9686113d1c0aa703

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.3)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Thursday, 14-Aug-2025 03:36:51 UTC
Restart Time: Wednesday, 13-Aug-2025 11:42:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 hours 54 minutes 49 seconds
Server load: 2.26 3.31 3.62
Total accesses: 1604217 - Total Traffic: 1.1 GB
CPU Usage: u68.37 s4.6 cu0 cs0 - .127% CPU load
28 requests/sec - 19.5 kB/second - 711 B/request
16 requests currently being processed, 12 idle workers
__K_KCWK_KK._K.___KKKKKK_.K._.._..........K_....................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0181690/51/42016_
0.660200.00.0428.73
10.161.117.192172.17.0.3:80GET /robots.txt HTTP/1.1

1-0181950/2/42857_
0.26080.00.0029.21
10.161.117.192172.17.0.3:80NULL

2-0181841/21/40020K
0.43090.90.0227.13
10.161.117.241172.17.0.3:80GET / HTTP/1.1

3-0181590/157/41165_
1.540120.00.1127.72
10.161.117.163172.17.0.3:80NULL

4-0181703/48/39324K
0.66081.90.0426.60
10.161.117.245172.17.0.3:80GET //moddofuns.php HTTP/1.1

5-0181711/43/41033C
0.59081.10.0327.75
10.161.117.239172.17.0.3:80GET / HTTP/1.1

6-0181960/2/40345W
0.28000.00.0027.29
10.161.117.241172.17.0.3:80GET /server-status HTTP/1.1

7-0181971/5/38627K
0.28170.80.0026.43
10.161.117.241172.17.0.3:80GET /@vite/env HTTP/1.1

8-0181080/103/40010_
1.120110.00.0927.01
10.161.117.239172.17.0.3:80GET / HTTP/1.1

9-0181981/1/39939K
0.2632930.90.0027.00
10.161.117.192172.17.0.3:80GET / HTTP/1.1

10-0181862/19/39975K
0.41191.50.0227.07
10.161.117.239172.17.0.3:80GET / HTTP/1.1

11-0-0/0/41186.
1.351000.00.0027.82
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

12-0180810/159/39911_
1.630160.00.1326.77
10.161.117.245172.17.0.3:80NULL

13-0181751/56/38564K
0.711101.20.0425.87
10.161.117.192172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

14-0-0/0/36993.
0.301700.00.0025.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

15-0181790/120/39101_
1.250100.00.0926.49
10.161.117.245172.17.0.3:80GET / HTTP/1.1

16-0181800/38/36822_
0.560100.00.0325.20
10.161.117.245172.17.0.3:80NULL

17-0181930/10/36896_
0.32070.00.0125.21
10.161.117.245172.17.0.3:80NULL

18-0181571/75/35733K
0.911111.10.0624.66
10.161.117.163172.17.0.3:80GET /product/artemis-armchair/ HTTP/1.1

19-01818124/140/37120K
1.4201113.50.0824.97
10.161.117.163172.17.0.3:80GET /7.php HTTP/1.1

20-0181821/123/34222K
1.291100.90.1023.30
10.161.117.241172.17.0.3:80GET /wp-admin/memberfuns.php HTTP/1.1

21-0181831/30/35632K
0.52291.20.0324.11
10.161.117.245172.17.0.3:80GET /wp-admin/setup-config.php HTTP/1.1

22-0181942/16/37089K
0.392251.50.0125.14
10.161.117.192172.17.0.3:80GET / HTTP/1.1

23-01818894/109/36044K
1.170766.10.0824.37
10.161.117.192172.17.0.3:80GET /wp-includes/assets/plugins.php HTTP/1.1

24-0180890/122/35568_
1.340120.00.1123.95
10.161.117.163172.17.0.3:80NULL

25-0-0/0/35371.
0.36100.00.0023.98
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

26-01812253/148/32685K
1.540761.20.1322.47
10.161.117.245172.17.0.3:80GET /upload/ALFA_DATA/alfacgiapi/radio.php?bx=0e215962017 HTTP/

27-0-0/0/35516.
0.561900.00.0024.05
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

28-0181900/100/32465_
1.10090.00.0622.15
10.161.117.163172.17.0.3:80GET / HTTP/1.1

29-0-0/0/32743.
0.5019300.00.0022.14
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

30-0-0/0/31561.
0.3721200.00.0021.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

31-0180380/358/29831_
3.180110.00.2620.36
10.161.117.245172.17.0.3:80NULL

32-0-0/0/31156.
1.8420000.00.0020.86
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

33-0-0/0/27801.
0.924900.00.0018.97
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

34-0-0/0/27320.
0.4816700.00.0018.60
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

35-0-0/0/28010.
0.3220400.00.0018.99
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

36-0-0/0/25441.
0.3921400.00.0017.18
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

37-0-0/0/27328.
1.2613600.00.0018.36
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

38-0-0/0/23764.
1.0611200.00.0016.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

39-0-0/0/23762.
0.7212200.00.0016.16
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

40-0-0/0/20998.
0.3519400.00.0014.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

41-0-0/0/19452.
0.4818800.00.0013.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

42-0181461/72/15668K
0.872101.00.0710.56
10.161.117.239172.17.0.3:80GET /08fe61rr HTTP/1.1

43-0181470/106/17009_
1.150120.00.0811.50
10.161.117.163172.17.0.3:80POST /xmlrpc.php HTTP/1.1

44-0-0/0/16562.
0.629300.00.0011.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

45-0-0/0/12685.
1.478200.00.008.50
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

46-0-0/0/12069.
0.25253400.00.008.28
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

47-0-0/0/10662.
0.72240400.00.007.30
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

48-0-0/0/7728.
0.26252100.00.005.24
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

49-0-0/0/8905.
0.28251400.00.006.06
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

50-0-0/0/6870.
0.28249700.00.004.54
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

51-0-0/0/5089.
0.24253700.00.003.48
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

52-0-0/0/4683.
0.30250800.00.003.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

53-0-0/0/3628.
1.30236500.00.002.44
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

54-0-0/0/2397.
0.54242100.00.001.75
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

55-0-0/0/2894.
0.32248700.00.001.90
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

56-0-0/0/2134.
1.49235100.00.001.51
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

57-0-0/0/2902.
1.29228300.00.001.89
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

58-0-0/0/2587.
0.39244100.00.001.67
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

59-0-0/0/1894.
0.25252500.00.001.27
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

60-0-0/0/1093.
0.28251200.00.000.79
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

61-0-0/0/1631.
0.44246300.00.001.11
127.0.0.1172.17.0.3:80OPTIONS * HTTP/1.0

62-0-0/0/1912.
0.29250000.00.001.25
127.0.0.1172.17.0.3:80

Found on 2025-08-14 03:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3194860dc794860dc7bdaab4fd

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.5)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 12-Aug-2025 04:26:58 UTC
Restart Time: Friday, 08-Aug-2025 05:38:16 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 22 hours 48 minutes 41 seconds
Server load: 4.36 5.02 4.67
Total accesses: 9784283 - Total Traffic: 6.5 GB
CPU Usage: u88.15 s7.79 cu0 cs0 - .0281% CPU load
28.7 requests/sec - 19.8 kB/second - 708 B/request
39 requests currently being processed, 12 idle workers
_KK____K_K__CKKKKKKKKKKCKKKKKKCKK_KWKC_K_KKKKKK_KKK.............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01017030/60/273605_
0.75090.00.04185.87
10.161.117.245172.17.0.5:80NULL

1-01017411/19/268320K
0.42090.60.02181.46
10.161.117.239172.17.0.5:80HEAD /bc HTTP/1.1

2-01016721/221/268803K
2.04261.20.15181.64
10.161.117.239172.17.0.5:80GET /wp-admin/setup-config.php HTTP/1.1

3-01017300/39/267937_
0.560100.00.03180.62
10.161.117.241172.17.0.5:80NULL

4-01017440/12/268401_
0.370110.00.01180.79
10.161.117.239172.17.0.5:80HEAD /2023 HTTP/1.1

5-01017320/25/263244_
0.440100.00.02177.97
10.161.117.239172.17.0.5:80GET / HTTP/1.0

6-01017310/49/258090_
0.650140.00.04174.96
10.161.117.245172.17.0.5:80NULL

7-01016731/115/264818K
1.180100.60.09179.18
10.161.117.241172.17.0.5:80HEAD /bac HTTP/1.1

8-01017100/107/255734_
1.09080.00.07172.87
10.161.117.239172.17.0.5:80HEAD /Blog HTTP/1.1

9-010169197/247/256218K
2.180958.50.15173.68
10.161.117.245172.17.0.5:80GET /.well-known/acme-challenge/index.php HTTP/1.1

10-01017330/19/260511_
0.41090.00.01175.63
10.161.117.245172.17.0.5:80GET / HTTP/1.1

11-01017450/12/254765_
0.350100.00.01172.72
10.161.117.239172.17.0.5:80GET / HTTP/1.1

12-01016891/68/249956C
0.821110.60.05169.54
10.161.117.241172.17.0.5:80NULL

13-010174314/30/250066K
0.483178.00.02169.68
10.161.117.239172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

14-010173410/47/242646K
0.620176.20.04164.83
10.161.117.163172.17.0.5:80GET /bless2.php HTTP/1.1

15-010173598/110/243957K
1.100958.80.07164.75
10.161.117.192172.17.0.5:80GET /wp-content/themes/wp-pridmag/init.php? HTTP/1.1

16-010173614/130/247352K
1.271238.20.08167.00
10.161.117.192172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

17-01017501/2/241423K
0.274110.80.00163.52
10.161.117.239172.17.0.5:80GET /robots.txt HTTP/1.1

18-01017374/72/240408K
0.81093.60.05162.07
10.161.117.241172.17.0.5:80POST /wp-json/tdw/save_css HTTP/1.1

19-010170596/159/235876K
1.500755.30.09159.53
10.161.117.241172.17.0.5:80GET /as.php HTTP/1.1

20-010175113/14/235232K
0.37168.10.01159.13
10.161.117.241172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

21-01017391/27/232738K
0.500120.60.02157.33
10.161.117.163172.17.0.5:80HEAD /OLD HTTP/1.1

22-01017111/233/225785K
2.054100.70.14152.83
10.161.117.245172.17.0.5:80GET / HTTP/1.1

23-01017401/37/224814C
0.541100.60.02151.93
10.161.117.245172.17.0.5:80NULL

24-010174617/25/218208K
0.433139.90.02147.66
10.161.117.239172.17.0.5:80GET /bless9.php HTTP/1.1

25-01017471/14/220751K
0.39290.80.01149.58
10.161.117.241172.17.0.5:80GET /robots.txt HTTP/1.1

26-01017151/232/210342K
2.053101.10.14141.69
10.161.117.239172.17.0.5:80GET / HTTP/1.1

27-01016231/276/209374K
2.44270.70.18140.89
10.161.117.239172.17.0.5:80GET / HTTP/1.1

28-01017524/6/197667K
0.29092.40.00133.90
10.161.117.239172.17.0.5:80GET /good.php HTTP/1.1

29-01016254/301/195721K
2.66017.70.21132.83
10.161.117.192172.17.0.5:80GET /server-status HTTP/1.1

30-01016791/234/185296C
2.101100.70.16125.52
10.161.117.239172.17.0.5:80NULL

31-01017491/14/186005K
0.350100.60.01125.36
10.161.117.239172.17.0.5:80HEAD /Www HTTP/1.1

32-01017531/2/173823K
0.261120.90.00117.22
10.161.117.245172.17.0.5:80GET /robots.txt HTTP/1.1

33-01017540/3/168313_
0.28070.00.00113.15
10.161.117.192172.17.0.5:80GET /robots.txt HTTP/1.1

34-01017551/1/160131K
0.2422600.80.00108.19
10.161.117.245172.17.0.5:80GET / HTTP/1.1

35-01017122/314/151094W
2.70001.70.18101.64
10.161.117.163172.17.0.5:80GET /server-status HTTP/1.1

36-01017071/159/140485K
1.49390.60.1094.94
10.161.117.245172.17.0.5:80HEAD / HTTP/1.1

37-01017161/62/135495C
0.720140.60.0490.74
10.161.117.192172.17.0.5:80NULL

38-01017080/73/119771_
0.830110.00.0580.17
10.161.117.245172.17.0.5:80POST /xmlrpc.php HTTP/1.1

39-01016832/134/118798K
1.31025.80.1179.56
10.161.117.245172.17.0.5:80GET /server-status HTTP/1.1

40-01017560/2/100319_
0.26060.00.0067.53
10.161.117.245172.17.0.5:80HEAD /BACKUP HTTP/1.1

41-01017571/2/93504K
0.260100.90.0062.86
10.161.117.241172.17.0.5:80GET / HTTP/1.1

42-01017583/3/83337K
0.29091.80.0056.16
10.161.117.245172.17.0.5:80GET /cong.php HTTP/1.1

43-01017592/3/80512K
0.280111.70.0053.72
10.161.117.241172.17.0.5:80GET /@vite/env HTTP/1.1

44-01016441/187/68978K
1.730110.60.1446.16
10.161.117.163172.17.0.5:80HEAD /TEST HTTP/1.1

45-01017601/1/61433K
0.2312590.60.0040.99
10.161.117.241172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

46-01017611/1/50847K
0.2712940.60.0034.04
10.161.117.239172.17.0.5:80HEAD /TEST HTTP/1.1

47-01017620/1/52061_
0.2803130.00.0034.95
10.161.117.163172.17.0.5:80HEAD /2017 HTTP/1.1

48-01017631/2/41364K
0.280100.60.0027.70
10.161.117.192172.17.0.5:80HEAD /bc HTTP/1.1

49-01017641/1/38543K
0.2602960.60.0025.59
10.161.117.192172.17.0.5:80HEAD /bc HTTP/1.1

50-01017251/39/34301K
0.58090.60.0323.01
10.161.117.241172.17.0.5:80HEAD /TEST HTTP/1.1

51-0-0/0/28080.
1.221800.00.0018.98
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

52-0-0/0/25739.
0.498000.00.0017.18
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

53-0-0/0/23286.
0.5827600.00.0015.59
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

54-0-0/0/15246.
0.45218800.00.0010.42
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

55-0-0/0/18942.
0.33222800.00.0012.63
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

56-0-0/0/17055.
0.27223900.00.0011.24
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

57-0-0/0/12908.
0.25224000.00.008.55
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

58-0-0/0/11414.
0.28222900.00.007.64
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

59-0-0/0/11061.
0.30221800.00.007.47
127.0.0.11

Found on 2025-08-12 04:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3194860dc794860dc757613f9f

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.5)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 12-Aug-2025 04:26:58 UTC
Restart Time: Friday, 08-Aug-2025 05:38:16 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 22 hours 48 minutes 41 seconds
Server load: 4.36 5.02 4.67
Total accesses: 9784280 - Total Traffic: 6.5 GB
CPU Usage: u88.15 s7.79 cu0 cs0 - .0281% CPU load
28.7 requests/sec - 19.8 kB/second - 708 B/request
40 requests currently being processed, 11 idle workers
_WK_K__K_K__CKWKKKKKKKKCKKKKKKCKK_KKKC_W_KKKKKK_KKK.............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01017030/60/273605_
0.75090.00.04185.87
10.161.117.245172.17.0.5:80NULL

1-01017410/18/268319W
0.42000.00.02181.46
10.161.117.239172.17.0.5:80HEAD /bc HTTP/1.1

2-01016721/221/268803K
2.04261.20.15181.64
10.161.117.239172.17.0.5:80GET /wp-admin/setup-config.php HTTP/1.1

3-01017300/39/267937_
0.560100.00.03180.62
10.161.117.241172.17.0.5:80NULL

4-01017441/12/268401K
0.370110.60.01180.79
10.161.117.239172.17.0.5:80HEAD /2023 HTTP/1.1

5-01017320/25/263244_
0.440100.00.02177.97
10.161.117.239172.17.0.5:80GET / HTTP/1.0

6-01017310/49/258090_
0.650140.00.04174.96
10.161.117.245172.17.0.5:80NULL

7-01016731/115/264818K
1.180100.60.09179.18
10.161.117.241172.17.0.5:80HEAD /bac HTTP/1.1

8-01017100/107/255734_
1.09080.00.07172.87
10.161.117.239172.17.0.5:80HEAD /Blog HTTP/1.1

9-010169197/247/256218K
2.180958.50.15173.68
10.161.117.245172.17.0.5:80GET /.well-known/acme-challenge/index.php HTTP/1.1

10-01017330/19/260511_
0.41090.00.01175.63
10.161.117.245172.17.0.5:80GET / HTTP/1.1

11-01017450/12/254765_
0.350100.00.01172.72
10.161.117.239172.17.0.5:80GET / HTTP/1.1

12-01016891/68/249956C
0.821110.60.05169.54
10.161.117.241172.17.0.5:80NULL

13-010174314/30/250066K
0.483178.00.02169.68
10.161.117.239172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

14-01017349/46/242645W
0.62005.50.03164.83
10.161.117.163172.17.0.5:80GET /bless2.php HTTP/1.1

15-010173598/110/243957K
1.100958.80.07164.75
10.161.117.192172.17.0.5:80GET /wp-content/themes/wp-pridmag/init.php? HTTP/1.1

16-010173614/130/247352K
1.271238.20.08167.00
10.161.117.192172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

17-01017501/2/241423K
0.274110.80.00163.52
10.161.117.239172.17.0.5:80GET /robots.txt HTTP/1.1

18-01017374/72/240408K
0.81093.60.05162.07
10.161.117.241172.17.0.5:80POST /wp-json/tdw/save_css HTTP/1.1

19-010170596/159/235876K
1.500755.30.09159.53
10.161.117.241172.17.0.5:80GET /as.php HTTP/1.1

20-010175113/14/235232K
0.37168.10.01159.13
10.161.117.241172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

21-01017391/27/232738K
0.500120.60.02157.33
10.161.117.163172.17.0.5:80HEAD /OLD HTTP/1.1

22-01017111/233/225785K
2.054100.70.14152.83
10.161.117.245172.17.0.5:80GET / HTTP/1.1

23-01017401/37/224814C
0.541100.60.02151.93
10.161.117.245172.17.0.5:80NULL

24-010174617/25/218208K
0.433139.90.02147.66
10.161.117.239172.17.0.5:80GET /bless9.php HTTP/1.1

25-01017471/14/220751K
0.39290.80.01149.58
10.161.117.241172.17.0.5:80GET /robots.txt HTTP/1.1

26-01017151/232/210342K
2.053101.10.14141.69
10.161.117.239172.17.0.5:80GET / HTTP/1.1

27-01016231/276/209374K
2.44270.70.18140.89
10.161.117.239172.17.0.5:80GET / HTTP/1.1

28-01017524/6/197667K
0.29092.40.00133.90
10.161.117.239172.17.0.5:80GET /good.php HTTP/1.1

29-01016254/301/195721K
2.66017.70.21132.83
10.161.117.192172.17.0.5:80GET /server-status HTTP/1.1

30-01016791/234/185296C
2.101100.70.16125.52
10.161.117.239172.17.0.5:80NULL

31-01017491/14/186005K
0.350100.60.01125.36
10.161.117.239172.17.0.5:80HEAD /Www HTTP/1.1

32-01017531/2/173823K
0.261120.90.00117.22
10.161.117.245172.17.0.5:80GET /robots.txt HTTP/1.1

33-01017540/3/168313_
0.28070.00.00113.15
10.161.117.192172.17.0.5:80GET /robots.txt HTTP/1.1

34-01017551/1/160131K
0.2422600.80.00108.19
10.161.117.245172.17.0.5:80GET / HTTP/1.1

35-01017122/314/151094K
2.700101.70.18101.64
10.161.117.163172.17.0.5:80GET /.vscode/sftp.json HTTP/1.1

36-01017071/159/140485K
1.49390.60.1094.94
10.161.117.245172.17.0.5:80HEAD / HTTP/1.1

37-01017161/62/135495C
0.720140.60.0490.74
10.161.117.192172.17.0.5:80NULL

38-01017080/73/119771_
0.830110.00.0580.17
10.161.117.245172.17.0.5:80POST /xmlrpc.php HTTP/1.1

39-01016831/133/118797W
1.31000.80.1079.56
10.161.117.245172.17.0.5:80GET /server-status HTTP/1.1

40-01017560/2/100319_
0.26060.00.0067.53
10.161.117.245172.17.0.5:80HEAD /BACKUP HTTP/1.1

41-01017571/2/93504K
0.260100.90.0062.86
10.161.117.241172.17.0.5:80GET / HTTP/1.1

42-01017583/3/83337K
0.29091.80.0056.16
10.161.117.245172.17.0.5:80GET /cong.php HTTP/1.1

43-01017592/3/80512K
0.280111.70.0053.72
10.161.117.241172.17.0.5:80GET /@vite/env HTTP/1.1

44-01016441/187/68978K
1.730110.60.1446.16
10.161.117.163172.17.0.5:80HEAD /TEST HTTP/1.1

45-01017601/1/61433K
0.2312590.60.0040.99
10.161.117.241172.17.0.5:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

46-01017611/1/50847K
0.2712940.60.0034.04
10.161.117.239172.17.0.5:80HEAD /TEST HTTP/1.1

47-01017620/1/52061_
0.2803130.00.0034.95
10.161.117.163172.17.0.5:80HEAD /2017 HTTP/1.1

48-01017631/2/41364K
0.280100.60.0027.70
10.161.117.192172.17.0.5:80HEAD /bc HTTP/1.1

49-01017641/1/38543K
0.2602960.60.0025.59
10.161.117.192172.17.0.5:80HEAD /bc HTTP/1.1

50-01017251/39/34301K
0.58090.60.0323.01
10.161.117.241172.17.0.5:80HEAD /TEST HTTP/1.1

51-0-0/0/28080.
1.221800.00.0018.98
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

52-0-0/0/25739.
0.498000.00.0017.18
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

53-0-0/0/23286.
0.5827600.00.0015.59
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

54-0-0/0/15246.
0.45218800.00.0010.42
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

55-0-0/0/18942.
0.33222800.00.0012.63
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

56-0-0/0/17055.
0.27223900.00.0011.24
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

57-0-0/0/12908.
0.25224000.00.008.55
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

58-0-0/0/11414.
0.28222900.00.007.64
127.0.0.1172.17.0.5:80OPTIONS * HTTP/1.0

59-0-0/0/11061.
0.30221800.00.007.47
127.0.0.1

Found on 2025-08-12 04:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3195860fa895860fa84bd9f90f

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.4)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 12-Aug-2025 04:26:59 UTC
Restart Time: Friday, 08-Aug-2025 05:37:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 22 hours 49 minutes 14 seconds
Server load: 4.36 5.02 4.67
Total accesses: 9808224 - Total Traffic: 6.5 GB
CPU Usage: u84.97 s7.17 cu0 cs0 - .027% CPU load
28.7 requests/sec - 19.9 kB/second - 708 B/request
34 requests currently being processed, 16 idle workers
C_KK__K_KKKCKKK_KCK_KC__WK_K.C_C_K__KKKKKK_K_KKKKK...._.........
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01022671/148/273581C
1.40000.20.09185.35
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

1-01022150/144/270879_
1.39090.00.10182.29
10.161.117.163172.17.0.4:80HEAD /bc HTTP/1.1

2-01022921/28/271349K
0.47390.60.02182.67
10.161.117.241172.17.0.4:80HEAD /wp-old HTTP/1.1

3-01022891/21/267982K
0.42080.60.02181.58
10.161.117.245172.17.0.4:80HEAD /TEST HTTP/1.1

4-01022860/15/263225_
0.37060.00.01178.85
10.161.117.245172.17.0.4:80HEAD /2017 HTTP/1.1

5-01022900/11/260807_
0.33090.00.01176.41
10.161.117.163172.17.0.4:80NULL

6-01022392/117/260560K
1.19081.70.09176.05
10.161.117.163172.17.0.4:80GET /server HTTP/1.1

7-01022300/301/264970_
2.590100.00.20178.86
10.161.117.239172.17.0.4:80HEAD /2020 HTTP/1.1

8-01022541/166/251005K
1.571101.00.11170.71
10.161.117.245172.17.0.4:80GET / HTTP/1.1

9-010221947/82/257021K
0.9241330.30.06174.08
10.161.117.192172.17.0.4:80GET /wp-admin/class-db.php HTTP/1.1

10-01022911/13/253650K
0.364330.90.01172.81
10.161.117.241172.17.0.4:80GET /robots.txt HTTP/1.1

11-01022931/15/251555C
0.380161.10.01170.16
10.161.117.163172.17.0.4:80GET / HTTP/1.1

12-01022941/9/253726K
0.334851.10.01171.48
10.161.117.192172.17.0.4:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

13-010226094/165/247886K
1.540852.80.10167.82
10.161.117.239172.17.0.4:80GET /wp-includes/system_log.php? HTTP/1.1

14-01022951/20/243359K
0.451150.90.01165.47
10.161.117.163172.17.0.4:80GET / HTTP/1.1

15-01023070/6/246444_
0.30080.00.00166.61
10.161.117.241172.17.0.4:80HEAD /bac HTTP/1.1

16-010229691/91/243450K
0.9311353.80.05164.50
10.161.117.241172.17.0.4:80GET /zwso.php HTTP/1.1

17-01023081/1/242912C
0.2803130.70.00165.03
10.161.117.192172.17.0.4:80NULL

18-01022881/18/238953K
0.41291.00.01161.42
10.161.117.239172.17.0.4:80GET / HTTP/1.1

19-01022310/230/236259_
2.030120.00.15159.58
10.161.117.192172.17.0.4:80HEAD /2023 HTTP/1.1

20-01022641/68/233632K
0.76180.60.05157.66
10.161.117.245172.17.0.4:80HEAD /wp-old HTTP/1.1

21-010229772/73/230885C
0.830640.80.04156.61
10.161.117.163172.17.0.4:80NULL

22-01022750/36/226240_
0.570100.00.03153.39
10.161.117.163172.17.0.4:80HEAD /www HTTP/1.1

23-01022650/55/218794_
0.670100.00.04147.57
10.161.117.163172.17.0.4:80NULL

24-01023092/5/222553W
0.30001.70.00150.43
10.161.117.241172.17.0.4:80GET /server-status HTTP/1.1

25-01023102/4/216723K
0.29061.70.00146.10
10.161.117.239172.17.0.4:80GET /login.action HTTP/1.1

26-01022760/37/210257_
0.560210.00.03142.03
10.161.117.192

27-01022451/101/209966K
1.054511.20.07141.88
10.161.117.241172.17.0.4:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

28-0-0/0/203269.
0.49000.00.00136.89
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

29-01022781/23/201578C
0.440100.70.02135.45
10.161.117.192172.17.0.4:80NULL

30-01022740/142/196050_
1.34060.00.09131.19
10.161.117.192172.17.0.4:80HEAD /bc HTTP/1.1

31-01022981/11/179240C
0.32190.90.01121.76
10.161.117.192172.17.0.4:80NULL

32-01022990/8/176752_
0.330100.00.01119.59
10.161.117.192172.17.0.4:80HEAD /bac HTTP/1.1

33-01023111/2/164108K
0.27490.80.00110.21
10.161.117.163172.17.0.4:80GET /robots.txt HTTP/1.1

34-01023120/2/157708_
0.29060.00.00105.97
10.161.117.241

35-01023130/5/151938_
0.300140.00.00102.36
10.161.117.239172.17.0.4:80GET /histoire-art/contenu-en-lien/oeuvre/2188/gustave-courbet-1

36-01023011/10/142549K
0.32350.90.0195.60
10.161.117.163172.17.0.4:80GET /wp-content/themes/digital-download/new.php HTTP/1.1

37-01022529/182/137778K
1.7211611.30.1293.03
10.161.117.192172.17.0.4:80GET /wp-admin/profile.php HTTP/1.1

38-01023141/1/125690K
0.2734290.90.0084.57
10.161.117.192172.17.0.4:80GET /?author=4 HTTP/1.1

39-01023151/1/116830K
0.2433550.70.0077.71
10.161.117.241172.17.0.4:80GET / HTTP/1.1

40-01023161/2/106950K
0.25291.00.0071.96
10.161.117.241172.17.0.4:80GET /wp-content/plugins/essential-addons-for-elementor-lite/rea

41-01022831/28/97663K
0.461101.20.0266.09
10.161.117.239172.17.0.4:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

42-01023020/7/85239_
0.28080.00.0157.29
10.161.117.241172.17.0.4:80NULL

43-01023171/2/77859K
0.26160.80.0051.70
10.161.117.239172.17.0.4:80GET / HTTP/1.1

44-01023040/9/68451_
0.310120.00.0146.12
10.161.117.163172.17.0.4:80HEAD /sito HTTP/1.1

45-01023181/1/63290K
0.2833161.90.0042.26
10.161.117.245172.17.0.4:80GET /?fbclid=IwZXh0bgNhZW0CMTEAAR5lKx8d9mGcqszQUO4nfu-4rnJGRaff

46-01023061/5/55523K
0.28390.60.0037.12
10.161.117.163172.17.0.4:80HEAD /demo HTTP/1.1

47-01023191/2/55461K
0.260121.00.0037.23
10.161.117.163172.17.0.4:80GET / HTTP/1.1

48-01023202/4/39115K
0.270111.80.0026.19
10.161.117.241172.17.0.4:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

49-01023211/3/39826K
0.27090.80.0026.76
10.161.117.241172.17.0.4:80GET /about HTTP/1.1

50-0-0/0/31321.
0.4928100.00.0020.91
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

51-0-0/0/26938.
0.253532640.00.0018.04
10.161.117.192172.17.0.4:80GET /robots.txt HTTP/1.1

52-0-0/0/24384.
0.2933400.00.0016.40
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

53-0-0/0/24345.
0.5822400.00.0016.27
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

54-01022010/408/21907_
3.480140.00.2714.55
10.161.117.245172.17.0.4:80HEAD /bac HTTP/1.1

55-0-0/0/17627.
0.2634600.00.0011.70
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

56-0-0/0/16119.
1.2825800.00.0010.84
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

57-0-0/0/16459.
1.1030500.00.0011.08
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

58-0-0/0/12840.
0.2433600.00.008.46
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

59-0-0/0/12847.
2.4911300.00.008.60
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

Found on 2025-08-12 04:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae193f4baf3

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Friday, 18-Jul-2025 05:07:58 UTC
Restart Time: Tuesday, 15-Jul-2025 18:18:05 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 10 hours 49 minutes 52 seconds
Server load: 3.35 3.05 2.74
Total accesses: 7435432 - Total Traffic: 4.8 GB
CPU Usage: u131.66 s13.01 cu0 cs0 - .0683% CPU load
35.1 requests/sec - 24.0 kB/second - 699 B/request
21 requests currently being processed, 9 idle workers
_K_KKKK_KK_KKK_KKCK_._K.K_K_..KK........W..C....................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-0642300/87/205933_
1.260130.00.07137.61
10.161.117.245172.17.0.7:80NULL

1-0642542/9/202393K
0.472121.50.01135.23
10.161.117.239172.17.0.7:80GET / HTTP/1.1

2-0642450/30/201361_
0.650170.00.02134.02
10.161.117.192

3-0641721/127/199521K
1.712100.90.11132.70
10.161.117.241172.17.0.7:80GET / HTTP/1.1

4-06419066/418/198665K
4.7301338.00.25133.16
10.161.117.245172.17.0.7:80GET /wsoyanz.php HTTP/1.1

5-06420641/250/194008K
2.9901723.60.15129.82
10.161.117.192172.17.0.7:80GET /array.php HTTP/1.1

6-0642211/49/201872K
0.900151.00.04134.07
10.161.117.245172.17.0.7:80GET /.well-known/ HTTP/1.1

7-0642460/108/196395_
1.460110.00.06131.71
10.161.117.241172.17.0.7:80NULL

8-0642482/113/196804K
1.633181.80.10131.10
10.161.117.241172.17.0.7:80GET / HTTP/1.1

9-0642551/8/191480K
0.520140.90.01127.69
10.161.117.239172.17.0.7:80GET /main.cfm HTTP/1.1

10-0642310/125/191506_
1.620200.00.08127.77
10.161.117.241

11-0642562/2/188948K
0.431211.50.00125.72
10.161.117.245172.17.0.7:80GET / HTTP/1.1

12-0642571/1/193064K
0.3914271.30.00128.68
10.161.117.163172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

13-0641931/291/192427K
3.333131.10.19128.04
10.161.117.163172.17.0.7:80GET /admin/controller/extension/extension/ HTTP/1.1

14-0641590/428/186813_
4.780130.00.29124.83
10.161.117.241172.17.0.7:80GET /menus/Christmas%202021.pdf?dt=mofe2pth HTTP/1.1

15-0642511/21/189055K
0.632141.00.02126.24
10.161.117.241172.17.0.7:80GET /wp-admin/css/ HTTP/1.1

16-0641941/102/187598K
1.501171.30.09125.51
10.161.117.245172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

17-0642521/20/178174C
0.560110.80.02118.28
10.161.117.192172.17.0.7:80GET / HTTP/1.1

18-0642538/19/181874K
0.590114.60.01121.37
10.161.117.163172.17.0.7:80GET /wp-content/dropdown.php HTTP/1.1

19-0642580/1/180193_
0.4004560.00.00119.99
10.161.117.239172.17.0.7:80GET / HTTP/1.1

20-0-0/0/175615.
0.615300.00.00117.11
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

21-0641750/470/171694_
5.210150.00.31114.83
10.161.117.239172.17.0.7:80GET /media/system/js/core.js HTTP/1.1

22-0642272/113/171498K
1.51291.60.08114.09
10.161.117.239172.17.0.7:80GET / HTTP/1.1

23-0-0/0/171354.
1.762000.00.00114.57
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

24-06422819/49/170744K
0.9101111.00.04113.63
10.161.117.241172.17.0.7:80GET /wp-admin/css/colors/blue/cloud.php HTTP/1.1

25-0641520/374/166577_
4.34080.00.28111.38
10.161.117.245

26-0641441/343/161324K
3.930110.70.24107.53
10.161.117.163172.17.0.7:80GET /admin/filemanager/dialog.php HTTP/1.1

27-0642290/49/160776_
0.870120.00.05107.07
10.161.117.163172.17.0.7:80NULL

28-0-0/0/157503.
0.756900.00.00104.99
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

29-0-0/0/146527.
0.457700.00.0098.17
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

30-06417718/353/149964K
4.040910.60.2499.37
10.161.117.245172.17.0.7:80GET /simple.php HTTP/1.1

31-0642161/127/143530K
1.790241.00.0995.73
10.161.117.163172.17.0.7:80GET / HTTP/1.1

32-0-0/0/136296.
1.347400.00.0090.51
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

33-0-0/0/136976.
1.671900.00.0091.25
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

34-0-0/0/123952.
0.602900.00.0082.88
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

35-0-0/0/116468.
0.428300.00.0077.90
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

36-0-0/0/112387.
5.132700.00.0075.12
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

37-0-0/0/108780.
0.467000.00.0072.09
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

38-0-0/0/101245.
0.387900.00.0066.90
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

39-0-0/0/93847.
1.563300.00.0062.11
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

40-0642390/28/89431W
0.62000.00.0259.55
10.161.117.192172.17.0.7:80GET /server-status HTTP/1.1

41-0-0/0/75668.
0.515200.00.0050.50
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

42-0-0/0/71070.
1.492800.00.0047.37
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0642421/33/51542C
0.730211.10.0334.58
10.161.117.239172.17.0.7:80GET / HTTP/1.1

44-0-0/0/51968.
0.68900.00.0034.62
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/44206.
0.368400.00.0029.50
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/34874.
0.3746700.00.0023.50
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-0-0/0/32931.
0.4043500.00.0021.95
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

48-0-0/0/25539.
0.4444000.00.0017.36
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0-0/0/20337.
0.37917500.00.0013.77
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/14819.
0.459156140.00.009.84
10.161.117.192172.17.0.7:80POST /component_server HTTP/1.1

51-0-0/0/14787.
1.14899600.00.0010.11
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/10538.
3.42897600.00.007.07
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/12063.
1.05903200.00.007.89
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/8058.
1.20903900.00.005.26
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/6955.
3.53905500.00.004.76
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/7627.
0.36917000.00.005.06
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/6803.
0.42915900.00.004.67
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/5670.
0.41916800.00.003.87
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

59-0-0/0/5084.
0.35917900.00.003.48
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

60-0-0/0/7359.
0.381109100.00.004.97
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

61-0-0/0/5848.
0.521106200.00.003.87
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

Found on 2025-07-18 05:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae161bc0cf9

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 08-Jul-2025 09:16:41 UTC
Restart Time: Thursday, 03-Jul-2025 17:30:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 15 hours 46 minutes 37 seconds
Server load: 2.58 2.23 1.97
Total accesses: 9786889 - Total Traffic: 6.6 GB
CPU Usage: u104.85 s8.27 cu0 cs0 - .0281% CPU load
24.3 requests/sec - 17.2 kB/second - 724 B/request
25 requests currently being processed, 7 idle workers
C_CKKKK_.KCKK_K._K.KWKWKK__KKK..C.K..._K...K....................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-01113921/237/304792C
2.750121.10.15209.66
10.161.117.192172.17.0.7:80GET / HTTP/1.1

1-01114430/30/296627_
0.680110.00.02205.45
10.161.117.241172.17.0.7:80GET / HTTP/1.1

2-01114131/71/296120C
1.100121.10.05205.55
10.161.117.241172.17.0.7:80GET / HTTP/1.1

3-01114337/53/290608K
0.910165.30.04201.97
10.161.117.192172.17.0.7:80GET / HTTP/1.1

4-01113952/124/296292K
1.62491.60.08204.86
10.161.117.239172.17.0.7:80GET / HTTP/1.1

5-01113241/364/288792K
4.131121.20.24200.23
10.161.117.239172.17.0.7:80POST /xmlrpc.php HTTP/1.1

6-01114341/87/288201K
1.200141.20.06199.49
10.161.117.163172.17.0.7:80POST /alfacgiapi/perl.alfa HTTP/1.1

7-01113960/415/285541_
4.600100.00.25197.71
10.161.117.241172.17.0.7:80GET /wp-content/themes/seotheme/mar.php HTTP/1.1

8-0-0/0/283932.
1.841000.00.00197.04
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

9-01114361/38/289329K
0.700140.60.03199.95
10.161.117.239172.17.0.7:80GET /about/function.php HTTP/1.1

10-011143745/125/278640C
1.6301533.00.08192.38
10.161.117.245172.17.0.7:80NULL

11-01114381/58/280448K
0.921140.60.04194.50
10.161.117.192172.17.0.7:80GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1

12-01114441/105/273688K
1.420151.20.06190.83
10.161.117.163172.17.0.7:80POST /xmlrpc.php HTTP/1.1

13-01113850/300/280662_
3.490100.00.19193.96
10.161.117.239172.17.0.7:80GET /wp-includes/IXR/about.php HTTP/1.1

14-011138367/78/277429K
1.3721470.20.08191.49
10.161.117.241172.17.0.7:80GET /blog/wp-content/plugins/translator/translator.php?l=is&u=h

15-0-0/0/272488.
0.59900.00.00188.48
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

16-01114410/131/264706_
1.64000.00.07183.64
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

17-01114457/16/263155K
0.500114.40.01181.19
10.161.117.163172.17.0.7:80GET /ss.php HTTP/1.1

18-0-0/0/264224.
0.78600.00.00182.59
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

19-011138838/248/258728K
2.9501222.80.16178.73
10.161.117.163172.17.0.7:80GET /readme.php HTTP/1.1

20-011140980/135/248549W
1.710047.80.08172.36
10.161.117.241172.17.0.7:80GET /upload/login.php HTTP/1.1

21-011140439/166/248692K
2.0501925.80.11171.48
10.161.117.163172.17.0.7:80GET /wp-content/classwithtostring.php HTTP/1.1

22-01114460/9/246239W
0.40000.00.01169.95
10.161.117.192172.17.0.7:80GET /server-status HTTP/1.1

23-011142018/177/243860K
2.070810.90.11168.28
10.161.117.245172.17.0.7:80GET /wp-admin/includes/admin-ajax.php HTTP/1.1

24-011144755/58/233757K
0.9301431.70.03162.12
10.161.117.239172.17.0.7:80GET /edit-form.php HTTP/1.1

25-01114480/49/225748_
0.781110.00.03155.89
10.161.117.241172.17.0.7:80NULL

26-01114080/190/226222_
2.25180.00.12156.77
10.161.117.163172.17.0.7:80GET / HTTP/1.1

27-011141190/100/213638K
1.3701258.00.07147.54
10.161.117.163172.17.0.7:80GET /wp-includes/rest-api/about.php HTTP/1.1

28-01113601/411/209645K
4.614100.90.27144.79
10.161.117.241172.17.0.7:80GET / HTTP/1.1

29-01114491/37/202074K
0.633121.10.03139.07
10.161.117.239172.17.0.7:80GET / HTTP/1.1

30-0-0/0/190295.
3.09700.00.00131.24
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

31-0-0/0/175270.
0.59100.00.00121.36
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

32-011145145/47/166167C
0.7811326.10.03114.54
10.161.117.245172.17.0.7:80NULL

33-0-0/0/160995.
0.70000.00.00110.83
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

34-01113415/372/152496K
4.450112.90.24104.91
10.161.117.239172.17.0.7:80GET /wp-content/themes/pridmag/db.php?u HTTP/1.1

35-0-0/0/127670.
0.72200.00.0088.52
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

36-0-0/0/121453.
0.381800.00.0083.43
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

37-0-0/0/99980.
0.791700.00.0069.19
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

38-01114540/6/97109_
0.38000.00.0166.89
10.161.117.245172.17.0.7:80TRACE / HTTP/1.1

39-01114551/98/85204K
1.330121.30.0658.82
10.161.117.245172.17.0.7:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

40-0-0/0/70249.
2.871300.00.0048.71
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

41-0-0/0/61648.
0.741400.00.0042.38
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

42-0-0/0/48818.
0.001900.00.0033.56
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-011143236/63/40922K
0.9841521.70.0428.31
10.161.117.241172.17.0.7:80GET /wp-content/plugins/dummyyummy/wp-signup.php HTTP/1.1

44-0-0/0/33190.
0.61184800.00.0022.93
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/31370.
0.00192700.00.0021.54
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/20769.
0.48188400.00.0014.34
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-0-0/0/20179.
0.42864100.00.0013.75
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

48-0-0/0/17306.
0.53860100.00.0011.79
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0-0/0/12974.
0.47860700.00.008.95
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/11520.
0.00865600.00.007.95
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/12951.
0.40863200.00.008.71
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/11346.
0.73862500.00.007.90
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/10708.
0.00865800.00.007.33
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/10352.
0.35863300.00.007.15
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/7904.
0.38864700.00.005.57
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/6825.
0.45862300.00.004.65
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/4904.
1.06855200.00.003.52
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/4730.
2.20845100.00.003.35
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

59-0-0/0/4694.
5.43822800.00.003.22
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

60-0-0/0/2907.
0.53863700.00.002.04

Found on 2025-07-08 09:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3195860fa895860fa818d86960

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.4)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Sunday, 06-Jul-2025 12:02:13 UTC
Restart Time: Thursday, 03-Jul-2025 17:28:12 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 18 hours 34 minutes
Server load: 4.06 3.59 3.68
Total accesses: 5397330 - Total Traffic: 3.7 GB
CPU Usage: u111.87 s14.14 cu0 cs0 - .0526% CPU load
22.5 requests/sec - 16.2 kB/second - 738 B/request
16 requests currently being processed, 7 idle workers
KKK._.CK__.K.K_KKK_.W..K.KK_..._KK..............................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-06796285/86/167480K
1.2001361.20.06117.19
10.161.117.163172.17.0.4:80GET /wp-admin/meta/ HTTP/1.1

1-0679331/38/161653K
0.761211.30.04114.03
10.161.117.241172.17.0.4:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

2-0679631/8/158783K
0.433111.20.01112.25
10.161.117.239172.17.0.4:80GET /?fbclid=PAZXh0bgNhZW0CMTEAAafx1ZZvWp7IwR3Oe2xXg9xDRrwjTUE3

3-0-0/0/157056.
0.511300.00.00110.97
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

4-0679640/11/149771_
0.540130.00.01106.26
10.161.117.163172.17.0.4:80POST /xmlrpc.php HTTP/1.1

5-0-0/0/157683.
3.71100.00.00111.48
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

6-0679081/123/155938C
1.670151.10.10109.77
10.161.117.241172.17.0.4:80GET / HTTP/1.1

7-0679104/99/156645K
1.450102.40.09110.19
10.161.117.192172.17.0.4:80GET /radio.php HTTP/1.1

8-0679350/93/156124_
1.280130.00.07110.49
10.161.117.192172.17.0.4:80GET /administration/ HTTP/1.1

9-0678720/217/158563_
2.610120.00.18111.93
10.161.117.245172.17.0.4:80GET / HTTP/1.1

10-0-0/0/153647.
0.521400.00.00108.40
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

11-0679201/152/156257K
2.06180.90.12109.23
10.161.117.239172.17.0.4:80GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1

12-0-0/0/149491.
1.33300.00.00105.72
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

13-0679651/8/147131K
0.464160.80.01104.07
10.161.117.241172.17.0.4:80GET / HTTP/1.1

14-0679660/7/153165_
0.490110.00.01107.83
10.161.117.192172.17.0.4:80GET / HTTP/1.1

15-06795689/94/143513K
1.2801450.20.05101.72
10.161.117.245172.17.0.4:80GET /files.php HTTP/1.1

16-06793687/111/141928K
1.4701952.80.07100.61
10.161.117.192172.17.0.4:80GET /img/wp-login.php HTTP/1.1

17-06795712/24/143105K
0.62096.80.02100.37
10.161.117.163172.17.0.4:80GET /1xleet.php HTTP/1.1

18-0679670/12/141116_
0.48070.00.0199.89
10.161.117.245172.17.0.4:80GET / HTTP/1.0

19-0-0/0/138689.
2.65500.00.0097.95
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

20-0679580/15/140107W
0.56000.00.0198.87
10.161.117.163172.17.0.4:80GET /server-status HTTP/1.1

21-0-0/0/140154.
1.281100.00.0098.59
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

22-0-0/0/132261.
0.61700.00.0093.15
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

23-06794731/58/131048K
0.9702518.20.0491.95
10.161.117.245172.17.0.4:80GET /users.php HTTP/1.1

24-0-0/0/127283.
0.911500.00.0090.06
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

25-0679481/88/122230K
1.254151.20.0686.29
10.161.117.163172.17.0.4:80POST /xmlrpc.php HTTP/1.1

26-0679681/9/120080K
0.461161.10.0184.64
10.161.117.163172.17.0.4:80GET /robots.txt HTTP/1.1

27-0679530/39/116271_
0.730120.00.0381.92
10.161.117.241172.17.0.4:80GET /?rest_route=/wp/v2/users HTTP/1.1

28-0-0/0/115920.
0.533200.00.0081.08
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

29-0-0/0/109730.
0.64400.00.0076.75
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

30-0-0/0/104807.
1.491200.00.0072.88
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

31-0679510/33/102192_
0.760100.00.0371.88
10.161.117.239172.17.0.4:80GET / HTTP/1.1

32-06795466/76/92899K
1.1701040.20.0565.01
10.161.117.245172.17.0.4:80GET /wp-admin/includes/class-wp-pagebuilders-3bv4aS.php HTTP/1.

33-06796044/46/87631K
0.801928.30.0361.40
10.161.117.163172.17.0.4:80GET /wp-content/admin.php HTTP/1.1

34-0-0/0/80533.
1.34200.00.0056.18
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

35-0-0/0/71776.
0.3241300.00.0049.98
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

36-0-0/0/68315.
0.6259800.00.0047.73
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

37-0-0/0/61433.
2.1975300.00.0043.26
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

38-0-0/0/57264.
0.42117100.00.0040.27
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

39-0-0/0/45955.
1.5393500.00.0032.53
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

40-0-0/0/46713.
3.83134800.00.0032.80
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

41-0-0/0/35880.
0.39159400.00.0025.33
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

42-0-0/0/35185.
0.39382800.00.0024.55
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

43-0-0/0/26872.
1.07369100.00.0018.78
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

44-0-0/0/21451.
0.48382000.00.0015.03
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

45-0-0/0/17765.
0.97370700.00.0012.40
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

46-0-0/0/16015.
3.23358800.00.0011.39
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

47-0-0/0/16704.
0.00384500.00.0011.73
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

48-0-0/0/10278.
0.43484200.00.007.19
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

49-0-0/0/11788.
0.41486300.00.008.08
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

50-0-0/0/7505.
0.42484500.00.005.25
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

51-0-0/0/6265.
2.09438300.00.004.48
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

52-0-0/0/5255.
3.64458900.00.003.72
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

53-0-0/0/4933.
0.44483900.00.003.50
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

54-0-0/0/5316.
0.37487400.00.003.63
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

55-0-0/0/3957.
0.37488000.00.002.67
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

56-0-0/0/4057.
0.60477000.00.002.89
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

57-0-0/0/3097.
0.45483600.00.002.08
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

58-0-0/0/2704.
0.45486000.00.001.89
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

59-0-0/0/2049.
3.51448700.00.001.48
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

60-0-0/0/2171.
1.66471300.00.001.50
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

61-0-0/0/1976.
0.45487600.00.001.40
127.0.0.1172.17.0.4:80OPTIONS * HT

Found on 2025-07-06 12:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae15cf14354

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Tuesday, 10-Jun-2025 10:49:46 UTC
Restart Time: Tuesday, 01-Apr-2025 09:45:53 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  70 days 1 hour 3 minutes 53 seconds
Server load: 2.28 2.93 2.70
Total accesses: 128033566 - Total Traffic: 86.3 GB
CPU Usage: u134.37 s18.51 cu0 cs0 - .00253% CPU load
21.2 requests/sec - 15.0 kB/second - 723 B/request
30 requests currently being processed, 5 idle workers
KKKK_KC_KK_KCKK_KCKK_KKKKKKKK.WKKK..KK..........................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-017074311/14/3781036K
0.502100.80.012625.09
10.161.117.239172.17.0.7:80GET /php.php HTTP/1.1

1-017074141/29/3723212K
0.694131.20.032591.09
10.161.117.239172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

2-017074151/42/3698128K
0.773110.90.032569.67
10.161.117.245172.17.0.7:80GET / HTTP/1.1

3-017074321/9/3690300K
0.471140.90.012565.72
10.161.117.192172.17.0.7:80GET /tes.php HTTP/1.1

4-017073950/146/3656119_
1.860120.00.112537.27
10.161.117.192172.17.0.7:80NULL

5-0170740552/90/3638628K
1.2701032.70.062527.38
10.161.117.239172.17.0.7:80GET /mah/function.php HTTP/1.1

6-017074392/2/3619006C
0.371111.40.002511.21
10.161.117.245172.17.0.7:80NULL

7-017074400/1/3597316_
0.3804050.00.002497.72
10.161.117.245172.17.0.7:80NULL

8-017074331/8/3584801K
0.452110.90.012491.08
10.161.117.245172.17.0.7:80GET / HTTP/1.1

9-017074411/3/3535205K
0.36380.90.002454.80
10.161.117.239172.17.0.7:80GET / HTTP/1.1

10-017074210/21/3541178_
0.530110.00.022457.16
10.161.117.239172.17.0.7:80GET http://taylordengineeringsolutions.com/ HTTP/1.1

11-0170740275/79/3485203K
1.1941048.80.052417.72
10.161.117.239172.17.0.7:80GET /wp-content/plugins/erinyani/gebase.php HTTP/1.1

12-017074341/11/3464135C
0.4811603.80.012403.77
10.161.117.239172.17.0.7:80NULL

13-017072631/302/3422796K
3.500141.20.232377.50
10.161.117.239172.17.0.7:80GET http://www.mycmsite.com/sites/emikielian/Content/Shop/Catal

14-0170743013/14/3378387K
0.531128.60.012345.06
10.161.117.241172.17.0.7:80GET /wp-content/languages/themes/ HTTP/1.1

15-017074080/145/3366053_
1.890200.00.102333.51
10.161.117.245172.17.0.7:80GET /blog/wp-content/plugins/translator/translator.php?l=is&u=h

16-017073911/170/3349487K
2.124111.00.122323.51
10.161.117.241172.17.0.7:80GET /robots.txt HTTP/1.1

17-017073761/193/3296108C
2.330100.90.142286.54
10.161.117.241172.17.0.7:80NULL

18-017074111/139/3250110K
1.800100.80.062255.56
10.161.117.241172.17.0.7:80GET /about HTTP/1.1

19-017074351/12/3203323K
0.460140.90.012220.01
10.161.117.239172.17.0.7:80GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1

20-017074120/50/3160071_
0.870110.00.052189.72
10.161.117.192172.17.0.7:80NULL

21-017073981/238/3107550K
2.740100.90.112152.40
10.161.117.192172.17.0.7:80GET /wp-content/plugins/litespeed-cache/readme.txt HTTP/1.1

22-017074221/22/3074422K
0.602140.90.022127.99
10.161.117.241172.17.0.7:80GET / HTTP/1.1

23-0170743647/51/2976978K
0.930826.20.032070.84
10.161.117.163172.17.0.7:80GET /disagrsod.php HTTP/1.1

24-017074422/2/2900235K
0.370152.60.002004.42
10.161.117.245172.17.0.7:80GET / HTTP/1.1

25-017074384/11/2856819K
0.49092.60.011971.90
10.161.117.192172.17.0.7:80GET /wp-content/languages/about.php HTTP/1.1

26-017073241/333/2748337K
3.752130.80.221899.00
10.161.117.163172.17.0.7:80GET /php_info.php HTTP/1.1

27-0170740070/89/2663242K
1.3001045.00.061837.28
10.161.117.245172.17.0.7:80GET /about.php HTTP/1.1

28-017074011/109/2553109K
1.504220.90.071764.97
10.161.117.245172.17.0.7:80GET / HTTP/1.1

29-0-0/0/2462385.
0.421500.00.001697.67
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

30-017073310/221/2353923W
2.56000.00.151621.88
10.161.117.245172.17.0.7:80GET /server-status HTTP/1.1

31-017074261/11/2249639K
0.491100.90.011546.43
10.161.117.241172.17.0.7:80GET / HTTP/1.1

32-017074271/16/2154530K
0.532120.60.011479.84
10.161.117.241172.17.0.7:80GET /wp-content/plugins/seoo/ulc2.php HTTP/1.1

33-017074282/15/2012357K
0.510121.80.011378.59
10.161.117.163172.17.0.7:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

34-0-0/0/1878370.
0.373200.00.001285.72
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

35-0-0/0/1760163.
2.817100.00.001203.79
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

36-0170731668/338/1650802K
4.0001144.50.261128.30
10.161.117.245172.17.0.7:80GET /js/index.php HTTP/1.1

37-017073361/242/1520591K
2.894101.20.171034.68
10.161.117.241172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

38-0-0/0/1393063.
0.6534100.00.00948.25
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

39-0-0/0/1269575.
2.079400.00.00864.47
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

40-0-0/0/1164663.
1.6916700.00.00790.55
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

41-0-0/0/1048927.
0.9025800.00.00712.10
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

42-0-0/0/931188.
1.3840100.00.00629.73
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0-0/0/836381.
0.3839100.00.00564.57
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

44-0-0/0/748588.
1.2025400.00.00505.14
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/671198.
0.3839600.00.00451.27
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/578729.
0.4339500.00.00388.69
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-0-0/0/522645.
0.5334200.00.00351.64
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

48-0-0/0/463423.
0.84273200.00.00309.73
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0-0/0/414283.
0.39286700.00.00276.52
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

50-0-0/0/362101.
0.39286200.00.00242.03
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/331061.
0.40285800.00.00220.48
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/290700.
0.381952100.00.00194.46
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/256429.
0.431949700.00.00170.66
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/231335.
0.601950600.00.00154.89
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/206482.
1.151933500.00.00137.54
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/186060.
0.411951700.00.00124.01
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/168508.
0.401953400.00.00112.10
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/144884.
0.441951000.00.0096.32
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

59-0-0/0/129314.
0.00

Found on 2025-06-10 10:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3192860ae192860ae1166f384c

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.7)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 28-May-2025 15:22:29 UTC
Restart Time: Tuesday, 01-Apr-2025 09:45:53 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  57 days 5 hours 36 minutes 36 seconds
Server load: 3.88 3.38 3.38
Total accesses: 99334483 - Total Traffic: 67.2 GB
CPU Usage: u178.92 s22 cu0 cs0 - .00406% CPU load
20.1 requests/sec - 14.3 kB/second - 726 B/request
33 requests currently being processed, 7 idle workers
CKW_.CWCKK..KKKKKKKKKKKKKKK_K_KKKK__K_K.KK....._.K..............
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-013930551/33/2965826C
0.68180.40.022067.29
10.161.117.245172.17.0.7:80NULL

1-0139303252/96/2930527K
1.2801129.80.062046.41
10.161.117.241172.17.0.7:80GET /wp-includes/pomo/ HTTP/1.1

2-013929431/390/2905391W
4.30000.90.252026.11
10.161.117.241172.17.0.7:80GET /server-status HTTP/1.1

3-013930410/187/2899162_
2.230110.00.122023.92
10.161.117.241172.17.0.7:80GET / HTTP/1.1

4-0-0/0/2872112.
4.66900.00.002000.00
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

5-013930561/29/2849037C
0.660110.90.021987.41
10.161.117.192172.17.0.7:80NULL

6-013930770/23/2846104W
0.63000.00.011981.36
10.161.117.241172.17.0.7:80GET /login.action HTTP/1.1

7-013930281/142/2816860C
1.82070.80.101963.38
10.161.117.192172.17.0.7:80GET http://braydenolson.com/administrator/ HTTP/1.1

8-0139298776/441/2812235K
4.7501048.00.281962.08
10.161.117.163172.17.0.7:80GET /wp-content/plugins/index.php HTTP/1.1

9-013930571/15/2759155K
0.531130.60.011925.16
10.161.117.239172.17.0.7:80HEAD / HTTP/1.1

10-0-0/0/2781315.
1.86800.00.001937.68
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

11-0-0/0/2730163.
0.44200.00.001901.53
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

12-013930341/77/2702921K
1.141110.30.051884.74
10.161.117.239172.17.0.7:80HEAD /brandontitaro.com.zip HTTP/1.1

13-013930722/10/2673855K
0.492151.40.011866.89
10.161.117.163172.17.0.7:80GET /special-projects HTTP/1.1

14-013930351/215/2648532K
2.47070.90.101846.03
10.161.117.163172.17.0.7:80GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

15-0139302974/121/2632625K
1.5801142.30.081831.80
10.161.117.239172.17.0.7:80GET /xleet-shell.php HTTP/1.1

16-013930361/68/2614133K
1.023121.20.051820.45
10.161.117.239172.17.0.7:80GET /wp-admin/setup-config.php HTTP/1.1

17-0139305813/39/2581008K
0.750128.60.031796.90
10.161.117.241172.17.0.7:80GET /wp-includes/css/dist/components/ HTTP/1.1

18-0139303048/88/2538842K
1.263932.90.061768.40
10.161.117.241172.17.0.7:80GET /wp-content/themes/pridmag/ HTTP/1.1

19-0139307325/33/2487655K
0.7001114.90.021731.47
10.161.117.163172.17.0.7:80GET /wp-content/themes/about.php HTTP/1.1

20-013930431/135/2474277K
1.701120.90.091719.58
10.161.117.163172.17.0.7:80GET /actuator/env HTTP/1.1

21-013930741/10/2428740K
0.420160.80.011686.45
10.161.117.245172.17.0.7:80GET / HTTP/1.1

22-0139297234/281/2386650K
3.2601219.90.181657.70
10.161.117.239172.17.0.7:80GET /.well-known/pki-validation/index.php?p= HTTP/1.1

23-0139305015/129/2308929K
1.630108.80.081614.05
10.161.117.239172.17.0.7:80GET /filemanager.php HTTP/1.1

24-013930781/14/2251651K
0.532110.70.011560.64
10.161.117.245172.17.0.7:80GET / HTTP/1.1

25-013930458/141/2215354K
1.740124.70.091535.41
10.161.117.239172.17.0.7:80GET /wp-load.php HTTP/1.1

26-013930791/18/2116917K
0.540110.60.011468.20
10.161.117.239172.17.0.7:80GET /wp-signin.php HTTP/1.1

27-013930220/395/2044022_
4.340120.00.231415.17
10.161.117.239172.17.0.7:80GET /wp-admin.phphttps://diegun.com/autoload_classmap.php HTTP/

28-013930231/340/1948642K
3.802110.60.211353.26
10.161.117.245172.17.0.7:80GET /wp-atom.php HTTP/1.1

29-013930470/158/1881740_
1.910100.00.091302.06
10.161.117.245172.17.0.7:80NULL

30-013930521/45/1784591K
0.80380.80.031234.47
10.161.117.241172.17.0.7:80GET / HTTP/1.1

31-0139305365/115/1703369K
1.4901438.90.071174.01
10.161.117.192172.17.0.7:80GET /wp-admin/maint/users.php HTTP/1.1

32-01393024100/350/1624606K
3.8201360.00.181118.76
10.161.117.239172.17.0.7:80GET /wp-admin HTTP/1.1

33-013928333/778/1513839K
8.001111.90.461040.20
10.161.117.239172.17.0.7:80GET /admin/ HTTP/1.1

34-013930540/65/1423098_
1.010100.00.04975.51
10.161.117.245172.17.0.7:80GET /3ds1633693954432212 HTTP/1.1

35-013930000/495/1314873_
5.440130.00.30902.30
10.161.117.192172.17.0.7:80GET /wp-includes/index.php HTTP/1.1

36-013930601/14/1233676K
0.48191.10.01845.50
10.161.117.241172.17.0.7:80GET http://www.chemjobs.net/job/1401612377/bioinformatics-produ

37-013930760/9/1130365_
0.430120.00.01771.72
10.161.117.163172.17.0.7:80GET / HTTP/1.1

38-0139306260/65/1038783K
1.040836.30.04708.53
10.161.117.163172.17.0.7:80GET /mah/function.php HTTP/1.1

39-0-0/0/947754.
0.341000.00.00646.54
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

40-0139306315/28/865183K
0.6601210.10.02588.36
10.161.117.163172.17.0.7:80GET /wp-includes/css/dist/list-reusable-blocks/ HTTP/1.1

41-013930641/103/791151K
1.380101.20.06537.83
10.161.117.239172.17.0.7:80GET /tag/pierre-lapointe/ HTTP/1.1

42-0-0/0/694893.
4.582500.00.00470.77
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

43-0-0/0/631017.
0.413700.00.00426.96
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

44-0-0/0/572152.
0.394300.00.00386.97
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

45-0-0/0/506489.
0.004800.00.00341.12
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

46-0-0/0/438262.
0.464100.00.00295.47
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

47-013930690/18/405220_
0.53070.00.02273.06
10.161.117.192172.17.0.7:80GET / HTTP/1.1

48-0-0/0/359174.
0.0052500.00.00240.51
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

49-0139291728/565/323422K
6.1601017.90.41216.03
10.161.117.192172.17.0.7:80GET /simple/function.php HTTP/1.1

50-0-0/0/286471.
1.2887600.00.00191.49
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

51-0-0/0/265169.
1.3899700.00.00177.02
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

52-0-0/0/234701.
1.2289000.00.00157.03
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

53-0-0/0/207174.
0.36103100.00.00138.21
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

54-0-0/0/192606.
7.5750600.00.00129.02
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

55-0-0/0/169680.
0.58101200.00.00112.88
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

56-0-0/0/150838.
0.6896100.00.00100.68
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

57-0-0/0/136730.
0.38101900.00.0090.75
127.0.0.1172.17.0.7:80OPTIONS * HTTP/1.0

58-0-0/0/116285.
0.4210260

Found on 2025-05-28 15:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3195860fa895860fa83e56f7be

Apache Status

Apache Server Status for anlpharmaceuticals.com (via 172.17.0.4)

Server Version: Apache/2.4.18 (Ubuntu) mod_perl/2.0.9 Perl/v5.22.1
Server MPM: prefork
Server Built: 2020-08-12T21:35:50

Current Time: Wednesday, 28-May-2025 15:22:29 UTC
Restart Time: Monday, 26-May-2025 19:51:34 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 19 hours 30 minutes 55 seconds
Server load: 3.48 3.75 3.83
Total accesses: 6625435 - Total Traffic: 4.1 GB
CPU Usage: u112.09 s7.41 cu0 cs0 - .0763% CPU load
42.3 requests/sec - 27.1 kB/second - 656 B/request
38 requests currently being processed, 2 idle workers
KKKKK.KKK.CK.KK.C.K.K.KK.KK.KKKKKKKK.W.KK._C_K.KKKKKK...........
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientVHostRequest

0-04811833/46/151766K
0.6101118.70.0294.58
10.161.117.241172.17.0.4:80GET /.well-known/acme-challenge/xmrlpc.php HTTP/1.1

1-04812126/39/152579K
0.560815.30.0295.35
10.161.117.239172.17.0.4:80GET /cgi-bin/cgi-bin/about.php HTTP/1.1

2-04806271/72/148260K
0.8602846.50.0593.10
10.161.117.239172.17.0.4:80GET /plugins.php HTTP/1.1

3-0480082/423/149522K
3.77391.40.2694.02
10.161.117.163172.17.0.4:80GET /robots.txt HTTP/1.1

4-0480705/133/150073K
1.340102.80.0994.25
10.161.117.163172.17.0.4:80GET /file.php HTTP/1.1

5-0-0/0/147755.
0.32100.00.0093.22
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

6-0481011/43/145542K
0.62481.00.0391.08
10.161.117.245172.17.0.4:80GET /oem-catalog/7701770866-Body-GS300-2000.html HTTP/1.1

7-0481221/4/147069K
0.290100.30.0092.11
10.161.117.192172.17.0.4:80HEAD /old/wallet.zip HTTP/1.1

8-0481231/6/145308K
0.33280.90.0190.83
10.161.117.239172.17.0.4:80GET / HTTP/1.1

9-0-0/0/143129.
2.701700.00.0089.73
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

10-04808247/162/140909C
1.5511127.40.0788.32
10.161.117.245172.17.0.4:80NULL

11-04810339/74/140982K
0.8901023.20.0588.73
10.161.117.239172.17.0.4:80GET /img/cloud.php HTTP/1.1

12-0-0/0/147069.
1.743100.00.0091.99
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

13-04809160/184/140691K
1.770734.90.1187.59
10.161.117.163172.17.0.4:80GET /wp-includes/css/dist/block-library/ HTTP/1.1

14-0480751/115/141238K
1.181121.20.0888.54
10.161.117.245172.17.0.4:80GET /wordpress/wp-admin/setup-config.php HTTP/1.1

15-0-0/0/134450.
0.603900.00.0084.48
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

16-0480771/73/137372C
0.850130.90.0486.19
10.161.117.163172.17.0.4:80NULL

17-0-0/0/141129.
0.382300.00.0088.59
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

18-04804322/286/143535K
2.662912.60.1889.63
10.161.117.245172.17.0.4:80GET /shell.php?p= HTTP/1.1

19-0-0/0/134221.
0.354700.00.0084.35
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

20-04810429/46/135428K
0.6401417.60.0384.93
10.161.117.192172.17.0.4:80GET /wp-admin/wp-admin.php HTTP/1.1

21-0-0/0/138449.
2.134600.00.0086.20
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

22-0480171/564/135085K
5.080100.90.3484.52
10.161.117.239172.17.0.4:80GET / HTTP/1.1

23-04807869/161/132098K
1.6101943.50.1082.44
10.161.117.192172.17.0.4:80GET /js/index.php HTTP/1.1

24-0-0/0/134530.
0.474400.00.0084.66
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

25-0480361/120/132591K
1.31460.80.0882.69
10.161.117.163172.17.0.4:80GET /.well-known/acme-challenge/kyF1VvIt_bic7yBzwJr4h84KGtouWAP

26-0480971/114/135890K
1.21271.00.0785.08
10.161.117.163172.17.0.4:80GET / HTTP/1.1

27-0-0/0/128751.
0.392000.00.0081.09
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

28-04804592/421/129752K
3.710954.20.2581.02
10.161.117.192172.17.0.4:80GET /config.php HTTP/1.1

29-0480831/209/126586K
2.00290.80.1279.27
10.161.117.241172.17.0.4:80GET / HTTP/1.1

30-0480841/54/121657K
0.690100.90.0476.46
10.161.117.245172.17.0.4:80GET / HTTP/1.1

31-04805039/281/121101K
2.560129.80.1575.95
10.161.117.163172.17.0.4:80GET /filemanager.php HTTP/1.1

32-0480851/181/118651K
1.79080.80.1173.90
10.161.117.239172.17.0.4:80GET /about HTTP/1.1

33-04809825/130/118354K
1.320915.50.0874.07
10.161.117.239172.17.0.4:80GET /randkeyword.PhP7 HTTP/1.1

34-04802536/577/115823K
4.980926.70.3472.29
10.161.117.192172.17.0.4:80GET /cgi-bin/autoload_classmap.php HTTP/1.1

35-0480991/43/115563K
0.610110.90.0372.51
10.161.117.163172.17.0.4:80GET /v2/_catalog HTTP/1.1

36-0-0/0/110662.
0.433400.00.0069.67
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

37-0481060/56/108806W
0.74000.00.0468.04
10.161.117.241172.17.0.4:80GET /server-status HTTP/1.1

38-0-0/0/107817.
0.333200.00.0067.27
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

39-0480542/380/106541K
3.36351.00.2266.88
10.161.117.239172.17.0.4:80GET /robots.txt HTTP/1.1

40-0480551/250/98580K
2.31190.90.1561.87
10.161.117.163172.17.0.4:80GET /wp-includes/Requests/Text/ HTTP/1.1

41-0-0/0/96272.
0.274200.00.0060.11
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

42-0481090/119/94104_
1.260100.00.0759.02
10.161.117.163172.17.0.4:80GET / HTTP/1.1

43-0481101/23/83563C
0.470111.10.0252.16
10.161.117.245172.17.0.4:80GET / HTTP/1.1

44-0481110/29/81131_
0.50060.00.0250.83
10.161.117.241172.17.0.4:80GET / HTTP/1.1

45-04805947/305/76076K
2.8301127.40.1947.32
10.161.117.192172.17.0.4:80GET /wp-content/themes/sketch/404.php HTTP/1.1

46-0-0/0/82062.
0.304500.00.0050.99
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

47-0481133/33/67924K
0.55091.80.0343.41
10.161.117.239172.17.0.4:80GET /bob.php?p= HTTP/1.1

48-04797974/915/64201K
7.790944.00.5340.33
10.161.117.241172.17.0.4:80GET /repeater.php HTTP/1.1

49-0481145/118/61702K
1.14052.10.0438.56
10.161.117.192172.17.0.4:80HEAD /bk HTTP/1.1

50-0481152/40/54699K
0.55361.40.0234.09
10.161.117.245172.17.0.4:80GET /robots.txt HTTP/1.1

51-04811615/37/47323K
0.55079.20.0229.49
10.161.117.163172.17.0.4:80GET /meta.php HTTP/1.1

52-0481172/24/48227K
0.45481.30.0130.06
10.161.117.241172.17.0.4:80GET /wp-includes/blocks/calendar/index.php HTTP/1.1

53-0-0/0/41204.
0.00313200.00.0025.81
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

54-0-0/0/30966.
0.42337600.00.0019.18
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

55-0-0/0/28507.
0.26338100.00.0017.81
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

56-0-0/0/22999.
0.30337200.00.0014.45
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

57-0-0/0/22920.
0.30337400.00.0014.35
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

58-0-0/0/18264.
0.47332000.00.0011.49
127.0.0.1172.17.0.4:80OPTIONS * HTTP/1.0

59-0-0/0/16488.
0.37335800.00.0010.32
127.0.0.1172.17.0.4:80

Found on 2025-05-28 15:22

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: rf88a.cc
Port: 80
URL: http://rf88a.cc

First seen 2025-06-22 19:20
Last seen 2025-10-29 10:58
Open for 128 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f87723895af61cd42b26629229826d7fb797e
```
Found 11 files trough .DS_Store spidering:

/imgs
/imgs/android_btn.png
/imgs/bg.png
/imgs/continue_btn.png
/imgs/corp.png
/imgs/faviconk8.ico
/imgs/ios_btn.png
/imgs/logo.png
/imgs/sponsors-1.png
/imgs/sponsors-2.png
/imgs/sponsors-3.png
```
  Found on 2025-10-29 10:58
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d2206f2e42206f2e42206f2e42206f2e4
```
Found 1 files trough .DS_Store spidering:

/imgs
```
  Found on 2025-09-30 16:00
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: learningjaguar.com
Port: 80
URL: http://learningjaguar.com

First seen 2025-08-19 11:23
Last seen 2025-09-22 19:47
Open for 34 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab640323741d4cac640e1bc2345fc0c75b
```
Found 7 files trough .DS_Store spidering:

/cloud_background.svg
/css
/favicon.ico
/index.html
/js
/logo.svg
/placeholder_background.svg
```
  Found on 2025-09-22 19:47
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: shurumedia.com
Port: 80
URL: http://shurumedia.com

First seen 2025-07-22 09:07
- Severity: medium
  Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aacbb83818630842e85d14ac1b605c949b
```
Found 33 files trough .DS_Store spidering:

/404.html
/aliplay.html
/DPlayer.min.js
/favicon.ico
/hls.js
/home.html
/jquery.css
/jquery.min.css
/play.html
/qiaolu.css
/static
/static/19j
/static/app.css
/static/bookmark
/static/jieav
/static/jiejie
/static/limit.js
/static/loading.gif
/static/m1
/static/m1/css
/static/m1/favicon.ico
/static/m1/favicon.png
/static/m1/fonts
/static/m1/js
/static/mmcg
/static/ningmeng
/static/player
/static/ql
/static/sqwlgs
/static/taiav
/static/VideoJS
/static/xo
/test.html
```
  Found on 2025-07-22 09:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.39.97
Domain: mail.yehtun.com
Port: 80
URL: http://mail.yehtun.com

First seen 2023-12-21 18:07
Last seen 2025-05-16 21:35
Open for 512 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814eae693cfaec557ab0ec9827152e778b6e
```
Found 6 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2025-05-16 21:35
- Severity: high
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbedf0f248445cac48f391b3fc79bc51f86
```
Found 15 files trough .DS_Store spidering:

/716eb9ed0d13522d80b3aea740a0b2a8.ico.zip
/admin-one
/admin-one.zip
/css
/favicon
/favicon.ico
/index.php
/js
/logo - Copy.png
/logo.png
/logo.psd
/mix-manifest.json
/robots.txt
/storage
/uploads
```
  Found on 2024-06-01 12:50
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7191bd868877110556218254cff53067c4c
```
Found 16 files trough .DS_Store spidering:

/assets
/build
/favicon
/favicon.ico
/frontend
/hot
/index.php
/robots.txt
/upload
/upload/products
/upload/products/1702910229.jpg
/upload/products/1702911652.png
/upload/products/large
/upload/products/small
/upload/products/thumb
/vendor
```
  Found on 2023-12-24 05:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.39.97
Domain: yehtun.com
Port: 443
URL: https://yehtun.com

First seen 2023-12-21 18:07
Last seen 2025-05-16 13:50
Open for 511 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814eae693cfaec557ab0ec9827152e778b6e
```
Found 6 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2025-05-16 13:50
- Severity: high
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbedf0f248445cac48f391b3fc79bc51f86
```
Found 15 files trough .DS_Store spidering:

/716eb9ed0d13522d80b3aea740a0b2a8.ico.zip
/admin-one
/admin-one.zip
/css
/favicon
/favicon.ico
/index.php
/js
/logo - Copy.png
/logo.png
/logo.psd
/mix-manifest.json
/robots.txt
/storage
/uploads
```
  Found on 2024-06-02 16:43
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7191bd868877110556218254cff53067c4c
```
Found 16 files trough .DS_Store spidering:

/assets
/build
/favicon
/favicon.ico
/frontend
/hot
/index.php
/robots.txt
/upload
/upload/products
/upload/products/1702910229.jpg
/upload/products/1702911652.png
/upload/products/large
/upload/products/small
/upload/products/thumb
/vendor
```
  Found on 2023-12-24 07:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: www.yehtun.com
Port: 80
URL: http://www.yehtun.com

First seen 2023-12-21 18:07
Last seen 2025-05-16 06:08
Open for 511 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814eae693cfaec557ab0ec9827152e778b6e
```
Found 6 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2025-05-16 06:08
- Severity: high
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbedf0f248445cac48f391b3fc79bc51f86
```
Found 15 files trough .DS_Store spidering:

/716eb9ed0d13522d80b3aea740a0b2a8.ico.zip
/admin-one
/admin-one.zip
/css
/favicon
/favicon.ico
/index.php
/js
/logo - Copy.png
/logo.png
/logo.psd
/mix-manifest.json
/robots.txt
/storage
/uploads
```
  Found on 2024-06-01 12:50
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7191bd868877110556218254cff53067c4c
```
Found 16 files trough .DS_Store spidering:

/assets
/build
/favicon
/favicon.ico
/frontend
/hot
/index.php
/robots.txt
/upload
/upload/products
/upload/products/1702910229.jpg
/upload/products/1702911652.png
/upload/products/large
/upload/products/small
/upload/products/thumb
/vendor
```
  Found on 2023-12-24 05:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 104.21.39.97
Domain: mail.yehtun.com
Port: 443
URL: https://mail.yehtun.com

First seen 2023-12-21 18:07
Last seen 2025-05-12 13:47
Open for 507 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814eae693cfaec557ab0ec9827152e778b6e
```
Found 6 files trough .DS_Store spidering:

/favicon.ico
/index.html
/logo192.png
/logo512.png
/manifest.json
/robots.txt
```
  Found on 2025-05-12 13:47
- Severity: high
  Fingerprint: 5f32cf5d6962f09cc169dbbec169dbbedf0f248445cac48f391b3fc79bc51f86
```
Found 15 files trough .DS_Store spidering:

/716eb9ed0d13522d80b3aea740a0b2a8.ico.zip
/admin-one
/admin-one.zip
/css
/favicon
/favicon.ico
/index.php
/js
/logo - Copy.png
/logo.png
/logo.psd
/mix-manifest.json
/robots.txt
/storage
/uploads
```
  Found on 2024-06-01 19:26
- Severity: low
  Fingerprint: 5f32cf5d6962f09c47dfe71947dfe7191bd868877110556218254cff53067c4c
```
Found 16 files trough .DS_Store spidering:

/assets
/build
/favicon
/favicon.ico
/frontend
/hot
/index.php
/robots.txt
/upload
/upload/products
/upload/products/1702910229.jpg
/upload/products/1702911652.png
/upload/products/large
/upload/products/small
/upload/products/thumb
/vendor
```
  Found on 2023-12-24 07:58
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: marioruivo.visuals.pt
Port: 443
URL: https://marioruivo.visuals.pt

First seen 2023-12-29 01:30
Last seen 2025-04-22 02:24
Open for 480 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb94341c4f

[core]
	repositoryformatversion = 0
	filemode = false
	bare = false
	logallrefupdates = true
	symlinks = false
	ignorecase = true
[remote "origin"]
	url = git@gitlab.waveweb2.com:dev/ipma-navio-mario-ruivo.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "development"]
	remote = origin
	merge = refs/heads/development
[branch "staging"]
	remote = origin
	merge = refs/heads/staging

Found on 2025-04-22 02:24

453 Bytes

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.144.10
Domain: garmin-es.com
Port: 80
URL: http://garmin-es.com

First seen 2025-02-15 14:30
Last seen 2025-02-22 17:50
Open for 7 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd51167a60

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Saturday, 22-Feb-2025 19:50:33 EET
Restart Time: Thursday, 20-Feb-2025 13:13:36 EET
Parent Server Config. Generation: 155
Parent Server MPM Generation: 154
Server uptime:  2 days 6 hours 36 minutes 57 seconds
Server load: 6.44 6.21 6.21
Total accesses: 13589342 - Total Traffic: 1455.1 GB - Total Duration: 12037327562
CPU Usage: u215.45 s700.3 cu35783.2 cs10829.9 - 24.2% CPU load
69.1 requests/sec - 7.6 MB/second - 112.3 kB/request - 885.792 ms/request
20 requests currently being processed, 0 workers gracefully restarting, 53 idle workers
W____W___W_..W__W____..__.WW___._.__.___.W_..__._..__.WCW__.____
__.WW___.__...WWW_.W.WW_.____W___...............................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-15426900680/192/222057W
0.62402192833450.02.5341955.22
34.233.219.155http/1.1quantum-soft.website:8080GET /artist/6910796837694717444 HTTP/1.0

1-15426951740/86/213645_
0.2614682222054800.01.3834738.30
209.97.164.46http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

2-15426901980/225/215716_
0.6809862168837290.03.2745957.12
185.150.164.169http/1.1kael.am:8080POST /wp-admin/admin-ajax.php HTTP/1.0

3-15426964950/50/214181_
0.15002130660080.00.6138665.17
188.19.51.190http/1.1mercury-pw.ru:8080POST /web-handler.php HTTP/1.0

4-15426952670/92/208680_
0.28002138995850.01.5735704.08
147.182.200.94http/1.1garmin-es.com:8080GET /v2/_catalog HTTP/1.0

5-15426953450/53/207900W
0.172702105125170.00.6734490.37
20.171.207.188http/1.1quantum-soft.website:8080GET /artist/sorinaaust_ioan/releases HTTP/1.0

6-15426927620/119/209178_
0.3901792045072330.01.4838481.10
87.250.224.202http/1.1skripters.top:8080GET /2313-xxxxx-xxxxx-xxxxx-xxxxx.html HTTP/1.0

7-15426786390/348/207078_
1.110305282025633470.05.5042036.46
109.94.209.168http/1.1api.kotliarov.dev:8080GET /check_roe HTTP/1.0

8-15426953510/95/203972_
0.300101989855220.01.4434154.28
154.195.136.7http/1.1808.com.ua:8080GET /zdorov-e-i-lechenie/?page=16 HTTP/1.0

9-15426953570/94/197241W
0.271202017989480.01.5528389.22
44.193.115.232http/1.1quantum-soft.website:8080GET /artist/6885658016111294564 HTTP/1.0

10-15426953640/127/198806_
0.3823951962467510.01.4231990.40
159.223.36.211http/1.1internews.info:8080POST //xmlrpc.php HTTP/1.0

11-154-0/0/194526.
0.001401922256140.00.0028080.40
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

12-154-0/0/193196.
0.00001882030940.00.0032551.07
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

13-15426954500/37/192992W
0.113001881048220.00.5424914.91
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

14-15426927680/153/189501_
0.43031782045010.02.1031081.83
52.54.15.103http/1.1bytovaya-tehnika.com.ua:8080GET /istochniki-bezpereboynogo-pitaniya/mustek/plata-upravleniy

15-15426928600/177/183888_
0.48001810329220.02.2030852.49
188.19.51.190http/1.1mercury-pw.ru:8080GET /widget/656v217ARd HTTP/1.0

16-15426954560/73/181007W
0.23001729562310.01.4431564.24
159.223.36.211http/1.1internews.info:8080POST //xmlrpc.php HTTP/1.0

17-15426954620/91/178530_
0.290301706517440.01.0525052.53
80.94.245.224http/1.1kservice.info:8080GET /catalog/%D0%90%D0%BA%D0%BA%D1%83%D0%BC%D1%83%D0%BB%D1%8F%D

18-15426928660/163/175365_
0.451311673051640.01.8126526.53
80.94.245.224http/1.1kservice.info:8080GET /catalog/%D0%90%D0%BA%D0%BA%D1%83%D0%BC%D1%83%D0%BB%D1%8F%D

19-15426975660/44/172507_
0.1211351562781670.00.5519305.99
188.19.51.190http/1.1mercury-pw.ru:8080GET /forum/index.php?lfs/tab/&tab_id=latest_posts&_xfRequestUri

20-15426954760/118/168504_
0.35101577266190.08.3526468.42
52.23.112.144http/1.1bytovaya-tehnika.com.ua:8080GET /t/6183802_1.jpg HTTP/1.0

21-154-0/0/165935.
0.00801494237590.00.0029264.29
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

22-154-0/0/164466.
0.001001458521540.00.0019610.48
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

23-15426954940/89/161393_
0.26101413346460.01.4219380.79
147.182.200.94http/1.1garmin-es.com:8080GET /.vscode/sftp.json HTTP/1.0

24-15426846430/337/156493_
1.0105741351385080.06.8715667.65
143.137.45.214http/1.1armian.vip:8080POST /xmlrpc.php HTTP/1.0

25-154-0/0/148541.
0.002101280441470.00.0017717.72
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

26-15426979740/32/138872W
0.09701206556570.00.4413744.34
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

27-15426979800/43/146121W
0.11101220017210.00.6118194.22
66.249.70.136http/1.1humannet.am:8080GET /goods/4948453 HTTP/1.0

28-15426956200/101/139099_
0.3004531164284700.01.5012694.71
209.97.164.46http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

29-15426956260/59/138508_
0.17001166603040.00.8815675.98
149.62.204.225http/1.1audiobook.co.ua:8080GET /playlist/ne-ozirajsya-i-movchi-maks-kidruk.txt HTTP/1.0

30-15426905480/210/135803_
0.66101127752970.02.3016360.06
147.182.200.94http/1.1garmin-es.com:8080GET /debug/default/view?panel=config HTTP/1.0

31-154-0/0/132477.
0.002301134829790.00.0015882.97
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

32-15426956390/90/129702_
0.27231124358550.01.3312182.84
44.194.134.53http/1.1bytovaya-tehnika.com.ua:8080GET /istochniki-bezpereboynogo-pitaniya/mustek/akkumulyatornaya

33-154-0/0/125777.
0.00401021182680.00.0015606.05
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

34-15426956520/97/127059_
0.2804361003370180.01.149248.53
209.97.164.46http/1.1daytodayhealthy.com:8080POST //wp-login.php HTTP/1.0

35-15426847810/263/123745_
0.770101751039023920.03.308220.85
2a03:2880:f800:e::http/1.1quantum-soft.website:8080GET /artist/mpumelelo?block=PUlQVA8GR0R3W0tMF1UZEi8YHSlTUQoSMxk

36-154-0/0/123140.
0.0020987696130.00.008515.91
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

37-15426980770/31/124122_
0.0813121017336070.00.6911308.22
79.137.178.197http/1.1vip.abupos.com:8080POST /vegas/wp-admin/admin-ajax.php?t=1740246630448 HTTP/1.0

38-15426956660/65/122444_
0.2111028970980060.01.128318.23
66.249.64.229http/1.1rock-h-orchestra.com.ua:8080GET /robots.txt HTTP/1.0

39-15426905910/138/121847_
0.4200952487440.01.836437.72
147.182.200.94http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

40-154-0/0/122532.
0.001201011864930.00.007743.29
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

41-15426980840/40/120088W
0.1110936405090.00.627790.15
2a03:2880:f800:6::http/1.1quantum-soft.website:8080GET /artist/8858571197854422197?block=PUlQVA8GR0R3W0tMF1UZEi8YH

42-15426956790/82/116058_
0.2504945430810.01.016057.39
109.94.209.117http/1.1slovbiz.ru:8080POST /wp-cron.php?doing_wp_cron=1740246633.00387001037597656250

43-154-0/0/116723.
0.0060929080580.00.008599.62
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

44-154-0/0/119134.
0.00223925240470.00.0011992.71
47.82.11.139http/1.1tronegrande.com:8080GET /ru/furniture/restaurant--chairs--country--scandinavian--me

45-15426956920/90/116470_
0.270890903161790.01.126646.24
2a03:2880:f800:3::http/1.1quantum-soft.website:8080GET /artist/rominho_mtyyndewodcxoq?block=PUldVA8FW0pkUktMBxhJV3

46-15426956980/86/117166_
0.2403924731860.01.0010148.62
52.22.64.232http/1.1bytovaya-tehnika.com.ua:8080GET /istochniki-

Found on 2025-02-22 17:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afdd52f2084

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Thursday, 20-Feb-2025 19:23:28 EET
Restart Time: Thursday, 20-Feb-2025 13:13:36 EET
Parent Server Config. Generation: 26
Parent Server MPM Generation: 25
Server uptime:  6 hours 9 minutes 52 seconds
Server load: 4.75 5.15 5.35
Total accesses: 591744 - Total Traffic: 68.2 GB - Total Duration: 974703389
CPU Usage: u39.37 s82.8 cu1346.81 cs648.09 - 9.54% CPU load
26.7 requests/sec - 3.1 MB/second - 120.9 kB/request - 1647.17 ms/request
17 requests currently being processed, 0 workers gracefully restarting, 51 idle workers
W___WW___.____________WW_._.._W.___W_W._WW_..__.WW_______.WC__.W
_.__._.W___.W.___.___...........................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2527410670/54/14616W
0.141270254510550.01.281317.44
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

1-2527480310/63/13838_
0.2522261085180.0150.163282.59
52.167.144.206http/1.1bytovaya-tehnika.com.ua:8080GET /konditsioneri/general/instruktsiya/10752/ HTTP/1.0

2-2527431220/186/15369_
0.5301236454090.059.562469.54
109.94.209.168http/1.1akcent.am:8080GET /wp-content/themes/massive-dynamic/lib/googlefonts-small.tx

3-2527451490/106/15679_
0.29024572244192740.034.021999.30
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

4-2527467520/72/15289W
0.21120248395010.02.292029.64
66.249.66.192http/1.1globaloil.biz:8080GET /index.php?route=extension/feed/google_sitemap HTTP/1.0

5-2527474970/76/14520W
0.24240243503660.080.491638.19
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

6-2527395690/177/15243_
0.580791233802800.0164.681647.80
54.36.148.127http/1.1akcent.am:8080GET /?a=174263596 HTTP/1.0

7-2527452320/163/14637_
0.4421399240993060.054.122730.19
80.210.33.238http/1.1autonews.co.ua:8080GET /kompaniia111-geely-predstavyla-novi-modyfikatsii-populiarn

8-2527489810/27/15200_
0.091450224796900.01.162305.15
20.171.207.234http/1.1puteshestvuem.com:8080GET /?_rstr_nocache=rstr42867b764f645388 HTTP/1.0

9-25-0/0/13883.
0.0015145248253830.00.001264.91
177.52.85.56http/1.1tronegrande.com:8080GET /en/furniture/tables-and-tables--chairs--wood--country--ret

10-2527416540/168/13422_
0.4720229182510.035.601485.59
68.183.180.73http/1.1garmin-es.com:8080GET /.vscode/sftp.json HTTP/1.0

11-2527395920/204/13874_
0.6104225074080.014.811917.61
175.107.212.67http/1.1autonews.co.ua:8080GET /wp-content/cache/autoptimize/autoptimize_single_57a2bdd272

12-2527455610/95/14004_
0.2705217856090.08.911447.27
66.249.75.8http/1.1mtfk.ontu.edu.ua:8080GET /wp-content/uploads/docs/polozhennya/Polozhennia-pro-vidpra

13-2527483290/41/13478_
0.13061205381860.056.541246.70
5.255.231.143http/1.1tehnogrup.kz:8080GET /index.php?route=extension/module/prostore/prostore_theme/g

14-2527483970/42/13590_
0.1614191483520.089.272549.54
80.210.33.238http/1.1autonews.co.ua:8080GET /wp-content/cache/autoptimize/autoptimize_single_5ef2f28c8f

15-2527484030/50/13292_
0.17126200724860.01.612992.22
20.171.207.64http/1.1quantum-soft.website:8080GET /amp/music/other-music/62224-chapter-v-refunked-2025.html H

16-2527445140/102/12511_
0.301734195055900.090.191896.64
52.167.144.184http/1.1jemchujinasochi.ru:8080GET /?j=113755342 HTTP/1.0

17-2527491260/16/12228_
0.06082189179350.00.52920.29
88.218.47.160http/1.1hailo-shop.ru:8080GET /index.php?option=com_users&view=registration HTTP/1.0

18-2527458820/53/11694_
0.1701191833310.08.181745.02
54.235.158.162http/1.1bytovaya-tehnika.com.ua:8080GET /stiralnie-mashini/candy/bak/464/ HTTP/1.0

19-2527453530/112/11249_
0.3504161812500.0353.282117.95
80.210.33.238http/1.1autonews.co.ua:8080GET /wp-content/cache/autoptimize/autoptimize_single_e2b694ee6d

20-2527491350/28/11025_
0.0901563175605420.00.731260.89
66.249.65.199http/1.1xn----7sbepzdmhrws6h.xn--p1ai:8GET /shop/page/4/?orderby=popularity&filter_color=%D0%BA%D1%80%

21-2527493800/20/10038_
0.071466167063130.00.713088.95
20.171.207.255http/1.1quantum-soft.website:8080GET /artist/3614617300989626004 HTTP/1.0

22-2527276480/19/10460W
0.091200158373480.00.441014.54
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

23-2527493860/18/9954W
0.0610150608890.00.46813.54
109.94.209.168http/1.1stepan-ivan.ru:8080POST /wp-cron.php?doing_wp_cron=1740072206.94604110717773437500

24-2527493920/21/8489_
0.0710137091770.01.34905.78
68.183.180.73http/1.1garmin-es.com:8080GET /debug/default/view?panel=config HTTP/1.0

25-25-0/0/7491.
0.0030146145720.00.001151.31
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-2527460300/79/7004_
0.231315131000620.03.07463.69
2a03:2880:f800:17::http/1.1quantum-soft.website:8080GET /playlist-2000797699_18797699_e9f5fde634ab34260b HTTP/1.0

27-25-0/0/6828.
0.00110111480420.00.00710.76
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-25-0/0/6074.
0.00120100813620.00.00420.04
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

29-2527494840/17/5148_
0.060100595456880.00.89290.47
93.177.79.172http/1.1remontstroimat.com:8080POST /wp-admin/admin-ajax.php HTTP/1.0

30-2527494900/18/5671W
0.060090618860.02.26382.61
20.171.207.79http/1.1xn----7sbepzdmhrws6h.xn--p1ai:8GET /shop/page/95/?filter_color=%D0%B2%D0%B5%D0%BD%D0%B3%D0%B5-

31-25-0/0/5454.
0.006098520450.00.00430.98
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-2527495020/14/4272_
0.052684063040.00.86393.42
44.194.134.53http/1.1bytovaya-tehnika.com.ua:8080GET /stiralnie-mashini/candy/bak/445/ HTTP/1.0

33-2527495080/13/3277_
0.05148363092130.00.71271.70
2a03:2880:f800:5::http/1.1quantum-soft.website:8080GET /artist/gulsanrasiya?block=PUlQVA8GR0R3W0tMF1UZEi8YHSlHUQcD

34-2527495140/18/3923_
0.06197966923600.00.36467.59
2a03:2880:f800:18::http/1.1quantum-soft.website:8080GET /artist/5741780911962178937?block=PUldVA8FW0pkUktMBxhJV3ZJU

35-2527495200/13/3650W
0.060077338920.00.931303.10
20.171.207.255http/1.1quantum-soft.website:8080GET /artist/6280785848979164851 HTTP/1.0

36-2527495260/13/3265_
0.05012860138930.00.27516.97
109.94.209.117http/1.1bronefon.com.ua:8080GET /index.php?li_op=gen&rd=13788271161433348 HTTP/1.0

37-2527496310/13/3676W
0.055068877050.00.34148.34
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

38-25-0/0/3715.
0.0016153064000340.00.00224.68
84.54.80.164http/1.1tronegrande.com:8080GET /en/furniture/restaurant--cafe--loft--wood--retro-vintage--

39-2527496430/8/3821_
0.03245277206430.00.26596.15
93.177.79.172http/1.1remontstroimat.com:8080GET /kak-vybrat-stepler-stroitelnyj-vybor-instrumenta-s-uchetom

40-2527496490/18/3007W
0.070065474480.00.39169.00
109.94.209.117http/1.1bronefon.com.ua:8080GET /index.php?li_op=gen&rd=598428644605862161 HTTP/1.0

41-2527496550/13/2965W
0.041060256000.00.45267.60
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

42-2527496610/13/3182_
0.05113951616770.00.47226.78
80.80.91.197http/1.1tronegrande.com:8080GET /en/furniture/cafe--chairs--plastic--bar--bar-chairs--armch

43-25-0/0/2453.
0.0010057060610.00.00156.74
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-25-0/0/2999.
0.007053096430.00.00164.00
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

45-2527496800/14/3109_
0.050161267670.00.451

Found on 2025-02-20 17:23

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd3d583345

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Tuesday, 18-Feb-2025 19:58:00 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 186
Parent Server MPM Generation: 185
Server uptime:  5 days 6 hours 48 minutes 44 seconds
Server load: 5.81 6.51 6.77
Total accesses: 9685489 - Total Traffic: 2496.9 GB - Total Duration: 19996578098
CPU Usage: u249.66 s961.52 cu18966 cs12430.6 - 7.14% CPU load
21.2 requests/sec - 5.6 MB/second - 270.3 kB/request - 2064.59 ms/request
11 requests currently being processed, 0 workers gracefully restarting, 9 idle workers
W_W__W...__.._..WW_.W.W..W.WW__....W............................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-18541607320/64/314269W
0.13005721544600.02.0384858.67
188.166.15.184http/1.1azbykaislama.com:8080POST /wp-login.php HTTP/1.0

1-18541646610/36/307305_
0.08025706900560.01.5984050.34
66.249.77.141http/1.1uslugi-nedorogo.ru:8080GET /akusticheskie-sistemi/bw/vch-drajvery/66523/ HTTP/1.0

2-18541600930/129/301578W
0.271805660014440.03.7182284.06
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

3-18541413820/509/302966_
0.9801375618040990.031.8188562.49
46.42.246.137http/1.1vanillapw172.fun:8080GET /forum/index.php?attachments/1713192399126-png.8/ HTTP/1.0

4-18541648540/23/296906_
0.06005616405750.00.7366214.73
47.236.131.25http/1.1wis.pp.ua:8080GET / HTTP/1.0

5-18541517140/84/293242W
0.1522505545222320.03.7680717.79
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

6-185-0/0/293587.
0.00805487180420.00.0093947.47
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

7-185-0/0/286633.
0.00705433853460.00.0069789.64
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

8-185-0/0/286583.
0.004005375003760.00.0070293.09
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

9-18541625490/67/285234_
0.1401365283225680.01.6982638.52
46.42.246.137http/1.1vanillapw172.fun:8080GET /forum/index.php?attachments/1713192314298-png.5/ HTTP/1.0

10-18541584660/224/278558_
0.45015274135410.09.6564958.37
34.225.243.131http/1.1bytovaya-tehnika.com.ua:8080GET /konditsioneri/mitsubishi-electric/remen/12769/ HTTP/1.0

11-185-0/0/273412.
0.004405205058980.00.0069698.58
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

12-185-0/0/266619.
0.004305129821930.00.0078513.29
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

13-18541627740/40/268775_
0.0701375016182240.07.0562095.09
46.42.246.137http/1.1vanillapw172.fun:8080GET /forum/index.php?attachments/1713192096574-png.4/ HTTP/1.0

14-185-0/0/258071.
0.00404933083760.00.0070241.91
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

15-185-0/0/255119.
0.004804841538010.00.0064177.74
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

16-18541628160/40/248576W
0.08204758324930.01.1563132.66
109.94.209.168http/1.1crmsolutions.ua:8080GET /top-10-best-ukrainian-crm-systems/?seraph_accel_prep=eyJub

17-18541611130/90/246135W
0.161804610162180.08.5163157.42
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

18-18541632510/67/235673_
0.1602344548940010.03.5358003.39
68.183.10.253http/1.1azbykaislama.com:8080POST /wp-login.php HTTP/1.0

19-185-0/0/230382.
0.005304381756280.00.0064284.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

20-18541559880/203/221039W
0.40004225029590.06.7356817.32
68.183.10.253http/1.1azbykaislama.com:8080POST /wp-login.php HTTP/1.0

21-185-0/0/211548.
0.005004101982920.00.0049609.06
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-18541632570/19/204759W
0.051103927219160.00.4257476.97
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

23-185-0/0/191128.
0.00003749671530.00.0055441.19
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-185-0/0/180819.
0.004603515517670.00.0044849.75
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-18541537760/78/168360W
0.1616103396380560.02.4147527.46
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

26-185-0/0/159586.
0.002303216328990.00.0042423.34
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

27-18541632710/63/147188W
0.12002949119310.07.3940679.73
66.249.66.77http/1.1gavat.am:8080GET /?g=257401822 HTTP/1.0

28-18541633710/69/139448W
0.16002790112130.08.3633535.97
212.102.57.80http/1.1wakansii.pl:8080GET /polsha-gotovit-podarok-ukrainczam-prodlenie-prebyvaniya/ H

29-18541633790/51/127214_
0.1001422608977610.04.9339776.27
46.42.246.137http/1.1vanillapw172.fun:8080GET /forum/index.php?attachments/1713196853869-png.9/ HTTP/1.0

30-18541633860/42/117132_
0.09002463360380.027.7136556.25
138.197.191.87http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

31-185-0/0/102321.
0.005402149275220.00.0026829.00
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-185-0/0/96069.
0.003002039639940.00.0026397.14
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-185-0/0/86976.
0.00601880802120.00.0025874.48
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-185-0/0/85264.
0.004901910721000.00.0021183.97
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-18541634120/42/82106W
0.08001799093820.05.6326986.73
138.197.191.87http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

36-185-0/0/69744.
0.005101589546440.00.0023537.52
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-185-0/0/68650.
0.00110901577075910.00.0018793.72
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-185-0/0/68262.
0.00111201541086320.00.0020466.53
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-185-0/0/62152.
0.00110101473712860.00.0023110.63
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-185-0/0/58022.
0.00103401358427300.00.0014572.02
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-185-0/0/52623.
0.00107001305060670.00.0014183.42
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-185-0/0/51162.
0.00290801207592510.00.0017467.68
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

43-185-0/0/49221.
0.00290301214440180.00.0010391.38
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-185-0/0/45875.
0.00411001102674520.00.009743.55
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

45-185-0/0/45124.
0.00417201067413160.00.0011379.76
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-185-0/0/43765.
0.00418501053943520.00.005117.35
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-185-0/0/39267.
0.0041910956256610.00.0014792.63
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

48-185-0/0/40115.
0.0042050950918350.00.0014853.46
127.0.0.1ht

Found on 2025-02-18 17:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd89bef5e8

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Sunday, 16-Feb-2025 19:21:18 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 129
Parent Server MPM Generation: 128
Server uptime:  3 days 6 hours 12 minutes 2 seconds
Server load: 5.89 7.03 7.56
Total accesses: 5677590 - Total Traffic: 1919.7 GB - Total Duration: 13239599992
CPU Usage: u175.11 s615.51 cu11214.9 cs7755.77 - 7.02% CPU load
20.2 requests/sec - 7.0 MB/second - 354.5 kB/request - 2331.91 ms/request
22 requests currently being processed, 0 workers gracefully restarting, 3 idle workers
_WWWWWWW.W.WW_W...WW.._W....W.WWW..WW....................W......
........W.......................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12816488500/9/183478_
0.01003562493790.00.9664106.42
209.38.248.17http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-12816438510/38/178478W
0.08003559369240.01.5963990.62
104.131.22.69http/1.1azbykaislama.com:8080POST /xmlrpc.php HTTP/1.0

2-12816478870/26/175189W
0.05003515963910.01.2358809.57
185.12.125.79http/1.1uaestrada.org:8080GET /robots.txt HTTP/1.0

3-12816207050/115/174010W
0.33003509799390.010.0368561.66
176.59.140.48http/1.1japonabeauty.com:8080GET /?currency=RUB HTTP/1.0

4-12816362020/99/173013W
0.24103493361350.05.5447188.58
109.94.209.168http/1.1stepan-ivan.ru:8080POST /wp-cron.php?doing_wp_cron=1739726477.51577591896057128906

5-12816489690/2/169820W
0.00003454146800.00.0160076.11
185.150.164.169http/1.14giftofliferecovery.com:8080GET / HTTP/1.0

6-12816481660/19/171955W
0.04203393509560.01.5470651.29
152.53.133.166http/1.1aroma-bliss.com.ua:8080GET / HTTP/1.0

7-12816447250/35/166259W
0.07103363412350.01.1751449.39
2a03:2880:f800:13::http/1.1quantum-soft.website:8080GET /artist/7227076822434832483?block=PUldVA8FW0pkUktMBxhJV3ZJU

8-128-0/0/167388.
0.002803333134850.00.0052009.80
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

9-12816447840/42/163659W
0.09003312098370.01.8459997.24
66.249.66.37http/1.1deco-star.ru:8080GET /hy/product-category/uncategorized-hy/page/6/?add-to-cart=7

10-128-0/0/161189.
0.002003282761780.00.0046928.13
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

11-12816226790/282/158512W
0.64203212267990.014.2356469.19
2a03:2880:f800:1c::http/1.1quantum-soft.website:8080GET /artist/3850338963821387570?block=PUlQVA8GR0R3W0tMF1UZEi8YH

12-12816405510/66/154216W
0.16003178032720.01.6457775.33
209.38.248.17http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

13-12816465950/40/156595_
0.1003003091162600.090.3847711.92
20.171.207.243http/1.1puteshestvuem.com:8080GET /?_rstr_nocache=rstr58267b21e6be943d&rstr=lat HTTP/1.0

14-12816466020/33/149367W
0.07603041608850.01.7852796.89
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

15-128-0/0/146875.
0.00802980074180.00.0051541.75
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

16-128-0/0/141352.
0.004002960134560.00.0045479.50
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-128-0/0/142514.
0.003102867599370.00.0043582.57
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

18-12816449070/27/137410W
0.06602817261980.00.6243056.73
2a0a:4cc0:1:13e1:e4ea:79ff:fee2:1adahttp/1.1quantum-soft.website:8080GET /artist/tsb HTTP/1.0

19-12816414570/54/132192W
0.11202724601860.02.6049211.85
18.204.89.56http/1.1quantum-soft.website:8080GET /artist/logicufo_mtu3ntk2mtcymg HTTP/1.0

20-128-0/0/123053.
0.002602637076270.00.0039715.77
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

21-128-0/0/120750.
0.003502552646240.00.0032839.87
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-12816452210/49/115794_
0.1201152495320850.02.5742829.33
178.169.248.5http/1.1svetlinazateb.ru:8080POST /job.php HTTP/1.0

23-12816227610/98/107509W
0.2617602321029070.04.4440241.09
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

24-128-0/0/103836.
0.002102239339830.00.0035073.05
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-128-0/0/96458.
0.003402154598200.00.0037636.52
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-128-0/0/91752.
0.004602047985510.00.0034123.22
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

27-128-0/0/87354.
0.001301928030030.00.0033172.46
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-12816466450/36/80228W
0.081201782633980.04.1927364.60
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

29-128-0/0/74760.
0.003701725969930.00.0028887.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-12816314730/62/67673W
0.1516501626183670.02.5230156.77
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

31-12816092450/387/61244W
0.86101489846270.058.6021248.13
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

32-12816452640/35/57034W
0.07701398084690.01.6617838.44
109.94.209.168http/1.1vinyl.uaestrada.org:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

33-128-0/0/52339.
0.003601309409270.00.0019859.15
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-128-0/0/53334.
0.001101354846790.00.0018422.07
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-12816374830/102/53919W
0.23101345237840.05.1624383.43
20.171.207.52http/1.1xn----7sbepzdmhrws6h.xn--p1ai:8GET /shop/page/1/?filter_color=%D0%B4%D1%83%D0%B1-%D1%8E%D0%BA%

36-12816270450/164/44683W
0.36001184809270.010.8619494.18
43.167.247.92http/1.1autonews.co.ua:8080GET /sw.js?v=3.1.590&o=12b37df72e6f462a9ec9f8e0bb9967fe&pub=0&p

37-128-0/0/42242.
0.005101142632970.00.0015833.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-128-0/0/42545.
0.003301099637900.00.0018866.60
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-128-0/0/41937.
0.003901103396720.00.0019817.60
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-128-0/0/39627.
0.005901025601700.00.0013307.76
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-128-0/0/36275.
0.00580999537500.00.0010415.56
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-128-0/0/32511.
0.001890894728790.00.0016107.49
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

43-128-0/0/32583.
0.001750952572680.00.009280.81
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-128-0/0/30889.
0.001090870438770.00.008807.32
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

45-128-0/0/28663.
0.001660806373850.00.008112.70
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-128-0/0/28523.
0.001930799162360.00.004133.44
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-128-0/0/26112.
0.001700748840850.00.0010408.27
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

Found on 2025-02-16 17:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd87420954

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Saturday, 15-Feb-2025 16:30:57 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime:  2 days 3 hours 21 minutes 40 seconds
Server load: 5.06 4.18 4.56
Total accesses: 3798424 - Total Traffic: 1134.8 GB - Total Duration: 8724450160
CPU Usage: u135.45 s426.24 cu7758.68 cs5118.44 - 7.27% CPU load
20.5 requests/sec - 6.3 MB/second - 313.3 kB/request - 2296.86 ms/request
14 requests currently being processed, 0 workers gracefully restarting, 8 idle workers
W_.WWWW__WW.W__W._WW......W._............._.W...W...............
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-994546590/77/125416W
0.16002310383370.02.4943134.94
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

1-994577860/18/122446_
0.04012305286280.00.3542698.84
66.249.74.131http/1.1bytovaya-tehnika.com.ua:8080GET /televizori/supra/main-plata/128515/ HTTP/1.0

2-99-0/0/118641.
0.00402288579770.00.0031073.60
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

3-994533430/129/120665W
0.30002257534610.05.9845490.07
66.249.66.203http/1.1numis.am:8080GET /p=3332853 HTTP/1.0

4-994496950/2/118568W
0.0021002255107920.00.4427693.11
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

5-994550360/64/115397W
0.14002246585300.01.4641110.92
54.235.125.129http/1.1quantum-soft.website:8080GET /audios-165343368 HTTP/1.0

6-994587730/34/116665W
0.06002211242490.00.2547666.49
128.199.182.77http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

7-994557100/48/113702_
0.1002912187913000.01.8431912.83
20.171.207.243http/1.1puteshestvuem.com:8080GET /?_rstr_nocache=rstr31967b0a4f5f33d9&rstr=lat HTTP/1.0

8-994528200/83/114414_
0.1904452153528640.02.5331172.37
128.199.244.121http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

9-994552940/65/110464W
0.14002146350480.04.4239527.00
2a03:2880:f804:10::http/1.1quantum-soft.website:8080GET /artist/4190188923413462227?block=PUlQVA8GR0R3W0tMF1UZEi8YH

10-994568900/12/109528W
0.031902122132650.00.5432629.87
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

11-99-0/0/107407.
0.00202057488860.00.0033526.24
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

12-994558700/52/104787W
0.121002049767330.01.9239519.39
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

13-994517720/154/106422_
0.36011967339960.029.9028332.21
54.83.56.1http/1.1bytovaya-tehnika.com.ua:8080GET /stiralnie-mashini/zanussi/plata-upravleniya/84342/ HTTP/1.

14-994560130/65/100300_
0.15023671928340700.03.0125279.60
66.249.65.200http/1.1xn----7sbepzdmhrws6h.xn--p1ai:8GET /%D1%86%D0%B2%D0%B5%D1%82/%D1%87%D0%B5%D1%80%D0%BD%D1%8B%D0

15-994592650/13/98038W
0.01101912724580.00.0332655.61
18.208.11.93http/1.1zdsim.com:8080GET /forum/index.php?p=15740&showtopic=257&st=20 HTTP/1.0

16-99-0/0/94571.
0.004201904769620.00.0028504.50
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-994417050/217/94946_
0.5102721844444180.07.1426349.13
2a03:2880:f804:1c::http/1.1quantum-soft.website:8080GET /artist/8167805665257974915?block=PUldVA8FW0pkUktMBxhJV3ZJU

18-994529110/60/92423W
0.135501808006530.02.7124549.96
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

19-994449890/273/87695W
0.62001745446650.07.5027908.82
2a03:2880:f804:19::http/1.1quantum-soft.website:8080GET /artist/3465864634683787157?block=PUldVA8FW0pkUktMBxhJV3ZJU

20-99-0/0/80273.
0.0010701662961930.00.0025345.66
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

21-99-0/0/79018.
0.0011801620161250.00.0015133.73
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-99-0/0/78209.
0.0011701577419540.00.0023295.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

23-99-0/0/69323.
0.0010101438957830.00.0026054.88
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-99-0/0/66042.
0.001401387660470.00.0022603.13
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-99-0/0/62356.
0.005801323397270.00.0025245.69
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-994529800/102/58321W
0.25001224096340.05.0423074.58
40.77.167.73http/1.1jemchujinasochi.ru:8080GET /?j=255486642 HTTP/1.0

27-99-0/0/54185.
0.009301155486140.00.0019736.59
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-994529950/138/50739_
0.29011087547500.03.9814068.40
40.77.167.55http/1.1bytovaya-tehnika.com.ua:8080GET /shveynie-mashini/soontex/lampa-rezbovaya/ HTTP/1.0

29-99-0/0/45261.
0.0011901044797490.00.0014095.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-99-0/0/39324.
0.001270940746180.00.0015628.92
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

31-99-0/0/35241.
0.002660859793490.00.009655.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-99-0/0/35137.
0.002580815522950.00.0010779.54
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-99-0/0/31113.
0.002380777527830.00.008535.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-99-0/0/31909.
0.002600815115490.00.009812.72
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-99-0/0/31818.
0.001090791644320.00.0011350.37
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

36-99-0/0/24837.
0.002450694780410.00.0010527.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-99-0/0/25387.
0.002410721107430.00.006051.97
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-99-0/0/24653.
0.002650653280910.00.0010099.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-99-0/0/25530.
0.001760649614260.00.0012253.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-99-0/0/22698.
0.002790612779670.00.005194.79
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-99-0/0/21751.
0.001160594801890.00.005402.05
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-994456250/273/19444_
0.610175552755000.073.194746.50
185.77.216.2http/1.1renaissance-artistsdistributionGET /wp-admin/admin-ajax.php?action=seraph_accel_api&fn=GetData

43-99-0/0/19251.
0.002540583511200.00.003713.28
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-994456370/185/19618W
0.41100540415220.08.156022.84
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

45-99-0/0/17452.
0.002780489625960.00.004080.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-99-0/0/17621.
0.002420521003420.00.001793.40
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-99-0/0/17186.
0.001580501721440.00.005990.75
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

48-994459330/31/17770W
0.072090

Found on 2025-02-15 14:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afde6e3af6c

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Saturday, 15-Feb-2025 16:30:50 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime:  2 days 3 hours 21 minutes 33 seconds
Server load: 5.15 4.19 4.57
Total accesses: 3798237 - Total Traffic: 1134.8 GB - Total Duration: 8724252553
CPU Usage: u135.39 s426.23 cu7758.49 cs5118.34 - 7.27% CPU load
20.5 requests/sec - 6.3 MB/second - 313.3 kB/request - 2296.92 ms/request
17 requests currently being processed, 0 workers gracefully restarting, 7 idle workers
WWW_WW__WWWWW___.WWW......W._.............W.W...W...............
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-994546590/69/125408W
0.15002310317940.02.3843134.82
137.184.26.248http/1.1fruit.e-dev.pp.ua:8080GET / HTTP/1.0

1-994577860/8/122436W
0.012302304766760.00.2542698.74
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

2-994549650/52/118637W
0.12002288548510.01.2631073.33
66.249.81.129http/1.1audiobook.co.ua:8080GET /.well-known/traffic-advice HTTP/1.0

3-994533430/118/120654_
0.29002257500630.05.8745489.97
2a03:b0c0:3:d0::12f7:9001http/1.1garmin-es.com:8080GET / HTTP/1.0

4-994496950/2/118568W
0.0020402255107920.00.4427693.11
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

5-994550360/56/115389W
0.122302246045070.01.4041110.86
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

6-994587730/19/116650_
0.040222211178920.00.1047666.34
2a03:2880:f804:1a::http/1.1quantum-soft.website:8080GET /music/other-music/print:page,1,60942-rvrsrvr-basta-2024.ht

7-994557100/37/113691_
0.08002187842910.01.7031912.69
2a03:b0c0:3:d0::d04:1http/1.1garmin-es.com:8080GET / HTTP/1.0

8-994528200/78/114409W
0.18002153427160.02.4931172.34
31.41.40.18http/1.1nowesti.ru:8080GET /feed/ HTTP/1.0

9-994552940/54/110453W
0.13002146285170.04.0639526.64
72.14.201.51http/1.1audiobook.co.ua:8080GET /vidbitok-velikogo-paltsya-svyatogo-petra-agata-kristi/ HTT

10-994568900/12/109528W
0.031302122132650.00.5432629.87
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

11-994557410/32/107398W
0.09002057457810.02.1933526.17
171.252.159.181http/1.1808.com.ua:8080GET /avtomasla/?page=4 HTTP/1.0

12-994558700/52/104787W
0.12302049767330.01.9239519.39
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

13-994517720/139/106407_
0.33001967295930.029.7628332.07
207.154.212.47http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

14-994560130/54/100289_
0.13021928257810.02.8925279.47
85.208.96.203http/1.1bytovaya-tehnika.com.ua:8080GET /pilesosi/zelmer/kompressor/106910/ HTTP/1.0

15-994592650/4/98029_
0.00001912689420.00.0132655.59
2a03:b0c0:3:d0::1237:b001http/1.1garmin-es.com:8080GET / HTTP/1.0

16-99-0/0/94571.
0.003501904769620.00.0028504.50
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-994417050/206/94935W
0.49001844370660.06.9526348.95
2a03:2880:f804:1d::http/1.1quantum-soft.website:8080GET /artist/mrnice?block=PUldVA8FW0pkUktMBxhJV3ZJU1RURh8PNR82EF

18-994529110/60/92423W
0.134801808006530.02.7124549.96
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

19-994449890/264/87686W
0.61001745359130.07.2727908.59
66.249.66.192http/1.1numis.am:8080GET /p=1367990 HTTP/1.0

20-99-0/0/80273.
0.0010001662961930.00.0025345.66
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

21-99-0/0/79018.
0.0011101620161250.00.0015133.73
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-99-0/0/78209.
0.0011001577419540.00.0023295.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

23-99-0/0/69323.
0.009401438957830.00.0026054.88
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-99-0/0/66042.
0.00701387660470.00.0022603.13
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-99-0/0/62356.
0.005101323397270.00.0025245.69
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-994529800/93/58312W
0.24001224036080.04.8923074.42
66.249.66.192http/1.1numis.am:8080GET /p=2169185 HTTP/1.0

27-99-0/0/54185.
0.008601155486140.00.0019736.59
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-994529950/123/50724_
0.27001087516320.03.6314068.05
139.59.132.8http/1.1garmin-es.com:8080GET / HTTP/1.0

29-99-0/0/45261.
0.0011201044797490.00.0014095.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-99-0/0/39324.
0.001200940746180.00.0015628.92
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

31-99-0/0/35241.
0.002590859793490.00.009655.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-99-0/0/35137.
0.002510815522950.00.0010779.54
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-99-0/0/31113.
0.002310777527830.00.008535.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-99-0/0/31909.
0.002530815115490.00.009812.72
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-99-0/0/31818.
0.001020791644320.00.0011350.37
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

36-99-0/0/24837.
0.002380694780410.00.0010527.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-99-0/0/25387.
0.002340721107430.00.006051.97
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-99-0/0/24653.
0.002580653280910.00.0010099.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-99-0/0/25530.
0.001690649614260.00.0012253.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-99-0/0/22698.
0.002720612779670.00.005194.79
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-99-0/0/21751.
0.001090594801890.00.005402.05
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-994456250/257/19428W
0.5800552715430.072.814746.13
207.154.212.47http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

43-99-0/0/19251.
0.002470583511200.00.003713.28
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-994456370/185/19618W
0.4140540415220.08.156022.84
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

45-99-0/0/17452.
0.002710489625960.00.004080.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-99-0/0/17621.
0.002350521003420.00.001793.40
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-99-0/0/17186.
0.001510501721440.00.005990.75
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

48-994459330/31/17770W
0.072020488320760.00.827772.82
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner

Found on 2025-02-15 14:30

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.144.10
Domain: garmin-es.com
Port: 443
URL: https://garmin-es.com

First seen 2025-02-15 14:30
Last seen 2025-02-22 11:51
Open for 6 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd0f7a17c6

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Saturday, 22-Feb-2025 13:51:14 EET
Restart Time: Thursday, 20-Feb-2025 13:13:36 EET
Parent Server Config. Generation: 153
Parent Server MPM Generation: 152
Server uptime:  2 days 37 minutes 38 seconds
Server load: 5.62 6.40 7.23
Total accesses: 11714579 - Total Traffic: 1279.1 GB - Total Duration: 10454417641
CPU Usage: u197.1 s625.67 cu30824.3 cs9508.17 - 23.5% CPU load
66.9 requests/sec - 7.5 MB/second - 114.5 kB/request - 892.428 ms/request
12 requests currently being processed, 0 workers gracefully restarting, 15 idle workers
____W__W_W_WW__WW___W.......W...................C............._.
.W................._.................W..........................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1528220020/3/194008_
0.0002251939848360.00.0338717.91
20.171.207.188http/1.1quantum-soft.website:8080GET /playlist-2000582531_5582531_679be9ff4b84dd5b8a HTTP/1.0

1-1528221350/7/186372_
0.00001975230220.00.0730534.25
157.245.113.227http/1.1garmin-es.com:8080GET /debug/default/view?panel=config HTTP/1.0

2-1527967480/185/188679_
0.41001923564860.012.0042230.66
157.245.113.227http/1.1garmin-es.com:8080GET /v2/_catalog HTTP/1.0

3-1528159510/67/186842_
0.17030491892471530.02.0137322.11
188.163.103.177http/1.1autonews.co.ua:8080GET /predstavleno-novyy-bmw-m5-vyhliad-i-kharakterystyky-vyklyk

4-1528152590/113/181996W
0.23501888679640.03.8933686.44
109.94.209.117http/1.1wordpresplugins.sofistudio.pl:8POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

5-1528159570/33/181139_
0.0605751869852620.00.5432522.41
209.97.164.46http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

6-1528131540/71/182168_
0.14021021808307320.01.6535651.25
188.163.22.72http/1.1autonews.co.ua:8080GET /sw-check-permissions-0e0df.js?zoneId=4805873 HTTP/1.0

7-1528221410/7/181034W
0.01001787532000.00.0538009.51
146.0.32.189http/1.1skripters.top:8080GET /engine/ajax/controller.php?mod=collaps HTTP/1.0

8-1528203320/39/178431_
0.09022721755422780.00.6232373.01
151.80.201.233http/1.1autonews.co.ua:8080GET /tag/mansory/ HTTP/1.0

9-1528185010/63/171523W
0.12601786060150.01.9826554.01
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

10-1528222990/4/173803_
0.00010881736991970.00.3828241.08
178.133.92.12http/1.1audiobook.co.ua:8080GET /dyuna-frenk-gerbert/ HTTP/1.0

11-1528171450/53/169366W
0.14001700336950.01.2422618.39
178.133.92.12http/1.1audiobook.co.ua:8080POST /wp-json/wordpress-popular-posts/v2/views/4828 HTTP/1.0

12-1528188430/50/168263W
0.121701660586710.00.7530915.83
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

13-1528223750/2/169401_
0.0006541662429920.00.0122664.31
52.45.92.83http/1.1quantum-soft.website:8080GET /artist/4823213782352074754 HTTP/1.0

14-1528171510/35/165412_
0.0604881571282340.00.8728682.10
2a06:98c0:3600::103http/1.1a-engineering.com.ua:8080GET /wordpress/wp-admin/setup-config.php HTTP/1.0

15-1528223810/1/159664W
0.00001592559380.00.0127073.64
209.97.164.46http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

16-1528176700/37/157269W
0.062401516236500.00.7528666.60
109.94.209.168http/1.1vinyl.uaestrada.org:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

17-1527997730/274/155621_
0.69001495954060.0151.7223455.05
193.38.34.198http/1.1wis.pp.ua:8080GET /js/owl.carousel.js HTTP/1.0

18-1528205900/29/150728_
0.0604731463508320.00.9224649.27
20.171.207.13http/1.1puteshestvuem.com:8080GET /page/7/?_rstr_nocache=rstr61167aecc800987f HTTP/1.0

19-1528189990/60/149066_
0.13041363783540.01.0117035.50
52.167.144.20http/1.1uslugi-nedorogo.ru:8080GET /pilesosi/dyson/podshipniki/105171/ HTTP/1.0

20-1528205960/22/146144W
0.05601381847390.00.5024752.23
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

21-152-0/0/142746.
0.001701299915610.00.0027730.14
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

22-152-0/0/142777.
0.001201267720210.00.0016230.69
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

23-152-0/0/138273.
0.0018701221679540.00.0016348.62
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

24-152-0/0/134167.
0.0019201164578070.00.0013539.79
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

25-152-0/0/126732.
0.0019701102677580.00.0014510.48
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

26-152-0/0/118283.
0.0018501028164660.00.0011890.39
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

27-152-0/0/124563.
0.0022601039338480.00.0016346.82
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

28-1528012590/192/118742W
0.4400997498510.04.4711505.84
2a03:2880:f800:7::http/1.1quantum-soft.website:8080GET /artist/4413105071141142188?block=PUlQVA8GR0R3W0tMF1UZEi8YH

29-152-0/0/117679.
0.001240991846750.00.0012581.56
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

30-152-0/0/114856.
0.001310959652440.00.0014404.38
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

31-152-0/0/112898.
0.001990967191200.00.0014962.76
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

32-152-0/0/108662.
0.002300948323090.00.0010359.34
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

33-152-0/0/105908.
0.001800870839190.00.0014074.99
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

34-152-0/0/107011.
0.002240843754230.00.008012.64
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

35-152-0/0/103256.
0.002430875572910.00.006025.39
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

36-152-0/0/103297.
0.001790831060970.00.006186.27
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

37-152-0/0/105386.
0.002560860650810.00.008221.85
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

38-152-0/0/104068.
0.001190828027400.00.007007.57
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

39-152-0/0/102111.
0.00580799004300.00.005565.32
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

40-152-0/0/102487.
0.002590841957440.00.005358.33
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

41-152-0/0/101390.
0.001740783442010.00.006325.52
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

42-152-0/0/97871.
0.001940804226250.00.004968.85
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

43-152-0/0/99547.
0.001730790510650.00.006516.35
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

44-152-0/0/100717.
0.00390774459890.00.0010983.28
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

45-152-0/0/97608.
0.002420748446380.00.005755.86
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

46-152-0/0/97965.
0.001810773858160.00.008439.73
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

47-152-0/0/99501.
0.002370774648820.00.0010682.54
127.0.0.1http/1.1a-engineering.com.ua:8080OPTIONS * HTTP/1.0

48-152801492

Found on 2025-02-22 11:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd0cca7e11

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Thursday, 20-Feb-2025 16:22:11 EET
Restart Time: Thursday, 20-Feb-2025 13:13:36 EET
Parent Server Config. Generation: 26
Parent Server MPM Generation: 25
Server uptime:  3 hours 8 minutes 34 seconds
Server load: 6.47 5.92 5.72
Total accesses: 277695 - Total Traffic: 28.1 GB - Total Duration: 477318842
CPU Usage: u38.03 s48.55 cu610.51 cs327.28 - 9.05% CPU load
24.5 requests/sec - 2.5 MB/second - 106.0 kB/request - 1718.86 ms/request
15 requests currently being processed, 0 workers gracefully restarting, 13 idle workers
C_WWWW___W_....W.W.._...W....._.........W...............W....W..
...._.W..._W.......W..__.....................__.................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2521531011/36/7364C
0.0800142894030.31.95940.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

1-2521531740/37/6974_
0.0900145243910.00.87681.53
157.245.36.108http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-2521535210/13/8137W
0.0380128438050.00.55663.32
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

3-2521394180/209/8622W
0.52400132475960.09.041424.99
213.180.203.40http/1.1vibo-shop.ru:8080GET / HTTP/1.0

4-2521536030/4/7704W
0.00110139267430.00.04716.95
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

5-2521532590/10/7254W
0.03180142231050.00.26869.20
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

6-2521541390/12/8500_
0.030295123532270.00.41974.02
20.171.207.234http/1.1puteshestvuem.com:8080GET /?_rstr_nocache=rstr92867b73a7839b93&rstr=cyr HTTP/1.0

7-2521543430/11/7627_
0.0201129228680.03.501210.88
98.84.200.43http/1.1bytovaya-tehnika.com.ua:8080GET /televizori/philips/main-plata/143580/ HTTP/1.0

8-2521420780/155/8548_
0.4502120801940.05.311046.95
213.87.242.166http/1.1uslugi-nedorogo.ru:8080GET / HTTP/1.0

9-2521435450/162/7140W
0.4500136830620.05.51820.14
192.99.21.78http/1.1autonews.co.ua:8080GET /chomu-vazhlyvo-pravylno-znimaty-klemy-z-akumuliatora/ HTTP

10-2521544760/5/6833_
0.0100126343050.01.75643.60
157.245.36.108http/1.1garmin-es.com:8080GET /v2/_catalog HTTP/1.0

11-25-0/0/6699.
0.00830126261910.00.00542.44
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

12-25-0/0/7467.
0.00480121850790.00.00435.01
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

13-25-0/0/7097.
0.00560117832560.00.00717.81
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

14-25-0/0/7074.
0.00130110470790.00.001293.63
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

15-2521444280/100/7003W
0.2400116042540.04.91916.02
66.249.66.35http/1.1myphoto.am:8080GET /71502170013.shtml HTTP/1.0

16-25-0/0/6288.
0.001110115634610.00.00846.33
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-2521397100/138/6888W
0.31850110087500.08.79571.26
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

18-25-0/0/6083.
0.001130106194750.00.00936.04
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

19-25-0/0/6481.
0.0086098444470.00.00776.59
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

20-2521397550/223/6318_
0.570396102908050.08.86806.38
92.223.86.16http/1.1prise-ring.online:8080POST /xmlrpc.php HTTP/1.0

21-25-0/0/6342.
0.00103081414450.00.00489.92
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-25-0/0/5354.
0.0043083863060.00.00668.82
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

23-25-0/0/5227.
0.0082088928490.00.00454.24
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-2521177600/230/4344W
0.570083642900.06.50690.75
157.245.36.108http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

25-25-0/0/3646.
0.0070086929310.00.00505.71
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-25-0/0/4319.
0.0050083330360.00.00281.66
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

27-25-0/0/3888.
0.00123066341040.00.00225.25
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-25-0/0/3406.
0.0059061399160.00.00287.83
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

29-25-0/0/2647.
0.0087045604650.00.00171.96
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-2521453730/138/2930_
0.350055112060.05.16207.12
170.39.218.109http/1.1bridgeswiss.co.uk:8080GET /core/.env HTTP/1.0

31-25-0/0/3106.
0.0069053408380.00.00243.58
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-25-0/0/2117.
0.0089046475160.00.00192.86
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-25-0/0/1310.
0.0045025770910.00.0091.88
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-25-0/0/2201.
0.0091032428080.00.00329.05
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-25-0/0/1509.
0.0047036142620.00.00412.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

36-25-0/0/1342.
0.0077030326580.00.0085.32
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-25-0/0/1770.
0.00115036356020.00.0085.96
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-25-0/0/1845.
0.00119033670710.00.0087.12
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-25-0/0/1828.
0.0072041894070.00.00103.70
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-2521454940/81/1390W
0.246031997790.02.7166.10
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

41-25-0/0/1046.
0.0030025874400.00.00161.31
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-25-0/0/1464.
0.0076022670740.00.00122.47
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

43-25-0/0/1269.
0.0036036603930.00.00113.45
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-25-0/0/976.
0.00120021376680.00.0089.34
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

45-25-0/0/1316.
0.00117027334050.00.00352.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-25-0/0/1551.
0.00100020174910.00.00103.41
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-25-0/0/1296.
0.00125028159430.00.0067.25
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

48-25-0/0/1166.
0.0055018533830.00.0048.12
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

49-25-0/0/1038.
0.0068021998530.00.0045.71
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

50-25-0/0/1365.
0.0033018319820.00.00188.73
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

Found on 2025-02-20 14:22

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afda1d08333

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Tuesday, 18-Feb-2025 16:28:46 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 186
Parent Server MPM Generation: 185
Server uptime:  5 days 3 hours 19 minutes 29 seconds
Server load: 8.59 8.30 7.68
Total accesses: 9386153 - Total Traffic: 2406.3 GB - Total Duration: 19463831389
CPU Usage: u250.53 s932.96 cu18474.8 cs12146.1 - 7.16% CPU load
21.1 requests/sec - 5.5 MB/second - 268.8 kB/request - 2073.68 ms/request
26 requests currently being processed, 0 workers gracefully restarting, 19 idle workers
W..W_W_WW.W.W___..W_____..___._W.._WWW.W..WWWC_W_W_W.W...WW_WWW.
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-18534869430/165/304310W
0.331405560758380.05.3280995.32
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

1-185-0/0/298158.
0.001205544224360.00.0080082.02
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

2-185-0/0/291346.
0.00105503731970.00.0078925.42
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

3-18534892030/121/293841W
0.251005457019840.04.7986374.88
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

4-18534960680/49/287559_
0.1001335459744820.027.5664811.99
185.244.159.92http/1.1cloud.turtrip.net.ua:8080GET /status.php HTTP/1.0

5-18534971600/3/283936W
0.01005393825740.00.1378545.60
68.183.10.253http/1.1azbykaislama.com:8080POST /xmlrpc.php HTTP/1.0

6-18534941470/75/284328_
0.1305365331014970.02.0991590.20
34.53.26.244http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

7-18534787170/43/277651W
0.0825505277274430.02.1467775.99
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

8-18534946380/64/277443W
0.12105224937790.01.6067838.02
185.244.159.92http/1.1cloud.turtrip.net.ua:8080GET /index.php/core/preview?fileId=3356&x=1024&y=1024&a=1&mode=

9-185-0/0/276053.
0.00305140411600.00.0079593.48
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

10-18534857430/202/269896W
0.41005125164470.044.0263170.86
91.201.243.45http/1.1stiltastilets.ck.ua:8080POST /wp-json/image-optimizer/v1/optimize/status?_locale=user H

11-185-0/0/264411.
0.00705056378730.00.0067886.72
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

12-18534973540/16/258924W
0.03004979057870.00.4374082.38
94.124.166.70http/1.1uabooks.co.ua:8080GET /divchina-u-potyagu-6511/ HTTP/1.0

13-18534951880/56/260066_
0.12084876387040.01.2859880.79
62.133.62.46http/1.1crmsolutions.ua:8080GET /ru/crm-systems/keepincrm/?seraph_accel_gbnr HTTP/1.0

14-18534951950/31/250156_
0.0709284789996510.01.3369467.17
66.249.69.166http/1.1constitutionalcenter.am:8080GET /digital-ankunding89458-469 HTTP/1.0

15-18534838260/237/247830_
0.47014692138120.011.4563611.90
3.232.102.111http/1.1bytovaya-tehnika.com.ua:8080GET /gazovie-pliti/zanussi/pyezoelement/16135/ HTTP/1.0

16-185-0/0/240429.
0.001604617794740.00.0060245.77
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-185-0/0/238349.
0.001704474202810.00.0060522.28
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

18-18534953180/51/227392W
0.111004425856590.01.3156597.01
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

19-18534892920/91/223574_
0.18004231654150.03.1863272.06
167.99.181.249http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-18534953240/51/213202_
0.1102774110210060.01.9353879.40
34.48.35.144http/1.1xn-----6kcaba7adc7behdlcecmq1aePOST //xmlrpc.php HTTP/1.0

21-18534974320/12/204712_
0.0204623967040300.00.1744429.34
50.19.79.213http/1.1quantum-soft.website:8080GET /artist/4904261157524543405 HTTP/1.0

22-18534822410/219/197286_
0.4203433804995280.015.3454811.62
66.249.66.75http/1.1gavat.am:8080GET /?g=202376722 HTTP/1.0

23-18534974380/13/183907_
0.02043633867680.00.4053145.76
109.94.209.168http/1.1crmsolutions.ua:8080POST /wp-cron.php?doing_wp_cron=1739888926.08625507354736328125

24-185-0/0/173472.
0.00903395094670.00.0043452.26
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-185-0/0/161603.
0.001503282075630.00.0043336.68
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-18534975390/12/153844_
0.03021453103367120.00.2841210.41
72.14.201.51http/1.1uabooks.co.ua:8080GET /nasha-provina-14990/ HTTP/1.0

27-18534886670/113/141582_
0.25012442830967870.05.1739607.13
195.16.77.183http/1.1audiobook.co.ua:8080GET /amerikanski-bogi-nil-gejman/ HTTP/1.0

28-18534975450/15/133556_
0.0302312685423940.00.1833136.17
188.166.15.184http/1.1azbykaislama.com:8080POST /wp-login.php HTTP/1.0

29-185-0/0/121941.
0.00202511006490.00.0037062.22
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-18534975520/14/112193_
0.0203192385302560.00.2735864.89
68.183.10.253http/1.1azbykaislama.com:8080POST /xmlrpc.php HTTP/1.0

31-18534838390/137/97608W
0.284602061676360.04.4824855.73
109.94.209.117http/1.1xn-----6kcaba7adc7behdlcecmq1aePOST /wp-cron.php?seraph_accel_at=M&rt=1739888880_2801830768585

32-185-0/0/91627.
0.00501968235820.00.0024079.34
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-185-0/0/83848.
0.00801820106470.00.0024753.17
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-18534976120/14/82698_
0.0303031865083160.01.5020969.11
188.166.15.184http/1.1azbykaislama.com:8080POST /wp-login.php HTTP/1.0

35-18534976190/12/79465W
0.02101755963770.00.0726524.68
185.244.159.92http/1.1cloud.turtrip.net.ua:8080GET /index.php/core/preview?fileId=3348&x=1024&y=1024&a=1&mode=

36-18534893530/146/67117W
0.31001538288230.06.4922571.19
188.166.15.184http/1.1azbykaislama.com:8080POST /wp-login.php HTTP/1.0

37-18534839270/132/66894W
0.32001544777090.05.7918214.60
34.53.26.244http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

38-185-0/0/65930.
0.001301499340230.00.0020301.51
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-18534893670/92/60538W
0.174401426530620.03.5721999.56
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

40-185-0/0/56643.
0.001001335668740.00.0014520.66
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-185-0/0/51797.
0.00401288951850.00.0014152.14
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-18534976370/14/50034W
0.02101184488860.00.1217420.19
185.244.159.92http/1.1cloud.turtrip.net.ua:8080GET /index.php/core/preview?fileId=3362&x=1024&y=1024&a=1&mode=

43-18534976430/10/48168W
0.02101194158810.03.5510289.22
185.244.159.92http/1.1cloud.turtrip.net.ua:8080PROPFIND /remote.php/dav/files/user_erx HTTP/1.0

44-18534977410/12/44981W
0.02101088544790.00.499706.21
185.244.159.92http/1.1cloud.turtrip.net.ua:8080GET /index.php/core/preview?fileId=3362&x=1024&y=1024&a=1&mode=

45-18534977471/12/44254C
0.02001048550380.30.9410971.17
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-18534977530/14/42635_
0.0206831030844360.00.725049.58
66.249.66.34http/1.1myphoto.am:8080GET /95458705667.shtml

Found on 2025-02-18 14:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afd0dbf8a87

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Sunday, 16-Feb-2025 18:41:03 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 129
Parent Server MPM Generation: 128
Server uptime:  3 days 5 hours 31 minutes 46 seconds
Server load: 6.24 6.67 6.86
Total accesses: 5623409 - Total Traffic: 1911.8 GB - Total Duration: 13082928263
CPU Usage: u175.51 s610.11 cu11119.7 cs7699.1 - 7.02% CPU load
20.1 requests/sec - 7.0 MB/second - 356.5 kB/request - 2326.51 ms/request
14 requests currently being processed, 0 workers gracefully restarting, 11 idle workers
_W__WW__WW.W.WW._WWWW...__.WW_._..........._....................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-12815177140/19/182106_
0.05023529384600.010.7963958.77
95.108.213.147http/1.1uslugi-nedorogo.ru:8080GET /mishi/trust/shnur/75339/ HTTP/1.0

1-12815173390/4/176996W
0.002203528122060.00.0163832.44
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

2-12815075660/179/173935_
0.38026353481630330.04.5558483.91
66.249.66.192http/1.1numis.am:8080GET /p=2509013 HTTP/1.0

3-12815173660/22/172770_
0.0402863479254430.00.4068349.63
157.66.54.162http/1.1azbykaislama.com:8080POST /xmlrpc.php HTTP/1.0

4-12815014330/127/172106W
0.2417003453932460.08.5147145.24
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

5-12815092300/19/168533W
0.0416003417621880.00.3059900.03
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

6-12815173750/28/170694_
0.070333362007550.01.5270488.81
44.212.131.50http/1.1zdsim.com:8080GET /forum/index.php?mode=linear&p=34823&showtopic=2153&view=fi

7-12815050700/219/164955_
0.4803293332285300.09.1551235.84
20.171.207.243http/1.1puteshestvuem.com:8080GET /?_rstr_nocache=rstr36367b2150139ba7&rstr=lat HTTP/1.0

8-12815175230/4/166131W
0.001803303175710.00.1251879.93
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

9-12815176300/16/162543W
0.04303282105240.00.7459920.01
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

10-128-0/0/160058.
0.005503250334830.00.0046802.29
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

11-12815051720/214/157144W
0.55003178816210.074.4756380.00
209.38.248.17http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

12-128-0/0/153011.
0.004403146767100.00.0057677.10
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

13-12815076490/168/155312W
0.40203058469880.05.2747463.32
66.249.66.193http/1.1numis.am:8080GET /2865474 HTTP/1.0

14-12815114150/64/148118W
0.14003013916720.01.8552676.97
2a03:2880:f800:9::http/1.1quantum-soft.website:8080GET /artist/1463927192047991945?block=PUlQVA8GR0R3W0tMF1UZEi8YH

15-128-0/0/145612.
0.003002949298910.00.0051396.46
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

16-12815127530/55/140129_
0.1203092931091020.01.8345405.20
104.131.22.69http/1.1azbykaislama.com:8080POST /xmlrpc.php HTTP/1.0

17-12815080600/151/141387W
0.35002842298930.069.4143421.63
5.77.202.0http/1.1nativelink.info:8080GET /wp-admin/edit.php?post_type=product HTTP/1.0

18-12815139270/54/136338W
0.132002789881010.02.5542948.73
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

19-12815154460/59/131113W
0.13102699779970.09.3448736.49
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

20-12815155470/49/122015W
0.101402611956250.00.9639522.66
109.94.209.168http/1.1vinyl.uaestrada.org:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

21-128-0/0/119488.
0.001402525252750.00.0032777.57
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-128-0/0/114833.
0.001202470327170.00.0042792.04
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

23-128-0/0/106614.
0.00702299002460.00.0040202.09
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-12815019960/212/102836_
0.46002213421580.07.7734989.15
94.131.197.81http/1.1reqpgres.us:8080GET /mc/vsystem/downloads/mods/SpellBundle-1.12.2-1.7.0.jar HTT

25-12815103350/103/95359_
0.25022128416330.067.4337518.19
54.204.62.163http/1.1bytovaya-tehnika.com.ua:8080GET /stiralnie-mashini/samsung/datchik/2190/ HTTP/1.0

26-128-0/0/90950.
0.003102020033480.00.0033983.52
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

27-12815140180/35/86062W
0.07101902533660.00.5233047.49
66.249.66.204http/1.1numis.am:8080GET /2770099 HTTP/1.0

28-12815155590/61/79270W
0.13101758206230.02.2027202.65
109.94.209.117http/1.1somonator.com:8080GET /checknews.php HTTP/1.0

29-12815155650/62/73778_
0.14026151705753740.02.0628768.80
66.249.66.203http/1.1numis.am:8080GET /3017194 HTTP/1.0

30-128-0/0/66886.
0.0014501607100010.00.0030014.97
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

31-12815106700/73/60280_
0.19001458582970.03.3821161.86
209.38.248.17http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

32-128-0/0/56335.
0.0014201380016990.00.0017679.29
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-128-0/0/51826.
0.0010301281336090.00.0019609.07
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-128-0/0/52449.
0.0013901334698920.00.0018333.82
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-128-0/0/53344.
0.0014301320711750.00.0024304.00
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

36-128-0/0/43900.
0.007101165066910.00.0019441.24
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-128-0/0/41751.
0.002201131420670.00.0015383.49
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-128-0/0/41925.
0.0031201083937910.00.0018812.85
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-128-0/0/41332.
0.0028301086857360.00.0019721.70
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-128-0/0/39004.
0.0030601011517920.00.0013274.77
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-127-0/0/35702.
0.00159300050985808840.00.009961.09
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

42-128-0/0/32086.
0.003030876042340.00.0016022.63
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

43-12815021950/306/31964_
0.6000931130550.09.409156.17
209.38.248.17http/1.1garmin-es.com:8080GET /v2/_catalog HTTP/1.0

44-128-0/0/30262.
0.003110853190210.00.008755.36
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

45-128-0/0/28177.
0.002080789959380.00.008094.68
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-128-0/0/28170.
0.003010788731460.00.004033.39
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-127-0/0/25883.
0.004430736130020.00.0010399.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP

Found on 2025-02-16 16:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afda1863e76

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Saturday, 15-Feb-2025 16:30:51 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime:  2 days 3 hours 21 minutes 35 seconds
Server load: 5.15 4.19 4.57
Total accesses: 3798311 - Total Traffic: 1134.8 GB - Total Duration: 8724370903
CPU Usage: u135.47 s426.26 cu7758.49 cs5118.34 - 7.27% CPU load
20.5 requests/sec - 6.3 MB/second - 313.3 kB/request - 2296.91 ms/request
11 requests currently being processed, 0 workers gracefully restarting, 13 idle workers
W___W___WWW_W_W_._W_......_._.............W.W...W...............
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-994546590/69/125408W
0.15202310317940.02.3843134.82
137.184.26.248http/1.1fruit.e-dev.pp.ua:8080GET / HTTP/1.0

1-994577860/9/122437_
0.020244542305255850.00.2642698.74
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

2-994549650/55/118640_
0.13012288579770.01.5331073.60
23.21.175.228http/1.1bytovaya-tehnika.com.ua:8080GET /stiralnie-mashini/zanussi/plata-upravleniya/84189/ HTTP/1.

3-994533430/122/120658_
0.29002257512600.05.9145490.01
139.59.132.8http/1.1garmin-es.com:8080GET /telescope/requests HTTP/1.0

4-994496950/2/118568W
0.0020502255107920.00.4427693.11
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

5-994550360/58/115391_
0.12002246535180.01.4041110.86
64.226.65.160http/1.1garmin-es.com:8080GET /about HTTP/1.0

6-994587730/28/116659_
0.05002211179810.00.1247666.36
64.226.65.160http/1.1garmin-es.com:8080GET /v2/_catalog HTTP/1.0

7-994557100/42/113696_
0.08002187851500.01.7131912.71
139.59.132.8http/1.1garmin-es.com:8080GET /s/7393e29333e21323e2430313/_/;/META-INF/maven/com.atlassia

8-994528200/81/114412W
0.19002153435910.02.5131172.35
23.23.137.202http/1.1zdsim.com:8080GET /forum/index.php?p=15736&showtopic=257&st=20 HTTP/1.0

9-994552940/57/110456W
0.13002146307100.04.3239526.90
176.111.182.230http/1.1808.com.ua:8080GET /p52741/?li_op=gen&cd=686544&rd=1739629850049 HTTP/1.0

10-994568900/12/109528W
0.031402122132650.00.5432629.87
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

11-994557410/37/107403_
0.10002057478530.02.2633526.23
139.59.132.8http/1.1garmin-es.com:8080GET /info.php HTTP/1.0

12-994558700/52/104787W
0.12502049767330.01.9239519.39
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

13-994517720/146/106414_
0.35001967302580.029.8228332.13
54.36.148.183http/1.1avto-stroyprokat.com:8080GET /ru/arenda-stroitelnye-lesa-odessa HTTP/1.0

14-994560130/59/100294W
0.13001928258450.02.9025279.49
176.59.55.65http/1.1znaifermu.ru:8080GET /svini-porosyata/uboj-i-razdelka2/elektroshoker-2504.html H

15-994592650/8/98033_
0.01001912699000.00.0232655.60
64.226.65.160http/1.1garmin-es.com:8080GET /debug/default/view?panel=config HTTP/1.0

16-99-0/0/94571.
0.003601904769620.00.0028504.50
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-994417050/212/94941_
0.50001844384130.06.9926348.99
64.226.65.160http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

18-994529110/60/92423W
0.134901808006530.02.7124549.96
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

19-994449890/269/87691_
0.61001745385450.07.4127908.73
139.59.132.8http/1.1garmin-es.com:8080GET /config.json HTTP/1.0

20-99-0/0/80273.
0.0010201662961930.00.0025345.66
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

21-99-0/0/79018.
0.0011301620161250.00.0015133.73
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-99-0/0/78209.
0.0011201577419540.00.0023295.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

23-99-0/0/69323.
0.009601438957830.00.0026054.88
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-99-0/0/66042.
0.00801387660470.00.0022603.13
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-99-0/0/62356.
0.005201323397270.00.0025245.69
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-994529800/95/58314_
0.24031224059300.04.9623074.50
66.249.74.131http/1.1bytovaya-tehnika.com.ua:8080GET /videokameri/ergo/zaryadnoe-ustrojstvo/31326/ HTTP/1.0

27-99-0/0/54185.
0.008801155486140.00.0019736.59
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-994529950/126/50727_
0.2804431087532280.03.6314068.05
128.199.244.121http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

29-99-0/0/45261.
0.0011401044797490.00.0014095.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-99-0/0/39324.
0.001220940746180.00.0015628.92
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

31-99-0/0/35241.
0.002610859793490.00.009655.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-99-0/0/35137.
0.002530815522950.00.0010779.54
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-99-0/0/31113.
0.002330777527830.00.008535.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-99-0/0/31909.
0.002550815115490.00.009812.72
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-99-0/0/31818.
0.001040791644320.00.0011350.37
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

36-99-0/0/24837.
0.002400694780410.00.0010527.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-99-0/0/25387.
0.002360721107430.00.006051.97
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-99-0/0/24653.
0.002600653280910.00.0010099.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-99-0/0/25530.
0.001710649614260.00.0012253.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-99-0/0/22698.
0.002740612779670.00.005194.79
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-99-0/0/21751.
0.001110594801890.00.005402.05
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-994456250/264/19435W
0.5900552719740.072.904746.22
64.226.65.160http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

43-99-0/0/19251.
0.002490583511200.00.003713.28
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-994456370/185/19618W
0.4150540415220.08.156022.84
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

45-99-0/0/17452.
0.002730489625960.00.004080.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-99-0/0/17621.
0.002370521003420.00.001793.40
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-99-0/0/17186.
0.001530501721440.00.005990.75
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

48-994459330/31/17770W
0.072040488320760.00.827772.82
109.94.209.117http/1.1somonator.com:8080GET /vendor/

Found on 2025-02-15 14:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3100e08afd00e08afdb9001b23

Apache Status

Apache Server Status for garmin-es.com (via 127.0.0.1)

Server Version: Apache/2.4.37 (CloudLinux) OpenSSL/1.1.1k mod_fcgid/2.3.9 PHP/7.2.24
Server MPM: prefork
Server Built: Aug 12 2024 10:46:55

Current Time: Saturday, 15-Feb-2025 16:30:51 EET
Restart Time: Thursday, 13-Feb-2025 13:09:16 EET
Parent Server Config. Generation: 100
Parent Server MPM Generation: 99
Server uptime:  2 days 3 hours 21 minutes 34 seconds
Server load: 5.15 4.19 4.57
Total accesses: 3798275 - Total Traffic: 1134.8 GB - Total Duration: 8724263754
CPU Usage: u135.43 s426.24 cu7758.49 cs5118.34 - 7.27% CPU load
20.5 requests/sec - 6.3 MB/second - 313.3 kB/request - 2296.9 ms/request
15 requests currently being processed, 0 workers gracefully restarting, 9 idle workers
WWWWWW_W__WWW___._WW......W._............._.W...W...............
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-994546590/69/125408W
0.15102310317940.02.3843134.82
137.184.26.248http/1.1fruit.e-dev.pp.ua:8080GET / HTTP/1.0

1-994577860/8/122436W
0.012302304766760.00.2542698.74
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

2-994549650/52/118637W
0.12102288548510.01.2631073.33
66.249.81.129http/1.1audiobook.co.ua:8080GET /.well-known/traffic-advice HTTP/1.0

3-994533430/119/120655W
0.29002257500640.05.8845489.98
92.99.136.186http/1.1808.com.ua:8080GET /motornye-masla/?page=5 HTTP/1.0

4-994496950/2/118568W
0.0020402255107920.00.4427693.11
109.94.209.117http/1.1somonator.com:8080GET /vendor/danog/madelineproto/src/Ipc/Runner/entry.php?argv%5

5-994550360/56/115389W
0.122402246045070.01.4041110.86
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

6-994587730/25/116656_
0.050402211179780.00.1247666.36
44.193.115.232http/1.1zdsim.com:8080GET /forum/index.php?p=15736&showtopic=257&view=findpost HTTP/1

7-994557100/40/113694W
0.08002187843700.01.7131912.70
176.111.182.230http/1.1808.com.ua:8080GET /p52741/?li_op=gen&cd=686544&rd=1739629849572 HTTP/1.0

8-994528200/80/114411_
0.19002153435900.02.5031172.35
139.59.132.8http/1.1garmin-es.com:8080GET /v2/_catalog HTTP/1.0

9-994552940/56/110455_
0.13002146307080.04.3139526.89
207.154.212.47http/1.1garmin-es.com:8080GET /config.json HTTP/1.0

10-994568900/12/109528W
0.031302122132650.00.5432629.87
109.94.209.168http/1.1stepan-ivan.ru:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

11-994557410/34/107400W
0.09002057469560.02.2233526.20
2a03:2880:f804:18::http/1.1quantum-soft.website:8080GET /artist/nightmyl_mtu3nzewmdc4nq?block=PUlQVA8GR0R3W0tMF1UZE

12-994558700/52/104787W
0.12402049767330.01.9239519.39
109.94.209.168http/1.1grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

13-994517720/143/106411_
0.3402951967302540.029.8128332.12
20.171.207.243http/1.1puteshestvuem.com:8080GET /?_rstr_nocache=rstr30767b0a4eda6223&rstr=cyr HTTP/1.0

14-994560130/59/100294_
0.13001928258450.02.9025279.49
207.154.212.47http/1.1garmin-es.com:8080GET /telescope/requests HTTP/1.0

15-994592650/5/98030_
0.0004781912698980.00.0132655.59
128.199.244.121http/1.1daytodayhealthy.com:8080POST //xmlrpc.php HTTP/1.0

16-99-0/0/94571.
0.003601904769620.00.0028504.50
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

17-994417050/209/94938_
0.49001844384100.06.9926348.98
207.154.212.47http/1.1garmin-es.com:8080GET /info.php HTTP/1.0

18-994529110/60/92423W
0.134801808006530.02.7124549.96
109.94.209.168http/1.1butik.grammophon.biz.ua:8080GET /?auction-cron=check HTTP/1.0

19-994449890/266/87688W
0.61001745385410.07.3427908.66
139.59.132.8http/1.1garmin-es.com:8080GET /server-status HTTP/1.0

20-99-0/0/80273.
0.0010101662961930.00.0025345.66
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

21-99-0/0/79018.
0.0011201620161250.00.0015133.73
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

22-99-0/0/78209.
0.0011101577419540.00.0023295.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

23-99-0/0/69323.
0.009501438957830.00.0026054.88
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

24-99-0/0/66042.
0.00801387660470.00.0022603.13
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

25-99-0/0/62356.
0.005201323397270.00.0025245.69
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

26-994529800/93/58312W
0.24001224036080.04.8923074.42
66.249.66.192http/1.1numis.am:8080GET /p=2169185 HTTP/1.0

27-99-0/0/54185.
0.008701155486140.00.0019736.59
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

28-994529950/125/50726_
0.28001087523410.03.6314068.05
139.59.132.8http/1.1garmin-es.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

29-99-0/0/45261.
0.0011301044797490.00.0014095.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

30-99-0/0/39324.
0.001210940746180.00.0015628.92
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

31-99-0/0/35241.
0.002600859793490.00.009655.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

32-99-0/0/35137.
0.002520815522950.00.0010779.54
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

33-99-0/0/31113.
0.002320777527830.00.008535.23
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

34-99-0/0/31909.
0.002540815115490.00.009812.72
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

35-99-0/0/31818.
0.001030791644320.00.0011350.37
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

36-99-0/0/24837.
0.002390694780410.00.0010527.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

37-99-0/0/25387.
0.002350721107430.00.006051.97
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

38-99-0/0/24653.
0.002590653280910.00.0010099.08
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

39-99-0/0/25530.
0.001700649614260.00.0012253.84
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

40-99-0/0/22698.
0.002730612779670.00.005194.79
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

41-99-0/0/21751.
0.001100594801890.00.005402.05
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

42-994456250/262/19433_
0.590174552719730.072.904746.22
185.77.216.2http/1.1renaissance-artistsdistributionGET /wp-admin/admin-ajax.php?action=seraph_accel_api&fn=GetData

43-99-0/0/19251.
0.002480583511200.00.003713.28
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

44-994456370/185/19618W
0.4140540415220.08.156022.84
109.94.209.168http/1.1butik.grammophon.biz.ua:8080POST /?mailpoet_router&endpoint=cron_daemon&action=run&data=eyJ

45-99-0/0/17452.
0.002720489625960.00.004080.61
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

46-99-0/0/17621.
0.002360521003420.00.001793.40
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

47-99-0/0/17186.
0.001520501721440.00.005990.75
127.0.0.1http/1.1bridgeswiss.co.uk:8080OPTIONS * HTTP/1.0

48-994459330/31/17770W
0.072030488320760.00.827772.82
109.94.209.117http/1.1

Found on 2025-02-15 14:30

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: xnc3.xyz
Port: 80
URL: http://xnc3.xyz

First seen 2025-01-26 14:39
Last seen 2025-02-12 05:41
Open for 16 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f8149bc3e36883d11d9301ee74128e34bf3

Found 41 files trough .DS_Store spidering:

/admin_static
/index.php
/robots.txt
/router.php
/static
/static/css
/static/css/1
/static/css/10
/static/css/11
/static/css/12
/static/css/13
/static/css/14
/static/css/15
/static/css/16
/static/css/17
/static/css/18
/static/css/19
/static/css/2
/static/css/20
/static/css/21
/static/css/22
/static/css/23
/static/css/24
/static/css/25
/static/css/26
/static/css/27
/static/css/28
/static/css/29
/static/css/3
/static/css/30
/static/css/4
/static/css/5
/static/css/6
/static/css/7
/static/css/8
/static/css/9
/static/img
/static/js
/storage
/templateImg
/tinymce

Found on 2025-02-12 05:41

Severity: medium
Fingerprint: 5f32cf5d6962f09caa192999aa1929994295237e254357e1431ae629b1a39d5d

Found 113 files trough .DS_Store spidering:

/admin_static
/index.php
/robots.txt
/router.php
/static
/static/css
/static/css/1
/static/css/10
/static/css/11
/static/css/12
/static/css/13
/static/css/14
/static/css/15
/static/css/16
/static/css/17
/static/css/18
/static/css/19
/static/css/2
/static/css/20
/static/css/21
/static/css/22
/static/css/23
/static/css/24
/static/css/25
/static/css/26
/static/css/27
/static/css/28
/static/css/29
/static/css/3
/static/css/30
/static/css/4
/static/css/5
/static/css/6
/static/css/7
/static/css/8
/static/css/9
/static/img
/static/img/1
/static/img/1/ad_223x96 (1).gif
/static/img/1/ad_223x96.gif
/static/img/1/dlq99.jpg
/static/img/1/hm (1).gif
/static/img/1/hm (2).gif
/static/img/1/hm (3).gif
/static/img/1/hm (4).gif
/static/img/1/hm (5).gif
/static/img/1/hm.gif
/static/img/1/Index001 (1).gif
/static/img/1/Index001.gif
/static/img/1/Index002 (1).gif
/static/img/1/Index002.gif
/static/img/1/Index003 (1).gif
/static/img/1/Index003.gif
/static/img/1/Index004 (1).gif
/static/img/1/Index004.gif
/static/img/1/Index005 (1).gif
/static/img/1/Index005.gif
/static/img/1/Index006 (1).gif
/static/img/1/Index006.gif
/static/img/1/Index007 (1).gif
/static/img/1/Index007.gif
/static/img/1/Index008 (1).gif
/static/img/1/Index008.gif
/static/img/1/Index2_02 (1).gif
/static/img/1/Index2_02.gif
/static/img/1/Index2_03 (1).gif
/static/img/1/Index2_03.gif
/static/img/1/Index2_25 (1).gif
/static/img/1/Index2_25.gif
/static/img/1/Index2_26 (1).gif
/static/img/1/Index2_26.gif
/static/img/1/Index2_32 (1).gif
/static/img/1/Index2_32.gif
/static/img/1/Index2_34 (1).gif
/static/img/1/Index2_34.gif
/static/img/1/Index_Logo (1).gif
/static/img/1/Index_Logo.gif
/static/img/1/S_Link (1).gif
/static/img/1/S_Link.gif
/static/img/1/sq111.jpg
/static/img/10
/static/img/11
/static/img/12
/static/img/13
/static/img/14
/static/img/15
/static/img/16
/static/img/17
/static/img/18
/static/img/19
/static/img/2
/static/img/20
/static/img/21
/static/img/22
/static/img/23
/static/img/24
/static/img/25
/static/img/26
/static/img/27
/static/img/28
/static/img/29
/static/img/3
/static/img/30
/static/img/4
/static/img/5
/static/img/6
/static/img/7
/static/img/8
/static/img/9
/static/js
/storage
/templateImg
/tinymce

Found on 2025-02-02 18:26

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 172.67.144.10
Domain: memamoivasrse.cyou
Port: 80
URL: http://memamoivasrse.cyou

First seen 2024-11-28 15:48
Last seen 2024-12-18 20:13
Open for 20 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d8ebd63f7d

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Wednesday, 18-Dec-2024 20:13:12 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  28 days 22 hours 39 minutes 17 seconds
Server load: 0.02 0.03 0.00
Total accesses: 6109288 - Total Traffic: 6.5 GB
CPU Usage: u558.74 s481.65 cu0 cs0 - .0416% CPU load
2.44 requests/sec - 2799 B/second - 1145 B/request
1 requests currently being processed, 6 idle workers
______W.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-9258280/137532/902416_
138.08000.0136.86965.41
64.225.75.246http/1.1serv4lio.com:8080GET /server HTTP/1.0

1-9258290/137534/902414_
138.46000.0137.27976.52
64.225.75.246http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

2-9258300/137542/902378_
138.22000.0136.61966.44
64.225.75.246http/1.1serv4lio.com:8080GET /about HTTP/1.0

3-9262680/137430/900077_
139.67000.0136.87960.98
64.225.75.246http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

4-9258310/137536/902360_
138.26000.0136.13957.42
64.225.75.246http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-9258320/137533/902410_
138.94000.0137.08973.11
64.225.75.246http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

6-9178830/97383/642618W
98.72000.098.17668.09
64.225.75.246http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

7-0-0/0/18212.
38.75243247600.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70243247600.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62248375700.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97243247600.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-18 20:13

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d88b9d9702

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Monday, 16-Dec-2024 15:26:07 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 10
Parent Server MPM Generation: 9
Server uptime:  26 days 17 hours 52 minutes 11 seconds
Server load: 0.03 0.02 0.00
Total accesses: 5625348 - Total Traffic: 6.0 GB
CPU Usage: u304.69 s242.1 cu0 cs0 - .0237% CPU load
2.43 requests/sec - 2806 B/second - 1152 B/request
1 requests currently being processed, 6 idle workers
____W__.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-9258280/68396/833280_
67.95000.066.65895.20
46.101.111.185http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

1-9258290/68402/833282_
67.72000.066.47905.72
46.101.111.185http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

2-9258300/68406/833242_
67.86000.066.61896.44
46.101.111.185http/1.1serv4lio.com:8080GET /about HTTP/1.0

3-9262680/68297/830944_
68.53000.066.39890.51
46.101.111.185http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

4-9258310/68402/833226W
67.86000.066.38887.67
46.101.111.185http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

5-9258320/68402/833279_
68.23000.066.49902.52
46.101.111.185http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-9178830/28245/573480_
28.60100.027.89597.81
46.101.111.185http/1.1serv4lio.com:8080GET /server HTTP/1.0

7-0-0/0/18212.
38.75224245100.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70224245100.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62229373100.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97224245100.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-16 15:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d892ae48f8

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Saturday, 14-Dec-2024 14:20:36 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  24 days 16 hours 46 minutes 40 seconds
Server load: 0.02 0.03 0.00
Total accesses: 4996132 - Total Traffic: 5.4 GB
CPU Usage: u693.76 s593.26 cu0 cs0 - .0603% CPU load
2.34 requests/sec - 2735 B/second - 1168 B/request
1 requests currently being processed, 6 idle workers
W______.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-8156620/170864/737644W
179.11000.0168.88801.57
46.101.111.185http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

1-8156630/170855/737641_
179.80000.0169.64812.09
46.101.111.185http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

2-8156640/170852/737596_
181.01000.0167.84802.77
172.172.130.74http/1.1serv4lio.com:8080GET /network.php HTTP/1.0

3-8179680/170241/735409_
182.19000.0168.10797.01
172.172.130.74http/1.1serv4lio.com:8080GET /defaults.php HTTP/1.0

4-8156650/170844/737591_
182.97000.0168.78793.96
172.172.130.74http/1.1serv4lio.com:8080GET /wp-content/plugins/pwnd/a.php HTTP/1.0

5-8156660/170861/737638_
181.70000.0168.98808.93
46.101.111.185http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

6-886640/85961/517998_
90.20000.085.51542.94
46.101.111.185http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-0-0/0/18212.
38.75206572000.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70206572000.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62211700000.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97206572000.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-14 14:20

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d88921886d

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 12-Dec-2024 20:48:15 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  22 days 23 hours 14 minutes 20 seconds
Server load: 0.00 0.02 0.00
Total accesses: 4524515 - Total Traffic: 5.0 GB
CPU Usage: u433.33 s352.23 cu0 cs0 - .0396% CPU load
2.28 requests/sec - 2696 B/second - 1182 B/request
1 requests currently being processed, 6 idle workers
______W.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-8156620/103486/670266_
107.92000.0102.20734.90
138.68.82.23http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

1-8156630/103480/670266_
108.73000.0102.94745.39
138.68.82.23http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

2-8156640/103482/670226_
109.25000.0101.71736.63
138.68.82.23http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-8179680/102873/668041_
109.87000.0101.73730.64
138.68.82.23http/1.1serv4lio.com:8080GET /server HTTP/1.0

4-8156650/103469/670216_
110.54000.0102.56727.74
138.68.82.23http/1.1serv4lio.com:8080GET /about HTTP/1.0

5-8156660/103479/670256_
109.81000.0102.76742.71
138.68.82.23http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

6-886640/18592/450629W
19.40000.019.04476.47
138.68.82.23http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

7-0-0/0/18212.
38.75191617900.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70191617900.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62196746000.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97191617900.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-12 20:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d89dfe5e51

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Tuesday, 10-Dec-2024 23:50:52 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 9
Parent Server MPM Generation: 8
Server uptime:  21 days 2 hours 16 minutes 57 seconds
Server load: 0.05 0.05 0.01
Total accesses: 4236177 - Total Traffic: 4.7 GB
CPU Usage: u371.64 s300.24 cu0 cs0 - .0369% CPU load
2.32 requests/sec - 2767 B/second - 1190 B/request
1 requests currently being processed, 5 idle workers
W_____..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-8156620/58525/625305W
60.77000.056.82689.52
206.189.2.13http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

1-8156630/58524/625310_
61.00000.056.96699.42
206.189.2.13http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

2-8156640/58525/625269_
61.48000.056.63691.55
206.189.2.13http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

3-8179680/57912/623080_
61.53000.056.07684.98
206.189.2.13http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

4-8156650/58517/625264_
62.00000.057.02682.20
206.189.2.13http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

5-8156660/58520/625297_
61.92000.056.86696.81
206.189.2.13http/1.1serv4lio.com:8080GET /about HTTP/1.0

6-7-0/0/432037.
193.1414914800.00.00457.43
45.55.241.136http/1.1serv4lio.com:8080GET /sito/wp-includes/wlwmanifest.xml HTTP/1.0

7-0-0/0/18212.
38.75175433600.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70175433600.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62180561700.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97175433600.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-10 23:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d80dfff759

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Sunday, 08-Dec-2024 10:04:12 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  18 days 12 hours 30 minutes 16 seconds
Server load: 0.00 0.00 0.00
Total accesses: 3712314 - Total Traffic: 4.2 GB
CPU Usage: u900.11 s798.28 cu0 cs0 - .106% CPU load
2.32 requests/sec - 2815 B/second - 1213 B/request
1 requests currently being processed, 6 idle workers
___W___.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-743430/261656/542019_
236.65000.0254.52607.93
172.172.130.74http/1.1serv4lio.com:8080GET /libraries/legacy/updates.php HTTP/1.0

1-743440/261673/542022_
237.55000.0254.27617.78
157.230.19.140http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

2-743450/261643/541983_
237.18000.0254.19610.16
172.172.130.74http/1.1serv4lio.com:8080GET /img/xmrlpc.php?p= HTTP/1.0

3-770010/261238/540404W
236.07000.0253.47604.12
157.230.19.140http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

4-743460/261659/541985_
236.07000.0254.11600.37
157.230.19.140http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

5-743470/261659/542013_
237.59000.0254.14615.22
172.172.130.74http/1.1serv4lio.com:8080GET /img/cloud.php HTTP/1.0

6-79310/182005/407273_
167.24000.0177.35432.58
157.230.19.140http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-0-0/0/18212.
38.75153193600.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70153193600.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62158321600.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97153193600.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-08 10:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d8025b280e

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Friday, 06-Dec-2024 10:58:07 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  16 days 13 hours 24 minutes 11 seconds
Server load: 0.01 0.02 0.00
Total accesses: 3250547 - Total Traffic: 3.8 GB
CPU Usage: u675.83 s590.72 cu0 cs0 - .0885% CPU load
2.27 requests/sec - 2819 B/second - 1240 B/request
1 requests currently being processed, 6 idle workers
_W_____.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-743430/195681/476044_
174.94000.0190.23543.64
139.162.210.205http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

1-743440/195699/476048W
175.94000.0190.07553.57
139.162.210.205http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

2-743450/195681/476021_
175.50000.0189.85545.82
139.162.210.205http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

3-770010/195275/474441_
174.68000.0189.42540.07
139.162.210.205http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

4-743460/195692/476018_
174.79000.0189.81536.08
139.162.210.205http/1.1serv4lio.com:8080GET /about HTTP/1.0

5-743470/195694/476048_
175.59000.0189.81550.89
139.162.210.205http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-79310/116044/341312_
105.07000.0113.13368.36
139.162.210.205http/1.1serv4lio.com:8080GET /server HTTP/1.0

7-0-0/0/18212.
38.75136237100.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70136237100.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62141365100.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97136237100.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-06 10:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d8c7931b92

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Wednesday, 04-Dec-2024 09:11:53 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  14 days 11 hours 37 minutes 57 seconds
Server load: 0.04 0.04 0.00
Total accesses: 2755569 - Total Traffic: 3.3 GB
CPU Usage: u442.81 s374.96 cu0 cs0 - .0653% CPU load
2.2 requests/sec - 2817 B/second - 1279 B/request
1 requests currently being processed, 6 idle workers
_W_____.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-743430/124975/405338_
111.14000.0120.78474.19
207.154.212.47http/1.1serv4lio.com:8080GET /server HTTP/1.0

1-743440/124985/405334W
111.51000.0120.89484.40
207.154.212.47http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

2-743450/124981/405321_
111.39000.0120.68476.65
207.154.212.47http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

3-770010/124567/403733_
110.73000.0120.50471.14
207.154.212.47http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

4-743460/124974/405300_
111.26000.0120.93467.20
207.154.212.47http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

5-743470/124977/405331_
111.13000.0120.85481.93
207.154.212.47http/1.1serv4lio.com:8080GET /about HTTP/1.0

6-79310/45329/270597_
40.57000.043.94299.17
207.154.212.47http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

7-0-0/0/18212.
38.75118319600.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70118319600.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62123447700.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97118319600.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-04 09:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d87d4fe660

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Monday, 02-Dec-2024 15:01:13 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 8
Parent Server MPM Generation: 7
Server uptime:  12 days 17 hours 27 minutes 17 seconds
Server load: 0.24 0.07 0.02
Total accesses: 2276573 - Total Traffic: 2.8 GB
CPU Usage: u281.73 s222.07 cu0 cs0 - .0458% CPU load
2.07 requests/sec - 2765 B/second - 1335 B/request
1 requests currently being processed, 5 idle workers
___W__..........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-743430/52695/333058_
46.91000.050.90404.31
62.197.144.53http/1.1serv4lio.com:8080GET /install.php HTTP/1.0

1-743440/52703/333052_
47.23000.051.11414.62
20.14.137.230http/1.1serv4lio.com:8080GET /index/function.php HTTP/1.0

2-743450/52703/333043_
47.13000.050.93406.90
20.14.137.230http/1.1serv4lio.com:8080GET /admin/function.php HTTP/1.0

3-770010/52291/331457W
46.60000.050.52401.17
209.38.208.202http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

4-743460/52699/333025_
46.98000.051.11397.38
62.197.144.51http/1.1serv4lio.com:8080GET /.well-known/radio.php HTTP/1.0

5-743470/52701/333055_
46.85000.051.13412.21
209.38.208.202http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-6-0/0/225268.
112.0611736900.00.00255.23
137.184.25.59http/1.1serv4lio.com:8080GET / HTTP/1.0

7-0-0/0/18212.
38.75103135700.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.70103135700.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.62108263700.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.97103135700.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-12-02 15:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d808129474

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Saturday, 30-Nov-2024 17:01:02 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  10 days 19 hours 27 minutes 6 seconds
Server load: 0.25 0.15 0.05
Total accesses: 1834651 - Total Traffic: 2.4 GB
CPU Usage: u550.56 s454.13 cu0 cs0 - .108% CPU load
1.96 requests/sec - 2774 B/second - 1412 B/request
1 requests currently being processed, 6 idle workers
______W.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-6280600/138668/262345_
132.15000.0143.21335.88
164.90.228.79http/1.1serv4lio.com:8080GET /about HTTP/1.0

1-6280610/138674/262332_
132.13000.0143.01345.91
164.90.228.79http/1.1serv4lio.com:8080GET /.vscode/sftp.json HTTP/1.0

2-6280620/138659/262319_
132.49000.0143.35338.34
164.90.228.79http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

3-6304540/138394/261147_
136.42000.0143.07333.11
164.90.228.79http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

4-6280630/138656/262308_
132.58000.0143.07328.69
164.90.228.79http/1.1serv4lio.com:8080GET /server HTTP/1.0

5-6280640/138668/262336_
133.03000.0143.41343.59
164.90.228.79http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

6-6244580/103554/207249W
95.85000.0104.63237.59
164.90.228.79http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

7-0-0/0/18212.
38.7586574500.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.7086574500.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.6291702600.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.9786574500.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-30 17:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d8671e7fbd

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 28-Nov-2024 15:48:48 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  8 days 18 hours 14 minutes 53 seconds
Server load: 0.05 0.03 0.00
Total accesses: 1497865 - Total Traffic: 2.1 GB
CPU Usage: u390.75 s310.18 cu0 cs0 - .0926% CPU load
1.98 requests/sec - 2943 B/second - 1487 B/request
1 requests currently being processed, 6 idle workers
_W_____.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-6280600/90550/214227_
89.27000.093.82286.48
138.68.86.32http/1.1serv4lio.com:8080GET /login.action HTTP/1.0

1-6280610/90562/214220W
88.81000.093.54296.44
159.203.96.42http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

2-6280620/90552/214212_
89.38000.093.93288.93
159.203.96.42http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-6304540/90287/213040_
91.92010.093.48283.51
138.68.86.32http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

4-6280630/90548/214200_
89.36000.093.64279.26
62.197.149.111http/1.1serv4lio.com:8080GET /mt/ HTTP/1.0

5-6280640/90555/214223_
89.56000.093.78293.95
138.68.86.32http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-6244580/55433/159128_
52.59000.055.26188.22
138.68.86.32http/1.1serv4lio.com:8080GET /_all_dbs HTTP/1.0

7-0-0/0/18212.
38.7568861200.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.7068861200.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.6273989300.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.9768861200.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-28 15:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb3180b435d880b435d806fb3945

Apache Status

Apache Server Status for memamoivasrse.cyou (via 95.164.119.223)

Server Version: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Server MPM: prefork
Server Built: 2023-03-08T17:34:33

Current Time: Thursday, 28-Nov-2024 15:48:48 GMT
Restart Time: Tuesday, 19-Nov-2024 21:33:55 GMT
Parent Server Config. Generation: 7
Parent Server MPM Generation: 6
Server uptime:  8 days 18 hours 14 minutes 53 seconds
Server load: 0.05 0.03 0.00
Total accesses: 1497862 - Total Traffic: 2.1 GB
CPU Usage: u390.75 s310.17 cu0 cs0 - .0926% CPU load
1.98 requests/sec - 2943 B/second - 1487 B/request
1 requests currently being processed, 6 idle workers
___W___.........................................................
................................................................
......................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqConnChildSlotClientProtocolVHostRequest

0-6280600/90549/214226_
89.26000.093.82286.48
159.203.96.42http/1.1serv4lio.com:8080GET /debug/default/view?panel=config HTTP/1.0

1-6280610/90562/214220_
88.81000.093.54296.44
159.203.96.42http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

2-6280620/90552/214212_
89.38000.093.93288.93
159.203.96.42http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

3-6304540/90286/213039W
91.92000.093.48283.51
138.68.86.32http/1.1serv4lio.com:8080GET /server-status HTTP/1.0

4-6280630/90548/214200_
89.36000.093.64279.26
62.197.149.111http/1.1serv4lio.com:8080GET /mt/ HTTP/1.0

5-6280640/90555/214223_
89.56000.093.78293.95
138.68.86.32http/1.1serv4lio.com:8080GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-6244580/55432/159127_
52.59000.055.26188.22
138.68.86.32http/1.1serv4lio.com:8080GET /v2/_catalog HTTP/1.0

7-0-0/0/18212.
38.7568861200.00.0072.41
128.199.217.247http/1.1flyamoakodith.shop:8080GET /site/wp-includes/wlwmanifest.xml HTTP/1.0

8-0-0/0/18133.
38.7068861200.00.0065.88
199.45.154.119http/1.1flyamoakodith.shop:8080GET /favicon.ico HTTP/1.0

9-0-0/0/2477.
0.6273989300.00.005.59
95.164.119.223http/1.1

10-0-0/0/15793.
31.9768861200.00.0064.03
128.199.217.247http/1.1flyamoakodith.shop:8080GET /wp2/wp-includes/wlwmanifest.xml HTTP/1.0


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 

mod_fcgid status:
Total FastCGI processes: 0



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2024-11-28 15:48

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: www.sittingstylishly.com
Port: 443
URL: https://www.sittingstylishly.com

First seen 2023-01-14 08:01
Last seen 2024-11-30 21:40
Open for 686 days

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d8ea01168605cf6c28dc6b5b6d3b3f072

Found 12 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-includes

Found on 2024-11-30 21:40

Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f812ccf58046d7489ee0a9031aaf8df50e2

Found 41 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-11-22 23:19

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd46adcbe85cd7814291f82d363d6ba8b7

Found 117 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes
/wp-includes/assets
/wp-includes/block-patterns
/wp-includes/block-supports
/wp-includes/blocks
/wp-includes/blocks/archives
/wp-includes/blocks/audio
/wp-includes/blocks/block
/wp-includes/blocks/button
/wp-includes/blocks/buttons
/wp-includes/blocks/calendar
/wp-includes/blocks/categories
/wp-includes/blocks/classic
/wp-includes/blocks/code
/wp-includes/blocks/column
/wp-includes/blocks/columns
/wp-includes/blocks/embed
/wp-includes/blocks/file
/wp-includes/blocks/gallery
/wp-includes/blocks/group
/wp-includes/blocks/heading
/wp-includes/blocks/html
/wp-includes/blocks/image
/wp-includes/blocks/latest-comments
/wp-includes/blocks/latest-posts
/wp-includes/blocks/list
/wp-includes/blocks/media-text
/wp-includes/blocks/missing
/wp-includes/blocks/more
/wp-includes/blocks/nextpage
/wp-includes/blocks/paragraph
/wp-includes/blocks/preformatted
/wp-includes/blocks/pullquote
/wp-includes/blocks/quote
/wp-includes/blocks/rss
/wp-includes/blocks/search
/wp-includes/blocks/separator
/wp-includes/blocks/shortcode
/wp-includes/blocks/social-link
/wp-includes/blocks/social-links
/wp-includes/blocks/spacer
/wp-includes/blocks/subhead
/wp-includes/blocks/table
/wp-includes/blocks/tag-cloud
/wp-includes/blocks/text-columns
/wp-includes/blocks/verse
/wp-includes/blocks/video
/wp-includes/certificates
/wp-includes/css
/wp-includes/customize
/wp-includes/fonts
/wp-includes/ID3
/wp-includes/images
/wp-includes/IXR
/wp-includes/js
/wp-includes/PHPMailer
/wp-includes/pomo
/wp-includes/random_compat
/wp-includes/Requests
/wp-includes/rest-api
/wp-includes/SimplePie
/wp-includes/sitemaps
/wp-includes/sodium_compat
/wp-includes/Text
/wp-includes/theme-compat
/wp-includes/widgets

Found on 2024-11-18 21:59

Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a2ecae49fe43f415d89b80ebfe08016e7

Found 19 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/plugins
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-10-18 20:04

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea97af056fcd6c3e1562684ae92458fab9b

Found 23 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-10-02 22:07

Severity: medium
Fingerprint: 5f32cf5d6962f09c99d3320899d33208346ce2c5f90c968753d41d59ab93ca45

Found 44 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-09-26 17:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c7d264b917d264b91cd2f2354c580183e6d4d70daffd40135

Found 52 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-08-18 16:34

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f9cf9902f9cf9908ccf6bbdfc69eaef84f971e13a070acf

Found 75 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes
/wp-includes/assets
/wp-includes/block-patterns
/wp-includes/block-supports
/wp-includes/blocks
/wp-includes/certificates
/wp-includes/css
/wp-includes/customize
/wp-includes/fonts
/wp-includes/ID3
/wp-includes/images
/wp-includes/IXR
/wp-includes/js
/wp-includes/PHPMailer
/wp-includes/pomo
/wp-includes/random_compat
/wp-includes/Requests
/wp-includes/rest-api
/wp-includes/SimplePie
/wp-includes/sitemaps
/wp-includes/sodium_compat
/wp-includes/Text
/wp-includes/theme-compat
/wp-includes/widgets

Found on 2024-06-21 03:53

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: sittingstylishly.com
Port: 443
URL: https://sittingstylishly.com

First seen 2023-01-14 08:01
Last seen 2024-11-30 09:51
Open for 686 days

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d8ea01168605cf6c28dc6b5b6d3b3f072

Found 12 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-includes

Found on 2024-11-30 09:51

Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f812ccf58046d7489ee0a9031aaf8df50e2

Found 41 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-11-16 15:26

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea97af056fcd6c3e1562684ae92458fab9b

Found 23 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-11-14 17:06

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f9cf9902f9cf9908ccf6bbdfc69eaef84f971e13a070acf

Found 75 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes
/wp-includes/assets
/wp-includes/block-patterns
/wp-includes/block-supports
/wp-includes/blocks
/wp-includes/certificates
/wp-includes/css
/wp-includes/customize
/wp-includes/fonts
/wp-includes/ID3
/wp-includes/images
/wp-includes/IXR
/wp-includes/js
/wp-includes/PHPMailer
/wp-includes/pomo
/wp-includes/random_compat
/wp-includes/Requests
/wp-includes/rest-api
/wp-includes/SimplePie
/wp-includes/sitemaps
/wp-includes/sodium_compat
/wp-includes/Text
/wp-includes/theme-compat
/wp-includes/widgets

Found on 2024-10-20 19:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd46adcbe85cd7814291f82d363d6ba8b7

Found 117 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes
/wp-includes/assets
/wp-includes/block-patterns
/wp-includes/block-supports
/wp-includes/blocks
/wp-includes/blocks/archives
/wp-includes/blocks/audio
/wp-includes/blocks/block
/wp-includes/blocks/button
/wp-includes/blocks/buttons
/wp-includes/blocks/calendar
/wp-includes/blocks/categories
/wp-includes/blocks/classic
/wp-includes/blocks/code
/wp-includes/blocks/column
/wp-includes/blocks/columns
/wp-includes/blocks/embed
/wp-includes/blocks/file
/wp-includes/blocks/gallery
/wp-includes/blocks/group
/wp-includes/blocks/heading
/wp-includes/blocks/html
/wp-includes/blocks/image
/wp-includes/blocks/latest-comments
/wp-includes/blocks/latest-posts
/wp-includes/blocks/list
/wp-includes/blocks/media-text
/wp-includes/blocks/missing
/wp-includes/blocks/more
/wp-includes/blocks/nextpage
/wp-includes/blocks/paragraph
/wp-includes/blocks/preformatted
/wp-includes/blocks/pullquote
/wp-includes/blocks/quote
/wp-includes/blocks/rss
/wp-includes/blocks/search
/wp-includes/blocks/separator
/wp-includes/blocks/shortcode
/wp-includes/blocks/social-link
/wp-includes/blocks/social-links
/wp-includes/blocks/spacer
/wp-includes/blocks/subhead
/wp-includes/blocks/table
/wp-includes/blocks/tag-cloud
/wp-includes/blocks/text-columns
/wp-includes/blocks/verse
/wp-includes/blocks/video
/wp-includes/certificates
/wp-includes/css
/wp-includes/customize
/wp-includes/fonts
/wp-includes/ID3
/wp-includes/images
/wp-includes/IXR
/wp-includes/js
/wp-includes/PHPMailer
/wp-includes/pomo
/wp-includes/random_compat
/wp-includes/Requests
/wp-includes/rest-api
/wp-includes/SimplePie
/wp-includes/sitemaps
/wp-includes/sodium_compat
/wp-includes/Text
/wp-includes/theme-compat
/wp-includes/widgets

Found on 2024-10-16 13:46

Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a2ecae49fe43f415d89b80ebfe08016e7

Found 19 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/plugins
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-08-12 05:44

Severity: medium
Fingerprint: 5f32cf5d6962f09c7d264b917d264b91cd2f2354c580183e6d4d70daffd40135

Found 52 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-08-06 23:06

Severity: medium
Fingerprint: 5f32cf5d6962f09c99d3320899d33208346ce2c5f90c968753d41d59ab93ca45

Found 44 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2024-05-05 05:11

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: csvnf.asia
Port: 443
URL: https://csvnf.asia

First seen 2024-06-20 10:26
Last seen 2024-10-22 18:25
Open for 124 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642d7b89818a637c102a637c102a637c102
```
Found 2 files trough .DS_Store spidering:

/fashi
/fashi/css
```
  Found on 2024-10-22 18:25
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: superciin.com
Port: 443
URL: https://superciin.com

First seen 2023-11-19 14:30
Last seen 2024-08-06 17:18
Open for 261 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc42532e4c42532e4c42532e4c42532e4
```
Found 1 files trough .DS_Store spidering:

/symbol
```
  Found on 2024-08-06 17:18
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: panelfnndashboard.uk
Port: 443
URL: https://panelfnndashboard.uk

First seen 2024-05-12 16:21
Last seen 2024-07-20 02:25
Open for 68 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c684e525d684e525d6af40e1a93328bb6a69144ef0e58e9f4
```
Found 27 files trough .DS_Store spidering:

/alerts.html
/assets
/assets/_common.scss
/assets/_default.scss
/assets/_mixin.scss
/assets/_variables.scss
/assets/main.scss
/blank-page.html
/buttons.html
/cards.html
/form-elements.html
/gulpfile.js
/icons.html
/index.html
/invoice.html
/LICENSE
/mdi-icons.html
/notification.html
/package-lock.json
/package.json
/README.md
/settings.html
/signin.html
/signup.html
/tables.html
/typography.html
/yarn.lock
```
  Found on 2024-07-20 02:25
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: duatotojendral.com
Port: 443
URL: https://duatotojendral.com

First seen 2023-10-30 17:45
Last seen 2024-02-25 23:23
Open for 118 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b70033d2390bfcb64fa83bd52b177c53d3

Found 128 files trough .DS_Store spidering:

/assets
/assets/css
/assets/font
/assets/font-awesome-4.6.3
/assets/fonts
/assets/img
/assets/img/24d-dragontiger.jpg
/assets/img/aa
/assets/img/aaa
/assets/img/aab
/assets/img/aac
/assets/img/aad
/assets/img/aae
/assets/img/aaf
/assets/img/aag
/assets/img/aah
/assets/img/aai
/assets/img/aaj
/assets/img/aak
/assets/img/aal
/assets/img/aam
/assets/img/aan
/assets/img/aao
/assets/img/aap
/assets/img/aaq
/assets/img/aar
/assets/img/aas
/assets/img/aat
/assets/img/aau
/assets/img/aav
/assets/img/aaw
/assets/img/aax
/assets/img/aay
/assets/img/aaz
/assets/img/ab
/assets/img/aba
/assets/img/abb
/assets/img/abc
/assets/img/abd
/assets/img/abe
/assets/img/abf
/assets/img/abg
/assets/img/abh
/assets/img/abi
/assets/img/abj
/assets/img/abk
/assets/img/abl
/assets/img/abm
/assets/img/abn
/assets/img/abo
/assets/img/abp
/assets/img/abq
/assets/img/abr
/assets/img/abs
/assets/img/abt
/assets/img/abu
/assets/img/abv
/assets/img/abw
/assets/img/abx
/assets/img/aby
/assets/img/abz
/assets/img/ac
/assets/img/aca
/assets/img/acb
/assets/img/acc
/assets/img/accept-a.png
/assets/img/accept-b.png
/assets/img/accept-c.png
/assets/img/acd
/assets/img/ace
/assets/img/acf
/assets/img/acg
/assets/img/ach
/assets/img/aci
/assets/img/acj
/assets/img/ack
/assets/img/acl
/assets/img/acm
/assets/img/acn
/assets/img/aco
/assets/img/acp
/assets/img/acq
/assets/img/acr
/assets/img/acs
/assets/img/act
/assets/img/acu
/assets/img/acv
/assets/img/acw
/assets/img/acx
/assets/img/acy
/assets/img/acz
/assets/img/ad
/assets/img/ad.png
/assets/img/ada
/assets/img/adb
/assets/img/adc
/assets/img/add
/assets/img/ade
/assets/img/adf
/assets/img/adg
/assets/img/adi
/assets/img/adj
/assets/img/adk
/assets/img/adl
/assets/img/adm
/assets/img/adn
/assets/img/ado
/assets/img/adq
/assets/img/adr
/assets/img/ads
/assets/img/adt
/assets/img/adu
/assets/img/adv
/assets/img/adw
/assets/img/adx
/assets/img/ady
/assets/img/adz
/assets/img/ae
/assets/img/aea
/assets/img/aeb
/assets/img/aec
/assets/img/aed
/assets/img/aee
/assets/img/aef
/assets/img/aeg
/assets/img/aeh
/assets/img/aei
/assets/img/aej

Found on 2024-02-25 23:23

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: lelakdoocol.tk
Port: 80
URL: http://lelakdoocol.tk

First seen 2022-08-31 08:55
Last seen 2023-12-24 09:03
Open for 480 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 09:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: smarviltingjezzrecca.cf
Port: 80
URL: http://smarviltingjezzrecca.cf

First seen 2022-12-13 02:02
Last seen 2023-12-24 03:12
Open for 376 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 03:12
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: queranviteterc.tk
Port: 80
URL: http://queranviteterc.tk

First seen 2022-10-09 07:38
Last seen 2023-12-24 01:05
Open for 440 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-24 01:05
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: ribarletops.tk
Port: 443
URL: https://ribarletops.tk

First seen 2022-08-31 13:08
Last seen 2023-12-23 21:09
Open for 479 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-23 21:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: hapgerihiviso.gq
Port: 80
URL: http://hapgerihiviso.gq

First seen 2023-01-12 01:43
Last seen 2023-12-23 20:46
Open for 345 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642af3ab66038c4f18c38c4f18c38c4f18c
```
Found 2 files trough .DS_Store spidering:

/templs
/templs/templ7
```
  Found on 2023-12-23 20:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: dalssipenla.tk
Port: 443
URL: https://dalssipenla.tk

First seen 2023-01-06 02:43
Last seen 2023-09-06 14:34
Open for 243 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-06 02:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: orbeman.tk
Port: 80
URL: http://orbeman.tk

First seen 2023-06-01 03:53
Last seen 2023-09-03 16:27
Open for 94 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-01 03:53
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: riablassiuflic.tk
Port: 80
URL: http://riablassiuflic.tk

First seen 2023-01-06 03:26
Last seen 2023-08-30 15:09
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-06 03:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: riablassiuflic.tk
Port: 443
URL: https://riablassiuflic.tk

First seen 2023-01-06 03:26
Last seen 2023-08-30 15:09
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-01-06 03:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: bergschumleamugetro.cf
Port: 80
URL: http://bergschumleamugetro.cf

First seen 2023-06-10 01:45
Last seen 2023-08-28 12:10
Open for 79 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-10 01:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: bergschumleamugetro.cf
Port: 443
URL: https://bergschumleamugetro.cf

First seen 2023-06-10 01:45
Last seen 2023-08-28 12:10
Open for 79 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-10 01:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: berrajemar.tk
Port: 80
URL: http://berrajemar.tk

First seen 2023-03-02 02:11
Last seen 2023-08-26 06:46
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-03-02 02:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: squateqmasymp.tk
Port: 80
URL: http://squateqmasymp.tk

First seen 2022-10-30 01:42
Last seen 2023-08-25 22:47
Open for 299 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-30 01:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: retuamil.tk
Port: 80
URL: http://retuamil.tk

First seen 2022-09-26 02:39
Last seen 2023-08-18 19:03
Open for 326 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 02:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: retuamil.tk
Port: 443
URL: https://retuamil.tk

First seen 2022-09-26 02:39
Last seen 2023-08-18 19:03
Open for 326 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 02:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: datedtauter.gq
Port: 80
URL: http://datedtauter.gq

First seen 2023-05-31 15:28
Last seen 2023-08-18 15:55
Open for 79 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-31 15:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: datedtauter.gq
Port: 443
URL: https://datedtauter.gq

First seen 2023-05-31 15:28
Last seen 2023-08-18 15:55
Open for 79 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-31 15:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: atforma.tk
Port: 443
URL: https://atforma.tk

First seen 2023-06-10 02:21
Last seen 2023-08-14 23:31
Open for 65 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-10 02:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: atforma.tk
Port: 80
URL: http://atforma.tk

First seen 2023-06-10 02:21
Last seen 2023-08-14 23:31
Open for 65 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-10 02:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: rypwicu.cf
Port: 80
URL: http://rypwicu.cf

First seen 2023-02-09 02:35
Last seen 2023-08-05 11:19
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-09 02:35
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: nadernicksponem.tk
Port: 443
URL: https://nadernicksponem.tk

First seen 2023-02-05 04:04
Last seen 2023-08-01 08:38
Open for 177 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-05 04:04
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: taicredizin.tk
Port: 443
URL: https://taicredizin.tk

First seen 2023-02-06 04:19
Last seen 2023-07-27 18:13
Open for 171 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-06 04:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: taicredizin.tk
Port: 80
URL: http://taicredizin.tk

First seen 2023-02-06 04:19
Last seen 2023-07-27 18:13
Open for 171 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-02-06 04:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: stephcordriliking.cf
Port: 443
URL: https://stephcordriliking.cf

First seen 2022-09-17 05:39
Last seen 2023-07-22 17:58
Open for 308 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-17 05:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: windtesin.gq
Port: 443
URL: https://windtesin.gq

First seen 2022-09-20 06:07
Last seen 2023-07-22 17:12
Open for 305 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-20 06:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: ulenaboncia.tk
Port: 80
URL: http://ulenaboncia.tk

First seen 2022-09-17 12:58
Last seen 2023-07-22 09:25
Open for 307 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-17 12:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: ulenaboncia.tk
Port: 443
URL: https://ulenaboncia.tk

First seen 2022-09-17 12:58
Last seen 2023-07-22 09:25
Open for 307 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-17 12:58
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: tosiraburpodis.cf
Port: 443
URL: https://tosiraburpodis.cf

First seen 2023-07-21 08:49
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-07-21 08:49
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: dagop.dagiles.co.uk
Port: 80
URL: http://dagop.dagiles.co.uk

First seen 2023-07-19 11:38
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222614aad7
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@github.com:tomgrant1310/DAGOP.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2023-07-19 11:38
  
  262 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: soimuvottersplangav.tk
Port: 80
URL: http://soimuvottersplangav.tk

First seen 2022-11-07 03:28
Last seen 2023-07-16 12:28
Open for 251 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-07 03:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: nueswakmen.ml
Port: 80
URL: http://nueswakmen.ml

First seen 2022-11-02 04:19
Last seen 2023-07-15 21:05
Open for 255 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 04:19
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: nueswakmen.ml
Port: 443
URL: https://nueswakmen.ml

First seen 2022-11-02 04:19
Last seen 2023-07-15 21:05
Open for 255 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 04:19
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: urqfibon.ml
Port: 80
URL: http://urqfibon.ml

First seen 2023-07-06 14:07
Last seen 2023-07-06 14:07

Severity: medium
Fingerprint: 5f32cf5d6962f09cb1c4b1dfb1c4b1df8709835819175ca7f5d35fc9eb12e6b0

Found 61 files trough .DS_Store spidering:

/.git
/.gitignore
/assets
/assets/css
/assets/img
/assets/img/character
/assets/img/character/0
/assets/img/character/0/down
/assets/img/character/0/left
/assets/img/character/0/right
/assets/img/character/0/right/2.png
/assets/img/character/0/up
/assets/img/character/1
/assets/img/character/1/down
/assets/img/character/1/down/0.png
/assets/img/character/1/down/2.png
/assets/img/character/1/down/tile_0240.png
/assets/img/character/1/left
/assets/img/character/1/left/0.png
/assets/img/character/1/left/1.png
/assets/img/character/1/left/2.png
/assets/img/character/1/right
/assets/img/character/1/right/0.png
/assets/img/character/1/right/1.png
/assets/img/character/1/right/2.png
/assets/img/character/1/up
/assets/img/character/1/up/0.png
/assets/img/character/1/up/1.png
/assets/img/character/1/up/2.png
/assets/img/character/2
/assets/img/character/2/down
/assets/img/character/2/left
/assets/img/character/2/right
/assets/img/character/2/up
/assets/img/character/3
/assets/img/character/3/down
/assets/img/character/3/left
/assets/img/character/3/right
/assets/img/character/3/up
/assets/img/character/4
/assets/img/character/4/down
/assets/img/character/4/left
/assets/img/character/4/right
/assets/img/character/4/up
/assets/img/crate.png
/assets/img/floor.png
/assets/img/target.png
/assets/img/wall.png
/assets/img/wall2.png
/assets/js
/assets/sounds
/assets/sounds/footStep.mp3
/assets/sounds/nextLevel.mp3
/assets/sounds/win.mp3
/assets/vendor
/assets/vendor/notiflix
/assets/vendor/notiflix/notiflix-confirm-aio-3.2.6.min.js
/assets/vendor/notiflix/notiflix-notify-aio-3.2.6.min.js
/assets/vendor/notiflix/notiflix-report-aio-3.2.6.min.js
/index.html
/README.md

Found on 2023-07-06 14:07

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: urqfibon.ml
Port: 80
URL: http://urqfibon.ml

First seen 2023-07-06 14:07
Last seen 2023-07-06 14:07

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a1352dbf

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = https://ytrack.learn.ynov.com/git/bmayeul/Boxxle.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[gitflow "branch"]
	master = master
	develop = develop
[gitflow "prefix"]
	feature = feature/
	release = release/
	hotfix = hotfix/
	support = support/
	versiontag = 
[pull]
	rebase = false

Found on 2023-07-06 14:07

576 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: easmugtickwest.ml
Port: 80
URL: http://easmugtickwest.ml

First seen 2022-09-17 17:50
Last seen 2023-07-06 13:28
Open for 291 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-17 17:50
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: www.thecustomhub.co.uk
Port: 443
URL: https://www.thecustomhub.co.uk

First seen 2022-10-29 05:10
Last seen 2023-06-25 05:15
Open for 239 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c740cb6cd740cb6cd46adcbe85cd7814291f82d363d6ba8b7

Found 117 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes
/wp-includes/assets
/wp-includes/block-patterns
/wp-includes/block-supports
/wp-includes/blocks
/wp-includes/blocks/archives
/wp-includes/blocks/audio
/wp-includes/blocks/block
/wp-includes/blocks/button
/wp-includes/blocks/buttons
/wp-includes/blocks/calendar
/wp-includes/blocks/categories
/wp-includes/blocks/classic
/wp-includes/blocks/code
/wp-includes/blocks/column
/wp-includes/blocks/columns
/wp-includes/blocks/embed
/wp-includes/blocks/file
/wp-includes/blocks/gallery
/wp-includes/blocks/group
/wp-includes/blocks/heading
/wp-includes/blocks/html
/wp-includes/blocks/image
/wp-includes/blocks/latest-comments
/wp-includes/blocks/latest-posts
/wp-includes/blocks/list
/wp-includes/blocks/media-text
/wp-includes/blocks/missing
/wp-includes/blocks/more
/wp-includes/blocks/nextpage
/wp-includes/blocks/paragraph
/wp-includes/blocks/preformatted
/wp-includes/blocks/pullquote
/wp-includes/blocks/quote
/wp-includes/blocks/rss
/wp-includes/blocks/search
/wp-includes/blocks/separator
/wp-includes/blocks/shortcode
/wp-includes/blocks/social-link
/wp-includes/blocks/social-links
/wp-includes/blocks/spacer
/wp-includes/blocks/subhead
/wp-includes/blocks/table
/wp-includes/blocks/tag-cloud
/wp-includes/blocks/text-columns
/wp-includes/blocks/verse
/wp-includes/blocks/video
/wp-includes/certificates
/wp-includes/css
/wp-includes/customize
/wp-includes/fonts
/wp-includes/ID3
/wp-includes/images
/wp-includes/IXR
/wp-includes/js
/wp-includes/PHPMailer
/wp-includes/pomo
/wp-includes/random_compat
/wp-includes/Requests
/wp-includes/rest-api
/wp-includes/SimplePie
/wp-includes/sitemaps
/wp-includes/sodium_compat
/wp-includes/Text
/wp-includes/theme-compat
/wp-includes/widgets

Found on 2023-06-25 05:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f9cf9902f9cf9908ccf6bbdfc69eaef84f971e13a070acf

Found 75 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes
/wp-includes/assets
/wp-includes/block-patterns
/wp-includes/block-supports
/wp-includes/blocks
/wp-includes/certificates
/wp-includes/css
/wp-includes/customize
/wp-includes/fonts
/wp-includes/ID3
/wp-includes/images
/wp-includes/IXR
/wp-includes/js
/wp-includes/PHPMailer
/wp-includes/pomo
/wp-includes/random_compat
/wp-includes/Requests
/wp-includes/rest-api
/wp-includes/SimplePie
/wp-includes/sitemaps
/wp-includes/sodium_compat
/wp-includes/Text
/wp-includes/theme-compat
/wp-includes/widgets

Found on 2022-10-29 05:10

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: thecustomhub.co.uk
Port: 443
URL: https://thecustomhub.co.uk

First seen 2022-10-29 03:19
Last seen 2023-06-22 12:18
Open for 236 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c99d3320899d33208346ce2c5f90c968753d41d59ab93ca45

Found 44 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2023-06-22 12:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c7d264b917d264b91cd2f2354c580183e6d4d70daffd40135

Found 52 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/themes/flatsome
/wp-content/themes/flatsome-child-0620
/wp-content/themes/twentytwentyone
/wp-content/upgrade
/wp-content/uploads
/wp-content/uploads/2019
/wp-content/uploads/2020
/wp-content/uploads/2021
/wp-content/uploads/ast-shipping-providers
/wp-content/uploads/wc-logs
/wp-content/uploads/woocommerce_uploads
/wp-content/uploads/wp-clone
/wp-content/uploads/wppfm-feeds
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2023-06-22 12:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f812ccf58046d7489ee0a9031aaf8df50e2

Found 41 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-content/cache
/wp-content/cache/busting
/wp-content/cache/critical-css
/wp-content/cache/min
/wp-content/cache/wp-rocket
/wp-content/plugins
/wp-content/plugins/classic-editor
/wp-content/plugins/contact-form-7
/wp-content/plugins/flexible-shipping
/wp-content/plugins/frequently-bought-together
/wp-content/plugins/paypal-auto-tracking
/wp-content/plugins/pixelyoursite-pro
/wp-content/plugins/pixelyoursite-super-pack
/wp-content/plugins/sequential-order-numbers-for-woocommerce
/wp-content/plugins/taxonomy-images
/wp-content/plugins/woo-advanced-shipment-tracking
/wp-content/plugins/woo-cart-abandonment-recovery
/wp-content/plugins/woo-discount-rules
/wp-content/plugins/woocommerce
/wp-content/plugins/woocommerce-gateway-paypal-express-checkout
/wp-content/plugins/woocommerce-sync-site
/wp-content/plugins/wp-mail-smtp
/wp-content/plugins/wp-rocket
/wp-content/plugins/wp-stateless
/wp-content/themes
/wp-content/upgrade
/wp-content/uploads
/wp-content/wflogs
/wp-content/wp-rocket-config
/wp-includes

Found on 2023-04-24 19:47

Severity: low
Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e9637fe3bceb441e1697e0a8528f2a7cd0
```
Found 5 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-content
/wp-includes
```
Found on 2023-02-24 06:02

Severity: low
Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d8ea01168605cf6c28dc6b5b6d3b3f072

Found 12 files trough .DS_Store spidering:

/.well-known
/cgi-bin
/wp-admin
/wp-admin/css
/wp-admin/images
/wp-admin/includes
/wp-admin/js
/wp-admin/maint
/wp-admin/network
/wp-admin/user
/wp-content
/wp-includes

Found on 2022-10-29 03:19

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: adinstanicdi.cf
Port: 443
URL: https://adinstanicdi.cf

First seen 2023-06-20 05:43
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-20 05:43
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: muretmicalcasurp.ml
Port: 443
URL: https://muretmicalcasurp.ml

First seen 2023-06-07 05:17
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-06-07 05:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: ltininexbu.tk
Port: 80
URL: http://ltininexbu.tk

First seen 2023-05-23 04:45
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2023-05-23 04:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: seplade.ml
Port: 80
URL: http://seplade.ml

First seen 2022-11-07 03:20
Last seen 2023-05-21 02:13
Open for 194 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-07 03:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: seplade.ml
Port: 443
URL: https://seplade.ml

First seen 2022-11-07 03:20
Last seen 2023-05-21 02:13
Open for 194 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-07 03:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: gyougiftterptorli.tk
Port: 443
URL: https://gyougiftterptorli.tk

First seen 2022-11-07 01:56
Last seen 2023-05-14 01:17
Open for 187 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-07 01:56
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: unoptos.ga
Port: 443
URL: https://unoptos.ga

First seen 2022-11-05 01:14
Last seen 2023-05-08 13:13
Open for 184 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-05 01:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: unoptos.ga
Port: 80
URL: http://unoptos.ga

First seen 2022-11-05 01:14
Last seen 2023-05-08 13:13
Open for 184 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-05 01:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: dishardlisumpde.ga
Port: 80
URL: http://dishardlisumpde.ga

First seen 2022-09-01 20:53
Last seen 2023-04-25 23:00
Open for 236 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-01 20:53
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: visuals.pt
Port: 443
URL: https://visuals.pt

First seen 2022-08-18 01:41
Last seen 2023-02-14 23:22
Open for 180 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652268bd8ff1
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@gitlab.waveweb2.com:dev/visuals-v3.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "update-menus-home-team-feb2021"]
	remote = origin
	merge = refs/heads/update-menus-home-team-feb2021
```
  Found on 2022-08-18 01:41
  
  422 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: visuals.pt
Port: 443
URL: https://visuals.pt

First seen 2022-10-17 05:11
Last seen 2023-02-14 23:22
Open for 120 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642b9618ce75495ae0b5495ae0b5495ae0b
```
Found 2 files trough .DS_Store spidering:

/.git
/wp-content
```
  Found on 2022-10-17 05:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: mevecipant.ga
Port: 80
URL: http://mevecipant.ga

First seen 2022-09-26 16:59
Last seen 2023-02-10 21:11
Open for 137 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-26 16:59
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: spanochskipbundmeren.tk
Port: 443
URL: https://spanochskipbundmeren.tk

First seen 2022-09-30 23:49
Last seen 2023-02-04 15:40
Open for 126 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-30 23:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: sanivabtiretam.tk
Port: 80
URL: http://sanivabtiretam.tk

First seen 2022-11-02 02:06
Last seen 2022-12-31 15:30
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 02:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: sanivabtiretam.tk
Port: 443
URL: https://sanivabtiretam.tk

First seen 2022-11-02 02:06
Last seen 2022-12-31 15:30
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 02:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: gaibankrunotico.ga
Port: 443
URL: https://gaibankrunotico.ga

First seen 2022-11-02 01:36
Last seen 2022-12-31 12:37
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 01:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: gaibankrunotico.ga
Port: 80
URL: http://gaibankrunotico.ga

First seen 2022-11-02 01:36
Last seen 2022-12-31 12:37
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-11-02 01:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: runocewethis.ga
Port: 80
URL: http://runocewethis.ga

First seen 2022-12-30 18:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-30 18:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: runocewethis.ga
Port: 443
URL: https://runocewethis.ga

First seen 2022-12-30 18:28
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-12-30 18:28
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: bioknowaglappa.ml
Port: 80
URL: http://bioknowaglappa.ml

First seen 2022-10-31 01:46
Last seen 2022-12-29 12:05
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-31 01:46
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: scholacrengabe.ml
Port: 80
URL: http://scholacrengabe.ml

First seen 2022-10-29 01:48
Last seen 2022-12-28 01:57
Open for 60 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-29 01:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: orlaubaukagade.ga
Port: 80
URL: http://orlaubaukagade.ga

First seen 2022-10-21 01:03
Last seen 2022-12-19 07:06
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-10-21 01:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: vestbankdisruleply.tk
Port: 443
URL: https://vestbankdisruleply.tk

First seen 2022-09-22 14:06
Last seen 2022-11-20 05:40
Open for 58 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-22 14:06
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: icadexafmorchard.tk
Port: 443
URL: https://icadexafmorchard.tk

First seen 2022-09-22 01:31
Last seen 2022-11-20 04:29
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-22 01:31
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: feijeotosubretor.tk
Port: 443
URL: https://feijeotosubretor.tk

First seen 2022-09-21 01:07
Last seen 2022-11-19 01:51
Open for 59 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-21 01:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: fitsasalypcorn.tk
Port: 80
URL: http://fitsasalypcorn.tk

First seen 2022-09-21 01:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-21 01:27
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 172.67.144.10
Domain: fitsasalypcorn.tk
Port: 443
URL: https://fitsasalypcorn.tk

First seen 2022-09-21 01:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dc6d5a297c6d5a297c6d5a297c6d5a297
```
Found 1 files trough .DS_Store spidering:

/smartdoor
```
  Found on 2022-09-21 01:27
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 172.67.144.10
Domain: www.jestwishea.com
Port: 443
URL: https://www.jestwishea.com

First seen 2022-06-25 18:55
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652225884021
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@e.coding.net:magetd/mage/m2x.git
	fetch = +refs/heads/pwa-prod:refs/remotes/origin/pwa-prod
[branch "pwa-prod"]
	remote = origin
	merge = refs/heads/pwa-prod
```
  Found on 2022-06-25 18:55
  
  279 Bytes
Create report

Open service 172.67.144.10:8443 · www.aysenaz.com.tr

2026-01-12 15:07

HTTP/1.1 521 <none>
Date: Mon, 12 Jan 2026 15:07:44 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 15
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=375,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Server: cloudflare
CF-RAY: 9bcd90ae7f633b0d-BOM
alt-svc: h3=":8443"; ma=86400


error code: 521

Found 33 minutes ago by HttpPlugin