LeakIX - Host 18.245.86.79

Host 18.245.86.79

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Ubuntu

Software information

AmazonS3

tcp/443 tcp/80

Apache Apache 2.4.52

tcp/443

Apache Apache 2.4.38

tcp/443

Apache Apache

tcp/443 tcp/80

CloudFront

tcp/443 tcp/80

awselb awselb 2.0

tcp/443 tcp/80

kong 3.4.2

tcp/443 tcp/80

nginx nginx 1.21.6

tcp/443

nginx nginx

tcp/443

openresty 1.17.8.2

tcp/443 tcp/80

openresty

tcp/443

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 18.245.86.79
Domain: www.grizzlystik.com
Port: 443
URL: https://www.grizzlystik.com

First seen 2025-11-13 14:42
Last seen 2026-01-02 22:49
Open for 50 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3aa03420684cb51f6c26c85641b031f36ef844a85

GraphQL introspection enabled at /graphql
Types: 389 (by kind: ENUM: 28, INPUT_OBJECT: 89, INTERFACE: 20, OBJECT: 247, SCALAR: 5)
Operations:
- Query: Query | fields: availableStores, blogAuthor, blogCategories, blogCategory, blogComments
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, skip (total: 3)

Detected: Magento

Found on 2026-01-02 22:49

771.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490dbf8cbe7e20e23c5f59ba51ff74e479201731c13f559601e28

GraphQL introspection enabled at /graphql/api
Types: 389 (by kind: ENUM: 28, INPUT_OBJECT: 89, INTERFACE: 20, OBJECT: 247, SCALAR: 5)
Operations:
- Query: Query | fields: availableStores, blogAuthor, blogCategories, blogCategory, blogComments
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, skip (total: 3)

Detected: Magento

Found on 2025-12-24 23:36

771.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39d45430c490e5c5041d174cae063ef706d50637f

GraphQL introspection enabled at /graphql
Types: 391 (by kind: ENUM: 28, INPUT_OBJECT: 91, INTERFACE: 20, OBJECT: 247, SCALAR: 5)
Operations:
- Query: Query | fields: availableStores, blogAuthor, blogCategories, blogCategory, blogComments
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, skip (total: 3)

Detected: Magento

Found on 2025-12-20 23:04

772.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39d45430c490e5c5041d174cae063ef7003fce4e8

GraphQL introspection enabled at /graphql
Types: 391 (by kind: ENUM: 28, INPUT_OBJECT: 91, INTERFACE: 20, OBJECT: 247, SCALAR: 5)
Operations:
- Query: Query | fields: availableStores, blogAuthor, blogCategories, blogCategory, blogComments
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, skip (total: 3)

Found on 2025-12-11 09:41

772.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490dbf8cbe7e28fab00176e2ec0c5a6c38bfbe49946bbee30689b

GraphQL introspection enabled at /graphql/api
Types: 391 (by kind: ENUM: 28, INPUT_OBJECT: 91, INTERFACE: 20, OBJECT: 247, SCALAR: 5)
Operations:
- Query: Query | fields: availableStores, blogAuthor, blogCategories, blogCategory, blogComments
- Mutation: Mutation | fields: addBundleProductsToCart, addCommentToPost, addConfigurableProductsToCart, addDownloadableProductsToCart, addProductsToCart
Directives: deprecated, include, skip (total: 3)

Found on 2025-11-26 10:58

772.7 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: lapampara.com
Port: 443
URL: https://lapampara.com

First seen 2023-02-22 13:06
Last seen 2026-01-02 22:20
Open for 1045 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee01d632ceb

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ajv/dist
/node_modules/ajv/lib
/node_modules/ajv/scripts
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors
/node_modules/json-schema

Found on 2026-01-02 22:20

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee0e9f94614

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ajv/dist
/node_modules/ajv/lib
/node_modules/ajv/scripts
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/asn1/lib
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors

Found on 2025-12-26 19:55

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee0eddc593f

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ajv/dist
/node_modules/ajv/lib
/node_modules/ajv/scripts
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/asn1/lib
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/asynckit/lib
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/cliui/build
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/concat-map/example
/node_modules/concat-map/test
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/core-util-is/lib
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/dashdash/etc
/node_modules/dashdash/lib
/node_modules/debug
/node_modules/debug/src
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/decamelize-keys/node_modules
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/delegates/test
/node_modules/depd
/node_modules/depd/lib
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escalade/dist
/node_modules/escalade/sync
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip

Found on 2025-12-24 21:57

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee036a78138

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ajv/dist
/node_modules/ajv/lib
/node_modules/ajv/scripts
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/asn1/lib
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/asynckit/lib
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn

Found on 2025-12-23 03:31

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee0445de347

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ajv/dist
/node_modules/ajv/lib
/node_modules/ajv/scripts
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/asn1/lib
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/asynckit/lib
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/cliui/build
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/concat-map/example
/node_modules/concat-map/test
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/core-util-is/lib
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/dashdash/etc
/node_modules/dashdash/lib
/node_modules/debug
/node_modules/debug/src
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/decamelize-keys/node_modules
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/delegates/test
/node_modules/depd
/node_modules/depd/lib
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escalade/dist
/node_modules/escalade/sync
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/fast-json-stable-stringify/.github
/node_modules/fast-json-stable-stringify/benchmark
/node_modules/fast-json-stable-stringify/example
/node_modules/fast-json-stable-stringify/test
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string

Found on 2025-12-20 09:43

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee0c1c10b8d

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ajv/dist
/node_modules/ajv/lib
/node_modules/ajv/scripts
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/asn1/lib
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/asynckit/lib
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/cliui/build
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/concat-map/example
/node_modules/concat-map/test
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/core-util-is/lib
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/dashdash/etc
/node_modules/dashdash/lib
/node_modules/debug
/node_modules/debug/src
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/decamelize-keys/node_modules
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/delegates/test
/node_modules/depd
/node_modules/depd/lib
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module

Found on 2025-12-11 01:31

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee02b9e6ae1

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors
/node_modules/json-schema
/node_modules/json-schema-traverse
/node_modules/json-stringify-safe
/node_modules/jsprim
/node_modules/kind-of
/node_modules/lines-and-columns
/node_modules/locate-path
/node_modules/lodash

Found on 2025-12-01 07:57

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee03c864122

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@tootallnate
/node_modules/@types
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors
/node_modules/json-schema
/node_modules/json-schema-traverse
/node_modules/json-stringify-safe
/node_modules/jsprim
/node_modules/kind-of
/node_modules/lines-and-columns
/node_modules/locate-path
/node_modules/lodash
/node_modules/lru-cache
/node_modules/make-fetch-happen

Found on 2025-11-29 02:52

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee00bdc5426

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agent-base/dist
/node_modules/agent-base/src
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors
/node_modules/json-schema
/node_modules/json-schema-traverse
/node_modules/json-stringify-safe
/node_modules/jsprim

Found on 2025-11-14 11:57

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee0b7bc0eab

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@babel/code-frame
/node_modules/@babel/helper-validator-identifier
/node_modules/@babel/highlight
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@npmcli/fs
/node_modules/@npmcli/move-file
/node_modules/@tootallnate
/node_modules/@types
/node_modules/@types/minimist
/node_modules/@types/normalize-package-data
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors
/node_modules/json-schema
/node_modules/json-schema-traverse
/node_modules/json-stringify-safe
/node_modules/jsprim
/node_modules/kind-of
/node_modules/lines-and-columns

Found on 2025-11-12 11:29

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b712656bb0d8263e04dd8f3ee0b94ba0f8

Found 128 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules
/node_modules/.bin
/node_modules/@babel
/node_modules/@gar
/node_modules/@npmcli
/node_modules/@tootallnate
/node_modules/@types
/node_modules/abbrev
/node_modules/agent-base
/node_modules/agentkeepalive
/node_modules/aggregate-error
/node_modules/ajv
/node_modules/ansi-regex
/node_modules/ansi-styles
/node_modules/aproba
/node_modules/are-we-there-yet
/node_modules/arrify
/node_modules/asn1
/node_modules/assert-plus
/node_modules/async-foreach
/node_modules/asynckit
/node_modules/aws-sign2
/node_modules/aws4
/node_modules/balanced-match
/node_modules/bcrypt-pbkdf
/node_modules/brace-expansion
/node_modules/cacache
/node_modules/camelcase
/node_modules/camelcase-keys
/node_modules/caseless
/node_modules/chalk
/node_modules/chownr
/node_modules/clean-stack
/node_modules/cliui
/node_modules/color-convert
/node_modules/color-name
/node_modules/color-support
/node_modules/combined-stream
/node_modules/concat-map
/node_modules/console-control-strings
/node_modules/core-util-is
/node_modules/cross-spawn
/node_modules/dashdash
/node_modules/debug
/node_modules/decamelize
/node_modules/decamelize-keys
/node_modules/delayed-stream
/node_modules/delegates
/node_modules/depd
/node_modules/ecc-jsbn
/node_modules/emoji-regex
/node_modules/encoding
/node_modules/env-paths
/node_modules/err-code
/node_modules/error-ex
/node_modules/escalade
/node_modules/escape-string-regexp
/node_modules/extend
/node_modules/extsprintf
/node_modules/fast-deep-equal
/node_modules/fast-json-stable-stringify
/node_modules/find-up
/node_modules/forever-agent
/node_modules/form-data
/node_modules/fs-minipass
/node_modules/fs.realpath
/node_modules/function-bind
/node_modules/gauge
/node_modules/gaze
/node_modules/get-caller-file
/node_modules/get-stdin
/node_modules/getpass
/node_modules/glob
/node_modules/globule
/node_modules/graceful-fs
/node_modules/har-schema
/node_modules/har-validator
/node_modules/hard-rejection
/node_modules/has
/node_modules/has-flag
/node_modules/has-unicode
/node_modules/hosted-git-info
/node_modules/http-cache-semantics
/node_modules/http-proxy-agent
/node_modules/http-signature
/node_modules/https-proxy-agent
/node_modules/humanize-ms
/node_modules/iconv-lite
/node_modules/imurmurhash
/node_modules/indent-string
/node_modules/infer-owner
/node_modules/inflight
/node_modules/inherits
/node_modules/ip
/node_modules/is-arrayish
/node_modules/is-core-module
/node_modules/is-fullwidth-code-point
/node_modules/is-lambda
/node_modules/is-plain-obj
/node_modules/is-typedarray
/node_modules/isarray
/node_modules/isexe
/node_modules/isstream
/node_modules/js-base64
/node_modules/js-tokens
/node_modules/jsbn
/node_modules/json-parse-even-better-errors
/node_modules/json-schema
/node_modules/json-schema-traverse
/node_modules/json-stringify-safe
/node_modules/jsprim
/node_modules/kind-of
/node_modules/lines-and-columns
/node_modules/locate-path
/node_modules/lodash
/node_modules/lru-cache
/node_modules/make-fetch-happen
/node_modules/map-obj
/node_modules/meow
/node_modules/mime-db

Found on 2025-10-24 18:25

Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af247255468757e27966bd6bed197ae6fd64490

Found 9 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/objects/info
/.git/objects/pack
/.git/refs
/img
/node_modules

Found on 2024-07-30 15:54

Severity: low
Fingerprint: 5f32cf5d6962f09c026392ab026392ab959c1a4cd4a85200a17894dc8da346d7

Found 7 files trough .DS_Store spidering:

/.git
/.git/hooks
/.git/info
/.git/objects
/.git/refs
/img
/node_modules

Found on 2023-02-22 13:06

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: net-link.bio
Port: 443
URL: https://net-link.bio

First seen 2023-12-08 04:18
Last seen 2026-01-02 16:33
Open for 756 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733fbec28fd62b9195b245a4d2f69777189d
```
Found 10 files trough .DS_Store spidering:

/.vscode
/assets
/assets/css
/assets/img
/assets/img/product
/assets/img/qn
/assets/img/tt
/assets/img/wifi
/assets/js
/index.html
```
  Found on 2026-01-02 16:33
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f25dc0f669cc9c462926eec88926eec88
```
Found 3 files trough .DS_Store spidering:

/.vscode
/assets
/index.html
```
  Found on 2025-06-26 14:09
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: makewatermark.com
Port: 443
URL: https://makewatermark.com

First seen 2024-04-17 03:37
Last seen 2026-01-02 16:18
Open for 625 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-02 16:18
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 18.245.86.79
Domain: wap.everbluetraining.com
Port: 443
URL: https://wap.everbluetraining.com

First seen 2025-04-08 11:10
Last seen 2026-01-02 13:00
Open for 269 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65225b392c76

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/everblue-tech/everbluemoodle
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "https://github.com/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hwX0RqWWIyYkx2QTRZS3Ftem1lejRFSGdHNHREamFGeDFwcHoxcA==
[branch "everblue_4.1.6"]
	remote = origin
	merge = refs/heads/everblue_4.1.6
[submodule "auth/netforum"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-auth_netforum
[submodule "blocks/entityrequests"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-block_entityrequests.git
[submodule "blocks/report_graph"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-block_report_graph.git
[submodule "blocks/report_manager"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-block_report_manager.git
[submodule "blocks/report_table"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-block_report_table.git
[submodule "customfield/field/questioncategory"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-customfield_questioncategory.git
[submodule "customfield/field/relateduser"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-customfield_relateduser.git
[submodule "local/chime"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_chime.git
[submodule "local/entities"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_entities.git
[submodule "local/oauthalternateloginurl"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_oauthalternateloginurl.git
[submodule "local/qtypemultichoicestats"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_qtypemultichoicestats.git
[submodule "local/questionworkflow"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_questionworkflow.git
[submodule "local/reportbuilder"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_reportbuilder.git
[submodule "local/taxonomy"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-local_taxonomy.git
[submodule "mod/quiz/accessrule/chime"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-quizaccess_chime.git
[submodule "mod/quiz/accessrule/identityvalidation"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-quizaccess_identityvalidation.git
[submodule "mod/quiz/accessrule/numattemptszerobased"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-quizaccess_numattemptszerobased.git
[submodule "mod/quiz/accessrule/securewindowenhanced"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-quizaccess_securewindowenhanced.git
[submodule "mod/quiz/report/chime"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-quiz_chime.git
[submodule "user/profile/field/relateduser"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-profilefield_relateduser.git
[submodule "user/profile/field/taxonomy"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-profilefield_taxonomy.git
[submodule "user/profile/field/taxonomyautocomplete"]
	active = true
	url = git@github.com:Everblue-Tech/moodle-profilefield_taxonomyautocomplete.git
[remote "random_question_choices"]
	url = https://github.com/Everblue-Tech/everbluemoodle.git
	fetch = +refs/heads/*:refs/remotes/random_question_choices/*
[remote "answer_options"]
	url = https://github.com/Everblue-Tech/everbluemoodle.git
	fetch = +refs/heads/*:refs/remotes/answer_options/*
[remote "grade_percent"]
	url = https://github.com/Everblue-Tech/everbluemoodle.git
	fetch = +refs/heads/*:refs/remotes/grade_percent/*

Found on 2026-01-02 13:00

3.6 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: www.bioregionalexplorer.org
Port: 443
URL: https://www.bioregionalexplorer.org

First seen 2025-04-04 14:23
Last seen 2026-01-02 06:04
Open for 272 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-02 06:04
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: sweetbonanzaslotsusa2.vip
Port: 80
URL: http://sweetbonanzaslotsusa2.vip

First seen 2025-10-17 09:04
Last seen 2025-11-16 12:08
Open for 30 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814ecb57fc5a0f5f09e473a9b73d88463efc
```
Found 6 files trough .DS_Store spidering:

/landing_css
/landing_js
/landingcss
/landingjs
/landingwebp
/startup
```
  Found on 2025-11-16 12:08
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 20.239.33.65
Domain: art.turndes.live
Port: 443
URL: https://art.turndes.live

First seen 2024-11-02 03:02
Last seen 2025-10-29 01:27
Open for 360 days

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c16a5d20fe

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_psny_nsQJRRsLs_NvvBD@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-10-29 01:27

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c115dc9ef2

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_sdH2y6qLykPEHKmjYVbq@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-10-27 00:03

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c18bff5b07

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_Nn4CMv4gbYbc9JBy3SME@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-10-19 13:26

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c15e409147

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_qvCEBBZoW8_8-GzQvho9@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-10-13 05:47

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1e5e5fdc8

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_NY5yH5XN82ykBBsyr_6U@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-10-06 23:40

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1287a2fef

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_1-7TqqYPCP1ze9zWJo-z@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-09-22 13:59

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1c6377d95

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64__7iPmksce8ARFfLLi4YR@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-09-08 21:48

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c189cc98c4

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_cLCRz9UM-s_3gW5HPv9C@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-09-04 18:33

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c16abffda3

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_4ijmyyPvBgMXcNKBrwHx@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-08-26 23:58

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1e7757e6a

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_eLzoqLTsKpYk5K_ymzi-@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-08-25 05:58

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c151cbffbf

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_SBsTsPHV5EBNu-ejy7UB@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-08-21 07:28

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c15f7abf09

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_AaQxzx8P-HXvHUXJGzVg@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-08-17 07:01

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c137cf0811

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_c66gWgdfVvyrwsrxshPU@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-07-29 09:57

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c16f6008aa

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_nqW6duyounCxNcdwcJzJ@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-07-12 22:08

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1ebb084e6

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_J9CE8V2eA_didqg7Jrwq@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-07-02 18:21

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1469ed2e4

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_rpmjtmBm7GFssia1KmaY@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-06-16 07:20

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c107013961

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_opjzCsgkxSZefxs9XRMM@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-06-09 00:41

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c19a09eb4a

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_rnBq-QkLyuRiKVkcWMtd@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-06-04 15:45

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c101d1534c

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_9HyYsrbSSuNQVzYzDFjW@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-05-26 13:52

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1c5fdf4d0

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_UNPj92Re9Z3xtCUuXWvw@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-05-14 06:00

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1560a0e09

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_dgah7DYCSd7QGDSczG4U@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-04-28 15:13

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c165c5eace

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_reXfyaXzK-8-KUthPFyQ@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-04-26 16:34

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c11886cbad

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_V93jy2s828uvsJ4wf_4q@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-04-14 18:51

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c12f36cbd0

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_Jo3gb51dmFoS47Yt514x@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-03-26 14:15

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c118e2a0eb

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_yLTSw5FmJ4knJ2Zh33kf@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-03-18 18:58

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c103a2b1af

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_4wX39y4CxkoxkvTAnWFk@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-03-03 01:48

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c13986da40

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_Z7MJzvY2m9u5nmv9zaDT@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-02-18 13:07

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1b9eddcc7

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_HFvCBc34j3Ryq1zLnawv@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-02-08 07:18

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1805493cd

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_j-rE_kiEKfHyC1gGhUhn@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-01-18 22:03

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c140821c78

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_56TpWxARr5n_Jh_yh5aA@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-01-14 16:10

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1db958fbb

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_cEtYo9drXsAuyKsQqY_h@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-01-12 11:54

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c17a1ad612

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_EJsufz2UThzaSYr-LmzA@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-01-06 09:34

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c11a33dc84

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_zGLwQFydXtzNaYYMroB5@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-01-02 18:14

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1add46ea6

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_Vo9pVkdktxxPtowBTSeX@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-12-20 15:08

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1f6484ebd

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_DW1v5HtCk_LNVFLHs3Sj@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-12-08 09:40

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c14c7b330c

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_6ny1ffr8VQrPkccZWpdW@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-11-27 00:12

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c14d6841da

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_twF3KwHQZ3i-nsYpYzhE@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-11-24 13:06

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c1a686fbf7

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_s3qv8dtUCNy7Bqm3nuoe@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-11-16 19:36

555 Bytes

Severity: critical
Fingerprint: 2580fa947178c88c8f88f4f64b143e4f192660cba91884029ffc42c14bf8dd84

[init]
	defaultBranch = none
[fetch]
	recurseSubmodules = false
[transfer]
	bundleURI = true
[http "https://git.inner.6666pro.com"]
	sslCAInfo = /opt/gitlab-runner/builds/5DJbWFYAm/0/yy-game/client/xh-client-h5/publish/publish_web_all.tmp/CI_SERVER_TLS_CA_FILE
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-64_jyyq4H6FzTrHozZx1kmE@git.inner.6666pro.com/yy-game/client/xh-client-h5/publish/publish_web_all.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-11-10 21:34

555 Bytes

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 18.245.86.78
Domain: redlands-login.cloudworkengine.net
Port: 443
URL: https://redlands-login.cloudworkengine.net

First seen 2024-04-22 23:21
Last seen 2025-10-27 05:43
Open for 552 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf8468d434

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Monday, 27-Oct-2025 05:43:47 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  40 days 5 hours 2 minutes 29 seconds
Server load: 0.41 0.85 1.07
Total accesses: 5209207 - Total Traffic: 18.6 GB - Total Duration: 413211015
CPU Usage: u107.31 s101.34 cu1315.15 cs831.96 - .0678% CPU load
1.5 requests/sec - 5.6 kB/second - 3832 B/request - 79.3232 ms/request
1 requests currently being processed, 49 idle workers
____________________________________W_____________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-021630/5758/75528_
61.13647364041730.020.70277.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/5993/72814_
61.14610059983420.021.58267.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-021630/5169/70899_
61.20404261629970.018.46260.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7ec1be782

0-021630/6451/73900_
61.12674663000070.023.35270.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1da78d00f

0-021630/4635/74745_
61.24273063752700.016.91276.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-021630/5457/76109_
61.11710264942830.020.26280.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2e487cdaf

0-021630/5010/74226_
61.088077664804430.017.75272.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/5061/75209_
61.30154063147580.018.07275.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-021630/5157/69984_
61.20369159289290.018.59255.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-021630/5286/74871_
61.3354164349190.018.23274.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-021630/5730/74327_
61.338821058472730.020.87272.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/5789/71697_
61.15600260488580.021.01262.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2c704db0a

0-021630/6258/73113_
61.28212559532870.022.03267.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-021630/5763/76474_
61.20380162695600.020.64279.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-021630/5801/77642_
61.15606263428150.020.75285.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f8d8b9f84

0-021630/5329/74766_
61.18468058698990.019.51274.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-021630/5761/73387_
61.19429360521550.020.58268.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/5323/72126_
61.30185162016310.019.40266.52
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-021630/5725/75325_
61.19436364006480.020.57276.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_da0c28c16

0-021630/5432/75565_
61.15502160967560.019.67275.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-021630/5387/73267_
61.28215158080090.019.53268.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_224a84dfd

0-021630/5244/74541_
61.11696061825730.019.05277.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/adfs/assets/js/postResponse.js HTTP/1.1

0-021630/5805/73483_
61.33100158802280.021.42271.59
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-021630/5186/74415_
61.08765266357920.019.15273.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ddd38485e

0-021630/5253/73320_
61.06841264313790.018.57268.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8dc68c7de

1-040010/5634/74289_
57.748172962052660.020.19272.96
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0ca91f094

1-040010/5117/76013_
57.79660063832590.018.23276.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-040010/5326/76250_
57.86369167458960.019.56280.46
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-040010/4675/74409_
57.83502166302350.017.46272.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-040010/4700/75625_
57.7964117561653310.016.48276.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZLJTsMwEIZfJfK9dhoUW

1-040010/4738/74645_
57.80583660448250.016.84270.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d92ccdd65

1-040010/5434/76780_
57.758001261955700.019.27282.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7d509e11b

1-040010/5485/76658_
57.901952672119090.019.62279.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/5718/75036_
57.79610165983430.020.72274.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-040010/4477/74776_
57.84410361195770.016.35273.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/4429/75326_
57.9454164031210.015.48276.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0400175/4996/78809W
57.97006313459178.618.26287.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-040010/5386/76805_
57.757931068850790.019.76282.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2af8aacf4

1-040010/5062/75081_
57.84443257734040.018.22275.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ddc1b20a3

1-040010/5751/75313_
57.89241261160580.021.14277.96
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/4676/74765_
57.89258263190990.017.71273.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_87ae2ae17

1-040010/4650/77380_
57.87342372035010.016.79283.71
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-040010/5115/74274_
57.9462461214840.018.61271.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/5032/75290_
57.766878260779100.018.06276.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudw

Found on 2025-10-27 05:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf2693b1a9

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 25-Oct-2025 11:02:17 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  38 days 10 hours 20 minutes 59 seconds
Server load: 3.93 2.53 1.71
Total accesses: 5044901 - Total Traffic: 18.0 GB - Total Duration: 395346617
CPU Usage: u59.18 s71.41 cu1315.15 cs831.96 - .0686% CPU load
1.52 requests/sec - 5.7 kB/second - 3832 B/request - 78.3656 ms/request
1 requests currently being processed, 49 idle workers
____W_____________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-021630/2754/72524_
24.061282459876590.09.41266.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2377/69198_
24.061303456653490.08.21253.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2041/67771_
24.20348358432850.07.07249.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4a9578f2e

0-021630/2305/69754_
24.091087458773530.08.12255.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0216388/1828/71938W
24.27006087077252.56.72266.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-021630/1838/72490_
24.0712065761083620.06.47266.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2025/71241_
24.051340462283360.06.97261.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/1925/72073_
24.16616459364580.06.55264.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/2349/67176_
24.101004355660890.08.21245.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d8ccc4a53

0-021630/2488/72073_
24.2031422560672130.08.34264.21
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2374/70971_
24.23199355873440.08.31259.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_51e92f76c

0-021630/2256/68164_
24.231182256984360.07.85249.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-021630/2244/69099_
24.20392454218330.07.80253.19
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/2338/73049_
24.19414359272280.08.20267.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c05150f6c

0-021630/2340/74181_
24.23116486659829240.08.09273.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/1865/71302_
24.15767355393440.06.77261.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5cb65c498

0-021630/2246/69872_
24.071231357393130.07.77255.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_70eca09d5

0-021630/2280/69083_
24.119095758570450.07.74254.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-021630/2287/71887_
24.11952359618070.07.75263.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3e1391964

0-021630/2502/72635_
24.101011342957822500.08.72264.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT8MwDMW%2FSpV7%2F

0-021630/2333/70213_
24.14808755019260.08.40257.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2162/71459_
24.081163458178370.07.76266.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2456/70134_
24.11885454575230.08.76258.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-021630/2133/71362_
24.061315463127760.07.94262.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-021630/2331/70398_
24.17516460292960.07.76257.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1802/70457_
20.61963457888920.05.99258.76
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1997/72893_
20.59120020760303470.07.04265.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1867/72791_
20.65827163827700.06.87267.77
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-040010/1705/71439_
20.70483762746130.06.07261.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1732/72657_
20.64894359027420.05.92266.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8b96c3479

1-040010/1905/71812_
20.71355457924320.06.80260.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1853/73199_
20.591145158623870.06.38269.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-040010/2297/73470_
20.69550468167840.08.22268.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/2186/71504_
20.64852362524540.07.65261.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fc4ba2bf5

1-040010/1541/71840_
20.68674458348040.05.47262.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-040010/1419/72316_
20.61991259253740.05.01265.78
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b0dec6363

1-040010/1637/75450_
20.71431059683650.05.74274.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-040010/2001/73420_
20.751295764972400.06.99269.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_592ec5800

1-040010/2138/72157_
20.72292454567920.07.58264.51
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1973/71535_
20.72328456926900.07.07263.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-040010/1837/71926_
20.7770359799380.06.79262.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c85eae3f6

1-040010/2203/74933_
20.571333368651990.08.13275.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f1a6b79b7

1-040010/1575/70734_
20.76113757851360.05.36257.77
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5555d6db2

1-040010/1948/72206_
20.581266357352020.07

Found on 2025-10-25 11:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfb990b407

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 23-Oct-2025 16:58:45 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  36 days 16 hours 17 minutes 27 seconds
Server load: 0.65 0.85 0.96
Total accesses: 4776654 - Total Traffic: 17.1 GB - Total Duration: 375791602
CPU Usage: u132.56 s113.22 cu1171.19 cs743.72 - .0682% CPU load
1.51 requests/sec - 5.7 kB/second - 3851 B/request - 78.6726 ms/request
1 requests currently being processed, 49 idle workers
_______________________________________W__________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-099760/8244/67028_
83.151668454387670.029.62248.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/7874/63440_
83.77389352643680.026.84234.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_690550a2b

0-099760/6769/63220_
83.53789253868950.023.02234.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_814a32f1e

0-099760/7133/64295_
83.161607555064050.024.68237.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_150c51f3b

0-099760/7972/66932_
83.577236156254310.028.17250.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/7943/67273_
83.301342757559340.028.07249.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/7609/66648_
83.54767358684990.026.07246.21
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5c981d4ce

0-099760/7914/67014_
83.201523454771610.027.71247.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/6801/61612_
83.89150452335740.023.91227.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/8170/66494_
83.49878456166950.028.29245.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fredlands

0-099760/7940/65033_
83.81291452897470.026.80239.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/7375/62528_
83.61673353527680.024.88230.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e4aebe388

0-099760/6690/63932_
83.141671350733160.023.15236.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5a7289c39

0-099760/6838/66909_
83.46960355726770.023.14246.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2717b2570

0-099760/8053/69076_
83.33126621856340140.028.10256.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/8068/66241_
83.381148351445250.027.66244.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3ffd6d962

0-099760/7385/64550_
83.85195453748250.025.39238.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/7650/63572_
83.331291355109340.026.80236.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/6925/66070_
83.2413913002154539240.024.12244.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/7239/66833_
83.908521054084230.024.01245.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/7711/64955_
83.73486551493430.026.00239.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-099760/7652/66281_
83.421054555635860.027.52247.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-099760/7955/64527_
83.69577451213100.027.83240.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/7519/66232_
83.9415359187670.026.57245.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_cf24cae03

0-099760/7006/64483_
83.66626456648660.025.08238.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0113640/7566/65372_
79.78839454723440.026.77242.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0113640/7397/67716_
79.571242457467100.024.80248.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/7055/67518_
79.531391258704610.023.95249.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_64a55601d

1-0113640/7740/66505_
79.95199158157150.026.48245.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0113640/6844/67846_
79.91341354585040.024.34250.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f19fcde58

1-0113640/7629/66426_
79.481568454182540.025.85243.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0113640/7341/67768_
79.79704455969740.026.48251.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0113640/7860/67464_
80.0250464085910.026.69248.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0113640/7703/65632_
79.621197357612280.025.76242.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/7066/66349_
79.79642353906540.023.98244.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dbc454477

1-0113640/7919/67768_
79.691007355308380.026.92250.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2422365ec

1-0113640/8047/70327_
79.651101455804070.026.92257.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0113640/7127/68030_
79.521477560140620.024.55251.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0113640/7156/66837_
79.74911451349070.024.02246.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-01136451/6582/65989W
80.03005321279118.423.72245.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-0113640/7336/66963_
79.99101456097770.025.34245.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/7015/68995_
79.94241364997820.024.17254.78
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2dbca150d

1-0113640/7271/65438_
79.79767353877500.025.19240.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0113640/7065/66696

Found on 2025-10-23 16:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf7a399732

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 21-Oct-2025 16:05:55 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  34 days 15 hours 24 minutes 37 seconds
Server load: 0.93 1.09 0.94
Total accesses: 4545968 - Total Traffic: 16.3 GB - Total Duration: 352886560
CPU Usage: u61 s72.87 cu1171.19 cs743.72 - .0685% CPU load
1.52 requests/sec - 5.7 kB/second - 3851 B/request - 77.6263 ms/request
2 requests currently being processed, 48 idle workers
_______________________________K_______W__________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-099760/2722/61506_
29.22180349519480.08.45227.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_15a23b231

0-099760/3181/58747_
29.2860348317490.09.64217.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9765464cf

0-099760/2398/58849_
29.2925450432090.07.40218.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-099760/2616/59778_
28.9762826250364200.08.11220.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/3266/62226_
29.18252351822180.010.08231.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-099760/2786/62116_
29.29462952368470.08.72230.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d695d2ce1

0-099760/3178/62217_
28.95690355023510.09.89230.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/2987/62087_
29.08480349402750.09.32228.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9c88bfb61

0-099760/2637/57448_
28.95675248290250.08.35211.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f772e19b1

0-099760/3122/61446_
29.295350032110.09.56226.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/3094/60187_
28.98574447922500.09.62222.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/2836/57989_
28.9762826948892900.08.65214.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/2869/60111_
28.93693746633520.08.78221.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_74e835753

0-099760/2622/62693_
29.12369551076230.07.94231.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6a325028d

0-099760/3200/64223_
29.02546452046910.09.77237.77
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/3325/61498_
29.05513447082180.010.26227.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/2889/60054_
29.14301348958720.08.73221.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f8556798f

0-099760/2887/58809_
29.2799350672730.08.94218.76
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0c76bcbf0

0-099760/2699/61844_
29.10418349537450.08.15228.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_da3ddf594

0-099760/3106/62700_
29.1138321750698480.09.54231.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/3347/60591_
29.202221248015060.010.44224.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/3075/61704_
29.18266351122870.09.41229.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_68f541753

0-099760/3049/59621_
29.16281345799020.09.32221.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e7a142c8c

0-099760/2766/61479_
29.08459453646880.08.66227.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-099760/2529/60006_
29.25119450393860.07.76221.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0113640/2775/60581_
27.08462250523140.08.53224.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/2412/62731_
26.76588352968570.07.16230.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/2529/62992_
26.73645354417370.07.77233.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_81f1ca5b1

1-0113640/2789/61554_
26.9333521653657880.08.68227.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0113640/2097/63099_
26.82495450304700.06.37232.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/2719/61516_
26.96234349115560.08.52225.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-01136472/2992/63419K
27.15305160427189.59.28233.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /v3/api-docs HTTP/1.1

1-0113640/2895/62499_
26.92354359147270.08.93230.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ed2db5580

1-0113640/2702/60631_
27.1215352958650.08.26224.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ca2f78965

1-0113640/2710/61993_
26.96252250153850.08.27228.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e72b84beb

1-0113640/3211/63060_
26.99198351060150.09.73233.52
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_80c1adb70

1-0113640/3115/65395_
27.03154350190930.09.56240.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e63052e2c

1-0113640/3134/64037_
26.79565255799630.09.94237.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0e4859c65

1-0113640/2660/62341_
26.73665447659390.08.11230.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-01136421/2258/61665W
27.1500481752341.57.04228.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-0113640/2813/62440_
27.0679351323760.08.70229.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f96fbd0d6

1-0113640/2326/64306_
26.87435460112240.07.22237.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0113640/3135/61302_
26.86441348990930.09.84225.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0113640/3111/62742_
26.88404450029740.09.71

Found on 2025-10-21 16:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf890d0be0

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 19-Oct-2025 14:37:13 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  32 days 13 hours 55 minutes 55 seconds
Server load: 0.56 0.69 0.78
Total accesses: 4233584 - Total Traffic: 15.3 GB - Total Duration: 329778201
CPU Usage: u60.79 s66.45 cu1089.33 cs694.42 - .0679% CPU load
1.5 requests/sec - 5.7 kB/second - 3874 B/request - 77.8958 ms/request
1 requests currently being processed, 74 idle workers
________________________________W_______________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0165580/1813/57727_
22.55136446637860.06.79214.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1671/54414_
22.53632545615410.06.44203.19
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2026/55369_
22.5565548507280.07.77206.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1792/55943_
22.55902747493580.06.54207.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1630/57778_
22.5534449163750.06.16217.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2124/58360_
22.54498549940610.08.26217.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2191/57932_
22.54387452801870.08.24215.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2396/57948_
22.54294447072530.09.22215.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1696/53471_
22.55207443410480.06.48198.13
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2019/57026_
22.52853547300620.07.25212.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1930/55996_
22.55174645235750.07.35208.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0165580/1909/53883_
22.55114746294830.07.37201.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0165580/1847/56226_
22.5516444452460.06.93209.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1877/58721_
22.53816548476630.07.21218.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2115/59816_
22.53690549639690.08.15223.21
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2030/56964_
22.53772444903300.07.60212.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1910/55903_
22.535292946768360.06.96207.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1900/55066_
22.54255547117190.07.19206.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2188/57930_
22.53659347613790.08.47215.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0165580/2029/58371_
22.54470448347300.07.56216.88
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/2227/56305_
22.53568445778440.08.74209.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1668/57024_
22.53728448256510.06.21213.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1974/55189_
22.53612443667200.07.64206.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1813/57378_
22.54413451148430.07.13213.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0165580/1905/56006_
22.54350447297480.07.36208.21
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1555/55791_
16.8080720146746400.06.17208.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1405/57636_
16.81759448248200.05.26213.88
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1553/57849_
16.84262649367540.05.68215.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1416/55648_
16.82130549568770.05.38207.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1572/58355_
16.821633147418410.05.88217.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b7e9870882d03

1-0267850/1456/56213_
16.8249020546364400.05.25208.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1546/57939_
16.824633148158270.05.63215.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-02678527/1369/57347W
16.8400563186135.24.96213.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-0267850/1536/55549_
16.80834649819280.05.76208.13
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0267850/1354/56530_
16.82677446379890.05.25210.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1475/57309_
16.82511447563780.05.38214.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1446/58865_
16.81707446609440.05.52218.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1472/57982_
16.8449550999100.06.15216.88
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1330/57288_
16.82602445096390.04.86213.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1516/56720_
16.82650445188970.06.07211.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1333/56968_
16.82626646551500.05.03211.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1428/59583_
16.82373555353710.05.23222.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1754/55467_
16.8482545689800.06.73205.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0267850/1401/57495_
16.82562647331880.05.31

Found on 2025-10-19 14:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf0c81b56d

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Friday, 17-Oct-2025 13:47:23 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  30 days 13 hours 6 minutes 5 seconds
Server load: 1.29 0.98 0.98
Total accesses: 4152328 - Total Traffic: 15.0 GB - Total Duration: 321550571
CPU Usage: u36.68 s49.21 cu1089.33 cs694.42 - .0708% CPU load
1.57 requests/sec - 6.0 kB/second - 3874 B/request - 77.4386 ms/request
1 requests currently being processed, 74 idle workers
______________________________________________________________W_
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0165580/748/56662_
9.99712345620410.02.94210.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b24592148

0-0165580/603/53346_
10.01290344962530.02.39199.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ad85822a6

0-0165580/787/54130_
9.99792647032430.03.12202.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b19f90d8e

0-0165580/754/54905_
10.00597346322430.02.92204.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5905f80a5

0-0165580/719/56867_
10.00519348662640.02.83213.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d6c61b9e3

0-0165580/1104/57340_
10.0253348984070.04.57213.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e10607f0e

0-0165580/970/56711_
10.02155350062550.03.74211.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e5e7c18c4

0-0165580/1305/56857_
10.0220346102420.05.32211.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3cdaea035

0-0165580/625/52400_
9.99811342134430.02.58194.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a95ba7e12

0-0165580/859/55866_
10.00556344661090.03.22208.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fe9f534e1

0-0165580/668/54734_
9.99760144179190.02.58203.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0165580/735/52709_
10.00679345027890.02.88196.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f71bf72cd

0-0165580/777/55156_
10.00629343342640.02.92205.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_580b408ab

0-0165580/892/57736_
10.00491347563160.03.67215.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d89f6c467

0-0165580/1031/58732_
10.01328348857360.04.10219.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_18caba5c8

0-0165580/875/55809_
10.01361344256460.03.41208.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e4507f791

0-0165580/784/54777_
10.011802845865970.03.08204.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_a44b45c62cfee

0-0165580/891/54057_
9.98838345765640.03.45202.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f7d5f4762

0-0165580/927/56669_
10.00403546723470.03.68210.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d7b765ff7

0-0165580/931/57273_
10.02120347100570.03.46212.78
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e4252b312

0-0165580/1010/55088_
10.01223345028790.04.15205.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_af0b8b697

0-0165580/630/55986_
10.00447347352830.02.36210.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b88df4363

0-0165580/796/54011_
10.012644742815480.03.40202.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0165580/619/56184_
10.0287349400570.02.59209.00
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e32e4a012

0-0165580/784/54885_
9.98865346186000.03.17204.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6109e9007

1-0267850/410/54646_
4.52529344681190.01.70203.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a9e61d0c7

1-0267850/278/56509_
4.53411347411650.01.11209.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b02ba4728

1-0267850/360/56656_
4.52578347973420.01.30211.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b6cc76822

1-0267850/369/54601_
4.50773348659270.01.38203.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ac3ded614

1-0267850/322/57105_
4.50823346593400.01.29212.46
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fd02f689d

1-0267850/404/55161_
4.55133344637360.01.56204.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_bc4e01280

1-0267850/323/56716_
4.55194346654860.01.12211.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f1ccb4a21

1-0267850/373/56351_
4.52613355190010.01.39210.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5808dd278

1-0267850/495/54508_
4.52496348792270.01.98204.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_65e0fe885

1-0267850/309/55485_
4.53340545571130.01.33206.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ad9c922d5

1-0267850/402/56236_
4.55165746524120.01.47211.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2f9ff071d

1-0267850/305/57724_
4.53457346021900.01.30214.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e94dfbb24

1-0267850/402/56912_
4.52641349910650.01.83212.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_af1c91cb9

1-0267850/271/56229_
4.53299244228030.00.99209.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0267850/381/55585_
4.53377744511550.01.81207.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ca07debc3

1-0267850/321/55956_
4.54275745816200.01.28207.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_680e32e92

1-0267850/252/58407_
4.55631452784360.01.00217.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0267850/471/54184_
4.52686344499630.02.13200.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_af84f1b6e

1-0267850/416/56510_
4.54238346678740.01.64210.81
127.0.0.1

Found on 2025-10-17 13:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf636e4daa

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Wednesday, 15-Oct-2025 10:30:49 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  28 days 9 hours 49 minutes 31 seconds
Server load: 3.39 1.97 1.57
Total accesses: 4017411 - Total Traffic: 14.5 GB - Total Duration: 303938724
CPU Usage: u42.27 s50.51 cu1040.5 cs667.05 - .0733% CPU load
1.64 requests/sec - 6.2 kB/second - 3866 B/request - 75.6554 ms/request
1 requests currently being processed, 49 idle workers
_______________________________________________W__..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0251430/1492/53875_
15.99105342046390.05.75200.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0c98ce8c1

0-0251430/983/50976_
16.0112341923650.03.71189.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0c402f89d

0-0251430/1201/51694_
15.992503143582550.04.91192.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0251430/993/52284_
15.98312443076550.03.65193.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0f447bf94

0-0251430/1315/54537_
15.99134344754690.05.08204.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0cc79ee6e

0-0251430/1501/54654_
15.98330644716800.05.71202.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0251430/1118/54313_
16.013750845273940.04.18201.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVgXdRD1upQ

0-0251430/1611/53651_
15.96487342547280.06.27198.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_123447e01

0-0251430/1641/49792_
15.974504139195770.06.35184.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0251430/1642/53235_
15.96508342112350.06.80197.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_12b210f3b

0-0251430/1247/52543_
15.98363341674350.05.15195.51
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_100b06656

0-0251430/1430/50564_
15.97433342093350.05.57188.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_11429b17d

0-0251430/1414/52435_
15.95570640081940.05.70194.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0251430/1142/55063_
15.991802944294960.04.45204.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0251430/1164/55715_
15.98284444382000.04.55207.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0251430/1413/53391_
15.9919820840272310.05.67198.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0251430/1268/52256_
16.01304042908790.04.91194.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0251430/1411/51616_
15.98387342407570.05.59193.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1065b3234

0-0251430/1441/54142_
15.96530343321980.05.42200.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_13a2d2a0a

0-0251430/1139/54571_
15.99235144060640.04.43202.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0251430/1317/52332_
15.94627341729750.05.03194.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1535a4ac2

0-0251430/1455/53780_
15.97417344488690.05.72201.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_10c0d39eb

0-0251430/1285/51547_
15.94607339952330.04.93192.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_148ce309f

0-0251430/1245/53642_
15.99210246453870.04.61198.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0251430/1206/52390_
16.01703643491630.04.77194.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0294300/1001/52003_
13.09441041356320.03.93193.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0294300/996/53928_
13.085183243702110.04.04199.83
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0294300/832/54152_
13.08551344845430.03.38201.83
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1402400f2

1-0294300/1221/51904_
13.10296345227790.04.71193.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0f1e83d47

1-0294300/1182/54659_
13.10265343650000.04.80202.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0ec1163f4

1-0294300/834/52477_
13.09425541046850.03.23194.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0294300/1121/54084_
13.10191943189170.04.30200.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7a5deb3f0

1-0294300/955/53746_
13.10353351227110.03.39200.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0f90fc3cf

1-0294300/1021/52033_
13.1275045660550.03.78194.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0294300/1114/52927_
13.12128642061210.04.38196.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0294300/1119/53440_
13.10242343195460.04.90199.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0e2ee4253

1-0294300/1131/55198_
13.10226843489880.04.44205.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6fae3f96c

1-0294300/1100/54475_
13.1353346243890.04.12203.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0c5a5b7f4

1-0294300/1138/53768_
13.07616340844050.04.42199.42
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_152da2f5d

1-0294300/1134/52544_
13.12145440755200.04.28195.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0294300/995/53413_
13.10210742979320.04.23197.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0294300/1226/56027_
13.0940623349762980.04.83208.42
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0294300/1269/51361_
13.103183440797240.04.91189.51
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0294300/1112/54124_
13.09462442650840.04.29201.37
127.0.0.1

Found on 2025-10-15 10:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf913a9148

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Monday, 13-Oct-2025 06:56:23 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  26 days 6 hours 15 minutes 5 seconds
Server load: 0.74 0.80 0.94
Total accesses: 3884967 - Total Traffic: 14.0 GB - Total Duration: 284602824
CPU Usage: u54.25 s54.16 cu985.19 cs637.47 - .0763% CPU load
1.71 requests/sec - 6.5 kB/second - 3858 B/request - 73.2575 ms/request
1 requests currently being processed, 49 idle workers
_______________________________________W__________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0151530/2058/50993_
26.19288337990880.08.42189.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3b3b67184

0-0151530/2098/48803_
26.239338342160.08.62181.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3b04c42c3

0-0151530/1733/49132_
26.07546339518530.06.81182.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2bbd75690

0-0151530/2304/50239_
26.22106139198090.09.55186.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0151530/1986/51637_
26.17364038771550.08.04192.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0151530/2204/51735_
26.16392139181920.08.72191.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0151530/2220/51999_
26.21148742065980.08.86193.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_55f7a3432

0-0151530/2468/50634_
26.2381338276340.09.73186.78
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3cfe972fe

0-0151530/2009/47030_
26.17391135643230.08.03173.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0151530/2107/50446_
26.19233038157380.09.29186.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0151530/2300/49935_
26.20196738137250.09.38185.13
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4f81a6b33

0-0151530/1941/47949_
26.145025638209790.08.02178.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0151530/2132/49717_
26.19261536159170.08.61184.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0151530/2249/52693_
26.15415341484230.08.75195.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3ae70f51b

0-0151530/2022/53367_
26.21157041250350.07.97198.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0151530/1980/50535_
26.2326337035340.07.90187.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_339f89c21

0-0151530/2127/49645_
26.14469339798690.08.63183.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2b9f134d6

0-0151530/2384/48982_
26.14515437461360.09.83182.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2d340964d

0-0151530/2224/51332_
26.2347337655980.08.64189.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3b849eeee

0-0151530/1993/51874_
26.19271340607060.07.94191.46
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_378b7838f

0-0151530/2272/50041_
26.173524238808840.09.02186.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0151530/2556/50857_
26.1831713740616400.010.18189.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVJNT%2BMwEP0rlu%2F1R

0-0151530/2335/48708_
26.14464036411590.09.26181.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0151530/2056/51133_
26.07546103042747550.08.17189.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/totp.php HTTP/1.1

0-0151530/2253/49922_
26.20189040414800.09.04184.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0181420/2192/49740_
23.2316338304790.08.93184.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_39a463c7e

1-0181420/2029/51199_
23.17441439475670.08.24189.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2badc4ac3

1-0181420/1630/51624_
23.20242841778380.06.56191.71
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_af557ccea

1-0181420/1981/49327_
23.17379341216260.08.17183.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2df807e93

1-0181420/1943/51685_
23.19253039644380.07.92191.00
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0181420/2006/50208_
23.2364637888370.07.99185.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0181420/1942/51259_
23.1645760839615980.07.83189.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0181420/1892/51180_
23.15500347517290.07.47190.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2eff05759

1-0181420/2093/49242_
23.1740411441566250.08.68183.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=rVI9b9swEP0rAndRpCw5E

1-0181420/1952/50333_
23.1827910538412070.08.15186.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0181420/1714/50594_
23.21157038582770.07.27188.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0181420/1851/52165_
23.18353140513870.07.07193.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0181420/2245/51731_
23.18346041590960.08.90192.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0181420/1678/51056_
23.20218935986070.06.89188.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a9cc9af49

1-01814224/1680/49763W
23.2400375502251.76.98184.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-0181420/1831/50783_
23.2331339443900.07.39186.71
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_399972b5b

1-0181420/1844/53308_
23.2118311545537440.07.11197.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hZLNbtswEITvAfoOBO%2F

1-0181420/2024/48638_
23.18332136540110.08.13179.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0181420/1885/51388_
23.17392138634460.07.73190.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0181

Found on 2025-10-13 06:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf57f6da90

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 11-Oct-2025 01:11:46 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  24 days 30 minutes 28 seconds
Server load: 0.64 0.99 1.12
Total accesses: 3746420 - Total Traffic: 13.4 GB - Total Duration: 262331118
CPU Usage: u91.9 s82.5 cu903.05 cs582.06 - .08% CPU load
1.81 requests/sec - 6.8 kB/second - 3848 B/request - 70.0218 ms/request
1 requests currently being processed, 49 idle workers
______W___________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0279280/6820/48272_
66.74461334578670.022.01178.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3f0dc7492

0-0279280/5953/46076_
66.76228732955760.019.33170.71
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dd000f071

0-0279280/6298/46795_
66.78195436230550.020.40173.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/6515/47278_
66.75401334084100.021.18174.08
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_33ef1a6db

0-0279280/6799/49164_
66.813972635470890.022.05182.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0279280/6386/48800_
66.76287335482910.020.35179.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_430300ee0

0-02792812/6725/49323W
66.8200375001117.721.37182.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0279280/6785/47558_
66.7538515033644350.021.80174.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e0140fab172fd

0-0279280/6058/44490_
66.762995032032500.019.45163.59
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0279280/7285/47427_
66.72532334050040.023.24173.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0279280/6281/47009_
66.75375834246240.020.14173.45
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/.well-known/openid-configuration HTTP/1.1

0-0279280/5739/45413_
66.79176733503300.018.80167.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_bcf044a2b

0-0279280/6070/47094_
66.8122432778040.019.42173.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/6611/49734_
66.72500434529240.021.43183.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3f68201ac

0-0279280/7066/50875_
66.7161193337306690.023.27188.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0279280/6540/47984_
66.79158733247920.021.00177.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d983d6a30

0-0279280/6508/46576_
66.715781633519930.021.20171.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/6454/46001_
66.72524433407240.020.53170.45
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/7323/48453_
66.79108133821030.023.70178.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0279280/6649/49201_
66.75326635844470.021.20180.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0279280/6183/47250_
66.71560535067760.020.36175.19
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/5927/47621_
66.7159540435774020.019.07176.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0279280/6097/45874_
66.74454432457610.019.49170.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/6514/48477_
66.8169137719880.020.93178.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0279280/6461/46862_
66.75350435752930.020.89172.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-011460/4853/46694_
53.50221333757610.015.91172.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e3f87519b

1-011460/5234/48199_
53.47468435062660.017.18177.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT4NAEMW%2FCtk7f5a

1-011460/5017/49180_
53.5398836538650.016.29182.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fef0456e4

1-011460/4989/46735_
53.50281436800280.016.34173.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-011460/4778/49140_
53.45606334274110.015.85180.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dda6b7244

1-011460/5175/47286_
53.45594334337820.016.70173.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ea1a8d17e

1-011460/5629/48698_
53.49299336399000.018.15179.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-011460/5305/48360_
53.483937143628730.017.21179.52
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/trigger-update.php HTTP/1.1

1-011460/5412/46425_
53.455324336665010.017.84172.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-011460/5100/47468_
53.5355734390630.017.06174.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9dc93c22e

1-011460/5513/48061_
53.46506435392630.017.77178.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-011460/5710/49469_
53.48387536788080.019.19183.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-011460/5216/48621_
53.4748216237438730.016.97180.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b7e7C

1-011460/4850/48353_
53.455721132752210.015.37177.88
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3cd3917d0

1-011460/5370/47210_
53.50170333787330.017.53174.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_32d782b02

1-011460/4861/48174_
53.48363332986630.015.89176.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ecaf1db76

1-011460/5163/50429_
53.45554337653160.016.68186.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_44cc2ed1d

1-011460/5400/45864_
53.5412431588090.017.42168.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3371ccea6

1-011460/4978/48755_
53.511203134708760.016.01180.30
127.0.0.1h

Found on 2025-10-11 01:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf5ff9cdc1

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 09-Oct-2025 02:09:22 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  22 days 1 hour 28 minutes 4 seconds
Server load: 0.76 1.31 1.44
Total accesses: 3457523 - Total Traffic: 12.5 GB - Total Duration: 246355038
CPU Usage: u66.03 s63.71 cu856.35 cs550.31 - .0806% CPU load
1.81 requests/sec - 6.9 kB/second - 3885 B/request - 71.2519 ms/request
1 requests currently being processed, 49 idle workers
_______W__________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0279280/911/42363_
8.344494430906260.02.70159.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0279280/706/40829_
8.52115430471330.02.12153.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0279280/576/41073_
8.27565233113960.01.72154.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f15b3a272

0-0279280/1172/41935_
8.2753711430722350.03.69156.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/875/43240_
8.50162331922210.02.63163.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/795/43209_
8.38286233032400.02.49162.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_981dd4ae7

0-0279280/758/43356_
8.5570334678680.02.31163.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_828c59c51

0-02792832/884/41657W
8.5600307534178.62.66155.45
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0279280/811/39243_
8.29510429207880.02.44146.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0279280/816/40958_
8.5562431213780.02.37152.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0279280/935/41663_
8.35409231168180.02.85156.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_cd9760645

0-0279280/1048/40722_
8.37335330358920.03.14152.21
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0279280/869/41893_
8.31483629998330.02.66157.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0279280/825/43948_
8.29525430979970.02.51164.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/976/44785_
8.36358333632070.03.39168.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_288bf6124

0-0279280/808/42252_
8.33453229372390.02.43158.72
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/672/40740_
8.37351130126360.02.02152.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0279280/702/40249_
8.38286429754660.02.12152.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_991aac8aa

0-0279280/798/41928_
8.40266330215350.02.39157.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fb181690f

0-0279280/1037/43589_
8.4125626933053460.03.12162.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0279280/860/41927_
8.43221331869050.02.55157.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/532/42226_
8.412503232792430.01.59159.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7f7e88bec

0-0279280/784/40561_
8.47193930131240.02.40153.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0279280/710/42673_
8.5494335307460.02.17160.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0279280/835/41236_
8.26577432127180.02.56154.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/7536/41146_
71.20242330976690.024.40154.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5cdf83638

1-0216480/7085/42241_
71.24139132391700.022.54157.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0216480/6815/43433_
71.22228533373700.021.63163.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/6564/40847_
70.9253812733693640.020.95153.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/6991/43749_
71.325330495630.022.13163.19
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1a5e47a77

1-0216480/7116/41447_
71.17264530968520.022.29154.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/7044/42195_
71.17276533252160.022.36158.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/6336/42198_
70.925361540611240.020.13159.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0216480/6113/40288_
70.89625333501900.019.40152.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0216480/7314/41733_
70.96490330637030.023.42156.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0216480/6683/41966_
70.89637431673080.021.48158.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0216480/7190/43129_
71.123314133422580.022.59161.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0216480/6541/42741_
71.07384434356810.020.98161.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/7534/42826_
71.03424429678460.023.81160.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0216480/7543/41072_
70.96497330569590.024.24154.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_779e420f0

1-0216480/7936/42640_
71.16297329605310.025.37158.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7fe6a719f

1-0216480/7370/44491_
71.22231334763570.023.49167.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_313d66be7

1-0216480/7119/39952_
70.98468428569890.022.95149.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dd6f6b213

1-0216480/6844/43159_
71.25124531885380.021.41162.28

Found on 2025-10-09 02:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfba41f63c

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 07-Oct-2025 02:31:06 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  20 days 1 hour 49 minutes 48 seconds
Server load: 3.10 2.08 1.83
Total accesses: 3156104 - Total Traffic: 11.6 GB - Total Duration: 230854636
CPU Usage: u34.57 s40.2 cu815.11 cs521.45 - .0814% CPU load
1.82 requests/sec - 7.0 kB/second - 3943 B/request - 73.1454 ms/request
1 requests currently being processed, 49 idle workers
_______________W__________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0155960/1242/36236_
17.77218327344600.04.32139.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a7fdadd9c

0-0155960/1676/35408_
17.8510230028342110.05.88136.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0155960/1874/35543_
17.78201429290670.06.41137.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0155960/1554/35247_
17.8299327572100.05.29135.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ddc889240

0-0155960/1406/37169_
17.75290328269800.04.80144.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0155960/1742/36653_
17.64465129542710.05.95141.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0155960/1392/37786_
17.78141331696300.04.81146.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0155960/1578/35118_
17.8511528032300.05.41135.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0155960/1691/32595_
17.8521125685980.05.91125.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0155960/1482/34289_
17.8361428506550.04.93132.13
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0155960/1666/35854_
17.67424428178610.05.71138.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0155960/1849/34559_
17.75302427650560.06.72133.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0155960/1806/35531_
17.74345326890480.06.08137.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_85db90048

0-0155960/1512/37532_
17.66442427190240.05.05144.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0155960/1309/38269_
17.72369329976130.04.55147.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-01559631/1581/36590W
17.8600271192581.75.28140.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0155960/1851/34512_
17.71386427209380.06.28133.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0155960/1443/34726_
17.75329326918480.05.14134.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5256b72a5

0-0155960/1635/35976_
17.77218327491840.05.57139.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6cdd52896

0-0155960/1649/36422_
17.78168329905240.05.51140.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c68b2c43b

0-0155960/1420/35855_
17.75338528187400.04.93138.51
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0155960/1958/37227_
17.8291430367660.06.72143.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0155960/1823/35084_
17.78189326461570.06.23136.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0155960/1548/36839_
17.81108332164740.05.14141.96
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7891ea00b

0-0155960/1308/35694_
17.75275329115340.04.40136.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0216480/1189/34799_
11.24140428162740.04.75134.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0216480/1064/36220_
11.24146529799800.03.77139.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0216480/922/37540_
11.16245331410370.03.29145.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9aa6e750b

1-0216480/1077/35360_
11.32411230775270.03.88136.71
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0216480/907/37665_
11.12289428061190.03.28144.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0216480/1097/35428_
11.21174328618490.03.79136.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0216480/870/36021_
11.339329631060.03.17139.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e3132a9e1

1-0216480/807/36669_
11.32431636673340.02.92142.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0216480/871/35046_
11.26127230738850.02.88135.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1e84389b9

1-0216480/855/35274_
11.26125328082890.03.04135.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7d201f229

1-0216480/916/36199_
11.3313328322990.03.46140.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fbb9dd78c

1-0216480/869/36808_
11.2876430246340.02.92142.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0216480/955/37155_
11.05412930914500.03.45143.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8f6ec4978

1-0216480/1116/36408_
11.04418526252080.03.83140.45
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0216480/961/34490_
11.338326065710.03.72134.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0216480/1066/35770_
11.09316426373500.03.91137.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0216480/927/38048_
11.06396245631713480.03.33147.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0216480/1139/33972_
10.98478325627890.03.98130.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8ba2ab431

1-0216480/854/37169_
11.06355329012010.02

Found on 2025-10-07 02:31

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfbd702e4f

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 04-Oct-2025 22:39:04 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  17 days 21 hours 57 minutes 46 seconds
Server load: 0.77 1.03 1.13
Total accesses: 3049800 - Total Traffic: 11.2 GB - Total Duration: 221321392
CPU Usage: u42.35 s44.77 cu777.42 cs493.79 - .0878% CPU load
1.97 requests/sec - 7.6 kB/second - 3954 B/request - 72.5692 ms/request
2 requests currently being processed, 48 idle workers
____________________K______________W______________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0101710/2221/34356_
24.31424425752540.08.17133.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2007/33166_
24.32304326201990.07.49128.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2094/33087_
24.31383327302610.07.68129.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9ab3b982b

0-0101710/2011/33033_
24.30450226247170.07.14128.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b10a7312

0-0101710/2211/35223_
24.32275326997150.07.86137.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2301/34423_
24.31354227894430.08.29133.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9ab98b579

0-0101710/1890/35857_
24.31365330157350.07.13139.45
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9a9c11ad3

0-0101710/2232/33040_
24.322584826461930.08.13128.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ade4e27002467

0-0101710/2038/30467_
24.32234524063670.07.59118.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_469cf8836

0-0101710/1946/32220_
24.32290527143250.07.15125.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2050/33590_
24.34162326938880.07.68130.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2061/32251_
24.34141525206440.07.64124.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5e4f61bd6

0-0101710/2000/33109_
24.34123324723970.07.54128.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2204/35544_
24.32213325875470.08.05137.83
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/1983/36395_
24.3219526028256690.07.35141.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2244/34491_
24.34111425589510.08.13133.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2019/32080_
24.3485525096500.07.28124.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d37333114

0-0101710/2000/32727_
24.356325145410.07.30127.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/1873/33815_
24.345920625482710.06.76131.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2033/34253_
24.31412228355680.07.61133.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9adbf50af

0-0101711/1790/33974K
24.351026837841.06.67132.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /.vscode/sftp.json HTTP/1.1

0-0101710/2155/34661_
24.29549627844740.07.78134.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ac21bbb38

0-0101710/2009/32736_
24.3527324464510.07.45128.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/2179/34758_
24.32329229927120.07.91134.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9a84cfa33

0-0101710/2175/33696_
24.29518227931600.08.07130.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b57befc2

1-0127420/1863/32529_
22.09390626492960.06.88126.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_58dbd1855

1-0127420/1897/34042_
22.09473528297960.06.77131.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0127420/1862/35469_
22.1320129301680.06.88138.21
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0127420/1944/33243_
22.11281328727080.07.13129.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/1804/35357_
22.09541326551950.06.58136.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b5fb681e

1-0127420/1970/33036_
22.09436226546940.07.04128.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9af71b484

1-0127420/1898/34099_
22.09496228037270.07.20132.45
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b39e3399

1-0127420/1902/34858_
22.095352732158900.06.99136.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b5be1df6

1-0127420/1847/33179_
22.1349528861530.06.67129.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_797e0f2f6

1-0127420/1915/33199_
22.09374426309110.06.96128.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-01274210/1806/34035W
22.1300268807013.96.46132.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-0127420/2184/34834_
22.11322528388870.08.03135.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4ae8b3b66

1-0127420/1965/35200_
22.1131614327574760.07.17137.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0127420/1859/34264_
22.12154324713140.06.97133.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/1812/32594_
22.12136424617870.06.61127.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/1703/33461_
22.13101323393790.06.14129.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/1606/36012_
22.13118828946290.05.98140.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9cf00d2cc

1-0127420/2043/31685_
22.1376323587040.07.59122.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/1839/34962_
22.11250327133920.0</

Found on 2025-10-04 22:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf9572dcd8

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 02-Oct-2025 21:51:50 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 days 21 hours 10 minutes 33 seconds
Server load: 0.76 0.90 0.94
Total accesses: 2960734 - Total Traffic: 10.9 GB - Total Duration: 212969476
CPU Usage: u16.32 s24.05 cu777.42 cs493.79 - .0956% CPU load
2.16 requests/sec - 8.3 kB/second - 3957 B/request - 71.9313 ms/request
1 requests currently being processed, 49 idle workers
_____________W____________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0101710/233/32368_
3.08336423598090.00.88126.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0101710/244/31403_
3.09247324152740.00.91122.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101710/301/31294_
3.09290325349100.01.07122.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/273/31295_
3.09271324987140.01.00121.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/284/33296_
3.10165325470760.01.04131.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/327/32449_
3.10181326615470.01.18126.42
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/273/34240_
3.09211528659220.01.02133.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0101710/261/31069_
3.10140324509020.00.95120.83
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/325/28754_
3.11104622352830.01.18111.83
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/.well-known/openid-configuration HTTP/1.1

0-0101710/271/30545_
3.1188425356380.00.99118.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/248/31788_
3.116421925213470.00.89123.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/308/30498_
3.1138323706350.01.14118.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/223/31332_
3.1117323412640.00.81122.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-01017112/254/33594W
3.1100240883718.10.88130.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0101710/264/34676_
3.06638526386340.01.02134.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_51a54254a

0-0101710/271/32518_
3.07590423887470.00.96126.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/332/30393_
3.08568123582730.01.21118.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0101710/255/30982_
3.08511523675990.00.90121.42
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0101710/257/32199_
3.08541324082890.00.96125.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/257/32477_
3.08469325516250.00.91126.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/237/32421_
3.084312625234710.00.84126.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/242/32748_
3.084582926219630.00.85127.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_42cde10c1d1aa

0-0101710/207/30934_
3.08410322986290.00.74121.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0101710/298/32877_
3.08391427941810.01.11128.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0101710/282/31803_
3.08357726149270.01.03123.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b0e722e8

1-0127420/105/30771_
1.26532424365550.00.38119.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/114/32259_
1.25655326531260.00.46125.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/116/33723_
1.336327465050.00.44131.77
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/147/31446_
1.26555526650260.00.54122.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/133/33686_
1.3224325053950.00.48130.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/138/31204_
1.26610624582630.00.49121.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0ea9ebe07

1-0127420/87/32288_
1.3254326451440.00.30125.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/96/33052_
1.3116522630915150.00.41129.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLbxoxEL73V6x8X%2B%

1-0127420/128/31460_
1.3297327045790.00.45123.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/108/31392_
1.3272224272390.00.38121.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0127420/97/32326_
1.31149225251900.00.39126.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0127420/105/32755_
1.265832826706290.00.38128.08
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/111/33346_
1.26479526151860.00.39130.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_457c16b54

1-0127420/132/32537_
1.31205322823910.00.49126.59
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/95/30877_
1.31126323150140.00.34121.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/146/31904_
1.31235322421180.00.58123.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/144/34550_
1.31217327334150.00.52135.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0127420/94/29736_
1.302856121806420.00.33115.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9746173670612

1-0127420/129/33252_
1.30321108925885890.00.47130.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpu

Found on 2025-10-02 21:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf0c700df4

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Wednesday, 01-Oct-2025 00:47:53 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  14 days 6 minutes 35 seconds
Server load: 0.76 1.04 1.13
Total accesses: 2783790 - Total Traffic: 10.2 GB - Total Duration: 201968036
CPU Usage: u228.33 s159.12 cu521.65 cs323.68 - .102% CPU load
2.3 requests/sec - 8.8 kB/second - 3919 B/request - 72.5515 ms/request
1 requests currently being processed, 74 idle workers
_______W________________________________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0260300/12441/30197_
123.68955122365970.045.95116.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0260300/10790/28955_
123.73821422830160.039.20111.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0260300/10854/29121_
123.611229124082500.039.83113.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0260300/11358/29062_
123.661170323439650.041.32112.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8019235c7

0-0260300/11387/30533_
123.844784923922480.041.66119.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F324&cookieTi

0-0260300/11362/29883_
123.89375725452890.041.34115.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9578c0728

0-0260300/12280/31419_
124.0037626943190.044.55120.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F609&cookieTi

0-02603059/11147/28620W
124.03002246668235.940.74110.13
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0260300/10687/26560_
123.7379032220953350.039.29102.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78prAM

0-0260300/10919/28132_
123.893441423725610.039.81108.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_59d733695

0-0260300/11084/29492_
123.738585524142760.040.46113.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F324&cookieTi

0-0260300/11200/28028_
123.491390122042910.040.64107.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0260300/13024/28805_
123.6610673022227670.047.56111.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_705612fa0

0-0260300/12411/30968_
123.5912762222520490.045.16119.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0260300/13211/31971_
123.86464024285090.048.72123.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0260300/12119/30072_
123.9694522823110.044.03115.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

0-0260300/10464/28094_
123.491401822244560.038.59108.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_00ce3faea

0-0260300/11441/28161_
123.541340022117600.041.94109.23
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0260300/11458/29664_
123.82508922508080.041.76114.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F324&cookieTi

0-0260300/12000/30540_
123.79694924332680.043.96118.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4b06a059e

0-0260300/11734/29992_
123.78699523020290.042.72115.66
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F324&cookieTi

0-0260300/11238/30715_
123.93202324910370.041.31118.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_96a2bfca5

0-0260300/11296/28814_
123.689252722094380.042.22112.52
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_885899e39

0-0260300/12921/30181_
123.661133426367380.047.59116.17
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F324&cookieTi

0-0260300/12463/29202_
123.767063324324050.045.64112.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F324&cookieTi

1-0261220/11547/29041_
126.36606723419160.042.45112.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

1-0261220/11967/29835_
126.4246223906290.043.88115.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b2cf5470f

1-0261220/12610/31032_
126.36501725177040.046.45119.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/.well-known/openid-configuration HTTP/1.1

1-0261220/11128/29426_
126.201033625374200.041.10114.08
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

1-0261220/12965/31935_
126.26814324285710.047.30122.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_08e8d84c6

1-0261220/11212/28944_
126.141282123216450.041.43111.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0261220/11821/30491_
126.38394025278860.043.54117.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET / HTTP/1.1

1-0261220/11650/30679_
126.42135829078710.043.32119.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_42cf26e1e

1-0261220/10838/28818_
126.42155525192580.039.71111.52
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SingleLogoutService.php?SAMLRequest=lVLRatwwEPwV

1-0261220/11622/29062_
126.30740523043770.042.54111.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

1-0261220/11681/29253_
126.121430524023990.043.25113.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_00b26e1ad

1-0261220/13256/30383_
126.151219125400440.048.44117.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0261220/11943/30979_
126.38412624243930.043.89119.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

1-0261220/12188/31070_
126.36552721657430.045.26120.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e2baf04e6

1-0261220/10811/28332_
126.201044621639210.039.68109.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F609&cookieTi

1-0261220/12481/29787_
126.30747521074990.045.46114.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

1-0261220/12405/32116_
126.1214721226037260.045.87124.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_399e17673

1-0261220/10826/27530_
126.141383520537290.039.10105.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F416&cookieTi

Found on 2025-10-01 00:47

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfc69e4b81

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 28-Sep-2025 23:41:58 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 days 23 hours 40 seconds
Server load: 1.00 0.89 1.08
Total accesses: 2462519 - Total Traffic: 8.9 GB - Total Duration: 177325049
CPU Usage: u141.18 s99.98 cu521.65 cs323.68 - .105% CPU load
2.38 requests/sec - 9.1 kB/second - 3891 B/request - 72.0096 ms/request
1 requests currently being processed, 74 idle workers
________________________________________________________________
__________W.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0260300/7697/25453_
77.909885718993300.026.9597.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_860774924

0-0260300/6924/25089_
77.977193519764240.023.9996.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_2b24322477f1b

0-0260300/6862/25129_
78.10312020408900.023.9897.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0260300/7219/24923_
78.0255438719634370.024.8995.92
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0260300/7509/26655_
78.02572820973150.026.31103.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1759102111&spentityid=

0-0260300/7588/26109_
77.95868023011030.026.64100.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /apple-touch-icon.png HTTP/1.1

0-0260300/8564/27703_
78.10168424460030.029.79106.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0260300/6417/23890_
77.97696518587350.022.3491.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0260300/6844/22717_
77.8412925117850320.024.3787.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ab32ba3c5

0-0260300/6727/23940_
78.05382120968400.023.4992.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0260300/7187/25595_
77.841307120901100.025.3598.51
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0260300/7221/24049_
78.152619243430.024.9992.01
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1759102889&source=cwbr

0-0260300/7991/23772_
78.1064118462440.027.9791.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0260300/8620/27177_
78.10198419373810.030.27104.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0260300/8125/26885_
77.97682720184200.028.60102.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6e121f19b

0-0260300/8004/25957_
78.10257220166230.027.8999.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9b0ed7093

0-0260300/6762/24392_
78.025541219798120.023.8593.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_69ff71b1b

0-0260300/7464/24184_
77.95805318670470.026.2893.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_cc9dd6c6b

0-0260300/7514/25720_
77.90970719716310.026.2599.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_76f8cf307

0-0260300/8218/26758_
77.8810552321514410.028.79103.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0260300/7342/25600_
77.881091219493550.025.5398.46
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_53c46062f

0-0260300/7230/26707_
78.10336621714580.025.45102.88
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1759102531&source=cwbr

0-0260300/6724/24242_
77.881167118734100.024.3194.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0260300/8317/25577_
78.03493322188970.029.1997.77
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ffb8e2533

0-0260300/7967/24706_
77.958923821079520.028.2994.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_02407e17c768a

1-0261220/6721/24215_
78.34263719994480.023.3893.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_efecf7596

1-0261220/7577/25445_
78.4164020577420.026.8798.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0261220/8305/26727_
78.0812695221742680.029.52102.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1759101538&spentityid=

1-0261220/7222/25520_
78.274742422345600.025.5898.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0261220/8207/27177_
78.23616720972610.028.85104.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d0048d542

1-0261220/7086/24818_
78.16944619743340.025.0995.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-0261220/7188/25858_
78.4181422004610.025.2499.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0261220/6806/25835_
78.41333725298910.024.42100.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0261220/7145/25125_
78.121035122465100.025.2597.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0261220/7714/25154_
78.381903020169400.027.0496.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_04fef880cccfb

1-0261220/7833/25405_
78.1210717020863670.028.0798.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1759101819&source=cwbr

1-0261220/8357/25484_
78.1211094921014850.029.2498.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1759101768&source=cwbr

1-0261220/8101/27137_
78.081268621431700.028.54104.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/mfa/webauthn.php?StateId=_fa0f274

1-0261220/7512/26394_
78.32336218465950.026.74101.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0261220/6460/23981_
78.23742018633450.022.5692.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0261220/8630/25936_
78.23663318433490.030.4199.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7f19c4fb5

1-0261220/7444/27155_
78.18875721992500.026.62105.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6f25130f4

1-0261220/6664/23368_
78.15960017099420.022.8589.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0261220/7695/26258_
78.391803721171550.027.14101.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southea

Found on 2025-09-28 23:41

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfe9a448a1

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 27-Sep-2025 10:21:26 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 days 9 hours 40 minutes 8 seconds
Server load: 0.97 1.10 1.27
Total accesses: 2281733 - Total Traffic: 8.2 GB - Total Duration: 162063338
CPU Usage: u89.4 s67.43 cu521.65 cs323.68 - .111% CPU load
2.54 requests/sec - 9.6 kB/second - 3870 B/request - 71.0264 ms/request
2 requests currently being processed, 73 idle workers
______________K______________W__________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0260300/5090/22846_
51.08727616888820.016.8087.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0260300/5260/23425_
51.09356718362590.017.4489.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758968109&source=cwbr

0-0260300/4701/22968_
50.7219371518896490.015.4388.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d69449253

0-0260300/4958/22662_
51.11302118002850.016.0587.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0260300/4896/24042_
51.14229718443820.016.0793.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3164e9262

0-0260300/5118/23639_
51.09447320530820.016.7790.71
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0260300/5932/25071_
50.831505422152710.019.4395.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0260300/4653/22126_
51.09500117038370.015.4984.88
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0260300/4186/20059_
50.9312575115487430.013.8577.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_10000e76c

0-0260300/4573/21786_
50.7817435219485660.014.9983.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_765826478

0-0260300/4588/22996_
50.9212699918506350.015.1288.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d389973ff6242

0-0260300/5289/22117_
51.019522517641580.017.3884.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0260300/5703/21484_
50.881335616882340.018.9482.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758967098&source=cwbr

0-0260300/5664/24221_
50.781713017292780.018.6392.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0260301/5405/24165K
51.1442618122104.117.8892.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0260300/5546/23499_
50.7618053118053360.018.1990.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0260300/4637/22267_
50.72197327517402220.015.4885.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0260300/4672/21392_
51.048725616317320.015.3682.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0df99102d

0-0260300/5100/23306_
51.095905417645390.016.8089.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758967836&spentityid=

0-0260300/5583/24123_
50.999992619394260.018.3692.60
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0260300/4835/23093_
50.941175117272830.015.6488.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0260300/4833/24310_
51.142558118893400.015.8593.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_57f44a546f953

0-0260300/4214/21732_
50.9411253316766560.013.9284.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8b9bdb15bc991

0-0260300/5761/23021_
51.14425220027620.019.1087.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758968415&source=cwbr

0-0260300/5225/21964_
51.08663119207440.017.3083.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0261220/4519/22013_
51.411673518400710.014.6484.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4cf374d0b

1-0261220/5139/23007_
51.3818762818464780.017.3588.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0261220/5591/24013_
51.551065918736490.018.7892.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_cbdb794fb

1-0261220/4695/22993_
51.381795220576600.015.7088.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5d11f7f4497c1

1-02612238/5582/24552W
51.72001867281125.318.5193.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

1-0261220/4934/22666_
51.569765917950920.016.6387.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8d7fa91d4

1-0261220/4717/23387_
51.451348619808590.015.3389.59
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_13c6c1112

1-0261220/4383/23412_
51.501200722749600.014.5590.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_66ab54c11

1-0261220/4850/22830_
51.56835620801610.016.0687.87
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_208e048b0

1-0261220/5200/22640_
51.481224818327700.017.1086.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_17c3beb24

1-0261220/4953/22525_
51.56935718375220.016.5186.46
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e7389d5f7

1-0261220/5639/22766_
51.451435418159790.018.6287.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0261220/5346/24382_
51.531079819069480.017.6193.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e658db79f

1-0261220/4826/23708_
51.351961016349920.016.0290.96
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0261220/4642/22163_
51.61600117050220.015.1485.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0261220/6292/23598_
51.71157716560590.021.0689.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758968285&source=cwbr

1-0261220/4927/24638_
51.616422319735350.016.2995.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0261220/4997/21701_
51.66332115975670.016.3982.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0261220/5021/23584_
51.4515851119079690.016.6990.89
127.0.0.1http/1.1ip-10-1-92-105.ap-so

Found on 2025-09-27 10:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfc654a65a

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 25-Sep-2025 04:35:41 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 days 3 hours 54 minutes 23 seconds
Server load: 1.56 1.91 1.78
Total accesses: 1740568 - Total Traffic: 6.4 GB - Total Duration: 135524612
CPU Usage: u219.28 s147.87 cu255.22 cs150.9 - .11% CPU load
2.47 requests/sec - 9.6 kB/second - 3969 B/request - 77.8623 ms/request
1 requests currently being processed, 74 idle workers
................................................................
................................................................
......................__________________________________________
_________________W_______________...............................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/17756.
0.0024980135714954240.00.0070.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzzK1Du5MMsG

0-0-0/0/18165.
0.0024980135716837020.00.0072.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78iIwH

0-0-0/0/18267.
0.0024980127716602830.00.0073.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b6f8bb0caa296

0-0-0/0/17704.
0.0024980130216188550.00.0071.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bac98ecad14fc

0-0-0/0/19146.
0.0024980129916460590.00.0077.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_28d21fd7b65f4

0-0-0/0/18521.
0.0024980123818794560.00.0073.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5e3d1d8bf

0-0-0/0/19139.
0.0024980126619739680.00.0076.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0f9d0caba457e

0-0-0/0/17473.
0.0024980137515862830.00.0069.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5e0e72c08f44f

0-0-0/0/15873.
0.0024980117113159700.00.0063.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bd7467a5f61fe

0-0-0/0/17213.
0.0024980126317036900.00.0068.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1Deya1QG

0-0-0/0/18408.
0.0024980126416509350.00.0073.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fe636cc949fcd

0-0-0/0/16828.
0.0024980143414923420.00.0067.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLrtowEN3zFSh78uoFG

0-0-0/0/15781.
0.0024980123914299620.00.0063.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5b5580cf6

0-0-0/0/18557.
0.0024980139914492930.00.0074.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0-0/0/18760.
0.0024980143415549000.00.0074.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ddcb592de728c

0-0-0/0/17953.
0.0024980125115815340.00.0071.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_33c7f0a97

0-0-0/0/17630.
0.0024980130315339620.00.0070.08
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_55d55748cc5e7

0-0-0/0/16720.
0.0024980124614196840.00.0067.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0-0/0/18206.
0.0024980130415458160.00.0073.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_13cf3ad90c745

0-0-0/0/18540.
0.0024980124416728640.00.0074.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_29946a96c5282

0-0-0/0/18258.
0.0024980139715500600.00.0072.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_70e4b5c15695c

0-0-0/0/19477.
0.0024980123416715180.00.0077.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0-0/0/17518.
0.0024980137014922240.00.0070.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5b5580cf6fbdb

0-0-0/0/17260.
0.0024980125217906690.00.0068.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78oIhY

0-0-0/0/16739.
0.0024980135816851980.00.0066.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_349ae4533e8ef

1-0-0/0/17494.
0.0024979921016381250.00.0069.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6b6fdc8ec

1-0-0/0/17868.
0.0024979926015933470.00.0071.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/18422.
0.0024979927216825860.00.0073.42
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6d93fa9cc8758

1-0-0/0/18298.
0.0024979929118333110.00.0072.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dcd5f780e

1-0-0/0/18970.
0.0024979938316378510.00.0075.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d7be3c4c7

1-0-0/0/17732.
0.0024979924916100290.00.0070.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_33cfacdbde42b

1-0-0/0/18670.
0.0024979929917883220.00.0074.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_08f54f73e51ca

1-0-0/0/19029.
0.002497997320188360.00.0075.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_749f82866bcb0

1-0-0/0/17980.
0.0024979925718609030.00.0071.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d23e4421a

1-0-0/0/17440.
0.0024979923615772360.00.0069.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b47ebd1c4

1-0-0/0/17572.
0.0024979932814621630.00.0069.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_beb73e322

1-0-0/0/17127.
0.0024979917515741630.00.0069.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/19036.
0.0024979942717027180.00.0076.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b95225937abe9

1-0-0/0/18882.
0.0024979930414593330.00.0074.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeSYK73

1-0-0/0/17521.
0.0024979931615356400.00.0070.19
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d99cbaaf04984

1-0-0/0/17306.
0.0024979930414016940.00.0068.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_212652b8dba12

1-0-0/0/19711.
0.0024979924317662460.00.0078.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fe636cc94

1-0-0/0/16704.
0.0024979924313834560.00.0066.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/18563.
0.0024979924016248050.00.0074.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeas

Found on 2025-09-25 04:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf37ef8a36

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 23-Sep-2025 08:55:42 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 days 8 hours 14 minutes 24 seconds
Server load: 0.59 0.75 0.86
Total accesses: 1051291 - Total Traffic: 4.1 GB - Total Duration: 96344731
CPU Usage: u50.49 s35.24 cu255.22 cs150.9 - .0897% CPU load
1.92 requests/sec - 7.9 kB/second - 4204 B/request - 91.6442 ms/request
1 requests currently being processed, 74 idle workers
................................................................
................................................................
......................__W_______________________________________
_________________________________...............................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/17756.
0.009260235714954240.00.0070.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzzK1Du5MMsG

0-0-0/0/18165.
0.009260235716837020.00.0072.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78iIwH

0-0-0/0/18267.
0.009260227716602830.00.0073.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b6f8bb0caa296

0-0-0/0/17704.
0.009260230216188550.00.0071.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bac98ecad14fc

0-0-0/0/19146.
0.009260229916460590.00.0077.47
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_28d21fd7b65f4

0-0-0/0/18521.
0.009260223818794560.00.0073.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5e3d1d8bf

0-0-0/0/19139.
0.009260226619739680.00.0076.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0f9d0caba457e

0-0-0/0/17473.
0.009260237515862830.00.0069.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5e0e72c08f44f

0-0-0/0/15873.
0.009260217113159700.00.0063.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bd7467a5f61fe

0-0-0/0/17213.
0.009260226317036900.00.0068.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1Deya1QG

0-0-0/0/18408.
0.009260226416509350.00.0073.16
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fe636cc949fcd

0-0-0/0/16828.
0.009260243414923420.00.0067.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLrtowEN3zFSh78uoFG

0-0-0/0/15781.
0.009260223914299620.00.0063.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5b5580cf6

0-0-0/0/18557.
0.009260239914492930.00.0074.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0-0/0/18760.
0.009260243415549000.00.0074.34
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ddcb592de728c

0-0-0/0/17953.
0.009260225115815340.00.0071.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_33c7f0a97

0-0-0/0/17630.
0.009260230315339620.00.0070.08
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_55d55748cc5e7

0-0-0/0/16720.
0.009260224614196840.00.0067.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0-0/0/18206.
0.009260230415458160.00.0073.15
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_13cf3ad90c745

0-0-0/0/18540.
0.009260224416728640.00.0074.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_29946a96c5282

0-0-0/0/18258.
0.009260239715500600.00.0072.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_70e4b5c15695c

0-0-0/0/19477.
0.009260223416715180.00.0077.43
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0-0/0/17518.
0.009260237014922240.00.0070.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5b5580cf6fbdb

0-0-0/0/17260.
0.009260225217906690.00.0068.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78oIhY

0-0-0/0/16739.
0.009260235816851980.00.0066.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_349ae4533e8ef

1-0-0/0/17494.
0.009260021016381250.00.0069.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6b6fdc8ec

1-0-0/0/17868.
0.009260026015933470.00.0071.14
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/18422.
0.009260027216825860.00.0073.42
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6d93fa9cc8758

1-0-0/0/18298.
0.009260029118333110.00.0072.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dcd5f780e

1-0-0/0/18970.
0.009260038316378510.00.0075.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d7be3c4c7

1-0-0/0/17732.
0.009260024916100290.00.0070.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_33cfacdbde42b

1-0-0/0/18670.
0.009260029917883220.00.0074.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_08f54f73e51ca

1-0-0/0/19029.
0.00926007320188360.00.0075.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_749f82866bcb0

1-0-0/0/17980.
0.009260025718609030.00.0071.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d23e4421a

1-0-0/0/17440.
0.009260023615772360.00.0069.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b47ebd1c4

1-0-0/0/17572.
0.009260032814621630.00.0069.95
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_beb73e322

1-0-0/0/17127.
0.009260017515741630.00.0069.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/19036.
0.009260042717027180.00.0076.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b95225937abe9

1-0-0/0/18882.
0.009260030414593330.00.0074.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeSYK73

1-0-0/0/17521.
0.009260031615356400.00.0070.19
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d99cbaaf04984

1-0-0/0/17306.
0.009260030414016940.00.0068.74
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_212652b8dba12

1-0-0/0/19711.
0.009260024317662460.00.0078.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fe636cc94

1-0-0/0/16704.
0.009260024313834560.00.0066.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/18563.
0.009260024016248050.00.0074.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth

Found on 2025-09-23 08:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf7c76dfde

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 21-Sep-2025 10:56:44 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 10 hours 15 minutes 26 seconds
Server load: 1.15 1.06 1.17
Total accesses: 762106 - Total Traffic: 3.0 GB - Total Duration: 65805755
CPU Usage: u28.4 s21.87 cu189.87 cs111.44 - .0919% CPU load
1.99 requests/sec - 8.1 kB/second - 4165 B/request - 86.3473 ms/request
1 requests currently being processed, 49 idle workers
__________________W_______________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-043630/1878/15142_
21.00170312144420.07.5260.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-043630/2567/15523_
20.99321713771300.010.1561.38
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_252137f4d

0-043630/1765/14618_
20.9839728912726870.06.8758.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-043630/1963/14873_
20.98450212640800.07.7559.27
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9a94f6437

0-043630/1851/16316_
20.945293812811010.07.2965.90
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-043630/2118/15546_
21.01137513065500.08.3661.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4711cb27d

0-043630/1749/16118_
20.99251316123990.06.8963.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-043630/2224/14724_
21.0176212998720.08.5758.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_259174dac

0-043630/1794/12971_
20.98385410510960.07.0851.56
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-043630/1588/14325_
21.00218214259950.06.0756.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fde042180

0-043630/1871/15599_
20.99278613641220.07.3061.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8e4eb095e

0-043630/1688/13962_
20.98358611938640.06.5255.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-043630/1533/13072_
21.01973911278440.06.0352.50
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_51570d7c75575

0-043630/2058/16169_
20.936186411723340.08.0464.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-043630/2021/15743_
21.01128012719260.07.7862.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOSer HTTP/1.1

0-043630/2084/15339_
21.0144213233350.08.3061.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f5b0af9eb

0-043630/1542/15199_
20.9929713513003400.05.9860.09
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLfT8IwEH73r1j6vq4bW

0-043630/1759/14173_
21.035211345940.06.8956.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c38eea005

0-0436310/1870/15199W
21.0300123428711.77.3960.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-043630/1862/15499_
20.96498412400710.07.3361.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-043630/1944/15285_
20.9459316012574240.07.6560.61
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLfT8IwEH73r1j6vm7gQ

0-043630/1750/16508_
20.97477113765330.06.6965.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-043630/1734/14510_
20.94565512144750.06.5957.78
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-043630/1976/14980_
20.9933182914336760.08.2059.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-043630/1666/14058_
20.98456212703340.06.5555.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-048280/1582/15370_
19.64577514178240.06.1660.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-048280/2025/15195_
19.64624013238360.07.8260.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-048280/2146/16178_
19.67468314221800.08.3964.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-048280/1629/15397_
19.64608415232390.06.2361.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-048280/2176/16262_
19.64522613517420.08.4164.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_308194130

1-048280/1886/15038_
19.654984013209990.07.4159.52
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-048280/1983/16184_
19.70336014698440.07.7463.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-048280/1921/15941_
19.7510712215271800.07.4862.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVgnc9LaExY

1-048280/1890/15578_
19.74150015388960.07.3962.10
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-048280/1555/14747_
19.702862312851670.06.0258.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-048280/1961/15223_
19.74196512554730.07.7260.68
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_461e8ddd3

1-048280/1703/14762_
19.70314513717740.06.7959.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_746ea2889

1-048280/1530/15821_
19.76977413767080.05.9462.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-048280/2172/16430_
19.73215012454910.08.3765.20
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-048280/1507/14756_
19.70411512472480.05.9158.58
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_13954eb32

1-048280/1412/14895_
19.70350611759760.05.4558.86
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_162cb262f

1-048280/1718/16604_
19.69430114111030.06.7765.97
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-048280/1013/13732_
19.645403011007960.03.8854.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b77e187566788

1-048280/1671/15829_
19.722613713417570.06.5063.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-048280/1889/15468_
19.703746123811

Found on 2025-09-21 10:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acffc38a80e

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 18-Sep-2025 19:09:41 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 18 hours 28 minutes 23 seconds
Server load: 1.32 1.32 1.23
Total accesses: 320833 - Total Traffic: 1.2 GB - Total Duration: 27243790
CPU Usage: u93.18 s56.56 cu0 cs0 - .0979% CPU load
2.1 requests/sec - 8.5 kB/second - 4147 B/request - 84.9158 ms/request
2 requests currently being processed, 48 idle workers
__________W___________________________K___________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/6186/6186_
70.64797544751850.024.4824.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758221756&source=cwbr

0-0370/5805/5805_
70.8925636057620.022.6322.63
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_eb67f1c8a

0-0370/6341/6341_
70.9210834641490.025.3225.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/5553/5553_
70.9216844130260.021.8021.80
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/6883/6883_
70.7263375333440.027.2827.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_37b2ebf74

0-0370/6502/6502_
70.7851944997930.025.5725.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/6765/6765_
70.7945947454160.026.7526.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/6288/6288_
70.8334986181720.024.7624.76
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758222213&source=cwbr

0-0370/5348/5348_
70.7070793964930.021.2221.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_00f531c9a

0-0370/6266/6266_
70.926346677810.024.7524.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-03713/6649/6649W
70.920055033023.426.0426.04
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0370/5303/5303_
70.9219144061090.021.1121.11
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/4688/4688_
70.64790523943990.018.5918.59
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews&cookieTime=175

0-0370/7252/7252_
70.921954640390.028.7828.78
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/7476/7476_
70.88281325454580.029.5729.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0370/6618/6618_
70.667583265510180.026.1326.13
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?cookieTime=1758221787&spentityid=

0-0370/6569/6569_
70.765621625929390.025.8425.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6d0ffdb50

0-0370/6320/6320_
70.7848574585170.025.3725.37
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_22a93066b

0-0370/5877/5877_
70.75580264241420.023.5423.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0370/6192/6192_
70.5892134668630.024.6224.62
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/6561/6561_
70.5986265419160.025.7925.79
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/6770/6770_
70.60850305374950.026.3926.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0370/6162/6162_
70.923844875650.024.3624.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/5977/5977_
70.78539516390370.023.2823.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_46864400a

0-0370/5790/5790_
70.9023345392300.022.6522.65
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/6829/6829_
75.005256079160.027.0027.00
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/6269/6269_
74.9732574682940.024.9324.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_00622aa14

1-0380/6696/6696_
74.97270825790070.026.5326.53
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0b61c00d4

1-0380/6410/6410_
74.997746834330.025.3025.30
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/6228/6228_
74.95396335195590.024.7524.75
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_a16077169cc6b

1-0380/6618/6618_
74.81660116224890.025.9825.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_614b738f7

1-0380/6818/6818_
74.82617566775880.026.9326.93
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e9bd5d0c0

1-0380/7156/7156_
74.74886276504370.027.6727.67
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0380/6120/6120_
74.87483764975370.024.4924.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6a48a52a5

1-0380/7292/7292_
74.75802225569370.029.1229.12
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0380/6231/6231_
74.7487675149640.024.8124.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ab78da77a

1-0380/6435/6435_
74.8550686573120.026.3526.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_81e11b2cb

1-0380/6950/6950_
74.9817876242850.027.3627.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a7864f1b0

1-0381/6582/6582K
75.00104421411.026.0726.07
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /.vscode/sftp.json HTTP/1.1

1-0380/6401/6401_
74.7677265328860.025.3225.32
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_86153152f

1-0380/6334/6334_
74.8357210795347530.025.0225.02
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/7142/7142_
74.9729385601760.028.3328.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7b081cbd0

1-0380/6462/6462_
74.8260784827250.025.3525.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f4fdb85a7

1-0380/6848/6848_
75.003245901420.027.2527.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/5993/5993_
74.91439

Found on 2025-09-18 19:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf26b3f1f2

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Wednesday, 17-Sep-2025 04:48:21 UTC
Restart Time: Wednesday, 17-Sep-2025 00:41:17 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 7 minutes 3 seconds
Server load: 2.33 1.81 1.64
Total accesses: 38124 - Total Traffic: 157.5 MB - Total Duration: 4667170
CPU Usage: u11.13 s6.42 cu0 cs0 - .118% CPU load
2.57 requests/sec - 10.9 kB/second - 4333 B/request - 122.421 ms/request
1 requests currently being processed, 49 idle workers
_______W__________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/974/974_
7.671774758670.03.943.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F163%2F&c

0-0370/672/672_
7.554095566510.02.812.81
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d9a31fb91

0-0370/536/536_
7.75925456880.02.282.28
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_507ee70cc

0-0370/328/328_
7.613077314480.01.291.29
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

0-0370/828/828_
7.786410744720.03.333.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_47e3e4958

0-0370/591/591_
7.701251502880.02.412.41
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0370/644/644_
7.6621122119480.02.732.73
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c1e7d62d5

0-03723/733/733W
7.830012466479.63.033.03
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /server-status HTTP/1.1

0-0370/811/811_
7.48540757815740.03.393.39
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/730/730_
7.524504382200.02.912.91
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F163%2F&c

0-0370/570/570_
7.525023612740.02.252.25
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f479acfa0

0-0370/560/560_
7.505250360490.02.362.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/459/459_
7.78701387900.01.851.85
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/1083/1083_
7.78691600590.04.544.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0370/793/793_
7.821013853710.03.243.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/1067/1067_
7.6425555959100.04.364.36
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F361%2F&c

0-0370/601/601_
7.66232571661280.02.482.48
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b3403ac61

0-0370/611/611_
7.8270750520.02.542.54
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET / HTTP/1.1

0-0370/812/812_
7.4561011660980.03.693.69
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_14804975b

0-0370/736/736_
7.681371695710.02.992.99
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0370/694/694_
7.61312551274910.02.842.84
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b81e4ef93

0-0370/605/605_
7.4560856452820.02.442.44
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8a691a01d

0-0370/564/564_
7.524934748030.02.332.33
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

0-0370/648/648_
7.52477331104080.02.572.57
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_11d4a6145d8b4

0-0370/704/704_
7.59373689983070.03.053.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL3zFZHvcZYmV

1-0380/738/738_
9.34946752080.03.053.05
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8e65cbd94ece0

1-0380/669/669_
9.2320531768570.02.642.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_11c3b71923f33

1-0380/1044/1044_
9.074454767340.04.314.31
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F361%2F&c

1-0380/643/643_
9.340141814990.02.702.70
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e26fa0b00

1-0380/851/851_
8.96563481135590.03.553.55
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_33dfaee809ed4

1-0380/688/688_
8.95571591101050.02.892.89
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3dc42d42c

1-0380/1043/1043_
9.0446991560000.04.354.35
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9fb5920ae

1-0380/786/786_
8.9751741225930.03.263.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

1-0380/681/681_
9.3253352535190.02.942.94
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeSUIIl

1-0380/841/841_
9.0843391126340.03.403.40
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_783d97b5f

1-0380/766/766_
9.0248341014440.03.223.22
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/cloudworkauth/mfa/totp.php?StateId=_76bc5b90f84

1-0380/779/779_
9.18282132292390.03.243.24
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e89328a53

1-0380/704/704_
9.1334151838950.02.982.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

1-0380/736/736_
9.084231565100.02.982.98
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0380/804/804_
9.2616151785940.03.263.26
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

1-0380/845/845_
9.281433477666610.03.493.49
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hZLLbtswEEX3BfIPBPd62

1-0380/663/663_
9.18268196608800.02.822.82
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZHNTsMwEIRfJfI9P06CG

1-0380/891/891_
9.281435909750.03.643.64
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F163%2F&c

1-0380/1297/1297_
9.341012938060.05.185.18
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0380/733/733_
9.281251410150.03.063.06
127.0.0.1http/1.1ip-10-1-92-105.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-038

Found on 2025-09-17 04:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acff827f829

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 13-Sep-2025 13:50:08 UTC
Restart Time: Monday, 08-Sep-2025 00:43:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 days 13 hours 6 minutes 36 seconds
Server load: 0.90 0.96 1.15
Total accesses: 1872661 - Total Traffic: 6.3 GB - Total Duration: 105472112
CPU Usage: u152.26 s107.18 cu284.34 cs180.26 - .151% CPU load
3.91 requests/sec - 13.7 kB/second - 3585 B/request - 56.3221 ms/request
1 requests currently being processed, 74 idle workers
___________________________________W______________..............
..........._________________________............................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0225540/12546/28268_
111.773641015183390.041.6397.44
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9ee6a7116

0-0225540/11770/26208_
111.52118822014130050.038.7490.30
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1adb33f8daa86

0-0225540/10876/25903_
111.521172816786430.035.5889.78
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7541be8ea

0-0225540/10985/25222_
111.83174221414661170.036.0086.14
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0225540/11039/25785_
111.3816852413949500.036.4289.58
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0225540/11392/26379_
111.88865914838100.037.8591.20
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d4fff9311f5cf

0-0225540/11501/26346_
111.7921112515910840.038.5691.51
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0225540/12090/26519_
111.61915913607040.039.7690.31
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a628aecc3

0-0225540/11282/25348_
111.4314461014930410.037.6387.67
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F671%2F&c

0-0225540/11118/25628_
111.63795417003580.036.4888.41
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0225540/12884/26626_
111.561009912755770.042.5090.72
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0225540/12053/25550_
111.8972913739170.039.6687.31
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0225540/11908/25788_
111.421565113047570.038.9788.21
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0225540/12320/26625_
111.63734616273740.040.6390.59
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

0-0225540/11211/27221_
111.421548514974680.036.7893.81
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0225540/11677/25690_
111.371840115236790.038.7388.51
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0225540/12301/26862_
111.71475314460930.040.7993.07
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9a50e4df9

0-0225540/10229/23909_
111.638321516372590.033.1881.07
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6c9d30169

0-0225540/12032/26372_
111.5212451013899620.040.5290.48
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a810d7665

0-0225540/11788/26357_
111.71503314726690.039.2290.56
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2e5314496

0-0225540/12878/27818_
111.371782414733160.042.5895.81
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d915d7099

0-0225540/11160/25311_
111.675581012922090.036.9186.61
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F671%2F&c

0-0225540/11924/27351_
111.7730618317447960.039.0793.10
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F163%2F&c

0-0225540/11741/26793_
111.6285919115426550.038.5791.47
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0225540/11418/26089_
111.481370514663650.037.5889.59
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0248790/10210/24906_
103.0451715408120.033.7886.42
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_522ef6917

1-0248790/10476/26760_
102.75928415716490.034.3492.08
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0248790/9998/25481_
102.731183815512170.032.7987.38
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

1-0248790/11320/26763_
102.481840016560240.037.5792.49
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0248790/10398/24308_
102.691308714001100.033.9882.41
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

1-0248790/10840/25818_
102.80802315230320.035.7288.83
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_840e8683c

1-0248790/11847/26301_
102.741167595514569590.039.0290.16
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F133%2F&c

1-0248790/10412/25968_
102.5217311314233100.034.7989.76
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_95a0c10e2

1-0248790/10767/26302_
102.90466114822000.035.4890.57
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0248790/10716/25176_
102.91463016888060.035.7586.60
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-02487942/10743/24896W
103.06001584766135.535.4585.09
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /server-status HTTP/1.1

1-0248790/10359/25844_
102.5915221115303010.034.2489.19
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_44c29a343

1-0248790/10465/25346_
102.541669014665690.035.1587.92
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET / HTTP/1.1

1-0248790/9648/24091_
103.002511114135340.031.6283.22
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F671%2F&c

1-0248790/10404/24277_
102.86563313270420.034.3582.87
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2e371c525

1-0248790/10786/25788_
103.00173417452820.036.3489.10
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0248790/10695/26359_
102.751037714402930.035.5790.99
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

1-0248790/11426/27194_
103.0025919714959090.037.8893.14
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_571611bda612a

1-0248790/10856/24398_
102.95314321642771

Found on 2025-09-13 13:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfbb466653

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 11-Sep-2025 03:00:15 UTC
Restart Time: Monday, 08-Sep-2025 00:43:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 2 hours 16 minutes 43 seconds
Server load: 6.58 2.54 2.05
Total accesses: 907424 - Total Traffic: 3.1 GB - Total Duration: 54902406
CPU Usage: u212.57 s136.4 cu0 cs0 - .131% CPU load
3.39 requests/sec - 12.0 kB/second - 3628 B/request - 60.5036 ms/request
3 requests currently being processed, 72 idle workers
________________W______________W____________________________W___
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/14088/14088_
124.90907177652210.049.4049.40
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLT8MwDL7zK6rcm3bd0

0-0370/12916/12916_
125.1046597408180.045.3745.37
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ed60929fe

0-0370/13243/13243_
125.201803399883440.047.2847.28
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT4NAEMW%2fCtk7fyt

0-0370/12809/12809_
124.93811507825680.044.3544.35
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

0-0370/13348/13348_
125.227256999480.047.4647.46
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

0-0370/13444/13444_
125.1044107277800.047.2547.25
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0370/13361/13361_
124.957972057895070.047.0347.03
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVYu96RnZtw

0-0370/12932/12932_
125.18191307744870.044.6344.63
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e816657455816

0-0370/12720/12720_
125.03592338121020.044.6044.60
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0370/13148/13148_
125.0651568610361510.046.3946.39
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/12478/12478_
125.217846175740.043.2143.21
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5cce2458a

0-0370/12360/12360_
124.8998858035810.043.0743.07
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_398dea78b

0-0370/12527/12527_
124.9576367438370.043.8143.81
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

0-0370/12467/12467_
124.90898158596140.042.5642.56
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4a8b6cfe3

0-0370/14220/14220_
125.12380328419030.049.9249.92
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3691f3c7cb59c

0-0370/12551/12551_
124.9573518507430.044.1644.16
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0376/12534/12534W
125.220079774513.444.3644.36
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/12193/12193_
125.1239109254990.042.0142.01
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0370/12963/12963_
125.1624418252600.044.5444.54
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/12924/12924_
125.0457708877400.044.7644.76
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/13500/13500_
125.2112718115460.047.4747.47
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0370/13219/13219_
125.12352106595280.046.0446.04
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F163%2F&c

0-0370/13440/13440_
124.99631119591450.045.9445.94
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

0-0370/13497/13497_
124.89969438301750.046.8046.80
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e3a12a74a806d

0-0370/13151/13151_
124.99647117398350.045.9745.97
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c0349f974

1-0380/13074/13074_
126.9574108674580.046.2146.21
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a4d53a13d

1-0380/14394/14394_
126.6788649891970.050.3650.36
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/13681/13681_
126.7562009779650.047.4047.40
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0380/13403/13403_
126.7565508795610.046.8246.82
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0380/12577/12577_
126.8054507483370.043.2243.22
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /ads.txt HTTP/1.1

1-0380/13397/13397_
126.7174798082930.047.0647.06
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f73c949ab

1-03827/13252/13252W
126.9720848260103.346.2546.25
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

1-0380/14099/14099_
126.8542808139720.049.1649.16
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0380/13808/13808_
126.966747705960.048.1348.13
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/13072/13072_
126.91264108154660.045.2645.26
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F671%2F&c

1-0380/12635/12635_
126.7470468176960.043.5943.59
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1a0e93410

1-0380/13875/13875_
126.80545499405410.048.5748.57
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F149%2F&c

1-0380/12538/12538_
126.8539118517060.043.3443.34
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/12866/12866_
126.9212767006380.045.1445.14
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F2233&cookieT

1-0380/12430/12430_
126.9123607874860.042.8942.89
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET / HTTP/1.1

1-0380/13370/13370_
126.65100669347110.046.3246.32
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F671%2F&c

1-0380/14177/14177_
126.6781907596350.049.4949.49
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0380/14336/14336_
126.6594988325900.049.7249.72
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fnews%2F2315.&cookie

1-0380/12004/12004_
126.6785449812200.042.4242.42
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e370312e8

1-0<

Found on 2025-09-11 02:59

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf43fa8013

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 09-Sep-2025 16:29:51 UTC
Restart Time: Monday, 08-Sep-2025 00:43:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 15 hours 46 minutes 19 seconds
Server load: 0.89 0.87 0.84
Total accesses: 507603 - Total Traffic: 1.6 GB - Total Duration: 25303193
CPU Usage: u117.44 s76.54 cu0 cs0 - .135% CPU load
3.55 requests/sec - 11.8 kB/second - 3419 B/request - 49.8484 ms/request
4 requests currently being processed, 71 idle workers
________________W_____________________K_____________K___________
______W____.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/8225/8225_
74.909423281960.027.6727.67
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0370/7459/7459_
74.7228723451890.024.8524.85
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d20c9fc93

0-0370/7413/7413_
74.7621836390940.025.0525.05
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0370/8183/8183_
74.5349624462620.027.3727.37
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0370/8458/8458_
74.4859714571350.029.2929.29
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_441b94bf6

0-0370/7738/7738_
74.954723565220.025.4625.46
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_691b61739

0-0370/7528/7528_
74.8017643725060.024.9524.95
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0370/8477/8477_
74.8414314644930.028.3628.36
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5a75643e5

0-0370/7913/7913_
74.6934415045400.026.5826.58
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_67a17a96d

0-0370/7373/7373_
74.5057123910630.024.9624.96
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0370/7536/7536_
74.5843723474980.024.7924.79
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0370/7083/7083_
74.72294315002070.023.7123.71
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f9396a69f54d0

0-0370/7296/7296_
74.5843013915000.024.4524.45
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_958e5bb3a

0-0370/7881/7881_
74.83150305354810.025.9725.97
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5e62ed6b8fa6a

0-0370/8115/8115_
74.6239623837000.027.1527.15
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0370/7397/7397_
74.5352714558590.025.2325.23
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dbbd063ab

0-03711/7458/7458W
75.000045437328.025.6325.63
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /server-status HTTP/1.1

0-0370/7366/7366_
74.5547515157700.024.3924.39
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_45d64689d

0-0370/7440/7440_
74.5354134776800.024.5124.51
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0370/7495/7495_
74.7225834496240.024.5924.59
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0370/7811/7811_
75.002334110240.026.2826.28
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0370/7886/7886_
74.6537323202320.026.3626.36
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0370/8168/8168_
74.9362474671960.026.8426.84
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_86bf9eaef

0-0370/8435/8435_
74.8712025063590.028.0328.03
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2f1636643

0-0370/7872/7872_
74.6140653710830.026.3226.32
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F189%2F&c

1-0380/7664/7664_
75.8227324385000.025.9725.97
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F189%2F&c

1-0380/8922/8922_
75.9613214776500.029.8429.84
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c27000f55

1-0380/8251/8251_
75.5950444791580.027.5527.55
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F189%2F&c

1-0380/8023/8023_
75.8233314810350.026.6626.66
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c3c0e0576

1-0380/7289/7289_
75.7240483772390.023.8423.84
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_61f4470c6

1-0380/8351/8351_
75.9911323563180.028.4428.44
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0380/7797/7797_
75.8229725388580.026.2126.21
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_bb10a8580

1-0380/7992/7992_
76.083933424020.026.5726.57
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0380/8664/8664_
75.7936024412910.029.1229.12
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_554030331

1-0380/8227/8227_
75.5355934810640.026.9426.94
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0380/7174/7174_
75.9018373902490.023.3923.39
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_90cb4772b

1-0380/7983/7983_
75.6348524415870.026.3926.39
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0757ea0ab

1-0380/7666/7666_
75.8921414655920.025.3325.33
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0381/7836/7836K
76.12224352273.026.5826.58
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0380/7629/7629_
75.69428554079920.025.1325.13
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ce346909bae87

1-0380/8541/8541_
76.028335180650.028.5528.55
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0380/8144/8144_
75.9215113885380.027.2527.25
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9bd3b7748

1-0380/8876/8876_
76.056334862480.029.8129.81
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0380/6891/6891_
75.7638836612000.023.0623.06
127.0.0.1http/1.1ip-10-1-108-69.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F

Found on 2025-09-09 16:29

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfa4f4f553

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 06-Sep-2025 19:06:05 UTC
Restart Time: Wednesday, 09-Jul-2025 07:05:52 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  59 days 12 hours 13 seconds
Server load: 2.57 2.26 1.73
Total accesses: 14927941 - Total Traffic: 55.8 GB - Total Duration: 1317428910
CPU Usage: u123.72 s111.44 cu3337.29 cs1977.47 - .108% CPU load
2.9 requests/sec - 11.4 kB/second - 4014 B/request - 88.2525 ms/request
1 requests currently being processed, 49 idle workers
_________________________.........................___W__________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0134130/505/214478_
6.73511360191322880.01.90827.74
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/674/213790_
6.735674188385620.02.56827.06
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/547/214340_
6.744503189890030.01.97830.25
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_05722828f

0-0134130/611/216908_
6.735353189350640.02.25840.56
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/558/211822_
6.743853188625820.02.12820.07
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fea417356

0-0134130/612/212057_
6.7434632192938810.02.36818.15
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0134130/705/218058_
6.751295190985610.02.67842.66
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5e71a79cd

0-0134130/604/217901_
6.76134194487090.02.13844.81
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dac5e37e3

0-0134130/737/220407_
6.751893187877740.02.82851.28
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e182aaf05

0-0134130/581/219485_
6.76943195134680.02.20849.84
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7bf6118a5

0-0134130/554/216191_
6.76653191413400.02.13838.87
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7a3c02c42

0-0134130/707/209577_
6.744623185463370.02.54809.92
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9a23f0f86

0-0134130/597/212712_
6.76293185751250.02.26820.46
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6a5fcbeaa

0-0134130/572/211906_
6.734984184330360.02.14820.37
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/529/213713_
6.7638328193456150.01.96826.47
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/595/212413_
6.744203199431410.02.24819.63
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4c0d6646a

0-0134130/582/215971_
6.76113342190715520.02.19836.92
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/536/211347_
6.744013189241620.01.92818.61
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_0c130185f

0-0134130/491/215371_
6.743623199928580.01.75834.44
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_396d9c749

0-0134130/606/215309_
6.752847194616540.02.25831.93
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ab86a3134

0-0134130/705/211333_
6.752233196858790.02.44819.94
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/584/216244_
6.752534199573340.02.13838.11
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/690/211472_
6.743054715180023460.02.69819.29
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0134130/746/213470_
6.76784188654510.02.86826.40
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9720fa235

0-0134130/861/210560_
6.7515836195866740.03.23818.14
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/228866.
0.00633664199147630.00.00884.71
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/228994.
0.00633664201079060.00.00880.49
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/228022.
0.00633664205747770.00.00877.15
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/222275.
0.00633664202700860.00.00856.59
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0-0/0/227439.
0.00633664199822660.00.00876.48
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/225876.
0.00633664200750510.00.00871.04
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0-0/0/225166.
0.0063366151201128620.00.00866.17
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZJbT8IwFMe%2FytJ32rI

1-0-0/0/229625.
0.00633664195487980.00.00886.34
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/228070.
0.006336648202941720.00.00877.06
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0-0/0/225382.
0.006336628201910190.00.00869.06
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0-0/0/231668.
0.006336641201359880.00.00893.46
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0-0/0/227416.
0.00633664205042000.00.00874.13
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/230626.
0.00633667213250080.00.00887.11
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0-0/0/229256.
0.00633664201733620.00.00884.12
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/230700.
0.00633665199312750.00.00889.76
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0-0/0/227938.
0.00633668204689890.00.00878.84
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_ab40140c5

1-0-0/0/225301.
0.00633664197924900.00.00868.70
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/223929.
0.00633665198739280.00.00862.10
127.0.0.1http/1.1ip-10-1-97-209.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/228196.
0.00633663209827500.00.00879.74
12

Found on 2025-09-06 19:05

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf0c02e623

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 22-Jun-2024 16:43:51 UTC
Restart Time: Friday, 17-May-2024 23:05:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  35 days 17 hours 38 minutes 47 seconds
Server load: 0.72 0.38 0.35
Total accesses: 1513850 - Total Traffic: 5.4 GB - Total Duration: 248344677
CPU Usage: u72.94 s75.79 cu402.07 cs234.27 - .0254% CPU load
.49 requests/sec - 1880 B/second - 3835 B/request - 164.048 ms/request
1 requests currently being processed, 49 idle workers
___________________________________________W______..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0101280/3659/29692_
37.301453051789150.013.02109.63
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0101280/3008/30529_
37.30198453503410.010.27111.84
127.0.0.1http/1.1

0-0101280/3195/30436_
37.311276049922340.011.26110.30
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET / HTTP/1.1

0-0101280/3474/30295_
37.335346495570.011.99111.62
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET / HTTP/1.1

0-0101280/3399/30621_
37.33331451901360.011.49116.47
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0101280/3014/30102_
37.334182848865530.010.90110.28
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

0-0101280/3353/30711_
37.3015013247223710.011.37110.04
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_701c6ea02b6e3

0-0101280/2968/29788_
37.3015193340861310.010.75107.43
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_05d8ffb184d24

0-0101280/3179/30116_
37.321229448875050.011.14109.34
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/2982/29840_
37.3016123051628050.010.52108.15
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET / HTTP/1.1

0-0101280/3214/29860_
37.33296646326470.011.58111.61
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/3087/29805_
37.321148547967250.010.75109.03
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/3592/30577_
37.32978550911050.012.96111.30
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/2748/29557_
37.321018550255200.09.90107.55
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/3383/30980_
37.28807449003960.011.71111.61
127.0.0.1http/1.1

0-0101280/3392/31674_
37.329623351704380.012.18114.23
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_16e0ec6400553

0-0101280/3287/29355_
37.32727548590510.011.66109.25
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/3173/29639_
37.32874650218760.011.31109.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_71e95332d

0-0101280/3439/31949_
37.32680452361140.012.37116.87
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/3816/30901_
37.32644451482160.013.78112.28
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0101280/3318/31206_
37.32608453334280.012.01113.46
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0101280/3572/29933_
37.324913351075350.012.97110.13
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_483a91782f670

0-0101280/3382/29818_
37.33367649111920.011.91110.03
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_bd4b35dce

0-0101280/3402/30332_
37.33252549651760.011.74108.66
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0101280/3311/30663_
37.32672048110750.011.59110.64
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0101990/3149/30136_
36.881239449118190.011.00111.80
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0101990/2771/29719_
36.90698447671620.09.87109.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0101990/2787/30389_
36.901121550593750.09.99110.27
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0101990/2952/29553_
36.90946446923070.010.68112.67
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0101990/3372/30973_
36.91663447588900.011.63112.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0101990/3237/30092_
36.91553145616130.011.31109.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0101990/3501/30282_
36.90853048510160.011.71110.69
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0101990/3534/30817_
36.90741548370540.012.67111.06
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0101990/3277/31756_
36.91485550375270.011.39116.24
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_b02772f0b

1-0101990/3182/31193_
36.91305450536030.011.36114.48
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

1-0101990/3161/30236_
36.91672050958750.010.68110.20
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0101990/3346/29774_
36.911773053474720.011.81110.07
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

1-0101990/3202/30536_
36.91245047830070.011.32112.22
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0101990/3326/30406_
36.91627455036280.012.60110.56
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0101990/3478/30600_
36.91381553997900.012.53112.52
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0101990/3359/28650_
36.91280452983250.011.90104.55
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0101990/3177/30638_
36.91356449590710.011.28110.92
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0101990/3151/29742_
36.871591046298130.011.15108.62
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /wp-content/plugins/uncode-core/includes/assets/js/uncode-f

1-0101993/3276/29906W
36.910050771313.111.58108.08
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /server-status HTTP/1.1

1-0101990/3191/30827_
36.8714153550514380.011.44115.52
127.0.0.1http/

Found on 2024-06-22 16:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfdd43552c

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Friday, 21-Jun-2024 00:53:27 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  34 days 1 hour 48 minutes 19 seconds
Server load: 1.83 1.82 2.15
Total accesses: 1465269 - Total Traffic: 5.2 GB - Total Duration: 237296575
CPU Usage: u106 s99.98 cu372.86 cs221.42 - .0272% CPU load
.498 requests/sec - 1911 B/second - 3840 B/request - 161.947 ms/request
1 requests currently being processed, 49 idle workers
______W___________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0159250/6095/25467_
63.91556142025510.025.3397.38
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0159250/5729/25202_
63.96166443894220.019.2491.34
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0159250/5582/26529_
63.94360341970300.019.4597.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0159250/5017/25785_
64.0086441488340.017.5295.65
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0159250/5472/24191_
63.91517240643860.018.2889.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0159250/5648/25455_
63.96228143945690.020.1894.29
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9f0bcfa08

0-0159254/5258/25263W
64.000047867184.917.8191.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

0-0159250/5701/26181_
63.91484051283750.019.4496.32
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0159250/5310/26110_
64.001064539975390.017.8295.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_2ac00b42c4aed

0-0159250/5257/26562_
63.8966312246804220.018.4597.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVJNb5wwEP0ryHcMOHRFr

0-0159250/5524/24505_
64.0018343020520.018.5489.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0159250/5340/26400_
63.94406342570630.018.4298.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0159250/5512/26109_
63.91481582346323090.019.7397.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0159250/5510/25703_
63.89577241280650.018.8698.27
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0159250/5553/25824_
63.88694144001850.018.7297.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0159250/5833/26723_
63.95329045211100.019.7599.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0159250/5121/24323_
63.94393041635550.017.8390.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0159250/6521/26226_
63.89612240340670.021.8697.02
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0159250/5437/26041_
63.9149715240442330.019.8697.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_052d8e8065225

0-0159250/6347/26600_
63.96206044601820.021.3897.65
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-0159250/6239/26282_
63.95306239939440.020.8495.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2dfab6f5f

0-0159250/5551/25053_
63.99129239902860.019.3791.57
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0159250/5206/25665_
63.91528538014570.017.7094.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0159250/6042/25862_
63.96236341413560.020.8995.77
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0159250/4883/24514_
64.00503342252700.016.7390.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f8966d9d29cad

1-0158570/5391/20946_
63.99481035354100.018.5276.67
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0158570/5138/20385_
64.02382336108620.017.6274.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0158570/5823/22043_
64.05180131724740.019.4580.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0158570/5625/22329_
64.04228434974730.019.3080.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0158570/6251/22597_
64.072317134420950.021.2680.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT4NAEMW%2fCtk7f4r

1-0158570/5609/21812_
64.0694032320130.019.7681.93
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0158570/5632/21959_
63.96686206337813140.019.2980.33
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0158570/5879/22952_
64.05159236205250.020.5683.78
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0158570/5497/22365_
64.03312133508660.019.0480.73
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0158570/4381/19637_
63.99528130667830.014.9672.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0158570/5736/22027_
64.02397134376890.019.8781.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

1-0158570/5937/22081_
64.084433508960.020.3481.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0158570/5445/21295_
64.05138335954920.018.4478.27
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_44ae9aacb

1-0158570/6025/22082_
63.96705334054940.020.9379.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0158570/5766/20282_
63.99568330557880.018.9572.65
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0158570/5622/21789_
64.066719134382150.018.8978.04
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b%2Ff

1-0158570/5951/22882_
63.99490623438233340.020.1082.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/totp.php HTTP/1.1

1-0158570/5429/21444_
63.98593430805280.018.5676.82
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0158570/5532/21089_
64.01445331421420.019.0676.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

Found on 2024-06-21 00:53

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfde22379d

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Tuesday, 18-Jun-2024 06:55:35 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  31 days 7 hours 50 minutes 28 seconds
Server load: 1.45 1.34 1.64
Total accesses: 1283777 - Total Traffic: 4.6 GB - Total Duration: 215891283
CPU Usage: u52.52 s63.23 cu372.86 cs221.42 - .0262% CPU load
.474 requests/sec - 1834 B/second - 3867 B/request - 168.169 ms/request
1 requests currently being processed, 49 idle workers
________________________W_________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0159250/2324/21696_
21.461002237223580.011.8283.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_b1303092d

0-0159250/2236/21709_
21.381279239162520.07.3779.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9de9997d2

0-0159250/2034/22981_
21.7945237667360.06.8485.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1dbc00a45

0-0159250/1789/22557_
21.49965138318110.06.5884.72
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-0159250/1866/20585_
21.68434236432030.06.0577.03
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c5d90cbf7

0-0159250/2212/22019_
21.77113440136950.07.5981.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0159250/1769/21774_
21.7793042519280.05.8579.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/script.js HTTP/1.1

0-0159250/1927/22407_
21.58640144763340.06.5083.38
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-0159250/1714/22514_
21.381270336665700.05.7683.12
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0159250/1939/23244_
21.51903341423930.06.4985.59
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0159250/1932/20913_
21.421136138845340.06.3277.10
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_04894a9b1

0-0159250/2220/23280_
21.63506038952240.07.2686.93
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/script.js HTTP/1.1

0-0159250/2051/22648_
21.50951240351770.07.0084.48
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_66f28a42e

0-0159250/1677/21870_
21.51940237389420.05.6585.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4a0141879

0-0159250/2048/22319_
21.421136240371870.06.6885.83
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_847c526ea

0-0159250/1793/22683_
21.58622140265710.06.0685.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0159250/1677/20879_
21.51842336914140.05.3978.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0159250/2222/21927_
21.53791335991100.07.2782.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0159250/1977/22581_
21.58663237224230.06.6284.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_c7d3ca015

0-0159250/1892/22145_
21.71376140771470.06.1382.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0159250/1972/22015_
21.59603334481790.06.4781.33
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0159250/1879/21381_
21.75223336711450.06.1478.35
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0159250/1615/22074_
21.53765235040130.05.5482.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0159250/1957/21777_
21.75217137135070.06.3881.27
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_d9a1a4919

0-01592542/1654/21285W
21.80003825342116.25.7779.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

1-0158570/1590/17145_
22.17293230650840.05.3363.48
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a4813a541

1-0158570/1567/16814_
22.2428030545610.05.3461.97
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0158570/2136/18356_
21.971258127788390.07.0167.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0158570/2020/18724_
22.031086031446100.06.9268.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0158570/1972/18318_
22.2357128970580.06.4366.05
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0158570/2279/18482_
22.03974528690370.07.6969.86
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0158570/2122/18449_
22.031030332610890.07.3768.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0158570/2207/19280_
22.07864232319990.07.7870.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_07ad549c4

1-0158570/1988/18856_
22.011178129837500.06.4668.15
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0158570/1529/16785_
22.21171226644340.05.0462.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e87a65c16

1-0158570/2003/18294_
22.011204331191320.06.9868.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0158570/2004/18148_
22.09746329461860.06.5067.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0158570/1824/17674_
22.03957130711860.06.0365.86
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0158570/2130/18187_
22.07836329306480.07.1566.07
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0158570/1955/16471_
22.11605226107680.06.1759.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0158570/2154/18321_
22.07850329798500.06.9166.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0158570/1981/18912_
22.12573333942040.06.5469.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0158570/1848/17863_
22.09772227533620.06.1464.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0158570/2047/17604_
22.12518327011160.06.9264.75
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%

Found on 2024-06-18 06:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf401269ec

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 16-Jun-2024 04:48:12 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  29 days 5 hours 43 minutes 5 seconds
Server load: 2.08 1.43 1.45
Total accesses: 1158583 - Total Traffic: 4.2 GB - Total Duration: 198809306
CPU Usage: u52.03 s57.34 cu335.08 cs201.31 - .0256% CPU load
.459 requests/sec - 1778 B/second - 3877 B/request - 171.597 ms/request
1 requests currently being processed, 49 idle workers
__W_______________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-060420/1429/18764_
20.769865633873160.05.9169.38
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh7EpKBM

0-060420/1639/18885_
20.73744335625580.06.3269.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060424/1632/20350W
20.770033828004.76.4075.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

0-060420/1549/20172_
20.73806434588740.06.0775.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-060420/1518/18147_
20.76138133710250.06.5268.30
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-060420/1389/19248_
20.762193636538500.05.6171.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_727e1fe06cf66

0-060420/1460/19407_
20.75410239679110.05.4571.02
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060420/1584/19854_
20.7618244440481030.06.4673.77
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZJbT8IwFMe%2FytJ32m1

0-060420/1611/20179_
20.75296233147940.06.3574.73
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-060420/1609/20776_
20.75449337163650.06.0576.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060420/1438/18485_
20.75378035303630.05.5968.68
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-060420/1536/20382_
20.75317335196880.06.2976.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060420/1591/19960_
20.7627137106170.05.9374.93
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-060420/1615/19657_
20.73711333833250.06.2577.16
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060420/1436/19749_
20.7669136668040.05.4676.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-060420/1616/20411_
20.73775337026820.06.4377.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060420/1792/18662_
20.74594034582060.07.1370.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /robots.txt HTTP/1.1

0-060420/1847/19044_
20.74570232365710.06.8872.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-060420/1658/19886_
20.73620034328800.06.6474.45
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-060420/1477/19767_
20.75506038027230.05.8574.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/script.js HTTP/1.1

0-060420/1731/19492_
20.7451917031967480.06.6572.59
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVHLboMwEPwV5DuYACHBC

0-060420/1640/19004_
20.75472332235000.06.2270.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_6457b24d8

0-060420/1438/19883_
20.73675132301810.05.7374.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-060420/1498/19307_
20.74547234343120.06.1772.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-060420/1407/18957_
20.75357534790540.05.8570.57
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-059720/1599/14988_
21.64125227011740.06.3555.78
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-059720/1448/14786_
21.63366327286990.05.8754.65
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-059720/1437/15757_
21.63307224510600.05.7658.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-059720/1758/16192_
21.62397228277660.06.6859.44
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-059720/1738/15742_
21.624563426493590.06.5557.16
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_779765d5effa8

1-059720/1708/15754_
21.63279225643910.06.6460.15
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-059720/1602/15782_
21.61536328213670.06.4758.65
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-059720/1608/16382_
21.63335428662250.06.1260.35
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-059720/1809/16351_
21.62435325849110.07.3559.30
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-059720/1606/14687_
21.598183823643640.06.4155.18
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_da50a6f3ba633

1-059720/1494/15747_
21.64213427913490.05.8958.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-059720/1321/15604_
21.64478025791490.05.7358.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_03d04cae27b46

1-059720/1598/15271_
21.64153526377880.06.2856.03
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3d2fee026

1-059720/1660/15424_
21.59796425863350.06.8256.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-059720/1579/13975_
21.648839322735530.06.8351.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b3dZN

1-059720/1594/15649_
21.60726327130520.06.5657.16
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_bf3cb745b

1-059720/1674/16404_
21.607563530103460.06.6660.44
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6c731b8a3a045

1-059720/1566/15542_
21.6064013824294580.06.4356.13
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78homD

1-059720/1605/15080_
21.6427023402910.06.7855.81
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

1-059720/1930/15552_
21.61<

Found on 2024-06-16 04:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfada8f7b7

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Wednesday, 12-Jun-2024 20:08:45 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  25 days 21 hours 3 minutes 38 seconds
Server load: 0.93 1.63 1.67
Total accesses: 1070754 - Total Traffic: 3.8 GB - Total Duration: 180807044
CPU Usage: u80.2 s73.72 cu273.79 cs163.58 - .0264% CPU load
.479 requests/sec - 1844 B/second - 3851 B/request - 168.86 ms/request
1 requests currently being processed, 49 idle workers
_______________________________W__________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0181060/3684/17167_
47.3721329930113800.013.0362.79
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/trigger-update.php HTTP/1.1

0-0181060/3912/17137_
47.3765331951740.013.8962.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/4632/18558_
47.34970030293330.016.7868.69
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0181060/4134/18388_
47.366203630439340.014.8468.30
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c45de5a252854

0-0181060/3752/16525_
47.3810330784320.013.4761.34
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/3943/17703_
47.34930232824160.014.3365.57
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/4096/17852_
47.37169436583190.014.5465.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/4052/18089_
47.37120235051400.014.2666.42
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/3993/18403_
47.36847530416170.014.1067.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0181060/4387/18862_
47.3793233416430.015.5869.38
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/3826/16921_
47.36703132073600.013.3962.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0181060/3960/18736_
47.34953331736290.013.7669.98
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/4471/18294_
47.37199034163560.016.5868.32
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /robots.txt HTTP/1.1

0-0181060/3784/17823_
47.3828230429900.014.0869.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/3699/18148_
47.3843233720260.013.0470.34
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/4481/18584_
47.34894333446040.015.4470.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/3831/16687_
47.37419330518110.013.4262.80
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/3589/17020_
47.371561628956260.012.4164.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/4381/18080_
47.34870030492710.015.9467.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0181060/3522/18171_
47.36459334790090.012.8767.92
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/3612/17545_
47.36541428003030.012.7365.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/3587/17228_
47.36526328886560.012.4363.35
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/3792/18240_
47.3727633527591930.013.5967.59
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owEL3zK1Du5Gthd

0-0181060/3674/17665_
47.36555230540310.013.3165.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0181060/4146/17311_
47.37349031120950.014.3463.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0180730/3533/13249_
47.167174223496530.012.5048.79
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_2c7df40d7d7f0

1-0180730/3579/13146_
47.16693024093080.013.5448.15
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /robots.txt HTTP/1.1

1-0180730/3926/14151_
47.17379321476790.014.0152.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/3824/14307_
47.18132024571980.014.1052.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

1-0180730/3795/13761_
47.1936223093090.013.2249.48
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0180730/4030/13769_
47.18204221604280.015.2252.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0180734/3635/13874W
47.190024722894.713.0950.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

1-0180730/3861/14613_
47.1885525013560.013.9053.50
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-0180730/3867/14459_
47.17305023288530.013.4151.67
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /robots.txt HTTP/1.1

1-0180730/3612/12809_
47.18247419827090.012.8547.52
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0180730/4568/14039_
47.1953324319640.016.8252.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/3992/14120_
47.18162322205840.014.7852.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/3987/13391_
47.18183322527090.013.5648.42
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/4229/13639_
47.16547121773650.014.8148.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0180730/3287/12225_
47.16912219387460.011.7043.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0180730/3967/13969_
47.16861323557650.013.9150.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/4363/14550_
47.159643625573440.015.5552.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0da2cb84a31cc

1-0180730/4097/13819_
47.18112220306900.013.8548.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0180730/3816/13383_
47.16941320045960.013.4548.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-01807

Found on 2024-06-12 20:08

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfed695369

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Monday, 10-Jun-2024 08:11:19 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  23 days 9 hours 6 minutes 12 seconds
Server load: 0.80 1.31 1.68
Total accesses: 973670 - Total Traffic: 3.5 GB - Total Duration: 162880919
CPU Usage: u46.16 s51.83 cu273.79 cs163.58 - .0265% CPU load
.482 requests/sec - 1845 B/second - 3827 B/request - 167.286 ms/request
1 requests currently being processed, 49 idle workers
______________________W___________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0181060/1977/15460_
22.08901326736490.06.0255.78
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e1b5fd2b9

0-0181060/2026/15251_
22.18236326882480.06.6355.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0181060/2482/16408_
22.16363326438830.08.2860.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0181060/2238/16492_
22.1550644427135180.07.2860.73
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLT8MwDL7zK6rcm3Zb2

0-0181060/1761/14534_
22.17286325485970.05.8353.69
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0181060/1955/15715_
22.15470229437620.06.7457.98
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0181060/2029/15785_
22.1732739532532660.06.4557.12
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/cloudworkauth/mfa/hotp.php?hotp_id=1090&StateId

0-0181060/1869/15906_
22.2047330798540.05.6457.79
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0181060/1881/16291_
22.14536326991820.05.9259.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0181060/2309/16784_
22.09844329018170.07.3961.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/1811/14906_
22.136692027919380.05.8455.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8fb818ad1

0-0181060/1921/16697_
22.09799127869140.05.9462.15
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0181060/2374/16197_
22.16419330797100.08.2259.96
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/1663/15702_
22.09754027183150.05.6961.61
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0181060/1748/16197_
22.10703029408480.05.6662.97
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0181060/2569/16672_
22.135502229498610.07.9562.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0181060/1938/14794_
22.16439127191310.05.9455.32
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0181060/1667/15098_
22.08916325221440.05.0557.29
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8e77bbb7b

0-0181060/2257/15956_
22.13607327038990.07.4958.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3f9fd214e

0-0181060/2020/16669_
22.16397232087790.06.6661.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0181060/1839/15772_
22.19204425419030.05.7558.01
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0181060/2174/15815_
22.13549126033540.06.8157.73
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0181068/2015/16463W
22.2000251676614.86.7260.72
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

0-0181060/1810/15801_
22.19178327215130.05.6358.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0181060/2137/15302_
22.16384327816370.06.9056.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0180730/1783/11499_
22.01499319928940.05.7842.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0180730/1722/11289_
22.0333925420646280.05.6440.25
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0180730/1908/12133_
22.04251417693300.06.0944.49
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/1706/12189_
22.1024319987620.05.8844.01
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/1930/11896_
22.05223319019550.06.2542.51
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/1838/11577_
22.04299317963150.06.2243.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/1666/11905_
22.05192319451890.05.5343.33
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/1988/12740_
21.94890221609450.06.7846.38
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0180730/1948/12540_
21.93901019890900.06.4244.68
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0180730/1854/11051_
21.94865216519600.05.6940.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0180730/2355/11826_
21.98773319418130.08.2243.51
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/2182/12310_
21.99732319613610.07.8345.45
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/1876/11280_
22.0970318644450.05.8040.66
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0180730/2298/11708_
21.98765418912710.07.3141.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-0180730/1525/10463_
22.00598316562030.04.7436.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0180730/2107/12109_
22.01519220175240.06.7343.05
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0180730/2072/12259_
22.01577122084320.06.8844.32
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0180730/2426/12148_
21.99710717241540.07.3542.49
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_5c5305c87

1-0180730/2126/11693_
22.01530317585730.06.9042.08
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_

Found on 2024-06-10 08:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfbe5f6694

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 08-Jun-2024 14:15:29 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  21 days 15 hours 10 minutes 21 seconds
Server load: 0.90 1.90 2.84
Total accesses: 867024 - Total Traffic: 3.1 GB - Total Duration: 154190834
CPU Usage: u57.1 s53.65 cu233.51 cs139.83 - .0259% CPU load
.464 requests/sec - 1801 B/second - 3882 B/request - 177.839 ms/request
1 requests currently being processed, 49 idle workers
_________________________.........................______________
_W_________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0113550/2452/13368_
30.12181225540090.09.3349.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2295/13120_
30.12145224586060.08.2248.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=redlands.cloudworkengi

0-0113550/2478/13796_
30.11283324786810.09.4651.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0113550/2260/14133_
30.10568225273980.08.2853.05
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2308/12652_
30.104903023240810.08.4047.49
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0113550/2278/13621_
30.10590227137020.08.5150.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2208/13618_
30.098748431142510.08.0750.25
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0113550/2275/13915_
30.11250229182880.08.4751.81
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2104/14301_
30.104423324975150.07.9053.13
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b1f8424d41a05

0-0113550/2351/14376_
30.099115027890200.08.7853.52
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2121/12979_
30.1344226497090.08.2548.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2470/14657_
30.11327426676610.010.1855.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0113550/2257/13702_
30.097954228063560.08.7651.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_27a405c193ecf

0-0113550/2209/13926_
30.10713225834140.08.1455.60
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2677/14321_
30.09747227789900.09.9356.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2418/13990_
30.09780227288680.011.0354.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2119/12759_
30.13115226051790.08.7749.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2131/13293_
30.10678323949980.08.0551.79
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0113550/2100/13581_
30.09832325120110.07.5550.94
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0113550/2578/14543_
30.10524229536590.010.1654.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2253/13792_
30.10639223723260.08.1551.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2146/13529_
30.09942224361540.07.8750.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2315/14319_
30.10650022582410.09.1853.60
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0113550/2483/13864_
30.12206326041490.09.6052.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0113550/2316/13037_
30.11350126649710.08.9048.92
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0-0/0/9716.
0.00304700518307490.00.0036.28
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_49271a609

1-0-0/0/9567.
0.00304700119278020.00.0034.61
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0-0/0/10225.
0.00304700115116720410.00.0038.40
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0-0/0/10483.
0.00304700317796760.00.0038.13
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0-0/0/9966.
0.00304700103017306630.00.0036.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZJBc9owEIX%2FikeH3mw

1-0-0/0/9739.
0.003047001016096870.00.0037.01
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLrtowFNzzFSh7kuAbQ

1-0-0/0/10239.
0.00304700518149770.00.0037.80
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9361b68f7

1-0-0/0/10752.
0.00304700519421100.00.0039.60
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0-0/0/10592.
0.0030470095418040310.00.0038.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0-0/0/9197.
0.0030470014614760410.00.0034.67
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeSZxA2

1-0-0/0/9471.
0.003047001717523070.00.0035.29
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_dc2bde95d

1-0-0/0/10128.
0.00304700168918123120.00.0037.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0-0/0/9404.
0.00304700317315240.00.0034.86
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0-0/0/9410.
0.00304700317883540.00.0033.90
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0-0/0/8938.
0.00304700314559960.00.0032.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0-0/0/10002.
0.00304700317674230.00.0036.32
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0-0/0/10187.
0.003047006719944190.00.0037.44
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1f60265ec

1-0-0/0/9722.
0.003047003315889800.00.0035.14
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_a8e811697091b

1-0-0/0/9567.
0.00304700915428640.00.0035.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php

Found on 2024-06-08 14:15

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf64035e32

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 06-Jun-2024 14:26:47 UTC
Restart Time: Friday, 17-May-2024 23:05:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  19 days 15 hours 21 minutes 43 seconds
Server load: 0.18 0.27 0.36
Total accesses: 814049 - Total Traffic: 2.9 GB - Total Duration: 147612936
CPU Usage: u16.45 s26.87 cu242.7 cs139.16 - .0251% CPU load
.48 requests/sec - 1857 B/second - 3872 B/request - 181.332 ms/request
1 requests currently being processed, 49 idle workers
_____________________________W____________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0293220/102/15522_
1.31838531718740.00.3958.02
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/122/16607_
1.31801431760210.00.3861.07
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/109/16130_
1.31773428717160.00.4059.86
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/93/16154_
1.31696426174470.00.3060.33
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/153/16654_
1.31658330637700.00.5664.37
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/144/16106_
1.31586428132280.00.4658.52
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/96/17216_
1.31616528302860.00.3561.60
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_8cb84d78e

0-0293220/204/16640_
1.31559424583210.00.7460.50
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/94/16769_
1.31534531251610.00.3461.03
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/161/16735_
1.31497430596110.00.5661.21
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/93/16238_
1.31470326695010.00.3559.30
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/143/15944_
1.31449326881770.00.5059.00
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/139/16221_
1.34303428012980.00.4659.55
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/119/16045_
1.33368430578090.00.3658.88
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/90/16923_
1.342593429044940.00.3260.77
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_a366928e80dee

0-0293220/100/17307_
1.34241431126170.00.3862.39
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/131/15832_
1.34207429665390.00.4761.09
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/113/16232_
1.34183431378540.00.4160.32
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0293220/90/16893_
1.34162330778470.00.2862.35
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/100/15837_
1.34129031150340.00.3358.34
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0293220/138/16215_
1.3481430601630.00.5159.32
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/94/16285_
1.3444428885130.00.3760.25
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0293220/98/15349_
1.347028692690.00.3558.17
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /.vscode/sftp.json HTTP/1.1

0-0293220/90/16240_
1.319004228912400.00.3959.22
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2bcf85f8bd546

0-0293220/113/16684_
1.301015028897010.00.5460.25
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0293510/95/16739_
1.26790430212980.00.2962.84
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/124/16248_
1.26821427587500.00.3959.85
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/103/16773_
1.26867533380570.00.3961.42
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/102/16023_
1.26930428553880.00.3563.33
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0293513/99/16745W
1.310026883055.30.3160.75
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /server-status HTTP/1.1

1-0293510/121/16222_
1.30188428061750.00.4060.55
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/96/16524_
1.26729529653560.00.3661.83
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0293510/95/16166_
1.26673330536790.00.3358.54
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0293510/86/17505_
1.266362529966080.00.3564.47
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

1-0293510/122/16281_
1.266093229221720.00.4360.12
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_6e86f53901c70

1-0293510/113/16059_
1.26568531253310.00.3759.66
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/176/15752_
1.26550431691220.00.5659.18
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/130/16506_
1.27511327457880.00.4860.35
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0293510/116/16822_
1.28479433174140.00.4061.45
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0293510/144/16120_
1.28457433392690.00.5959.97
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/150/15581_
1.29410431442040.00.5456.90
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/120/17044_
1.30328430665500.00.4063.11
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/170/15687_
1.30280527027830.00.7457.26
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0293510/133/15380_
1.30248429046940.00.4656.03
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

Found on 2024-06-06 14:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf1111bd76

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Tuesday, 04-Jun-2024 19:09:32 UTC
Restart Time: Friday, 17-May-2024 23:05:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  17 days 20 hours 4 minutes 27 seconds
Server load: 0.16 0.38 0.40
Total accesses: 736493 - Total Traffic: 2.6 GB - Total Duration: 127653534
CPU Usage: u39.87 s37.63 cu193.2 cs112.88 - .0249% CPU load
.478 requests/sec - 1837 B/second - 3844 B/request - 173.326 ms/request
1 requests currently being processed, 49 idle workers
_____________W____________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-087860/1599/14111_
19.90319528479140.06.0452.28
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-087860/1325/15154_
19.88705427385950.05.2355.25
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-087860/1678/14555_
19.90293125811550.06.8553.51
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-087860/1506/14611_
19.88580422270550.06.0954.16
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-087860/1311/15105_
19.89418426420940.04.8958.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1465/14391_
19.89500324298040.05.8551.62
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1635/15734_
19.91117324522810.06.4955.81
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-087860/1643/15320_
19.89392522048330.06.3254.99
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1491/15445_
19.89361427546420.05.7355.95
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1601/15141_
19.91181425746940.06.4855.45
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1705/14675_
19.90269623141120.07.0453.23
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_9d0ee5b4e

0-087860/1535/14621_
19.91146523180760.05.8353.91
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1748/14688_
19.90236423324380.06.7653.47
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0878616/1770/14499W
19.9100272183837.06.8353.01
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /server-status HTTP/1.1

0-087860/1525/15197_
19.9183425373910.05.8954.02
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-087860/1807/15578_
19.88661428084710.07.0755.71
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1563/14177_
19.88732325531190.06.0952.33
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1459/14816_
19.88519427410020.05.8054.83
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1764/15040_
19.88601427282500.07.2255.35
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1424/14423_
19.9145327381930.05.4552.62
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1675/14562_
19.88632425736480.06.4652.81
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1424/14783_
19.88684424120710.05.3953.83
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1523/13773_
19.9161323882690.06.3851.72
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1525/14938_
19.894391224555380.06.0854.24
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-087860/1710/15083_
19.89463425429990.06.7054.13
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1785/15188_
20.57159427405390.07.0057.08
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1702/14443_
20.57451423641330.06.8752.90
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1681/15233_
20.5997429258030.06.4255.69
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-088310/1678/14505_
20.572763225177610.06.6157.29
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_161069eb6aa95

1-088310/1632/15192_
20.55727423626860.06.1454.82
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-088310/1656/14776_
20.57425324565720.06.5355.12
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1707/15002_
20.57344425975950.06.7656.10
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1553/14544_
20.572577323906360.05.8752.54
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/trigger-update.php HTTP/1.1

1-088310/1926/15765_
20.57137325324570.07.7857.39
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1683/14898_
20.57305426697460.06.5254.71
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-088310/1506/14512_
20.56693325962820.05.8253.57
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_b23f26fe8

1-088310/1407/14005_
20.57202827932030.05.7852.29
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-088310/1544/14903_
20.55748423148520.06.0154.21
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-088310/1665/15236_
20.56674428501790.06.5455.55
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1776/14480_
20.5973426965120.07.0753.84
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-088310/1533/14205_
20.56647326455990.05.9251.63
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/2156/15572_
20.57402326967160.08.6257.18
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1363/14086_
20.56617323570700.05.4951.18
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-088310/1627/13690_
20.565461224279100.06.2349.69
127.0.0.1http/1.1

Found on 2024-06-04 19:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf9c199709

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 02-Jun-2024 22:27:26 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 days 23 hours 22 minutes 19 seconds
Server load: 2.23 2.65 2.47
Total accesses: 663049 - Total Traffic: 2.4 GB - Total Duration: 106895359
CPU Usage: u29.05 s32.06 cu188.75 cs113.81 - .0264% CPU load
.48 requests/sec - 1832 B/second - 3814 B/request - 161.218 ms/request
1 requests currently being processed, 49 idle workers
_________________________________________________W..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0315880/1024/9189_
11.88251016401930.03.3133.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0315880/940/9032_
11.88241015335740.03.4533.32
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0315880/1313/9576_
11.85277015910750.04.8434.96
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/script.js HTTP/1.1

0-0315880/1012/10073_
11.78363317116080.03.6437.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/916/8886_
11.793473414378520.03.1833.28
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bc14143fe1a29

0-0315880/729/9695_
11.78370018092350.02.3035.73
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/script.js HTTP/1.1

0-0315880/931/9495_
11.90231519052770.03.3534.67
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0315880/1173/9902_
11.90211017226130.03.9836.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0315880/1025/10457_
11.9117590116878280.03.5738.08
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0315880/899/10254_
11.95134117116120.03.0437.58
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0315880/931/9179_
11.97117015210760.03.2733.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0315880/1075/10551_
11.97118118390480.03.6639.42
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0315880/1161/9794_
11.9787318750420.04.1235.97
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/977/10049_
11.977011417338370.03.5340.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_51bfdd06b8def

0-0315880/929/9767_
11.73612317013180.03.2339.68
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPLrtowFNzzFSh7kpAmt

0-0315880/721/9487_
11.9740017682710.02.5735.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0315880/943/9102_
11.75578116955150.03.3834.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0315880/914/9405_
11.74604190415558930.03.1636.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT8JAEMW%2fymbv%2f

0-0315880/1068/9555_
11.77520016380220.03.6435.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0315880/949/9995_
11.7556634517776460.03.2036.96
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVgndREp36Q

0-0315880/958/9883_
11.76520015880720.03.0637.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0315880/911/9409_
11.77509416882360.03.1134.61
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVJBbtswEPyKwLsoiapcl

0-0315880/1001/10167_
11.77489016002300.03.3236.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0315880/1154/9577_
11.78405314975120.04.1435.14
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNr9owELzzK1DuJCEkD

0-0315880/859/9100_
11.78432016327560.03.1033.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0316460/995/7825_
12.3049214222000.03.4828.92
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7e953583b

1-0316460/775/7876_
12.09589114984670.02.5827.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0316460/1084/8564_
12.09563312973380.03.7631.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0316460/1021/8621_
12.3520013906290.03.6030.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0316460/1067/8097_
12.0760480312461920.03.8428.93
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0316460/1038/7974_
12.2514324411778720.03.7830.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b3dZX

1-0316460/1087/8443_
12.10508012716460.03.9230.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0316460/934/8758_
12.10538314841350.03.1931.58
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/1031/8651_
12.10554013563010.03.6030.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0316460/869/7548_
12.12478111180150.03.0428.07
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0316460/880/7672_
12.13462012130680.03.1827.81
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0316460/930/8520_
12.14397314054240.03.3731.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_1d0eef9f3

1-0316460/1042/7640_
12.153823212584120.03.8327.66
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e55fd9973ba24

1-0316460/984/7808_
12.15359014824040.03.3327.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0316460/1039/7502_
12.16351111710990.03.5726.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0316460/1052/8008_
12.16280012909310.03.7128.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0316460/1003/8463_
12.16337314766190.03.4530.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0316460/937/7957_
12.16260411811000.03.0828.33
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL3zFZHvcYIJS

1-0316460/1047/7789_
12.16240210994910.03.6228.34
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/1068/7757_
12.19197413750990.04.1328.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/script.js HTTP/1.1

1-0316460/1025/7142_
12.21187011317030.03.6126.31

Found on 2024-06-02 22:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf3853d449

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 01-Jun-2024 20:36:05 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  14 days 21 hours 30 minutes 58 seconds
Server load: 2.41 2.27 2.05
Total accesses: 629522 - Total Traffic: 2.2 GB - Total Duration: 101803036
CPU Usage: u17.52 s24.42 cu188.75 cs113.81 - .0268% CPU load
.489 requests/sec - 1867 B/second - 3817 B/request - 161.715 ms/request
1 requests currently being processed, 49 idle workers
_______________________W__________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0315880/297/8462_
3.67573315825500.00.9530.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/180/8272_
3.66608413927810.00.5630.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/276/8539_
3.65644214897210.01.0531.18
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/327/9388_
3.65668216418300.01.0235.12
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/204/8174_
3.656953713457830.00.6830.78
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_002f8adb428f8

0-0315880/167/9133_
3.65722217244060.00.5333.96
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/321/8885_
3.67534018406430.01.1332.45
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET / HTTP/1.1

0-0315880/418/9147_
3.67511216195660.01.3733.95
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/306/9738_
3.67474315482070.01.0435.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/352/9707_
3.6739320815670230.01.0635.59
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzzK1DuJLF3C

0-0315880/350/8598_
3.67377314445690.01.2631.83
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/352/9828_
3.683352117384060.01.1736.93
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/529/9162_
3.68242217616370.01.7033.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/362/9434_
3.68310316374270.01.2838.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/356/9194_
3.68214214701920.01.1637.60
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/194/8960_
3.69153316917460.00.7433.17
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/188/8347_
3.69114216032360.00.5731.56
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/302/8793_
3.69187214779330.00.9434.15
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/353/8840_
3.6987015417290.01.1232.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0315880/308/9354_
3.6974316694740.00.9734.73
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0315880/377/9302_
3.6959314980520.01.1635.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/298/8796_
3.6940216149120.01.0032.50
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315880/376/9542_
3.6922214742250.01.1634.72
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0315886/450/8873W
3.6900140075210.51.5132.51
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

0-0315880/191/8432_
3.65759315553430.00.7231.03
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/393/7223_
3.83170313040440.01.2726.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0316460/295/7396_
3.84129314324710.00.9626.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0316460/403/7883_
3.84105311952340.01.3429.44
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0316460/281/7881_
3.83205312429200.00.9428.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/339/7369_
3.83229211082340.01.1026.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/365/7301_
3.81451410646890.01.1927.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0316460/372/7728_
3.8487511748220.01.2527.80
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0316460/358/8182_
3.8447314055190.01.2229.61
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/383/8003_
3.8466212488910.01.2228.46
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/263/6942_
3.85143210495790.00.8125.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3a8bab8861ddb

1-0316460/154/6946_
3.8430211182620.00.4925.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/317/7907_
3.78766213584330.01.0428.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/268/6866_
3.78737311270450.00.9024.72
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/300/7124_
3.79705213843510.00.9825.29
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/392/6855_
3.79687210443830.01.2924.28
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/274/7230_
3.79654212023580.00.9025.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/217/7677_
3.79622213485590.00.6527.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/257/7277_
3.79588310958520.00.8626.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0316460/402/7144_
3.80557310395780.01.3426.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0

Found on 2024-06-01 20:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf91d5240d

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 30-May-2024 04:26:26 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 days 5 hours 21 minutes 19 seconds
Server load: 1.12 1.84 2.10
Total accesses: 463779 - Total Traffic: 1.7 GB - Total Duration: 85505519
CPU Usage: u55.55 s41.77 cu103.45 cs62.57 - .0249% CPU load
.439 requests/sec - 1733 B/second - 3946 B/request - 184.367 ms/request
1 requests currently being processed, 74 idle workers
_________________________.........................______________
___________.........................__________W______________...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0189870/1881/7973_
28.3395115305180.07.1328.97
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0189870/1785/7886_
28.28109416813492200.07.1029.18
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=pZE9T8MwEIb3Sv0PlvfaJ

0-0189870/1925/8084_
28.3344244214415650.07.3829.38
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVYe%2BiKMV

0-0189870/2499/8871_
28.281062316053460.010.1133.48
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1994/7772_
28.29782112757530.07.8228.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0189870/2120/8627_
28.30647732316726050.09.2732.13
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/2004/8344_
28.30708117845530.08.2530.57
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0189870/2236/8544_
28.2988112615060050.09.4331.82
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZHNTsMwEIRfxfI9v01Ls

0-0189870/2020/9207_
28.33351214860960.07.9633.69
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/2293/9146_
28.33213315263260.09.3933.81
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/2011/7982_
28.29734313912230.08.4529.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/2272/9281_
28.30665425516958190.09.2235.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/hotp.php HTTP/1.1

0-0189870/2236/8341_
28.3331313716778070.09.3930.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeyY0Au

0-0189870/2017/8871_
28.3473115761240.012.0636.59
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0189870/2440/8656_
28.31610013990240.09.4635.81
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/icons/clipboard.svg HTTP/1.1

0-0189870/2007/8555_
28.29922116379800.08.5331.68
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0189870/1976/7829_
28.3433315498570.07.5929.45
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/2245/8319_
28.281020314232910.09.2832.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/2253/8289_
28.31632214701030.09.1830.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/2045/8792_
28.221150016364650.08.4032.80
127.0.0.1http/1.1

0-0189870/2360/8753_
28.28969214518450.09.4933.65
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/1993/8252_
28.331563715559960.07.6230.57
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ea95bd8f246c1

0-0189870/2139/8954_
28.33484114284730.08.2232.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0189870/1881/8254_
28.29818312966930.07.7830.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/2086/8047_
28.32554015021930.08.0229.50
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0-0/0/6830.
0.0027960356412691430.00.0025.44
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bb7153e0e2541

1-0-0/0/7101.
0.0027960362514166290.00.0025.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d7a95f96090a3

1-0-0/0/7480.
0.0027960361211668560.00.0028.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8e1afe8ff42b1

1-0-0/0/7600.
0.0027960354912333060.00.0027.14
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8c6214a12

1-0-0/0/7030.
0.0027960354810914050.00.0025.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/6936.
0.0027960351810402420.00.0026.22
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzzK1Du5MNLA

1-0-0/0/7356.
0.002796033311509520.00.0026.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bb70da30a03f7

1-0-0/0/7824.
0.0027960353013513950.00.0028.39
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/7620.
0.0027960369112351560.00.0027.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8ee1d76eb7dd3

1-0-0/0/6679.
0.0027960349210128750.00.0025.03
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_172d54f1d

1-0-0/0/6792.
0.0027960354510874460.00.0024.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c2bdd892056d2

1-0-0/0/7590.
0.0027960354413414310.00.0027.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f8be78313

1-0-0/0/6598.
0.0027960347111114170.00.0023.83
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2897252e4

1-0-0/0/6824.
0.00279603613417090.00.0024.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_30df6205d

1-0-0/0/6463.
0.0027960343110272410.00.0022.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_bce177a99

1-0-0/0/6956.
0.0027960349311803040.00.0024.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4c46be76a92e7

1-0-0/0/7460.
0.0027960374513191030.00.0027.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_075d0ed0febb7

1-0-0/0/7020.
0.0027960354410762790.00.0025.25
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fb0c15782

1-0-0/0/6742.
0.0027960349710135690.00.0024.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/6689.
0.00

Found on 2024-05-30 04:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf646a45ed

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Wednesday, 29-May-2024 05:21:25 UTC
Restart Time: Friday, 17-May-2024 23:05:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 days 6 hours 16 minutes 20 seconds
Server load: 0.93 0.89 0.89
Total accesses: 435480 - Total Traffic: 1.6 GB - Total Duration: 79874823
CPU Usage: u47.01 s34.88 cu94.89 cs57.27 - .0241% CPU load
.448 requests/sec - 1755 B/second - 3921 B/request - 183.418 ms/request
1 requests currently being processed, 49 idle workers
__________________________________________W_______..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0187020/2380/8532_
28.70573217737020.010.0932.33
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_1eda4d2112b78

0-0187020/2045/9026_
28.7072018409150.08.0333.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0187020/2320/8644_
28.701804416125640.09.5431.95
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_6b38d893c75e1

0-0187020/2284/9014_
28.63772114317090.08.9833.92
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-0187020/2390/8921_
28.65671417934910.010.0436.27
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/2102/8753_
28.66625514495420.08.4831.43
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/2218/9178_
28.6473813416493170.08.5132.67
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hZJPb9QwEMXvSHwHy%2Ff

0-0187020/2195/8624_
28.63808013251470.09.0131.67
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0187020/2410/9297_
28.66500016294120.010.2534.41
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0187020/2283/8988_
28.64707016053220.09.3833.42
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0187020/1899/8161_
28.665663013593120.07.5429.90
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_b9792f1de1cad

0-0187020/2136/9131_
28.703954513778600.08.8034.67
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b7esg

0-0187020/2078/8617_
28.66540514386470.08.2531.82
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/2167/8694_
28.69321018191130.08.6932.03
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.js HTTP/1.1

0-0187020/2197/8712_
28.67472015699770.08.8931.66
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/script.js HTTP/1.1

0-0187020/2430/8924_
28.6841448017331960.09.5432.50
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeyRVY1

0-0187020/2320/8288_
28.68441113926370.09.9631.91
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0187020/2392/9329_
28.6921630517303890.09.7434.93
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=lVJBbtswEPwKwbsoiZFTi

0-0187020/2301/8696_
28.68394014597560.09.8932.72
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0187020/2136/8036_
28.69266017671700.08.5429.76
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0187020/2402/8300_
28.69286196515508690.09.4130.76
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=lVJNb9swDP0rBu%2F%2Bb

0-0187020/2401/8864_
28.7010014715735680.010.3233.19
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=lZLNbtswEIRfhdi7qB87r

0-0187020/2170/8045_
28.66599015672840.08.7930.63
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0187020/2103/8798_
28.70157515332300.08.4932.48
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/2169/8623_
28.69328015362790.08.8031.57
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0187330/2323/9042_
29.16191016437080.09.3334.84
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

1-0187330/5787/8026_
29.16207714601070.020.9530.04
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/6496/8936_
29.0878512717143920.024.0433.20
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVJNT%2BMwEL0j8R8i3%2

1-0187330/6227/8320_
29.16132115083740.028.0135.81
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0187330/6738/9237_
29.1666015917600.024.7534.33
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.POST /T6bYsyJ74MwXl-gM HTTP/1.1

1-0187330/6251/8737_
29.14407416445990.022.8233.12
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0187330/6406/9153_
29.1681017506110.024.4935.12
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

1-0187330/6367/8632_
29.11663416406980.023.1231.42
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/6812/9112_
29.1651616507150.024.9733.57
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_1b45077eb

1-0187330/6732/8899_
29.10750417716590.025.1433.30
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/6223/8741_
29.11707516670890.023.5033.21
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0187330/6236/8532_
29.11587018359200.023.4132.49
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0187330/2312/8674_
29.12555513435900.09.4732.13
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0187330/6515/9009_
29.14370517243740.023.8533.42
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.OPTIONS /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh78

1-0187330/6322/8898_
29.1348412116723010.023.6133.39
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hZJPb9swDMXvA%2FYdBN3

1-0187330/6209/8278_
29.11695416856550.023.2930.66
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/6649/9095_
29.13512517043090.024.3533.50
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/idp/resumelogout.php?id=_51f886520948d5579

1-0187334/6178/8763W
29.1700147206012.522.6932.49
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /server-status HTTP/1.1

1-0187330/5688/7982_
29.16262015099690.021.2129.69
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.js HTTP/1.1

1-0187330/5994/8639_
29.14428315872000.022.7733.30
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=

Found on 2024-05-29 05:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf11d7b795

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Tuesday, 28-May-2024 06:15:18 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 days 7 hours 10 minutes 10 seconds
Server load: 3.47 2.35 2.17
Total accesses: 402231 - Total Traffic: 1.5 GB - Total Duration: 71435452
CPU Usage: u32.16 s27.05 cu103.45 cs62.57 - .0253% CPU load
.452 requests/sec - 1756 B/second - 3885 B/request - 177.598 ms/request
1 requests currently being processed, 74 idle workers
_________________________.........................______________
___________.........................___________W_____________...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0189870/1129/7221_
16.85121313952120.04.3426.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1071/7172_
16.801023312109890.04.2426.33
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1178/7337_
16.8346112112291400.04.4226.42
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVgndREh07L

0-0189870/1486/7858_
16.801069413836100.06.1529.51
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1235/7013_
16.82666211077400.04.7025.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/1268/7775_
16.83528014518180.05.3528.22
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0189870/1257/7597_
16.826863015456970.04.9627.28
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f0ccaf3da4990

0-0189870/1300/7608_
16.818941513280340.05.3127.70
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/1170/8357_
16.84271312635660.04.4630.18
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1292/8145_
16.85220413703450.05.3329.75
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1202/7173_
16.82799211622700.04.9325.95
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/1448/8457_
16.82639013869800.05.6331.51
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0189870/1431/7536_
16.84391114457900.05.7026.95
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_162288936

0-0189870/1196/8050_
16.8516715014180030.04.6829.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hZLPT8IwFMf%2FlaV32q2

0-0189870/1405/7621_
16.82592611192430.05.3331.67
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1214/7762_
16.82836514094760.05.2928.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0189870/1216/7069_
16.8573313018860.04.6826.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1252/7326_
16.81974311843390.05.0928.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1496/7532_
16.83478313507790.06.0327.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1337/8084_
16.8619314668650.05.5629.95
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1343/7736_
16.81936312145970.05.7029.86
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/1141/7400_
16.84302313060130.04.1227.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0189870/1200/8015_
16.84349212472930.04.5529.04
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0189870/1084/7457_
16.8272715511780840.04.4927.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLBbtswDP0VQ3fLilN3g

0-0189870/1263/7224_
16.84423112593370.04.8026.28
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-0-0/0/6830.
0.0011333456412691430.00.0025.44
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bb7153e0e2541

1-0-0/0/7101.
0.0011333462514166290.00.0025.26
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d7a95f96090a3

1-0-0/0/7480.
0.0011333461211668560.00.0028.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8e1afe8ff42b1

1-0-0/0/7600.
0.0011333454912333060.00.0027.14
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_8c6214a12

1-0-0/0/7030.
0.0011333454810914050.00.0025.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/6936.
0.0011333451810402420.00.0026.22
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzzK1Du5MNLA

1-0-0/0/7356.
0.001133343311509520.00.0026.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bb70da30a03f7

1-0-0/0/7824.
0.0011333453013513950.00.0028.39
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/7620.
0.0011333469112351560.00.0027.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8ee1d76eb7dd3

1-0-0/0/6679.
0.0011333449210128750.00.0025.03
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_172d54f1d

1-0-0/0/6792.
0.0011333454510874460.00.0024.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c2bdd892056d2

1-0-0/0/7590.
0.0011333454413414310.00.0027.87
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_f8be78313

1-0-0/0/6598.
0.0011333447111114170.00.0023.83
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_2897252e4

1-0-0/0/6824.
0.00113334613417090.00.0024.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_30df6205d

1-0-0/0/6463.
0.0011333443110272410.00.0022.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_bce177a99

1-0-0/0/6956.
0.0011333449311803040.00.0024.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4c46be76a92e7

1-0-0/0/7460.
0.0011333474513191030.00.0027.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_075d0ed0febb7

1-0-0/0/7020.
0.0011333454410762790.00.0025.25
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_fb0c15782

1-0-0/0/6742.
0.0011333449710135690.00.0024.71
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOSer

Found on 2024-05-28 06:15

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acfe99aa111

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Monday, 27-May-2024 22:46:59 UTC
Restart Time: Friday, 17-May-2024 23:05:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 23 hours 41 minutes 55 seconds
Server load: 1.25 1.40 1.27
Total accesses: 387836 - Total Traffic: 1.4 GB - Total Duration: 68461127
CPU Usage: u29.76 s24.93 cu94.89 cs57.27 - .024% CPU load
.449 requests/sec - 1732 B/second - 3855 B/request - 176.521 ms/request
2 requests currently being processed, 48 idle workers
_________________K_________W______________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0187020/1320/7472_
16.43658515117120.05.7728.01
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/1150/8131_
16.5664110615058500.04.5830.12
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0187020/1219/7543_
16.5616013779310.05.0127.41
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0187020/1306/8036_
16.4560229311637080.05.1230.06
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh7EuIZY

0-0187020/1378/7909_
16.514412516231490.05.6131.84
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.POST /saml2/idp/SSOService.php HTTP/1.1

0-0187020/1139/7790_
16.47518115512425770.04.5227.48
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0187020/1463/8423_
16.51372013860590.05.5229.68
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-0187020/1159/7588_
16.45626010475350.04.3026.96
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.css HTTP/1.1

0-0187020/1376/8263_
16.51394313753240.05.8930.04
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_d06852889

0-0187020/1319/8024_
16.51425413500840.05.3029.33
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/1163/7425_
16.513373912342730.04.5826.94
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_a69eb99a0a6c7

0-0187020/1264/8259_
16.49466812022480.05.3931.26
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/cloudworkauth/mfa/totp.php?StateId=_dd660c35a16

0-0187020/1258/7797_
16.52273112833610.05.0128.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0187020/1399/7926_
16.559485716556980.05.5328.86
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9bxeWF

0-0187020/1348/7863_
16.55126413473510.05.4728.24
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/1298/7792_
16.52313015077520.04.9327.90
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.css HTTP/1.1

0-0187020/1239/7207_
16.54175511314500.04.9126.87
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187023/1361/8298K
16.564515207738.15.3830.56
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.POST /saml2/idp/SSOService.php HTTP/1.1

0-0187020/1283/7678_
16.54158412727380.05.2528.08
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/1183/7083_
16.54193414588450.04.9826.20
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/1386/7284_
16.568621813529610.05.4626.81
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_94e39f01fb6fc

0-0187020/1495/7958_
16.44641913667450.06.5329.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVPJjhoxEL3zFajv9OLps

0-0187020/1366/7241_
16.54238013973830.05.5527.39
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0187020/1141/7836_
16.5633413519530.04.5828.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/1361/7815_
16.5675512491500.05.4628.22
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/1241/7960_
16.7341414586570.05.0730.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0187330/4990/7229_
16.6568455713251350.017.7726.85
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.POST /module.php/cloudworkauth/mfa/totp.php HTTP/1.1

1-01873324/5531/7971W
16.75001413977106.520.3929.56
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /server-status HTTP/1.1

1-0187330/5134/7227_
16.7347012908620.018.7026.50
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0187330/5834/8333_
16.65663013582610.020.9630.54
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0187330/5448/7934_
16.721081114745810.019.6429.95
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b%2Fc

1-0187330/5476/8223_
16.7310515766030.020.3831.01
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_cc16decd6

1-0187330/5315/7580_
16.65640014066640.018.8027.11
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0187330/5820/8120_
16.65616514810730.020.7829.37
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/5385/7552_
16.6556616014198910.019.5727.73
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owEL3zK1DuJCHsL

1-0187330/5414/7932_
16.65529113875010.020.3130.02
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0187330/5132/7428_
16.68393516136970.018.6127.69
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/1287/7649_
16.7116812911677980.05.1527.82
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hZJNTxsxEIbvlfofLN%2F

1-0187330/5620/8114_
16.6930019314856880.020.0529.62
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=lVHLbsIwEPyVyPfEwcQgL

1-0187330/5091/7667_
16.68404814038010.018.1127.88
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/5347/7416_
16.683313514178590.019.6327.00
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_9034997c72aad

1-0187330/5654/8100_
16.68386413678060.020.2929.44
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/5378/7963_
16.65509012651380.019.5429.34
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0187330/4641/6935_
16.721078413019380.016.5225.00
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_7e80e0d753995

1-0187330/5036/7681_
16.70199013106460.018.462

Found on 2024-05-27 22:46

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf3c35761a

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 26-May-2024 16:33:45 UTC
Restart Time: Friday, 17-May-2024 23:05:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  8 days 17 hours 28 minutes 40 seconds
Server load: 0.16 0.28 0.31
Total accesses: 342045 - Total Traffic: 1.2 GB - Total Duration: 56809989
CPU Usage: u13.35 s15.25 cu94.89 cs57.27 - .024% CPU load
.454 requests/sec - 1720 B/second - 3794 B/request - 166.089 ms/request
1 requests currently being processed, 49 idle workers
_________________________W________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0187020/358/6510_
4.82719312219950.01.3823.63
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/400/7381_
4.82693312495880.01.4226.97
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/382/6706_
4.8714311390030.01.3423.74
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/467/7197_
4.8367049438840.01.6026.54
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/366/6897_
4.83629413181760.01.4727.70
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/390/7041_
4.8359009846220.01.4524.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /robots.txt HTTP/1.1

0-0187020/420/7380_
4.83562511665550.01.5525.71
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/340/6769_
4.84451349201350.01.1923.85
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_49eec39abaea4

0-0187020/373/7260_
4.84547411392210.01.7625.91
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0187020/399/7104_
4.84389411236890.01.5225.56
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/338/6600_
4.844343410693780.01.2923.65
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_5c682b7e76e26

0-0187020/337/7332_
4.84371510415730.01.6627.53
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/419/6958_
4.84350411091660.01.5925.16
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/432/6959_
4.85268414057240.01.5524.88
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/424/6939_
4.84311410474960.01.6024.37
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/444/6938_
4.85247413125670.01.5924.56
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0187020/318/6286_
4.8520049441390.01.0923.05
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/396/7333_
4.852383212809480.01.3926.58
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_cd40930abdf42

0-0187020/355/6750_
4.8616649672290.01.3524.18
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/413/6313_
4.86130412488460.01.5322.75
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/443/6341_
4.86113411631930.01.6623.01
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/410/6873_
4.8780410699160.01.4924.36
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/460/6335_
4.8795411968510.01.7223.56
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0187020/356/7051_
4.8731311188820.01.4425.44
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0187020/377/6831_
4.8748310239270.01.3724.13
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187338/403/7122W
4.9800117535916.41.6527.16
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /server-status HTTP/1.1

1-0187330/4082/6321_
4.9824410401460.014.1623.24
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4355/6795_
4.97105411218410.015.2724.43
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/4173/6266_
4.9839410047210.014.7922.59
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4853/7352_
4.9765310674360.016.8226.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4468/6954_
4.96122412670240.015.6225.93
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0187330/4544/7291_
4.92703413897170.016.7727.40
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4411/6676_
4.92686412248190.014.9923.30
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4873/7173_
4.92610412858230.017.1025.70
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4510/6677_
4.92648312028840.016.0524.21
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-0187330/4354/6872_
4.92575512101930.015.8925.61
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/4284/6580_
4.94554412668070.015.2124.28
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/375/6737_
4.9454718810710.01.4324.10
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0187330/4589/7083_
4.94440512588350.016.1425.71
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_bf3a46c59

1-0187330/4026/6602_
4.94378510960240.013.6723.45
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/4436/6505_
4.95360411761750.016.0123.37
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/4765/7211_
4.94400511049450.016.5225.68
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/4356/6941_
4.95337510692850.015.2725.08
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-0187330/3878/6172_
4.9525722910767760.013.4521.93
127.0.0.1http/1.1ip-10-1-102-167.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=lVJBbtswEPwKwbsoiXHih

1-0</

Found on 2024-05-26 16:33

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf0c562fff

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 25-May-2024 13:11:21 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  7 days 14 hours 6 minutes 14 seconds
Server load: 0.48 1.08 1.52
Total accesses: 317028 - Total Traffic: 1.1 GB - Total Duration: 52246558
CPU Usage: u64.23 s47.2 cu39.34 cs22.7 - .0265% CPU load
.484 requests/sec - 1840 B/second - 3805 B/request - 164.801 ms/request
1 requests currently being processed, 49 idle workers
____________________________________W_____________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-082190/3504/6021_
46.35948210265850.012.0421.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3456/6036_
46.3584729738760.012.3121.90
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3752/6068_
46.3581649977030.012.8621.67
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3875/6279_
46.341037310791800.013.6323.05
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3341/5703_
46.3842528128010.011.9320.96
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3885/6400_
46.381173110212690.013.2822.50
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3313336ed1fb6

0-082190/3917/6232_
46.36714312313890.013.3321.99
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3813/6182_
46.3587528826000.013.0222.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/4564/7099_
46.36636210317600.015.5925.47
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/4059/6773_
46.35976111449760.013.9124.16
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3708/5889_
46.3591629189000.012.7220.78
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/4316/6902_
46.36775310196130.015.6725.52
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3864/6034_
46.35897210815590.013.0021.04
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/4592/6764_
46.37603211539040.015.7524.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3512/6124_
46.3670318330810.016.0626.08
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-082190/3903/6458_
46.386210327380.013.3022.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3596/5775_
46.36654011027550.013.0221.64
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-082190/3558/5995_
46.3674239594500.012.5523.03
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3815/5947_
46.375112029505830.013.1221.45
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLT8MwDL7zK6rcm3ZdC

0-082190/4321/6614_
46.38462011433920.015.4623.97
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-082190/3925/6272_
46.3840219401530.014.0023.77
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-082190/3960/6168_
46.383393910349350.014.0822.68
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9c6eabd5245c5

0-082190/3971/6690_
46.37573310334280.013.6824.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3775/6259_
46.3754139115410.013.2822.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3578/5822_
46.351000310187450.012.4221.08
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/3460/6043_
47.81556411310540.011.9222.57
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3887/6466_
47.80699412856320.013.5722.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/4383/6766_
47.79907210793310.016.3425.52
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/4334/6969_
47.81684211075550.015.0524.93
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/4213/6378_
47.78102339629080.014.6322.86
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3932/6321_
47.8164829816230.013.9523.91
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/4376/6700_
47.815845610292540.015.3524.21
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ee270ce81c898

1-082480/4377/7135_
47.82449212582750.015.0025.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/4622/6940_
47.79798310892260.015.4524.82
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3801/6035_
47.79723349246520.013.6922.69
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_701c4b2bb5780

1-082480/3918/6120_
47.8252119961270.014.0322.04
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-082484/3816/6941W
47.820012524514.713.6825.60
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

1-082480/3555/6008_
47.79829310172020.012.1221.77
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3825/6238_
47.81613212085990.013.3122.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/3621/5794_
47.8240929112000.012.3620.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/3639/6397_
47.82394310556630.012.3822.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/4241/6726_
47.79957211949900.014.5824.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/3918/6338_
47.82477329442080.013.5322.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8d2ec03984047

1-082480/3557/6010_
47.7999129088540.012.3421.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php

Found on 2024-05-25 13:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf95580316

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Friday, 24-May-2024 05:43:26 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 days 6 hours 38 minutes 19 seconds
Server load: 2.05 1.89 2.05
Total accesses: 292185 - Total Traffic: 1.0 GB - Total Duration: 48079924
CPU Usage: u54.68 s40.37 cu39.34 cs22.7 - .029% CPU load
.539 requests/sec - 2047 B/second - 3799 B/request - 164.553 ms/request
1 requests currently being processed, 49 idle workers
________________________________W_________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-082190/3070/5587_
39.7554059688460.010.5420.14
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-082190/3021/5601_
39.7537819160410.010.7820.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

0-082190/3200/5516_
39.7541139192620.010.8119.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3313/5717_
39.7365529770300.011.5120.92
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/2839/5201_
39.812107443760.010.0019.04
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-082190/3414/5929_
39.7367039600450.011.6220.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-082190/3442/5757_
39.79241210892250.011.6220.28
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3322/5691_
39.7544138302170.011.2620.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/4008/6543_
39.79209388672200.013.6723.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_52b9f5152fde9

0-082190/3560/6274_
39.74590111010469740.012.1022.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLBbtswDP0Vg3fLjuwWn

0-082190/3269/5450_
39.7549838487680.011.1819.24
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3837/6423_
39.753638119468140.013.9123.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-082190/3404/5574_
39.7547229931760.011.3219.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/4048/6220_
39.801103010652870.013.6922.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7bf2f10926753

0-082190/3001/5613_
39.782671157648140.014.1524.16
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLfT8IwEH73r1j6vm6Mg

0-082190/3412/5967_
39.7374349280530.011.4020.95
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3065/5244_
39.8018383210197200.011.2019.82
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-082190/3040/5477_
39.7829908751030.010.6421.13
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-082190/3335/5467_
39.805718899860.011.5019.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-082190/3806/6099_
39.737991510872400.013.5822.09
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3409/5756_
39.737712028829830.012.1121.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_69c029e619c1c

0-082190/3527/5735_
39.7370529795780.012.5621.17
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/3479/6198_
39.809639764960.011.9022.31
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/3256/5740_
39.806617982090.011.3820.30
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-082190/3086/5330_
39.746245409346540.010.6419.30
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=lVLLbtswEPwVgne9aMt1C

1-082480/2983/5566_
41.0280110472110.010.2520.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-082480/3378/5957_
41.01256311432240.011.4920.83
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3927/6310_
41.0045639350560.014.4823.66
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-082480/3846/6481_
41.01228110149160.013.3723.25
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-082480/3637/5802_
40.9866218439560.012.3020.54
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-082480/3459/5848_
41.0120008969580.012.2422.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-082480/3877/6201_
41.01103329461240.013.5122.36
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_79d7d6556bf6d

1-082489/3813/6571W
41.0300110388828.112.8623.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

1-082480/4153/6471_
41.00352010240100.013.8023.17
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-082480/3210/5444_
41.0128438077990.011.5820.59
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3379/5581_
41.035209423890.011.8419.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-082480/3358/6483_
40.98641211897420.011.8023.72
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/3108/5561_
41.0039839704460.010.4720.11
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

1-082480/3343/5756_
41.01172111416690.011.5420.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/apple.svg HTTP/1.1

1-082480/3163/5336_
40.9778108750280.010.6818.85
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /robots.txt HTTP/1.1

1-082480/3217/5975_
40.9874119644950.010.7120.96
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-082480/3778/6263_
40.98554011140090.012.9022.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-082480/3411/5831_
41.03391348785290.011.6320.84
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT4NAEMW%2fCtk7f4X

1-082480/3089/5542_
40.9860218670910.010.6020.16
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-082480/3130/5474_
40.9873109973020.011.2719.83
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js

Found on 2024-05-24 05:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf6cf63617

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 23-May-2024 01:34:24 UTC
Restart Time: Friday, 17-May-2024 23:05:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 days 2 hours 29 minutes 17 seconds
Server load: 1.27 3.16 2.85
Total accesses: 250966 - Total Traffic: 891.5 MB - Total Duration: 38620591
CPU Usage: u39.32 s30.81 cu39.34 cs22.7 - .03% CPU load
.569 requests/sec - 2119 B/second - 3724 B/request - 153.888 ms/request
1 requests currently being processed, 49 idle workers
______________W___________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-082190/2367/4884_
28.7121947741600.07.6317.22
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/2276/4856_
28.749910287112320.07.7517.34
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2526/4842_
28.749937524010.08.1316.94
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-082190/2460/4864_
28.7025937948090.08.1217.53
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2128/4490_
28.6240826074610.07.2316.27
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_45d152f3e

0-082190/2640/5155_
28.6438417163450.08.4717.69
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-082190/2686/5001_
28.5265939534340.08.6317.29
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_e3c22583a

0-082190/2503/4872_
28.7116226802820.07.9716.95
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_489409366

0-082190/3264/5799_
28.5658507468440.010.7320.61
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-082190/2875/5589_
28.7024818622210.09.3719.62
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-082190/2504/4685_
28.7120226494810.08.0116.06
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_7b7d456bd

0-082190/2805/5391_
28.77037251790.09.3419.18
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2592/4762_
28.711823418096590.08.0916.13
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c3a6c87b0efe6

0-082190/3156/5328_
28.4977238368930.010.1818.68
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0821978/2230/4842W
28.7800615512243.410.6220.63
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /server-status HTTP/1.1

0-082190/2450/5005_
28.5951237080110.07.6817.23
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-082190/2346/4525_
28.5462447725770.08.2716.89
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-082190/2377/4814_
28.4880727241900.08.0018.49
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-082190/2529/4661_
28.6246237500400.08.1316.46
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2815/5108_
28.5953228838600.09.2617.77
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_a09ed7310

0-082190/2443/4790_
28.6435827190220.08.2318.00
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-082190/2773/4981_
28.6927728087970.09.2217.82
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2544/5263_
28.5072437613020.08.3218.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2326/4810_
28.5756236725080.07.6016.52
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-082190/2177/4421_
28.7121806921630.07.2215.88
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-082480/2163/4746_
29.6764438306090.07.0517.69
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-082480/2801/5380_
29.647931888827590.09.0818.41
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZFPT4NAEMW%2fCtn7AuW

1-082480/3238/5621_
29.791399067618680.011.5620.74
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/hotp.php HTTP/1.1

1-082480/2856/5491_
29.805838420590.09.3119.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-082480/2789/4954_
29.7134518756847080.09.0417.27
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-082480/2474/4863_
29.6765457449700.08.4318.39
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-082480/2936/5260_
29.6484646798360.09.5218.37
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

1-082480/3076/5834_
29.6855609627080.010.0020.90
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-082480/3143/5461_
29.7912228176260.09.8319.19
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_9845fc89c

1-082480/2354/4588_
29.814426686190.07.5216.53
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_553fef9b8

1-082480/2404/4606_
29.6475937541140.07.9115.92
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_4397505ec

1-082480/2467/5592_
29.71377410149370.08.2620.18
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-082480/2465/4918_
29.7616637474520.07.7917.43
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_3bf6f5ae9

1-082480/2562/4975_
29.6770249935810.08.5217.42
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-082480/2362/4535_
29.7143127057710.07.3715.55
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/multiauth/selectsource.php?AuthState=_315da0fac

1-082480/2351/5109_
29.6858417501560.07.5117.76
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-082480/2942/5427_
29.7128729169760.09.3719.20
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

1-082480/2579/4999_
29.6849327389870.08.3917.60
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-082480/2425/4878_
29.7224817370310.07.7817.33
127.0.0.1http/1.1ip-10-1-109-82.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-082480/2329/4673_
29.6856716989080.08

Found on 2024-05-23 01:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf488ee6ef

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Wednesday, 08-May-2024 21:27:45 UTC
Restart Time: Monday, 29-Apr-2024 06:43:16 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 days 14 hours 44 minutes 28 seconds
Server load: 0.40 0.50 0.58
Total accesses: 900197 - Total Traffic: 3.5 GB - Total Duration: 150313837
CPU Usage: u36.49 s26.87 cu251.77 cs120.98 - .0525% CPU load
1.08 requests/sec - 4564 B/second - 4212 B/request - 166.979 ms/request
1 requests currently being processed, 49 idle workers
..................................................______________
_______________W____________________............................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/16441.
0.0036061426914750.00.0069.24
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0-0/0/16512.
0.0036061126399200.00.0065.35
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0-0/0/16687.
0.0036061431427490.00.0067.39
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/17117.
0.0036061429889160.00.0071.92
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/15779.
0.0036061126637740.00.0061.10
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-0-0/0/17369.
0.0036061025688350.00.0067.85
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0-0/0/16944.
0.0036061427108250.00.0069.14
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/18280.
0.0036061129641930.00.0074.80
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/nextmail/cloudwork/facebook.svg HTTP/1.1

0-0-0/0/15697.
0.0036061425631660.00.0062.89
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/16443.
0.0036061129771320.00.0066.89
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/nextmail/cloudwork/google.svg HTTP/1.1

0-0-0/0/16826.
0.00360613227071510.00.0067.81
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_039f1de1976bf

0-0-0/0/16808.
0.003606114027437160.00.0071.82
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJLTwIxEL77Kza9b%2Ff

0-0-0/0/16926.
0.0036061430870930.00.0069.31
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/17119.
0.0036061727795390.00.0069.77
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/16096.
0.0036061525651300.00.0064.83
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.POST /saml2/idp/SSOService.php HTTP/1.1

0-0-0/0/16912.
0.003606117928131040.00.0064.39
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0-0/0/17014.
0.0036061526778800.00.0066.95
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/16251.
0.00360615127820700.00.0063.99
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0-0/0/16366.
0.0036061527996620.00.0063.87
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/16749.
0.0036061027694060.00.0067.32
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /resources/post.css HTTP/1.1

0-0-0/0/16815.
0.0036061528608680.00.0067.30
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/16694.
0.0036061427277040.00.0067.14
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/16365.
0.0036061526406520.00.0063.42
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/18031.
0.0036061432734450.00.0069.08
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0-0/0/15858.
0.003606183126384410.00.0061.74
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0-0/0/10693.
0.0014916453919254610.00.0042.70
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_788baed315735

1-0-0/0/10880.
0.0014916451516044520.00.0042.46
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_bc8431b0e3e8f

1-0-0/0/11549.
0.0014916456422767590.00.0045.69
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_89faadf7ac330

1-0-0/0/11610.
0.0014916430320553600.00.0050.71
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_5dd5ab6f628fb

1-0-0/0/11611.
0.0014916441920425670.00.0045.29
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_e742bf50411d3

1-0-0/0/10714.
0.0014916428517063090.00.0043.08
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0-0/0/11007.
0.0014916425821968490.00.0044.97
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_7fedce67d

1-0-0/0/11271.
0.0014916436819172360.00.0045.12
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3812c2834cc5b

1-0-0/0/10731.
0.0014916431917165640.00.0043.49
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_3efe6e13a

1-0-0/0/10801.
0.001491646417289160.00.0043.51
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowEH3nK1DeyW0XC

1-0-0/0/9618.
0.0014916417317506550.00.0039.36
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_91aa68c032b5b

1-0-0/0/11471.
0.0014916435117803010.00.0043.50
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_a8d0c24c6f77b

1-0-0/0/11481.
0.0014916430720403920.00.0047.52
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_53a46bbfd

1-0-0/0/10717.
0.0014916433514585230.00.0044.86
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVPbrtowEHznK1Deya0pF

1-0-0/0/11407.
0.0014916440119368190.00.0048.82
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVPLjtowFN3zFSh7khAyz

1-0-0/0/10837.
0.001491648116193950.00.0051.74
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_4d72bd329

1-0-0/0/10686.
0.0014916431817539620.00.0043.48
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_d8a6ec5d7

1-0-0/0/10756.
0.00149164697017137710.00.0043.90
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0-0/0/11516.
0.0014916425921067260.00.0048.62
127.0.0.1http/1.1ip-10-1-110-217.ap-southeast-2.GET /module.php/multiauth/selectsource.php?AuthState=_4218f1208

1-0-0/0/11544.
0.0014916445721460960.00.0047.15

Found on 2024-05-08 21:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acff3c6a030

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-01-17T03:00:18

Current Time: Monday, 29-Apr-2024 01:51:43 UTC
Restart Time: Tuesday, 23-Apr-2024 01:04:58 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 days 46 minutes 44 seconds
Server load: 1.61 1.33 1.27
Total accesses: 610622 - Total Traffic: 2.2 GB - Total Duration: 65944090
CPU Usage: u110.69 s73.31 cu88.96 cs45.93 - .0612% CPU load
1.17 requests/sec - 4499 B/second - 3840 B/request - 107.995 ms/request
2 requests currently being processed, 48 idle workers
_________________________K______________W_________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0114870/7895/12768_
85.63282512258840.026.7644.59
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0114870/7195/12106_
85.61306137112861220.024.9244.50
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/hotp.php HTTP/1.1

0-0114870/7426/12657_
85.9541412262570.024.3346.78
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_5663e01a3

0-0114870/7383/12379_
85.56344386013192640.024.5746.13
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/accountinfo/check.php?code=9742571600&username=

0-0114870/7154/12325_
85.82147412674130.025.1346.74
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_a7c3103e8

0-0114870/7608/12517_
85.5536016213169570.026.6645.25
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_e6162f1c716af

0-0114870/6770/12216_
85.63289014399510.024.1745.53
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /resources/script.js HTTP/1.1

0-0114870/7347/12308_
85.85126311865790.025.7143.68
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_9d47a094d

0-0114870/7329/12434_
85.76205258513391690.026.8745.75
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0114870/7767/12688_
85.88100113407510.026.2445.56
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

0-0114870/6629/11505_
85.9530412995470.022.0941.59
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0114870/6689/11905_
85.76215915022610.023.4145.46
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0114870/7146/12643_
85.81150414075490.026.3748.44
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_deb707d6c

0-0114870/7191/12185_
85.60316013102460.024.3943.73
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /resources/script.js HTTP/1.1

0-0114870/6678/11272_
85.58333011004800.022.9041.03
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /resources/post.js HTTP/1.1

0-0114870/6503/11632_
85.642613614111230.025.0043.85
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=urn%3Afederation%3AMic

0-0114870/7263/12178_
85.63275511872330.024.1942.58
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fredla

0-0114870/7000/12360_
85.63273313235260.025.2345.39
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_038d8fa6b

0-0114870/8013/13135_
85.87119313631940.029.4650.05
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_fc7df4413

0-0114870/7623/12796_
85.76198315559770.025.9145.81
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

0-0114870/7776/12450_
85.62291412653180.026.7244.05
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Flogin

0-0114870/6899/11560_
85.76215113756210.023.7842.45
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0114870/6802/11500_
85.9254412529720.022.2539.42
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

0-0114870/8096/13079_
85.76197012628130.026.9347.40
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /resources/post.css HTTP/1.1

0-0114870/7722/12276_
85.9513311690900.027.9544.65
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_70f0eb5ec

1-0117295/7179/12103K
83.5730135533814.625.4243.27
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /about HTTP/1.1

1-0117290/6752/11187_
83.47132111026890.023.5540.42
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0117290/7056/12262_
83.22275112242000.023.9643.79
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0117290/7122/12848_
83.40197164211934650.024.2345.15
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0117290/6918/11900_
83.20316113152350.023.1741.86
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0117290/7642/12636_
83.5091416320530.027.2247.69
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

1-0117290/6325/11452_
83.44168412235890.020.0438.30
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_2f6efff77

1-0117290/6359/11206_
83.18371537112361560.022.5140.93
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/accountinfo/start-reset.php?username=saramusgra

1-0117290/7006/12324_
83.39230113500740.026.8647.56
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/nextmail/password-strength.js HTTP/1.1

1-0117290/6710/11960_
83.5424015395610.022.5943.29
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /resources/post.js HTTP/1.1

1-0117290/7299/13116_
83.23271312235070.025.2747.41
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=http%3A%2F%2Fredlands.

1-0117290/6962/12245_
83.44180313190950.024.2543.79
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0117290/7846/12620_
83.18360813231000.028.1147.58
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fredlands

1-0117290/7771/13007_
83.44176313194440.027.6648.38
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_e072c89ce

1-0117290/6566/11685_
83.19330013982660.023.0250.32
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /resources/post.js HTTP/1.1

1-01172992/7135/12182W
83.57001249385357.225.3744.77
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /server-status HTTP/1.1

1-0117290/7149/11811_
83.32251014338050.025.4743.38
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0117290/6884/11514_
83.20322113451540.023.2341.90
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0117290/6952/11942_
83.32249216406740.025.0945.21
127.0.0.1http/1.1ip-10-1-91-33.ap-southeast-2.coGET /module.php/multiauth/selectsource.php?AuthState=_7420f0d35

1-0117290/7398/12415_
83.52654711

Found on 2024-04-29 01:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf32e4cd34

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2023-10-26T13:44:44

Current Time: Monday, 22-Apr-2024 23:21:16 UTC
Restart Time: Wednesday, 28-Feb-2024 06:59:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  54 days 16 hours 21 minutes 31 seconds
Server load: 1.21 1.20 1.20
Total accesses: 3205247 - Total Traffic: 12.0 GB - Total Duration: 584889503
CPU Usage: u70.6 s100.15 cu971.26 cs590.09 - .0367% CPU load
.678 requests/sec - 2719 B/second - 4009 B/request - 182.479 ms/request
2 requests currently being processed, 48 idle workers
__________W__________________K____________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0146920/2111/56829_
26.722169113380240.07.12222.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2380/54732_
26.713059102676840.08.06218.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2186/54529_
26.731331103536980.07.88213.85
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2007/53522_
26.722875108969520.06.99215.58
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

0-0146920/2025/55553_
26.7226710103798730.06.65222.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2275/56144_
26.713241107146370.07.75217.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2062/55930_
26.7218941102156070.07.04214.18
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2124/55294_
26.745311104980370.07.48215.62
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2362/56810_
26.721759107314580.08.10218.87
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2076/55086_
26.746710111260630.07.05214.79
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-01469249/2232/57685W
26.770010703647166.37.73222.62
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /server-status HTTP/1.1

0-0146920/2114/54755_
26.731159106285470.07.73214.53
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2259/56678_
26.74219116393260.07.88219.70
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1854/55489_
26.731599109358790.06.16216.24
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2180/55126_
26.684879111242170.07.68212.94
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1962/55407_
26.685539108661110.06.80215.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2334/55924_
26.685379112923460.08.16216.80
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2170/55560_
26.694399106546480.07.50218.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1841/57196_
26.685169115004480.06.27224.09
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2478/56497_
26.703744107717640.08.58218.71
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coHEAD /module.php/accountinfo/reset.php?username=cl1-21328&code=

0-0146920/2806/56989_
26.694129101547770.09.25220.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2197/54799_
26.713183105757350.07.61222.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/metadata.php HTTP/1.1

0-0146920/2348/56050_
26.7036827109523030.08.34217.86
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2356/56121_
26.722779107551090.08.24220.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2065/56347_
26.72239440108734480.07.18219.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/905/55884_
14.95500273106798750.03.61219.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fsso.prec

1-0186020/1136/54442_
14.9554211104377340.04.52210.51
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/951/54123_
15.18349102800970.03.55209.46
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1184/55976_
15.1712311106128240.04.68215.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-01860222/1165/54227K
15.203010710096163.34.40211.11
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0186020/1115/57088_
15.1618121106542250.04.25223.41
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/928/58142_
15.18139110028030.03.56224.63
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1075/53189_
14.954709102928660.03.96207.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1145/54987_
14.964299105940220.04.61212.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1141/54415_
14.955279107990740.04.65209.12
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1182/55532_
15.123179105653540.04.60214.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1043/53556_
15.123324168106776850.04.19208.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZLLTsMwEEX3SPxD5H2SN

1-0186020/1114/54351_
14.963979105903160.04.16211.25
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1171/56083_
15.11349257104948940.05.46219.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fZJbTwIxEIXf%2FRWbvne

1-0186020/1042/55067_
15.113353502108792860.03.86212.90
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZJPT%2BMwEMXvK%2FEdL

1-0186020/1095/56330_
15.132871110703730.04.00219.52
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0186020/1211/55925_
15.132868108997810.04.93224.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0186020/1013/54667_
15.162479108466340.03.81213.33
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/996/55926_
15.142594107486200.03.86217.73
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/971/58684_
15.1623114103313320.03.64229.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1082/56424_
15.16198206110589300.04.08227.43

Found on 2024-04-22 23:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf8d7ef6bd

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2023-10-26T13:44:44

Current Time: Monday, 22-Apr-2024 23:21:15 UTC
Restart Time: Wednesday, 28-Feb-2024 06:59:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  54 days 16 hours 21 minutes 31 seconds
Server load: 1.21 1.20 1.20
Total accesses: 3205244 - Total Traffic: 12.0 GB - Total Duration: 584889487
CPU Usage: u70.6 s100.15 cu971.26 cs590.09 - .0367% CPU load
.678 requests/sec - 2719 B/second - 4009 B/request - 182.479 ms/request
2 requests currently being processed, 48 idle workers
__________W__________________K____________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0146920/2111/56829_
26.722169113380240.07.12222.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2380/54732_
26.713059102676840.08.06218.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2186/54529_
26.731321103536980.07.88213.85
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2007/53522_
26.722875108969520.06.99215.58
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

0-0146920/2025/55553_
26.7226710103798730.06.65222.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2275/56144_
26.713241107146370.07.75217.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2062/55930_
26.7218941102156070.07.04214.18
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2124/55294_
26.745211104980370.07.48215.62
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2362/56810_
26.721759107314580.08.10218.87
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2076/55086_
26.746610111260630.07.05214.79
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-01469246/2229/57682W
26.770010703631157.27.73222.61
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /server-status HTTP/1.1

0-0146920/2114/54755_
26.731149106285470.07.73214.53
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2259/56678_
26.74209116393260.07.88219.70
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1854/55489_
26.731599109358790.06.16216.24
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2180/55126_
26.684879111242170.07.68212.94
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1962/55407_
26.685539108661110.06.80215.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2334/55924_
26.685369112923460.08.16216.80
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2170/55560_
26.694399106546480.07.50218.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1841/57196_
26.685169115004480.06.27224.09
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2478/56497_
26.703744107717640.08.58218.71
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coHEAD /module.php/accountinfo/reset.php?username=cl1-21328&code=

0-0146920/2806/56989_
26.694129101547770.09.25220.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2197/54799_
26.713183105757350.07.61222.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/metadata.php HTTP/1.1

0-0146920/2348/56050_
26.7036727109523030.08.34217.86
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2356/56121_
26.722779107551090.08.24220.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2065/56347_
26.72238440108734480.07.18219.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/905/55884_
14.95500273106798750.03.61219.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fsso.prec

1-0186020/1136/54442_
14.9554211104377340.04.52210.51
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/951/54123_
15.18349102800970.03.55209.46
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1184/55976_
15.1712311106128240.04.68215.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-01860222/1165/54227K
15.203010710096163.34.40211.11
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0186020/1115/57088_
15.1618121106542250.04.25223.41
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/928/58142_
15.18139110028030.03.56224.63
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1075/53189_
14.954709102928660.03.96207.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1145/54987_
14.964299105940220.04.61212.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1141/54415_
14.955279107990740.04.65209.12
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1182/55532_
15.123179105653540.04.60214.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1043/53556_
15.123324168106776850.04.19208.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZLLTsMwEEX3SPxD5H2SN

1-0186020/1114/54351_
14.963969105903160.04.16211.25
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1171/56083_
15.11349257104948940.05.46219.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fZJbTwIxEIXf%2FRWbvne

1-0186020/1042/55067_
15.113353502108792860.03.86212.90
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZJPT%2BMwEMXvK%2FEdL

1-0186020/1095/56330_
15.132871110703730.04.00219.52
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0186020/1211/55925_
15.132868108997810.04.93224.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0186020/1013/54667_
15.162479108466340.03.81213.33
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/996/55926_
15.142594107486200.03.86217.73
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/971/58684_
15.1623114103313320.03.64229.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1082/56424_
15.16198206110589300.04.08227.43

Found on 2024-04-22 23:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf19c60805

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2023-10-26T13:44:44

Current Time: Monday, 22-Apr-2024 23:21:16 UTC
Restart Time: Wednesday, 28-Feb-2024 06:59:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  54 days 16 hours 21 minutes 32 seconds
Server load: 1.21 1.20 1.20
Total accesses: 3205260 - Total Traffic: 12.0 GB - Total Duration: 584889522
CPU Usage: u70.61 s100.15 cu971.26 cs590.09 - .0367% CPU load
.678 requests/sec - 2719 B/second - 4009 B/request - 182.478 ms/request
2 requests currently being processed, 48 idle workers
__________K__________________W____________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0146920/2111/56829_
26.722179113380240.07.12222.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2380/54732_
26.713069102676840.08.06218.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2186/54529_
26.731331103536980.07.88213.85
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2007/53522_
26.722885108969520.06.99215.58
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

0-0146920/2025/55553_
26.7226810103798730.06.65222.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2275/56144_
26.713251107146370.07.75217.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2062/55930_
26.7219041102156070.07.04214.18
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2124/55294_
26.745311104980370.07.48215.62
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2362/56810_
26.721769107314580.08.10218.87
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2076/55086_
26.746710111260630.07.05214.79
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-01469260/2243/57696K
26.780010703663217.07.78222.67
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /.DS_Store HTTP/1.1

0-0146920/2114/54755_
26.731159106285470.07.73214.53
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2259/56678_
26.74219116393260.07.88219.70
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1854/55489_
26.731599109358790.06.16216.24
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2180/55126_
26.684889111242170.07.68212.94
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1962/55407_
26.685549108661110.06.80215.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2334/55924_
26.685379112923460.08.16216.80
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2170/55560_
26.694409106546480.07.50218.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1841/57196_
26.685179115004480.06.27224.09
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2478/56497_
26.703754107717640.08.58218.71
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coHEAD /module.php/accountinfo/reset.php?username=cl1-21328&code=

0-0146920/2806/56989_
26.694139101547770.09.25220.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2197/54799_
26.713193105757350.07.61222.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/metadata.php HTTP/1.1

0-0146920/2348/56050_
26.7036827109523030.08.34217.86
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2356/56121_
26.722789107551090.08.24220.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2065/56347_
26.72239440108734480.07.18219.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/905/55884_
14.95501273106798750.03.61219.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fsso.prec

1-0186020/1136/54442_
14.9554311104377340.04.52210.51
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/951/54123_
15.18359102800970.03.55209.46
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1184/55976_
15.1712311106128240.04.68215.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-01860224/1167/54229W
15.200010710100167.04.41211.12
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /server-status HTTP/1.1

1-0186020/1115/57088_
15.1618221106542250.04.25223.41
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/928/58142_
15.18139110028030.03.56224.63
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1075/53189_
14.954719102928660.03.96207.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1145/54987_
14.964309105940220.04.61212.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1141/54415_
14.955289107990740.04.65209.12
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1182/55532_
15.123189105653540.04.60214.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1043/53556_
15.123324168106776850.04.19208.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZLLTsMwEEX3SPxD5H2SN

1-0186020/1114/54351_
14.963979105903160.04.16211.25
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1171/56083_
15.11350257104948940.05.46219.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fZJbTwIxEIXf%2FRWbvne

1-0186020/1042/55067_
15.113363502108792860.03.86212.90
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZJPT%2BMwEMXvK%2FEdL

1-0186020/1095/56330_
15.132881110703730.04.00219.52
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0186020/1211/55925_
15.132868108997810.04.93224.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0186020/1013/54667_
15.162489108466340.03.81213.33
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/996/55926_
15.142604107486200.03.86217.73
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/971/58684_
15.1623214103313320.03.64229.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1082/56424_
15.16199206110589300.04.08227.43
127.0.0.1http/1.1

Found on 2024-04-22 23:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31a4292acfa4292acf3ec423c0

Apache Status

Apache Server Status for redlands-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2023-10-26T13:44:44

Current Time: Monday, 22-Apr-2024 23:21:16 UTC
Restart Time: Wednesday, 28-Feb-2024 06:59:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  54 days 16 hours 21 minutes 32 seconds
Server load: 1.21 1.20 1.20
Total accesses: 3205262 - Total Traffic: 12.0 GB - Total Duration: 584889524
CPU Usage: u70.62 s100.15 cu971.26 cs590.09 - .0367% CPU load
.678 requests/sec - 2719 B/second - 4009 B/request - 182.478 ms/request
2 requests currently being processed, 48 idle workers
__________K__________________W____________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0146920/2111/56829_
26.722179113380240.07.12222.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2380/54732_
26.713069102676840.08.06218.02
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2186/54529_
26.731331103536980.07.88213.85
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2007/53522_
26.722885108969520.06.99215.58
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

0-0146920/2025/55553_
26.7226810103798730.06.65222.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2275/56144_
26.713251107146370.07.75217.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0146920/2062/55930_
26.7219041102156070.07.04214.18
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2124/55294_
26.745411104980370.07.48215.62
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2362/56810_
26.721769107314580.08.10218.87
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2076/55086_
26.746810111260630.07.05214.79
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-01469260/2243/57696K
26.780010703663217.07.78222.67
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /.DS_Store HTTP/1.1

0-0146920/2114/54755_
26.731159106285470.07.73214.53
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2259/56678_
26.74229116393260.07.88219.70
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1854/55489_
26.731609109358790.06.16216.24
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2180/55126_
26.684889111242170.07.68212.94
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1962/55407_
26.685549108661110.06.80215.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2334/55924_
26.685389112923460.08.16216.80
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2170/55560_
26.694409106546480.07.50218.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/1841/57196_
26.685179115004480.06.27224.09
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2478/56497_
26.703754107717640.08.58218.71
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coHEAD /module.php/accountinfo/reset.php?username=cl1-21328&code=

0-0146920/2806/56989_
26.694139101547770.09.25220.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2197/54799_
26.713193105757350.07.61222.36
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/metadata.php HTTP/1.1

0-0146920/2348/56050_
26.7036927109523030.08.34217.86
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2356/56121_
26.722789107551090.08.24220.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

0-0146920/2065/56347_
26.72240440108734480.07.18219.69
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/905/55884_
14.95501273106798750.03.61219.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fsso.prec

1-0186020/1136/54442_
14.9554311104377340.04.52210.51
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/951/54123_
15.18359102800970.03.55209.46
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1184/55976_
15.1712411106128240.04.68215.34
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-01860226/1169/54231W
15.210010710102172.54.41211.12
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /server-status HTTP/1.1

1-0186020/1115/57088_
15.1618221106542250.04.25223.41
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/928/58142_
15.18149110028030.03.56224.63
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1075/53189_
14.954719102928660.03.96207.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1145/54987_
14.964309105940220.04.61212.26
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1141/54415_
14.955289107990740.04.65209.12
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1182/55532_
15.123189105653540.04.60214.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1043/53556_
15.123334168106776850.04.19208.68
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZLLTsMwEEX3SPxD5H2SN

1-0186020/1114/54351_
14.963979105903160.04.16211.25
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1171/56083_
15.11350257104948940.05.46219.08
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fZJbTwIxEIXf%2FRWbvne

1-0186020/1042/55067_
15.113363502108792860.03.86212.90
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hZJPT%2BMwEMXvK%2FEdL

1-0186020/1095/56330_
15.132881110703730.04.00219.52
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0186020/1211/55925_
15.132878108997810.04.93224.95
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0186020/1013/54667_
15.162489108466340.03.81213.33
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/996/55926_
15.142604107486200.03.86217.73
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fpulse.re

1-0186020/971/58684_
15.1623214103313320.03.64229.65
127.0.0.1http/1.1ip-10-1-89-17.ap-southeast-2.coPOST /saml2/idp/SSOService.php HTTP/1.1

1-0186020/1082/56424_
15.16199206110589300.04.08227.43
127.0.0.1http/1.1

Found on 2024-04-22 23:21

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: laliganews.es
Port: 443
URL: https://laliganews.es

First seen 2024-01-03 00:26
Last seen 2024-12-18 16:39
Open for 350 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176421954ce76a4109a1fa4109a1fa4109a1f
```
Found 2 files trough .DS_Store spidering:

/img
/img/logos
```
  Found on 2024-12-18 16:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: www.laliganews.es
Port: 443
URL: https://www.laliganews.es

First seen 2024-07-15 06:05
Last seen 2024-12-16 14:39
Open for 154 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176421954ce76a4109a1fa4109a1fa4109a1f
```
Found 2 files trough .DS_Store spidering:

/img
/img/logos
```
  Found on 2024-12-16 14:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777r.com
Port: 443
URL: https://spin777r.com

First seen 2024-10-24 06:38
Last seen 2024-12-04 22:45
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 22:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777m.com
Port: 443
URL: https://spin777m.com

First seen 2024-10-24 06:38
Last seen 2024-12-04 22:21
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 22:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777e.com
Port: 443
URL: https://spin777e.com

First seen 2024-10-24 06:38
Last seen 2024-12-04 20:21
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 20:21
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777y.com
Port: 443
URL: https://spin777y.com

First seen 2024-10-24 06:38
Last seen 2024-12-04 10:30
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 10:30
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777.cool
Port: 443
URL: https://spin777.cool

First seen 2024-09-27 08:41
Last seen 2024-12-04 10:27
Open for 68 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 10:27
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777b.com
Port: 443
URL: https://spin777b.com

First seen 2024-10-24 06:38
Last seen 2024-12-04 10:14
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 10:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 18.245.86.79
Domain: spin777d.com
Port: 443
URL: https://spin777d.com

First seen 2024-10-24 06:38
Last seen 2024-12-04 04:19
Open for 40 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561ca214e333c6376bc39063ca40
```
Found 4 files trough .DS_Store spidering:

/css
/dl
/img
/src
```
  Found on 2024-12-04 04:19
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 18.245.86.79
Domain: 99d7foepi1.xyz
Port: 443
URL: https://99d7foepi1.xyz

First seen 2023-11-15 13:45
Last seen 2024-06-04 05:33
Open for 201 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652205c2db34
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/bb/bb-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-06-04 05:33
  
  237 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 18.245.86.79
Domain: abtmb1l1qc.xyz
Port: 443
URL: https://abtmb1l1qc.xyz

First seen 2023-11-15 13:38
Last seen 2024-05-30 20:40
Open for 197 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652205c2db34
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/bb/bb-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-05-30 20:40
  
  237 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 18.245.86.79
Domain: njpm81nsda.xyz
Port: 443
URL: https://njpm81nsda.xyz

First seen 2023-11-15 13:49
Last seen 2024-05-30 17:28
Open for 197 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652205c2db34
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/bb/bb-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-05-30 17:28
  
  237 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 18.245.86.79
Domain: vwww.bahiagame.com
Port: 443
URL: https://vwww.bahiagame.com

First seen 2024-03-14 06:28
Last seen 2024-04-10 17:56
Open for 27 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522805be32f
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@e.coding.net:kafei1/bahiagame/bahiagame-web-build.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
```
  Found on 2024-04-10 17:56
  
  276 Bytes
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65222fcf4823
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@e.coding.net:kafei1/vip24h/vip24h-web-build.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "dev"]
	remote = origin
	merge = refs/heads/dev
```
  Found on 2024-03-14 06:28
  
  270 Bytes
Create report

Open service 18.245.86.79:80 · micurso.pro

2026-01-11 03:54

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 11 Jan 2026 03:54:03 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://micurso.pro/
X-Cache: Redirect from cloudfront
Via: 1.1 57bc54093a2e2c99ca194f2955ba3d1c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P6
X-Amz-Cf-Id: kyyHRbEanHlmNdcyDCvS96WP9UNnWLGfR4K8z-caXomkGs-edCv_nw==

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

Found one day ago by HttpPlugin