LeakIX - Host 52.222.214.105

Host 52.222.214.105

United States

AMAZON-02

Software information

AmazonS3

tcp/443 tcp/80

CloudFront

tcp/443 tcp/80

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 99.86.4.67
Domain: andrewrcalderon.com
Port: 443
URL: https://andrewrcalderon.com

First seen 2023-02-23 07:19
Last seen 2026-01-05 04:05
Open for 1046 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228d53eb9a

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AndrewRCalderon/andrewrcalderon.github.io
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "https://github.com/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX3JpbmFWcWptaEJCSUpSWmRaUWFvMzQ1eVVpUnBvMTFMZnhYRw==
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2026-01-05 04:05

442 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522daf2fc6d

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AndrewRCalderon/andrewrcalderon.github.io
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "https://github.com/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX055YmtXVE9nanIxUm1TTjdMZzJVaTRFZ2wxU0l6MDNQN1Z6WA==
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2024-11-18 15:48

442 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65228fa9e102

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AndrewRCalderon/andrewrcalderon.github.io
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "https://github.com/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX2hHOGtDOVl2NmI0UFZwQ1B0aVBmMmJnTnlYeTFzdzA2ejJadg==
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2024-11-14 18:56

442 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652288a92192

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AndrewRCalderon/andrewrcalderon.github.io
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "https://github.com/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX2diVFZtOE5oekRKUUJCVUxxclYxeDBpNHR4WVF0bTAyMzE3Yw==
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2024-04-18 20:52

442 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522196e1b24

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/AndrewRCalderon/andrewrcalderon.github.io
	fetch = +refs/heads/*:refs/remotes/origin/*
[gc]
	auto = 0
[http "https://github.com/"]
	extraheader = AUTHORIZATION: basic eC1hY2Nlc3MtdG9rZW46Z2hzX1lGWmM3V1J3ZTlsNWU5NDl6VXZOTVhQWU1MS3FTOTRaN0F1Sw==
[branch "master"]
	remote = origin
	merge = refs/heads/master

Found on 2023-02-23 07:19

442 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.32.27.31
Domain: resources.stage-overview.com
Port: 443
URL: https://resources.stage-overview.com

First seen 2023-04-09 03:39
Last seen 2025-11-08 03:43
Open for 944 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c026392ab026392ab052bb006c45f6052c2c8824bb2986e24
```
Found 7 files trough .DS_Store spidering:

/Resource
/Resource/images
/Resource/images/Asset
/Resource/images/Filter
/Resource/images/Stop
/Resource/images/tbar
/Resource/lib
```
  Found on 2025-11-08 03:43
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e860390d972c27e71c7b5627c8c11f7e0
```
Found 6 files trough .DS_Store spidering:

/Resource
/Resource/images
/Resource/images/Asset
/Resource/images/Filter
/Resource/images/Stop
/Resource/images/tbar
```
  Found on 2025-03-08 13:09
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fc7f4c6faf390fa3e66151e4766151e47
```
Found 3 files trough .DS_Store spidering:

/Resource
/Resource/images
/Resource/images/Asset
```
  Found on 2024-03-10 09:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: playerrelay.com
Port: 80
URL: http://playerrelay.com

First seen 2023-02-21 10:11
Last seen 2025-07-01 05:37
Open for 860 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e94a7e055932819b2ae4f6dbe48b279c12
```
Found 5 files trough .DS_Store spidering:

/css
/images
/images/icons
/images/icons_old
/js
```
  Found on 2025-07-01 05:37
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: hirosta.com
Port: 443
URL: https://hirosta.com

First seen 2024-05-05 05:48
Last seen 2025-06-30 23:49
Open for 421 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b75eb34fe9ebe6559cccc2a05e
```
Found 5 files trough .DS_Store spidering:

/assets
/assets/css
/assets/fonts
/assets/img
/assets/js
```
  Found on 2025-06-30 23:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: playerrelay.com
Port: 443
URL: https://playerrelay.com

First seen 2023-02-21 10:11
Last seen 2025-06-30 21:39
Open for 860 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e94a7e055932819b2ae4f6dbe48b279c12
```
Found 5 files trough .DS_Store spidering:

/css
/images
/images/icons
/images/icons_old
/js
```
  Found on 2025-06-30 21:39
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: chat.sleekflow.io
Port: 443
URL: https://chat.sleekflow.io

First seen 2023-02-22 13:48
Last seen 2025-06-30 17:40
Open for 859 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2025-06-30 17:40
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: chat.sleekflow.io
Port: 80
URL: http://chat.sleekflow.io

First seen 2023-02-22 13:48
Last seen 2025-06-30 17:37
Open for 859 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2025-06-30 17:37
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: www.colours.hapax.xyz
Port: 443
URL: https://www.colours.hapax.xyz

First seen 2023-02-22 15:03
Last seen 2025-06-30 04:48
Open for 858 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d97bd10b897bd10b897bd10b897bd10b8
```
Found 1 files trough .DS_Store spidering:

/build
```
  Found on 2025-06-30 04:48
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: carverbasketball.com
Port: 443
URL: https://carverbasketball.com

First seen 2024-01-17 23:04
Last seen 2024-11-06 15:20
Open for 293 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa54474ed0a95611c511f5e95c789301aaab91
```
Found 18 files trough .DS_Store spidering:

/meta.png
/team-logos
/team-logos/black.png
/team-logos/blue.jpg
/team-logos/blue.png
/team-logos/green.jpg
/team-logos/green.png
/team-logos/orange.jpg
/team-logos/orange.png
/team-logos/purple.jpg
/team-logos/purple.png
/team-logos/red.jpg
/team-logos/red.png
/team-logos/secondary
/team-logos/white.jpg
/team-logos/white.png
/team-logos/yellow.jpg
/team-logos/yellow.png
```
  Found on 2024-11-06 15:20
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: beta.bestangermanagementcoaches.com
Port: 443
URL: https://beta.bestangermanagementcoaches.com

First seen 2024-09-23 09:25
Last seen 2024-10-14 06:20
Open for 20 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e93c9758a05f3eab743f0dbe0569e1d3f1
```
Found 5 files trough .DS_Store spidering:

/blog
/code
/contact
/images
/read-more
```
  Found on 2024-10-14 06:20
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: d.qsrjx.bar
Port: 443
URL: https://d.qsrjx.bar

First seen 2023-11-09 05:36
Last seen 2024-07-08 14:13
Open for 242 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652243b0d286
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://www.yc2common.com/web-page/douyinweb.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-07-08 14:13
  
  273 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: h34e3tcsio.xyz
Port: 443
URL: https://h34e3tcsio.xyz

First seen 2023-11-04 22:24
Last seen 2024-02-02 13:00
Open for 89 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224a02fe66
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/zhi/zhi-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-02-02 13:00
  
  239 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: d.qsrjx.bar
Port: 80
URL: http://d.qsrjx.bar

First seen 2023-11-09 05:36
Last seen 2024-02-02 10:11
Open for 85 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652243b0d286
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://www.yc2common.com/web-page/douyinweb.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2024-02-02 10:11
  
  273 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: payxiaomao.com
Port: 443
URL: https://payxiaomao.com

First seen 2023-10-17 22:01
Last seen 2024-01-07 06:54
Open for 81 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fb246cfc765306db4aaf5bc41aaf5bc41
```
Found 3 files trough .DS_Store spidering:

/img
/img/img40.png
/img/index
```
  Found on 2024-01-07 06:54
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: dev.qliq.bio
Port: 80
URL: http://dev.qliq.bio

First seen 2022-11-17 18:43
Last seen 2023-09-23 06:39
Open for 309 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229b1332d0
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:aviqa1984/qliq-react.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2022-11-17 18:43
  
  305 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 52.222.214.105
Domain: arquivos.ipld.com.br
Port: 443
URL: https://arquivos.ipld.com.br

First seen 2022-08-28 10:45
Last seen 2023-06-25 09:58
Open for 300 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0db99b0166

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 25-Jun-2023 09:58:18 UTC
Restart Time: Saturday, 24-Jun-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  12 hours 28 minutes 17 seconds
Server load: 0.01 0.03 0.00
Total accesses: 34148 - Total Traffic: 1.9 GB - Total Duration: 14029504
CPU Usage: u114.34 s25.87 cu245.16 cs39.55 - .946% CPU load
.761 requests/sec - 44.8 kB/second - 58.9 kB/request - 410.844 ms/request
9 requests currently being processed, 20 idle workers
WK______W____K_____KKK_KK____...................................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2218757871/558/1052W
4.988605203402.514.1517.87
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET /consulta/cpf/09708363766?force=1 HTTP/1.1

1-2218757885/501/1029K
4.690163646021.85.1452.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /_all_dbs HTTP/1.1

2-2218757750/501/1004_
4.681401073210.05.629.48
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

3-2218757660/514/1075_
5.431513232090.068.8575.89
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

4-2218757900/510/994_
4.3851984860.0114.08203.52
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

5-2218757670/490/1064_
4.981315318990.067.52118.86
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-2218757780/520/1066_
5.78501393030.073.0077.48
127.0.0.1http/1.1

7-2218757980/492/1010_
4.571101512490.04.5011.92
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

8-2218757584/529/1124W
5.400063735914.570.7479.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

9-2218757620/515/1047_
5.56903675740.066.5173.11
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

10-2218757590/508/1022_
5.04715247110.08.2652.86
127.0.0.1http/1.1

11-2218757600/504/1056_
4.36917540320.066.82226.64
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

12-2218757610/529/1114_
5.011444679170.063.7475.99
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

13-2218757651/556/1066K
5.14216824105.712.8081.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

14-2218757630/516/1086_
5.401504355260.012.1721.56
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

15-2218757640/494/1054_
5.29716290320.02.8912.76
172.31.25.204http/1.1

16-2218757800/518/1130_
4.57152002970450.08.7822.92
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

17-2218757850/515/1022_
5.2910846969940.067.49137.68
172.31.25.204http/1.1api.accounts.amlreputacional.coPOST /authenticate HTTP/1.1

18-2218757860/500/993_
3.88014992380.03.497.06
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

19-2218758032/531/1041K
5.77012074982.211.0416.49
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /_all_dbs HTTP/1.1

20-2218758111/515/993K
3.95212745555.75.448.78
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

21-2218758178/507/834K
3.64028278024.13.207.67
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

22-2218758190/544/1010_
4.491116433850.064.9970.78
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

23-2218758209/536/956K
4.690165042931.513.6017.15
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-2218759435/508/1047K
3.890160699920.55.4614.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

25-2218768380/506/827_
4.941501234860.065.6468.06
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

26-2218768410/498/893_
4.55151995200.063.9566.69
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

27-2218768420/474/936_
4.801303716200.03.8410.12
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

28-2219232170/0/285_
0.0001668250.00.004.07
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

29-1-0/0/298.
0.00229983872386510.00.005.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

30-1-0/0/88.
0.00229980137560.00.001.47
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

31-1-0/0/74.
0.002299819144930.00.000.54
172.31.25.204http/1.1api.captura-lrn.amlduediligencePOST /noticia HTTP/1.1

32-1-0/0/68.
0.0022998151140.00.000.33
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

33-7-0/0/315.
0.00229656638870.00.002.37
172.31.25.204http/1.1elearning.ipld.com.br:443GET /favicon.ico HTTP/1.1

34-1-0/0/64.
0.0022998148310.00.000.31
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

35-1-0/0/62.
0.002299801023130.00.000.42
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

36-1-0/0/70.
0.0034684019360.00.000.34
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

37-10-0/0/276.
0.002294923284960.00.0042.27
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.well-known/acme-challenge/uAP3l48Xp4qZhO_FfMJhCgFraiLbjxO

38-1-0/0/268.
0.00229980383020.00.001.69
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

39-6-0/0/332.
0.00229682271840.00.002.35
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

40-1-0/0/69.
0.0034679022620.00.000.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1-0/0/40.
0.0034678011440.00.000.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

42-1-0/0/43.
0.0034677011060.00.000.25
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

43-1-0/0/55.
0.0034676014750.00.000.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

44-1-0/0/8.
0.00346750850.00.000.02
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

45-1-0/0/20.
0.003467401860.00.000.04
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-1-0/0/265.
0.00229980470260.00.003.99
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

47-1-0/0/14.
0.003467301970.00.000.03
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-1-0/0/295.
0.00229932124022780.00.002.01
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

49-1-0/0/230.
0.00229981346410.00.001.98
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

50-1-0/0/236.
0.002299833520840.00.001.76
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

51-10-0/0/283.
0.002294917776

Found on 2023-06-25 09:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0dff6b1a8a

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 25-Jun-2023 09:58:18 UTC
Restart Time: Saturday, 24-Jun-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  12 hours 28 minutes 16 seconds
Server load: 0.01 0.03 0.00
Total accesses: 34145 - Total Traffic: 1.9 GB - Total Duration: 14029495
CPU Usage: u114.34 s25.87 cu245.16 cs39.55 - .946% CPU load
.761 requests/sec - 44.8 kB/second - 58.9 kB/request - 410.88 ms/request
9 requests currently being processed, 20 idle workers
WK______K____K_____KKW_KK____...................................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2218757871/558/1052W
4.988605203402.514.1517.87
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET /consulta/cpf/09708363766?force=1 HTTP/1.1

1-2218757884/500/1028K
4.690163645821.05.1452.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-2218757750/501/1004_
4.681401073210.05.629.48
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

3-2218757660/514/1075_
5.431513232090.068.8575.89
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

4-2218757900/510/994_
4.3851984860.0114.08203.52
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

5-2218757670/490/1064_
4.981215318990.067.52118.86
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-2218757780/520/1066_
5.78501393030.073.0077.48
127.0.0.1http/1.1

7-2218757980/492/1010_
4.571001512490.04.5011.92
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

8-2218757584/529/1124K
5.400163735914.570.7479.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

9-2218757620/515/1047_
5.56903675740.066.5173.11
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

10-2218757590/508/1022_
5.04615247110.08.2652.86
127.0.0.1http/1.1

11-2218757600/504/1056_
4.36917540320.066.82226.64
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

12-2218757610/529/1114_
5.011444679170.063.7475.99
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

13-2218757651/556/1066K
5.14216824105.712.8081.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

14-2218757630/516/1086_
5.401404355260.012.1721.56
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

15-2218757640/494/1054_
5.29616290320.02.8912.76
172.31.25.204http/1.1

16-2218757800/518/1130_
4.57142002970450.08.7822.92
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

17-2218757850/515/1022_
5.2910846969940.067.49137.68
172.31.25.204http/1.1api.accounts.amlreputacional.coPOST /authenticate HTTP/1.1

18-2218757860/500/993_
3.88014992380.03.497.06
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

19-2218758031/530/1040K
5.77012074961.411.0416.49
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

20-2218758111/515/993K
3.95112745555.75.448.78
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

21-2218758177/506/833W
3.64008277618.03.207.66
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

22-2218758190/544/1010_
4.491016433850.064.9970.78
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

23-2218758209/536/956K
4.690165042931.513.6017.15
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

24-2218759435/508/1047K
3.890160699920.55.4614.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

25-2218768380/506/827_
4.941501234860.065.6468.06
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

26-2218768410/498/893_
4.55141995200.063.9566.69
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

27-2218768420/474/936_
4.801203716200.03.8410.12
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

28-2219232170/0/285_
0.0001668250.00.004.07
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

29-1-0/0/298.
0.00229983872386510.00.005.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

30-1-0/0/88.
0.00229980137560.00.001.47
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

31-1-0/0/74.
0.002299819144930.00.000.54
172.31.25.204http/1.1api.captura-lrn.amlduediligencePOST /noticia HTTP/1.1

32-1-0/0/68.
0.0022998151140.00.000.33
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

33-7-0/0/315.
0.00229646638870.00.002.37
172.31.25.204http/1.1elearning.ipld.com.br:443GET /favicon.ico HTTP/1.1

34-1-0/0/64.
0.0022998148310.00.000.31
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

35-1-0/0/62.
0.002299801023130.00.000.42
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

36-1-0/0/70.
0.0034684019360.00.000.34
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

37-10-0/0/276.
0.002294823284960.00.0042.27
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.well-known/acme-challenge/uAP3l48Xp4qZhO_FfMJhCgFraiLbjxO

38-1-0/0/268.
0.00229980383020.00.001.69
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

39-6-0/0/332.
0.00229682271840.00.002.35
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

40-1-0/0/69.
0.0034679022620.00.000.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1-0/0/40.
0.0034678011440.00.000.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

42-1-0/0/43.
0.0034677011060.00.000.25
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

43-1-0/0/55.
0.0034676014750.00.000.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

44-1-0/0/8.
0.00346750850.00.000.02
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

45-1-0/0/20.
0.003467401860.00.000.04
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-1-0/0/265.
0.00229980470260.00.003.99
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

47-1-0/0/14.
0.003467301970.00.000.03
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-1-0/0/295.
0.00229932124022780.00.002.01
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

49-1-0/0/230.
0.00229981346410.00.001.98
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

50-1-0/0/236.
0.002299833520840.00.001.76
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

51-10-0/0/283.

Found on 2023-06-25 09:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d2abe46ee

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 25-Jun-2023 09:58:17 UTC
Restart Time: Saturday, 24-Jun-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  12 hours 28 minutes 15 seconds
Server load: 0.01 0.03 0.00
Total accesses: 34137 - Total Traffic: 1.9 GB - Total Duration: 14029474
CPU Usage: u114.32 s25.87 cu245.16 cs39.55 - .946% CPU load
.76 requests/sec - 44.8 kB/second - 59.0 kB/request - 410.976 ms/request
9 requests currently being processed, 19 idle workers
WK______K____K_____RKK_KW___....................................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2218757871/558/1052W
4.988505203402.514.1517.87
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET /consulta/cpf/09708363766?force=1 HTTP/1.1

1-2218757883/499/1027K
4.681163645620.25.1452.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

2-2218757750/501/1004_
4.681301073210.05.629.48
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

3-2218757660/514/1075_
5.431413232090.068.8575.89
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

4-2218757900/510/994_
4.3841984860.0114.08203.52
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

5-2218757670/490/1064_
4.981115318990.067.52118.86
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-2218757780/520/1066_
5.78401393030.073.0077.48
127.0.0.1http/1.1

7-2218757980/492/1010_
4.57901512490.04.5011.92
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

8-2218757583/528/1123K
5.400163735713.770.7479.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

9-2218757620/515/1047_
5.56803675740.066.5173.11
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

10-2218757590/508/1022_
5.04515247110.08.2652.86
127.0.0.1http/1.1

11-2218757600/504/1056_
4.36817540320.066.82226.64
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

12-2218757610/529/1114_
5.011344679170.063.7475.99
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

13-2218757651/556/1066K
5.14116824105.712.8081.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

14-2218757630/516/1086_
5.401404355260.012.1721.56
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

15-2218757640/494/1054_
5.29516290320.02.8912.76
172.31.25.204http/1.1

16-2218757800/518/1130_
4.57132002970450.08.7822.92
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

17-2218757850/515/1022_
5.299846969940.067.49137.68
172.31.25.204http/1.1api.accounts.amlreputacional.coPOST /authenticate HTTP/1.1

18-2218757860/499/992_
3.88162054992360.03.497.06
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

19-2218758030/529/1039R
5.761712074940.011.0416.49
172.31.25.204http/1.1arquivos.ipld.com.br:443

20-2218758111/515/993K
3.95012745555.75.448.78
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

21-2218758176/505/832K
3.64018277111.83.197.65
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

22-2218758190/544/1010_
4.49916433850.064.9970.78
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

23-2218758208/535/955K
4.690165042730.613.6017.15
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

24-2218759433/506/1045W
3.890060699313.75.4514.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

25-2218768380/506/827_
4.941401234860.065.6468.06
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

26-2218768410/498/893_
4.55141995200.063.9566.69
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

27-2218768420/474/936_
4.801103716200.03.8410.12
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

28-1-0/0/285.
0.00229971668250.00.004.07
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

29-1-0/0/298.
0.00229973872386510.00.005.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

30-1-0/0/88.
0.00229970137560.00.001.47
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

31-1-0/0/74.
0.002299719144930.00.000.54
172.31.25.204http/1.1api.captura-lrn.amlduediligencePOST /noticia HTTP/1.1

32-1-0/0/68.
0.0022997151140.00.000.33
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

33-7-0/0/315.
0.00229646638870.00.002.37
172.31.25.204http/1.1elearning.ipld.com.br:443GET /favicon.ico HTTP/1.1

34-1-0/0/64.
0.0022997148310.00.000.31
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

35-1-0/0/62.
0.002299701023130.00.000.42
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

36-1-0/0/70.
0.0034683019360.00.000.34
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

37-10-0/0/276.
0.002294823284960.00.0042.27
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.well-known/acme-challenge/uAP3l48Xp4qZhO_FfMJhCgFraiLbjxO

38-1-0/0/268.
0.00229970383020.00.001.69
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

39-6-0/0/332.
0.00229672271840.00.002.35
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

40-1-0/0/69.
0.0034678022620.00.000.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1-0/0/40.
0.0034677011440.00.000.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

42-1-0/0/43.
0.0034676011060.00.000.25
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

43-1-0/0/55.
0.0034675014750.00.000.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

44-1-0/0/8.
0.00346740850.00.000.02
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

45-1-0/0/20.
0.003467301860.00.000.04
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-1-0/0/265.
0.00229970470260.00.003.99
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

47-1-0/0/14.
0.003467201970.00.000.03
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-1-0/0/295.
0.00229922124022780.00.002.01
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

49-1-0/0/230.
0.00229971346410.00.001.98
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

50-1-0/0/236.
0.002299733520840.00.001.76
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

51-10-0/0/283.
0.0022948177762<

Found on 2023-06-25 09:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0ddc691db5

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 25-Jun-2023 09:58:17 UTC
Restart Time: Saturday, 24-Jun-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  12 hours 28 minutes 15 seconds
Server load: 0.01 0.03 0.00
Total accesses: 34138 - Total Traffic: 1.9 GB - Total Duration: 14029479
CPU Usage: u114.32 s25.87 cu245.16 cs39.55 - .946% CPU load
.76 requests/sec - 44.8 kB/second - 59.0 kB/request - 410.964 ms/request
9 requests currently being processed, 19 idle workers
WK______K____K_____RKW_KK___....................................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2218757871/558/1052W
4.988505203402.514.1517.87
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET /consulta/cpf/09708363766?force=1 HTTP/1.1

1-2218757883/499/1027K
4.681163645620.25.1452.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

2-2218757750/501/1004_
4.681301073210.05.629.48
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

3-2218757660/514/1075_
5.431413232090.068.8575.89
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

4-2218757900/510/994_
4.3841984860.0114.08203.52
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

5-2218757670/490/1064_
4.981115318990.067.52118.86
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-2218757780/520/1066_
5.78401393030.073.0077.48
127.0.0.1http/1.1

7-2218757980/492/1010_
4.57901512490.04.5011.92
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

8-2218757583/528/1123K
5.400163735713.770.7479.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

9-2218757620/515/1047_
5.56803675740.066.5173.11
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

10-2218757590/508/1022_
5.04615247110.08.2652.86
127.0.0.1http/1.1

11-2218757600/504/1056_
4.36817540320.066.82226.64
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

12-2218757610/529/1114_
5.011344679170.063.7475.99
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

13-2218757651/556/1066K
5.14116824105.712.8081.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

14-2218757630/516/1086_
5.401404355260.012.1721.56
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

15-2218757640/494/1054_
5.29616290320.02.8912.76
172.31.25.204http/1.1

16-2218757800/518/1130_
4.57132002970450.08.7822.92
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

17-2218757850/515/1022_
5.299846969940.067.49137.68
172.31.25.204http/1.1api.accounts.amlreputacional.coPOST /authenticate HTTP/1.1

18-2218757860/499/992_
3.88162054992360.03.497.06
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

19-2218758030/529/1039R
5.761712074940.011.0416.49
172.31.25.204http/1.1arquivos.ipld.com.br:443

20-2218758111/515/993K
3.95112745555.75.448.78
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

21-2218758176/505/832W
3.64008277111.83.197.65
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

22-2218758190/544/1010_
4.49916433850.064.9970.78
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

23-2218758208/535/955K
4.690165042730.613.6017.15
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

24-2218759434/507/1046K
3.890260699719.85.4614.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

25-2218768380/506/827_
4.941401234860.065.6468.06
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

26-2218768410/498/893_
4.55141995200.063.9566.69
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

27-2218768420/474/936_
4.801103716200.03.8410.12
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

28-1-0/0/285.
0.00229971668250.00.004.07
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

29-1-0/0/298.
0.00229973872386510.00.005.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

30-1-0/0/88.
0.00229970137560.00.001.47
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

31-1-0/0/74.
0.002299719144930.00.000.54
172.31.25.204http/1.1api.captura-lrn.amlduediligencePOST /noticia HTTP/1.1

32-1-0/0/68.
0.0022997151140.00.000.33
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

33-7-0/0/315.
0.00229646638870.00.002.37
172.31.25.204http/1.1elearning.ipld.com.br:443GET /favicon.ico HTTP/1.1

34-1-0/0/64.
0.0022997148310.00.000.31
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

35-1-0/0/62.
0.002299701023130.00.000.42
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

36-1-0/0/70.
0.0034683019360.00.000.34
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

37-10-0/0/276.
0.002294823284960.00.0042.27
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.well-known/acme-challenge/uAP3l48Xp4qZhO_FfMJhCgFraiLbjxO

38-1-0/0/268.
0.00229970383020.00.001.69
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

39-6-0/0/332.
0.00229672271840.00.002.35
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

40-1-0/0/69.
0.0034678022620.00.000.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1-0/0/40.
0.0034677011440.00.000.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

42-1-0/0/43.
0.0034676011060.00.000.25
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

43-1-0/0/55.
0.0034675014750.00.000.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

44-1-0/0/8.
0.00346740850.00.000.02
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

45-1-0/0/20.
0.003467301860.00.000.04
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-1-0/0/265.
0.00229970470260.00.003.99
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

47-1-0/0/14.
0.003467201970.00.000.03
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-1-0/0/295.
0.00229922124022780.00.002.01
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

49-1-0/0/230.
0.00229971346410.00.001.98
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

50-1-0/0/236.
0.002299733520840.00.001.76
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

51-10-0/0/283.
0.00229481777620.00.0088.

Found on 2023-06-25 09:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0de285534e

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 14-Jun-2023 03:07:47 UTC
Restart Time: Tuesday, 13-Jun-2023 21:30:02 UTC
Parent Server Config. Generation: 20
Parent Server MPM Generation: 19
Server uptime:  5 hours 37 minutes 45 seconds
Server load: 0.05 0.05 0.06
Total accesses: 22047 - Total Traffic: 1.4 GB - Total Duration: 6617614
CPU Usage: u159.92 s18.84 cu254.13 cs35.15 - 2.31% CPU load
1.09 requests/sec - 70.2 kB/second - 64.5 kB/request - 300.159 ms/request
7 requests currently being processed, 33 idle workers
_.__W___K.K_____._.______R_K__________._.K__K_..................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1933571760/350/647_
5.464301337880.04.3910.04
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

1-19-0/0/693.
0.00189302245440.00.0014.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

2-1933571780/342/664_
6.333711701430.02.9112.64
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET / HTTP/1.1

3-1933571740/368/775_
6.673642984230.05.5229.31
172.31.25.204http/1.1

4-1933571796/353/716W
6.570017976116.04.5112.82
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

5-1933571870/391/737_
7.082912975710.07.8857.72
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-1933571770/332/624_
6.88321981410370.04.0049.79
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

7-1933571900/384/705_
8.041212725340.08.7879.41
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

8-1933571803/344/642K
6.870113436013.73.077.39
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

9-19-0/0/751.
0.00189202402500.00.0021.70
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

10-1933571927/349/643K
6.220114532829.93.257.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

11-1933571810/332/629_
6.994111010460.02.93102.54
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

12-1933571970/378/717_
7.18411930960.06.5418.24
172.31.25.204http/1.1api.painelti.amlreputacional.coGET / HTTP/1.1

13-1933571830/389/692_
7.0336154132740.08.5381.37
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/carlos.junior@amlconsulting.com.br HTTP/1.1

14-1933572060/339/694_
5.995212416750.02.91187.39
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

15-1933572180/404/762_
8.74802707170.09.5567.78
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

16-19-0/0/636.
0.00189101369380.00.0071.83
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

17-1933572190/343/652_
6.2437161239530.02.9571.46
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

18-19-0/0/746.
0.00189402513980.00.00119.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

19-1933572250/444/959_
8.35613720550.014.6845.00
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

20-1933572290/329/624_
7.281351078540.03.1319.90
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

21-1933572480/335/680_
6.634311880420.03.1522.88
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

22-1933572570/345/672_
6.113642301220.03.0722.29
127.0.0.1http/1.1

23-1933573390/384/665_
7.57512039110.08.2212.69
172.31.25.204http/1.1api.cnia.riskmoney.com.br:443GET / HTTP/1.1

24-1933573570/384/725_
7.861201996890.06.8516.88
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

25-1933573580/341/693R
6.405201997010.02.9519.51
172.31.25.204http/1.1arquivos.ipld.com.br:443

26-1933598520/305/593_
5.364301013970.03.368.26
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

27-1933604541/333/597K
6.280116724212.38.8181.10
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

28-1933784370/87/383_
1.89370998180.03.3911.03
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:8GET / HTTP/1.1

29-1933784410/62/321_
0.83601097570.00.4010.20
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

30-1933784420/65/331_
0.87511095580.00.694.87
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

31-1933805970/32/314_
0.6550803680.00.2943.24
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

32-1933805990/37/363_
0.543502257020.00.2212.56
127.0.0.1http/1.1

33-1933806000/35/314_
0.68290954870.00.3224.06
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

34-1933806020/36/357_
0.59811059590.00.338.91
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

35-1933806030/36/36_
0.6244131860.00.260.26
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

36-1933806040/33/33_
0.7330147460.00.270.27
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

37-1933806050/39/39_
0.5543328120.00.270.27
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

38-19-0/0/2.
0.0018680430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-1933806120/35/35_
0.5344026570.00.290.29
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

40-19-0/0/2.
0.0018660430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1933806142/39/39K
0.380122032.20.210.21
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

42-1933806150/33/33_
0.5435140500.00.240.24
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

43-1933806160/38/38_
0.49491257350.00.440.44
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

44-1933806174/38/38K
0.5701316521.10.240.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

45-1933806180/36/36_
0.593138324570.00.270.27
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 232subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 44 seconds, (range: 1...190)index usage: 8%, cache usage: 12%total entries stored since starting: 12517total entries replaced since starting: 0total entries expired since starting: 12285total (pre-expiry) entries scrolled out of the cache: 0total retrieves since star

Found on 2023-06-14 03:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0db4a386bf

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 14-Jun-2023 03:07:49 UTC
Restart Time: Tuesday, 13-Jun-2023 21:30:02 UTC
Parent Server Config. Generation: 20
Parent Server MPM Generation: 19
Server uptime:  5 hours 37 minutes 46 seconds
Server load: 0.05 0.05 0.06
Total accesses: 22065 - Total Traffic: 1.4 GB - Total Duration: 6617659
CPU Usage: u159.95 s18.86 cu254.13 cs35.15 - 2.31% CPU load
1.09 requests/sec - 70.2 kB/second - 64.5 kB/request - 299.917 ms/request
9 requests currently being processed, 31 idle workers
_.__K___K.K_____._.______K_K_______R__._.W_KK_..................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1933571760/350/647_
5.464501337880.04.3910.04
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

1-19-0/0/693.
0.00189402245440.00.0014.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

2-1933571780/342/664_
6.333811701430.02.9112.64
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET / HTTP/1.1

3-1933571740/368/775_
6.673742984230.05.5229.31
172.31.25.204http/1.1

4-19335717910/357/720K
6.580117977225.74.5212.83
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

5-1933571870/391/737_
7.083012975710.07.8857.72
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-1933571770/332/624_
6.88341981410370.04.0049.79
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

7-1933571900/384/705_
8.041412725340.08.7879.41
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

8-1933571806/347/645K
6.880113436716.13.077.39
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /_all_dbs HTTP/1.1

9-19-0/0/751.
0.00189302402500.00.0021.70
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

10-19335719210/352/646K
6.230114533632.23.257.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

11-1933571810/332/629_
6.994211010460.02.93102.54
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

12-1933571970/378/717_
7.18511930960.06.5418.24
172.31.25.204http/1.1api.painelti.amlreputacional.coGET / HTTP/1.1

13-1933571830/389/692_
7.0338154132740.08.5381.37
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/carlos.junior@amlconsulting.com.br HTTP/1.1

14-1933572060/340/695_
5.99012416770.02.91187.39
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

15-1933572180/404/762_
8.741002707170.09.5567.78
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

16-19-0/0/636.
0.00189201369380.00.0071.83
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

17-1933572190/343/652_
6.2439161239530.02.9571.46
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

18-19-0/0/746.
0.00189502513980.00.00119.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

19-1933572250/444/959_
8.35713720550.014.6845.00
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

20-1933572290/329/624_
7.281551078540.03.1319.90
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

21-1933572480/335/680_
6.634511880420.03.1522.88
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

22-1933572570/345/672_
6.113742301220.03.0722.29
127.0.0.1http/1.1

23-1933573390/384/665_
7.57612039110.08.2212.69
172.31.25.204http/1.1api.cnia.riskmoney.com.br:443GET / HTTP/1.1

24-1933573570/384/725_
7.861401996890.06.8516.88
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

25-1933573581/342/694K
6.41111997035.82.9519.52
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

26-1933598520/305/593_
5.364401013970.03.368.26
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

27-1933604541/333/597K
6.282116724212.38.8181.10
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

28-1933784370/87/383_
1.89380998180.03.3911.03
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:8GET / HTTP/1.1

29-1933784410/62/321_
0.83701097570.00.4010.20
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

30-1933784420/65/331_
0.87611095580.00.694.87
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

31-1933805970/32/314_
0.6560803680.00.2943.24
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

32-1933805990/37/363_
0.543602257020.00.2212.56
127.0.0.1http/1.1

33-1933806000/35/314_
0.68300954870.00.3224.06
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

34-1933806020/36/357_
0.591011059590.00.338.91
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

35-1933806030/36/36R
0.6245131860.00.260.26
172.31.25.204http/1.1arquivos.ipld.com.br:443

36-1933806040/33/33_
0.7332147460.00.270.27
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

37-1933806050/39/39_
0.5544328120.00.270.27
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

38-19-0/0/2.
0.0018690430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-1933806120/35/35_
0.5345026570.00.290.29
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

40-19-0/0/2.
0.0018670430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1933806145/42/42W
0.390022117.90.220.22
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

42-1933806150/33/33_
0.5436140500.00.240.24
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

43-1933806161/39/39K
0.4901257371.40.440.44
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

44-1933806176/40/40K
0.5701317022.60.240.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

45-1933806180/36/36_
0.593238324570.00.270.27
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 230subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 45 seconds, (range: 3...188)index usage: 8%, cache usage: 12%total entries stored since starting: 12517total entries replaced since starting: 0total entries expired since starting: 12287total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 46<

Found on 2023-06-14 03:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d736cfa1c

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 14-Jun-2023 03:07:48 UTC
Restart Time: Tuesday, 13-Jun-2023 21:30:02 UTC
Parent Server Config. Generation: 20
Parent Server MPM Generation: 19
Server uptime:  5 hours 37 minutes 45 seconds
Server load: 0.05 0.05 0.06
Total accesses: 22049 - Total Traffic: 1.4 GB - Total Duration: 6617619
CPU Usage: u159.94 s18.84 cu254.13 cs35.15 - 2.31% CPU load
1.09 requests/sec - 70.2 kB/second - 64.5 kB/request - 300.132 ms/request
7 requests currently being processed, 33 idle workers
_.__K___K.K_____._.______R_K__________._.W__K_..................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1933571760/350/647_
5.464401337880.04.3910.04
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

1-19-0/0/693.
0.00189302245440.00.0014.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

2-1933571780/342/664_
6.333711701430.02.9112.64
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET / HTTP/1.1

3-1933571740/368/775_
6.673642984230.05.5229.31
172.31.25.204http/1.1

4-1933571797/354/717K
6.580117976420.14.5112.83
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

5-1933571870/391/737_
7.082912975710.07.8857.72
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-1933571770/332/624_
6.88331981410370.04.0049.79
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

7-1933571900/384/705_
8.041312725340.08.7879.41
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

8-1933571804/345/643K
6.880113436214.53.077.39
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /debug/default/view?panel=config HTTP/1.1

9-19-0/0/751.
0.00189202402500.00.0021.70
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

10-1933571927/349/643K
6.220114532829.93.257.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

11-1933571810/332/629_
6.994111010460.02.93102.54
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

12-1933571970/378/717_
7.18411930960.06.5418.24
172.31.25.204http/1.1api.painelti.amlreputacional.coGET / HTTP/1.1

13-1933571830/389/692_
7.0337154132740.08.5381.37
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/carlos.junior@amlconsulting.com.br HTTP/1.1

14-1933572060/339/694_
5.995212416750.02.91187.39
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

15-1933572180/404/762_
8.74802707170.09.5567.78
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

16-19-0/0/636.
0.00189101369380.00.0071.83
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

17-1933572190/343/652_
6.2438161239530.02.9571.46
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

18-19-0/0/746.
0.00189402513980.00.00119.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

19-1933572250/444/959_
8.35613720550.014.6845.00
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

20-1933572290/329/624_
7.281451078540.03.1319.90
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

21-1933572480/335/680_
6.634411880420.03.1522.88
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

22-1933572570/345/672_
6.113642301220.03.0722.29
127.0.0.1http/1.1

23-1933573390/384/665_
7.57512039110.08.2212.69
172.31.25.204http/1.1api.cnia.riskmoney.com.br:443GET / HTTP/1.1

24-1933573570/384/725_
7.861301996890.06.8516.88
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

25-1933573580/341/693R
6.405201997010.02.9519.51
172.31.25.204http/1.1

26-1933598520/305/593_
5.364301013970.03.368.26
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

27-1933604541/333/597K
6.281116724212.38.8181.10
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

28-1933784370/87/383_
1.89370998180.03.3911.03
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:8GET / HTTP/1.1

29-1933784410/62/321_
0.83601097570.00.4010.20
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

30-1933784420/65/331_
0.87511095580.00.694.87
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

31-1933805970/32/314_
0.6550803680.00.2943.24
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

32-1933805990/37/363_
0.543502257020.00.2212.56
127.0.0.1http/1.1

33-1933806000/35/314_
0.68290954870.00.3224.06
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

34-1933806020/36/357_
0.59811059590.00.338.91
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

35-1933806030/36/36_
0.6244131860.00.260.26
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

36-1933806040/33/33_
0.7330147460.00.270.27
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

37-1933806050/39/39_
0.5543328120.00.270.27
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

38-19-0/0/2.
0.0018680430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-1933806120/35/35_
0.5344026570.00.290.29
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

40-19-0/0/2.
0.0018660430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1933806142/39/39W
0.380022032.20.210.21
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

42-1933806150/33/33_
0.5435140500.00.240.24
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

43-1933806160/38/38_
0.49491257350.00.440.44
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

44-1933806174/38/38K
0.5701316521.10.240.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

45-1933806180/36/36_
0.593138324570.00.270.27
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 232subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 44 seconds, (range: 0...189)index usage: 8%, cache usage: 12%total entries stored since starting: 12517total entries replaced since starting: 0total entries expired since starting: 12285total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 45 misstotal re

Found on 2023-06-14 03:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d0c7bc72a

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 14-Jun-2023 03:07:48 UTC
Restart Time: Tuesday, 13-Jun-2023 21:30:02 UTC
Parent Server Config. Generation: 20
Parent Server MPM Generation: 19
Server uptime:  5 hours 37 minutes 46 seconds
Server load: 0.05 0.05 0.06
Total accesses: 22059 - Total Traffic: 1.4 GB - Total Duration: 6617644
CPU Usage: u159.95 s18.85 cu254.13 cs35.15 - 2.31% CPU load
1.09 requests/sec - 70.2 kB/second - 64.5 kB/request - 299.997 ms/request
7 requests currently being processed, 33 idle workers
_.__W___K.K_____._.______K_K__________._.K__K_..................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-1933571760/350/647_
5.464401337880.04.3910.04
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

1-19-0/0/693.
0.00189302245440.00.0014.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

2-1933571780/342/664_
6.333711701430.02.9112.64
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET / HTTP/1.1

3-1933571740/368/775_
6.673742984230.05.5229.31
172.31.25.204http/1.1

4-1933571798/355/718W
6.580017976620.94.5112.83
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

5-1933571870/391/737_
7.083012975710.07.8857.72
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

6-1933571770/332/624_
6.88331981410370.04.0049.79
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

7-1933571900/384/705_
8.041312725340.08.7879.41
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

8-1933571805/346/644K
6.880113436515.33.077.39
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /_all_dbs HTTP/1.1

9-19-0/0/751.
0.00189202402500.00.0021.70
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

10-1933571929/351/645K
6.230114533331.53.257.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /_all_dbs HTTP/1.1

11-1933571810/332/629_
6.994111010460.02.93102.54
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

12-1933571970/378/717_
7.18511930960.06.5418.24
172.31.25.204http/1.1api.painelti.amlreputacional.coGET / HTTP/1.1

13-1933571830/389/692_
7.0337154132740.08.5381.37
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/carlos.junior@amlconsulting.com.br HTTP/1.1

14-1933572060/340/695_
5.99012416770.02.91187.39
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

15-1933572180/404/762_
8.74902707170.09.5567.78
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

16-19-0/0/636.
0.00189101369380.00.0071.83
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

17-1933572190/343/652_
6.2438161239530.02.9571.46
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

18-19-0/0/746.
0.00189402513980.00.00119.14
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

19-1933572250/444/959_
8.35713720550.014.6845.00
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

20-1933572290/329/624_
7.281451078540.03.1319.90
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

21-1933572480/335/680_
6.634411880420.03.1522.88
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

22-1933572570/345/672_
6.113742301220.03.0722.29
127.0.0.1http/1.1

23-1933573390/384/665_
7.57612039110.08.2212.69
172.31.25.204http/1.1api.cnia.riskmoney.com.br:443GET / HTTP/1.1

24-1933573570/384/725_
7.861301996890.06.8516.88
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

25-1933573581/342/694K
6.41011997035.82.9519.52
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

26-1933598520/305/593_
5.364401013970.03.368.26
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

27-1933604541/333/597K
6.281116724212.38.8181.10
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

28-1933784370/87/383_
1.89370998180.03.3911.03
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:8GET / HTTP/1.1

29-1933784410/62/321_
0.83701097570.00.4010.20
172.31.25.204http/1.1api.integracao-qsa.amlduediligeGET / HTTP/1.1

30-1933784420/65/331_
0.87611095580.00.694.87
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

31-1933805970/32/314_
0.6560803680.00.2943.24
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

32-1933805990/37/363_
0.543502257020.00.2212.56
127.0.0.1http/1.1

33-1933806000/35/314_
0.68300954870.00.3224.06
172.31.25.204http/1.1api.historico.amlduediligence.cGET / HTTP/1.1

34-1933806020/36/357_
0.59911059590.00.338.91
172.31.25.204http/1.1api.cadastro.amlduediligence.coGET / HTTP/1.1

35-1933806030/36/36_
0.6245131860.00.260.26
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

36-1933806040/33/33_
0.7331147460.00.270.27
127.0.0.1http/1.1ip-172-31-25-204.sa-east-1.compGET /server-status?auto HTTP/1.1

37-1933806050/39/39_
0.5544328120.00.270.27
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

38-19-0/0/2.
0.0018680430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-1933806120/35/35_
0.5345026570.00.290.29
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

40-19-0/0/2.
0.0018660430.00.000.01
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

41-1933806144/41/41K
0.380122097.10.220.22
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

42-1933806150/33/33_
0.5435140500.00.240.24
172.31.25.204http/1.1api.accounts.amlreputacional.coHEAD / HTTP/1.1

43-1933806160/38/38_
0.49501257350.00.440.44
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET / HTTP/1.1

44-1933806176/40/40K
0.5701317022.60.240.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

45-1933806180/36/36_
0.593238324570.00.270.27
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 232subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 43 seconds, (range: 0...189)index usage: 8%, cache usage: 12%total entries stored since starting: 12517total entries replaced since starting: 0total entries expired since starting: 12285total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit,

Found on 2023-06-14 03:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d6a1a6325

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 26-Apr-2023 06:36:15 UTC
Restart Time: Tuesday, 25-Apr-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  9 hours 6 minutes 13 seconds
Server load: 1.00 2.45 3.60
Total accesses: 959181 - Total Traffic: 5.7 GB - Total Duration: 352242425
CPU Usage: u16113.5 s881.89 cu28093.4 cs1553.35 - 142% CPU load
29.3 requests/sec - 182.8 kB/second - 6.2 kB/request - 367.232 ms/request
43 requests currently being processed, 0 idle workers
RKKK.KWR.R.WKR.KKRRKRKKR.KRK.RWWK.RKKR..KKKKR...KK..RK.....R....
.......K.....R..................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2235214960/6636/19501R
339.7941773827310.030.5793.41
172.31.25.204http/1.1arquivos.ipld.com.br:443

1-2235050101/6549/17560K
313.690163151681.437.7597.15
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

2-2234621851/7503/19250K
379.050270313645.834.7895.09
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

3-2232012001/12220/19756K
631.760177239511.555.7797.20
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/8373e2431323e2232323e22353/_/;/META-INF/maven/com.atlass

4-22-0/0/18141.
0.003069069800660.00.0088.73
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

5-2235050501/6401/18881K
299.520169918391.432.4798.29
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-2235582710/5721/19460W
275.160072260210.028.3496.98
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

7-2235583090/5992/19725R
311.3421473200610.027.00111.90
172.31.25.204http/1.1

8-22-0/0/16472.
0.004784064674970.00.00129.81
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

9-2234529800/7281/18590R
341.6132562601160.037.13108.44
172.31.25.204http/1.1arquivos.ipld.com.br:443

10-22-0/0/19118.
0.0071069146610.00.00102.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

11-2235683442/5121/16315W
221.190054747317.828.5087.94
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

12-2232012471/11868/19143K
579.820070432310.665.37108.09
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

13-2235215280/6492/19173R
327.4621568572740.030.3796.51
172.31.25.204http/1.1arquivos.ipld.com.br:443

14-22-0/0/15418.
0.004783058942100.00.0093.54
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

15-22357003624/5481/17426K
268.5201641645261533.426.3693.47
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

16-2235503863/5930/18474K
297.1402655163020.328.5498.91
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

17-2234572250/7372/17363R
355.7831662575120.043.98178.41
172.31.25.204http/1.1arquivos.ipld.com.br:443

18-2234530760/7662/17305R
390.4631565762560.036.0186.72
172.31.25.204http/1.1arquivos.ipld.com.br:443

19-2232966851/9887/14378K
454.550151898861.453.8281.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-2235700740/5360/19081R
249.3201668112230.026.9097.61
172.31.25.204http/1.1arquivos.ipld.com.br:443

21-2232013311/11803/19308K
581.830171133211.562.54103.68
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/930313e2431323e2232323e22353/_/;/META-INF/maven/com.atla

22-2235700761/5482/17031K
265.630161182261.426.82151.10
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

23-2235339430/5970/16686R
281.8041458944040.030.0891.05
172.31.25.204http/1.1

24-22-0/0/7484.
0.007716031379990.00.0038.74
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

25-22331627925/10002/17694K
494.392199625461134.648.4991.00
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

26-2232013550/11773/19228R
566.0711469485280.062.00184.54
172.31.25.204http/1.1arquivos.ipld.com.br:443

27-2233689731/8959/16107K
440.130254049501.443.5485.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

28-22-0/0/13586.
0.007714050158030.00.00156.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

29-2232013790/12023/19075R
596.3721466211890.061.50105.95
172.31.25.204http/1.1arquivos.ipld.com.br:443

30-22346222738/7411/15830W
372.4910568123249.735.18231.40
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

31-2235504260/5852/18127L
288.580068840920.030.51105.99
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /info.php HTTP/1.1

32-2234883923/6939/15348K
337.18121252989579.039.1585.97
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

33-22-0/0/14400.
0.008159053693970.00.0073.36
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

34-2235504270/5986/17816R
306.6341562997920.027.41171.80
172.31.25.204http/1.1arquivos.ipld.com.br:443

35-2235823181/5323/17137K
258.580161121066.025.77104.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

36-2234182092/7997/15200K
388.1501533537012.939.0777.00
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

37-2235091220/6453/17909R
306.2201861464940.032.35109.30
172.31.25.204http/1.1arquivos.ipld.com.br:443

38-22-0/0/16399.
0.004782062801190.00.0099.97
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-22-0/0/13379.
0.003070047555120.00.00107.45
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

40-2232014282/11991/19286K
601.6301708367212.962.08162.07
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

41-2235339881/5952/14177K
279.250146705761.429.9080.52
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

42-22350912327/6699/15933K
336.272213549088536.931.1982.95
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

43-2232014321/12088/18736K
604.810167958631.460.46101.37
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

44-2234397480/7747/17140R
388.3331759958180.036.8085.58
172.31.25.204http/1.1arquivos.ipld.com.br:443

45-22-0/0/13030.
0.009608046870590.00.00130.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-22-0/0/9033.
0.009102032354140.00.0045.24
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

47-22-0/0/12601.
0.0010632048092950.00.0063.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-2234664501/7257/9663K
360.010135396811.434.6045.33
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

49-2232014393/11865/14218K
575.3911531907220.259.1970.14
172.31

Found on 2023-04-26 06:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0dce0c0d36

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 26-Apr-2023 06:36:16 UTC
Restart Time: Tuesday, 25-Apr-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  9 hours 6 minutes 14 seconds
Server load: 1.00 2.45 3.60
Total accesses: 959201 - Total Traffic: 5.7 GB - Total Duration: 352242476
CPU Usage: u16113.6 s881.89 cu28093.4 cs1553.35 - 142% CPU load
29.3 requests/sec - 182.8 kB/second - 6.2 kB/request - 367.225 ms/request
46 requests currently being processed, 0 idle workers
KKKWKKKKKKRWKK.KKKKKKKKK.WKK.KWKK.KKKK..KKKWK...KW..KW.....K....
.......K.....K..................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2235214961/6637/19502K
339.791173827335.730.5793.42
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

1-2235050101/6549/17560K
313.691163151681.437.7597.15
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

2-2234621851/7503/19250K
379.051270313645.834.7895.09
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

3-2232012001/12220/19756W
631.760077239511.555.7797.20
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

4-2238543281/1/18142K
0.001169800691.40.0088.73
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

5-2235050501/6401/18881K
299.521169918391.432.4798.29
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

6-2235582711/5722/19461K
275.171172260256.028.3596.98
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

7-2235583091/5993/19726K
311.341073200631.427.00111.90
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

8-2238543391/1/16473K
0.000164675001.40.00129.81
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

9-2234529801/7282/18591K
341.611262601203.737.14108.45
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

10-2238543400/0/19118R
0.000069146610.00.00102.32
172.31.25.204http/1.1arquivos.ipld.com.br:443

11-2235683442/5121/16315W
221.191054747317.828.5087.94
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

12-2232012471/11868/19143K
579.821070432310.665.37108.09
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

13-2235215281/6493/19174K
327.471168572761.430.3796.51
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

14-22-0/0/15418.
0.004785058942100.00.0093.54
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

15-22357003624/5481/17426K
268.5211641645261533.426.3693.47
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

16-2235503863/5930/18474K
297.1422655163020.328.5498.91
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

17-2234572251/7373/17364K
355.781262575163.743.98178.41
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

18-2234530761/7663/17306K
390.461165762585.736.0186.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /debug/default/view?panel=config HTTP/1.1

19-2232966851/9887/14378K
454.551151898861.453.8281.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-2235700741/5361/19082K
249.321168112251.426.9097.61
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /debug/default/view?panel=config HTTP/1.1

21-2232013311/11803/19308K
581.831171133211.562.54103.68
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/930313e2431323e2232323e22353/_/;/META-INF/maven/com.atla

22-2235700761/5482/17031K
265.631161182261.426.82151.10
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

23-2235339431/5971/16687K
281.801158944075.730.0991.05
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

24-22-0/0/7484.
0.007718031379990.00.0038.74
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

25-22331627925/10002/17694W
494.3910625461134.648.4991.00
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

26-2232013551/11774/19229K
566.071169485301.462.00184.54
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

27-2233689731/8959/16107K
440.131254049501.443.5485.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

28-22-0/0/13586.
0.007716050158030.00.00156.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

29-2232013791/12024/19076K
596.371166211921.461.50105.95
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

30-22346222738/7411/15830W
372.4920568123249.735.18231.40
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

31-2235504261/5853/18128K
288.581168840931.430.51105.99
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /info.php HTTP/1.1

32-2234883923/6939/15348K
337.18321252989579.039.1585.97
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

33-22-0/0/14400.
0.008160053693970.00.0073.36
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

34-2235504271/5987/17817K
306.631162997941.427.41171.80
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /info.php HTTP/1.1

35-2235823181/5323/17137K
258.581161121066.025.77104.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

36-2234182092/7997/15200K
388.1511533537012.939.0777.00
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

37-2235091221/6454/17910K
306.221061464951.432.35109.30
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

38-22-0/0/16399.
0.004784062801190.00.0099.97
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-22-0/0/13379.
0.003071047555120.00.00107.45
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

40-2232014282/11991/19286K
601.6321708367212.962.08162.07
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

41-2235339881/5952/14177K
279.251146705761.429.9080.52
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

42-22350912327/6699/15933K
336.273213549088536.931.1982.95
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

43-2232014321/12088/18736W
604.810067958631.460.46101.37
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

44-2234397481/7748/17141K
388.331159958201.436.8085.58
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /info.php HTTP/1.1

45-22-0/0/13030.
0.009610046870590.00.00130.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-22-0/0/9033.
0.009104032354140.00.0045.24
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

47-22-0/0/12601.
0.0010633048092950.00.0063.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-22

Found on 2023-04-26 06:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d9fd8d3df

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 26-Apr-2023 06:36:15 UTC
Restart Time: Tuesday, 25-Apr-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  9 hours 6 minutes 13 seconds
Server load: 1.00 2.45 3.60
Total accesses: 959173 - Total Traffic: 5.7 GB - Total Duration: 352239125
CPU Usage: u16113.5 s881.89 cu28093.4 cs1553.35 - 142% CPU load
29.3 requests/sec - 182.8 kB/second - 6.2 kB/request - 367.232 ms/request
43 requests currently being processed, 0 idle workers
RRKK.RRR.R.KKR.WKRRKKRRR.KRK.RWRK.RWKR..KRKKR...KK..RK.....R....
.......R.....R..................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2235214960/6636/19501R
339.7931773827310.030.5793.41
172.31.25.204http/1.1arquivos.ipld.com.br:443

1-2235050100/6548/17559R
313.6911563151660.037.7597.14
172.31.25.204http/1.1arquivos.ipld.com.br:443

2-2234621851/7503/19250K
379.050270313645.834.7895.09
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

3-2232012001/12220/19756K
631.760177239511.555.7797.20
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/8373e2431323e2232323e22353/_/;/META-INF/maven/com.atlass

4-22-0/0/18141.
0.003069069800660.00.0088.73
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

5-2235050500/6400/18880R
299.5241469918360.032.4798.29
172.31.25.204http/1.1arquivos.ipld.com.br:443

6-2235582710/5721/19460R
275.1621672260210.028.3496.98
172.31.25.204http/1.1arquivos.ipld.com.br:443

7-2235583090/5992/19725R
311.3421473200610.027.00111.90
172.31.25.204http/1.1arquivos.ipld.com.br:443

8-22-0/0/16472.
0.004784064674970.00.00129.81
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

9-2234529800/7281/18590R
341.6132562601160.037.13108.44
172.31.25.204http/1.1arquivos.ipld.com.br:443

10-22-0/0/19118.
0.0071069146610.00.00102.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

11-2235683442/5121/16315K
221.190144154747317.828.5087.94
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

12-2232012471/11868/19143K
579.820070432310.665.37108.09
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

13-2235215280/6492/19173R
327.4621568572740.030.3796.51
172.31.25.204http/1.1arquivos.ipld.com.br:443

14-22-0/0/15418.
0.004783058942100.00.0093.54
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

15-22357003623/5480/17425W
268.4410644933332.326.3693.47
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

16-2235503863/5930/18474K
297.1402655163020.328.5498.91
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

17-2234572250/7372/17363R
355.7831662575120.043.98178.41
172.31.25.204http/1.1arquivos.ipld.com.br:443

18-2234530760/7662/17305R
390.4631565762560.036.0186.72
172.31.25.204http/1.1arquivos.ipld.com.br:443

19-2232966851/9887/14378K
454.550151898861.453.8281.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

20-2235700741/5360/19081K
249.3201668112238.526.9097.61
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

21-2232013310/11802/19307R
581.8321571133180.062.54103.67
172.31.25.204http/1.1arquivos.ipld.com.br:443

22-2235700760/5481/17030R
265.6341661182240.026.82151.10
172.31.25.204http/1.1

23-2235339430/5970/16686R
281.8041458944040.030.0891.05
172.31.25.204http/1.1arquivos.ipld.com.br:443

24-22-0/0/7484.
0.007716031379990.00.0038.74
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

25-22331627925/10002/17694K
494.392199625461134.648.4991.00
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

26-2232013550/11773/19228R
566.0711469485280.062.00184.54
172.31.25.204http/1.1arquivos.ipld.com.br:443

27-2233689731/8959/16107K
440.130254049501.443.5485.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

28-22-0/0/13586.
0.007714050158030.00.00156.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

29-2232013790/12023/19075R
596.3721466211890.061.50105.95
172.31.25.204http/1.1arquivos.ipld.com.br:443

30-22346222738/7411/15830W
372.4910568123249.735.18231.40
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

31-2235504260/5852/18127R
288.5821468840910.030.51105.99
172.31.25.204http/1.1arquivos.ipld.com.br:443

32-2234883923/6939/15348K
337.18121252989579.039.1585.97
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

33-22-0/0/14400.
0.008159053693970.00.0073.36
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

34-2235504270/5986/17816R
306.6341562997920.027.41171.80
172.31.25.204http/1.1arquivos.ipld.com.br:443

35-2235823180/5322/17136W
258.580061121020.025.77104.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

36-2234182092/7997/15200K
388.1501533537012.939.0777.00
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

37-2235091220/6453/17909R
306.2201861464940.032.35109.30
172.31.25.204http/1.1arquivos.ipld.com.br:443

38-22-0/0/16399.
0.004782062801190.00.0099.97
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-22-0/0/13379.
0.003070047555120.00.00107.45
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

40-2232014282/11991/19286K
601.6301708367212.962.08162.07
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

41-2235339880/5951/14176R
279.2541946705730.029.9080.51
172.31.25.204http/1.1

42-22350912327/6699/15933K
336.272213549088536.931.1982.95
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

43-2232014321/12088/18736K
604.810167958631.460.46101.37
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

44-2234397480/7747/17140R
388.3331759958180.036.8085.58
172.31.25.204http/1.1arquivos.ipld.com.br:443

45-22-0/0/13030.
0.009608046870590.00.00130.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-22-0/0/9033.
0.009102032354140.00.0045.24
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

47-22-0/0/12601.
0.0010632048092950.00.0063.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-2234664501/7257/9663K
360.010135396811.434.6045.33
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

49-2232014393/11865/14218K
575.3911531907220.259.1970.14
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

50-22-0/0/3812.
0.009417

Found on 2023-04-26 06:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d75921730

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Wednesday, 26-Apr-2023 06:36:15 UTC
Restart Time: Tuesday, 25-Apr-2023 21:30:01 UTC
Parent Server Config. Generation: 23
Parent Server MPM Generation: 22
Server uptime:  9 hours 6 minutes 13 seconds
Server load: 1.08 2.49 3.62
Total accesses: 959166 - Total Traffic: 5.7 GB - Total Duration: 352239073
CPU Usage: u16113.4 s881.89 cu28093.4 cs1553.35 - 142% CPU load
29.3 requests/sec - 182.8 kB/second - 6.2 kB/request - 367.235 ms/request
43 requests currently being processed, 0 idle workers
RRWR.RRR.R.KKR.WKRRRRRRR.KRR.RWRK.RRKR..KRKRR...RK..RK.....R....
.......R.....R..................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2235214960/6636/19501R
339.7931773827310.030.5793.41
172.31.25.204http/1.1arquivos.ipld.com.br:443

1-2235050100/6548/17559R
313.6911563151660.037.7597.14
172.31.25.204http/1.1arquivos.ipld.com.br:443

2-2234621850/7502/19249W
379.050070313600.034.7795.08
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

3-2232012000/12219/19755R
631.7641577239480.055.7797.20
172.31.25.204http/1.1arquivos.ipld.com.br:443

4-22-0/0/18141.
0.003069069800660.00.0088.73
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

5-2235050500/6400/18880R
299.5241469918360.032.4798.29
172.31.25.204http/1.1arquivos.ipld.com.br:443

6-2235582710/5721/19460R
275.1621672260210.028.3496.98
172.31.25.204http/1.1arquivos.ipld.com.br:443

7-2235583090/5992/19725R
311.3421473200610.027.00111.90
172.31.25.204http/1.1arquivos.ipld.com.br:443

8-22-0/0/16472.
0.004784064674970.00.00129.81
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

9-2234529800/7281/18590R
341.6132562601160.037.13108.44
172.31.25.204http/1.1arquivos.ipld.com.br:443

10-22-0/0/19118.
0.0071069146610.00.00102.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

11-2235683442/5121/16315K
221.190144154747317.828.5087.94
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

12-2232012471/11868/19143K
579.820070432310.665.37108.09
172.31.25.204http/1.1api.sanitizacao.riskmoney.com.bGET / HTTP/1.1

13-2235215280/6492/19173R
327.4621568572740.030.3796.51
172.31.25.204http/1.1arquivos.ipld.com.br:443

14-22-0/0/15418.
0.004783058942100.00.0093.54
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

15-22357003623/5480/17425W
268.4410644933332.326.3693.47
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

16-2235503863/5930/18474K
297.1402655163020.328.5498.91
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

17-2234572250/7372/17363R
355.7831662575120.043.98178.41
172.31.25.204http/1.1arquivos.ipld.com.br:443

18-2234530760/7662/17305R
390.4631565762560.036.0186.72
172.31.25.204http/1.1arquivos.ipld.com.br:443

19-2232966850/9886/14377R
454.5541851898830.053.8281.95
172.31.25.204http/1.1arquivos.ipld.com.br:443

20-2235700740/5359/19080R
249.3151468111900.026.8997.60
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4

21-2232013310/11802/19307R
581.8321571133180.062.54103.67
172.31.25.204http/1.1arquivos.ipld.com.br:443

22-2235700760/5481/17030R
265.6341661182240.026.82151.10
172.31.25.204http/1.1arquivos.ipld.com.br:443

23-2235339430/5970/16686R
281.8041458944040.030.0891.05
172.31.25.204http/1.1arquivos.ipld.com.br:443

24-22-0/0/7484.
0.007716031379990.00.0038.74
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

25-22331627925/10002/17694K
494.391199625461134.648.4991.00
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

26-2232013550/11773/19228R
566.0711469485280.062.00184.54
172.31.25.204http/1.1arquivos.ipld.com.br:443

27-2233689730/8958/16106R
440.132154049460.043.5485.24
172.31.25.204http/1.1arquivos.ipld.com.br:443

28-22-0/0/13586.
0.007714050158030.00.00156.68
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

29-2232013790/12023/19075R
596.3721466211890.061.50105.95
172.31.25.204http/1.1arquivos.ipld.com.br:443

30-22346222738/7411/15830W
372.4910568123249.735.18231.40
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

31-2235504260/5852/18127R
288.5811468840910.030.51105.99
172.31.25.204http/1.1arquivos.ipld.com.br:443

32-2234883923/6939/15348K
337.18121252989579.039.1585.97
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

33-22-0/0/14400.
0.008159053693970.00.0073.36
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

34-2235504270/5986/17816R
306.6341562997920.027.41171.80
172.31.25.204http/1.1arquivos.ipld.com.br:443

35-2235823180/5322/17136R
258.5821761121020.025.77104.96
172.31.25.204http/1.1arquivos.ipld.com.br:443

36-2234182092/7997/15200K
388.1501533537012.939.0777.00
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

37-2235091220/6453/17909R
306.2201861464940.032.35109.30
172.31.25.204http/1.1arquivos.ipld.com.br:443

38-22-0/0/16399.
0.004782062801190.00.0099.97
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

39-22-0/0/13379.
0.003070047555120.00.00107.45
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

40-2232014282/11991/19286K
601.6301708367212.962.08162.07
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.vscode/sftp.json HTTP/1.1

41-2235339880/5951/14176R
279.2531946705730.029.9080.51
172.31.25.204http/1.1arquivos.ipld.com.br:443

42-22350912327/6699/15933K
336.272213549088536.931.1982.95
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

43-2232014320/12087/18735R
604.8151967958610.060.46101.36
172.31.25.204http/1.1arquivos.ipld.com.br:443

44-2234397480/7747/17140R
388.3331759958180.036.8085.58
172.31.25.204http/1.1arquivos.ipld.com.br:443

45-22-0/0/13030.
0.009608046870590.00.00130.32
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

46-22-0/0/9033.
0.009102032354140.00.0045.24
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

47-22-0/0/12601.
0.0010632048092950.00.0063.22
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

48-2234664500/7256/9662R
360.0021635396790.034.6045.33
172.31.25.204http/1.1arquivos.ipld.com.br:443

49-2232014393/11865/14218K
575.3901531907220.259.1970.14
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /about HTTP/1.1

50-22-0/0/3812.
0.009417015054450.00.0018.37
::1http/1.1ip-172-31-25-204.sa-east-1.compOPTIONS * HTTP/1.0

51-22-0/0/2836

Found on 2023-04-26 06:36

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d8288c4a7

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 28-Aug-2022 10:45:11 UTC
Restart Time: Saturday, 27-Aug-2022 21:30:01 UTC
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  13 hours 15 minutes 9 seconds
Server load: 2.32 1.82 1.48
Total accesses: 215761 - Total Traffic: 1.7 GB - Total Duration: 53815698
CPU Usage: u5.17 s3.4 cu8367.09 cs532.32 - 18.7% CPU load
4.52 requests/sec - 37.0 kB/second - 8.2 kB/request - 249.423 ms/request
35 requests currently being processed, 3 idle workers
WKKKKKKKRKKKWKKKKKWKKKKKKKLKKKKKWKK___..........................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2421658361/3/420W
0.25001014911.40.025.30
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /debug/default/view?panel=config HTTP/1.1

1-2421658211/5/5756K
0.041014620801.40.0632.32
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

2-2421658321/5/5281K
0.211012407171.40.08102.47
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

3-2421658196/6/6138K
0.532575153167112.00.0133.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

4-2421658221/6/5009K
0.801117470621.45.4137.55
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

5-2421658231/5/5328K
0.091011379491.40.0134.97
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

6-2421658271/6/6010K
0.131017322971.40.0838.32
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

7-2421658241/3/5230K
0.011013103311.40.0132.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

8-2421658180/2/5769R
0.251419214787350.00.0633.08
172.31.25.204http/1.1

9-2421658201/5/5721K
0.041116156881.50.0332.75
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/31332e3232342e3138392e313132/_/;/META-INF/maven/com.atla

10-2421658251/5/5404K
0.091114234768.70.0430.80
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

11-2421658262/10/5037K
0.361110519492.30.03101.51
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

12-2421658351/3/4964W
0.110012110291.40.0232.45
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

13-2421658371/3/420K
0.04111111243.70.024.33
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

14-2421658432/4/5378K
0.041113231042.10.0131.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

15-2421658441/3/5680K
0.101115120291.40.7193.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

16-2421658511/3/5520K
0.041413872187.90.0630.31
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

17-2421658581/2/5978K
0.001415560797.90.0290.30
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

18-2421658691/2/5509W
0.010013258641.40.01102.63
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

19-2421658791/2/5461K
0.001213101964.40.01143.54
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

20-2421658821/2/5481K
0.001113870391.40.0030.83
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

21-2421658861/2/5041K
0.001511962623.70.0032.31
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

22-2421658871/2/5149K
0.001110910401.40.0032.37
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

23-2421658952/4/5769K
0.041116763372.20.0231.21
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

24-2421658962/3/397K
0.00111250032.10.005.47
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

25-2421658971/2/4941K
0.01119824571.40.0138.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /debug/default/view?panel=config HTTP/1.1

26-2421658982/3/5713K
0.010113760792.20.0132.66
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

27-2421659114/4/5154K
0.0011118472114.50.0133.23
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

28-2421659124/4/5765K
0.0111162155716.90.0229.59
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

29-2421659135/5/5336K
0.0110127155821.80.0230.77
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

30-2421659141/1/5694W
0.000014898571.40.0030.39
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

31-2421659153/3/4942K
0.0111117264116.80.0229.01
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

32-2421659162/2/5413K
0.000113332152.10.0029.11
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

33-2421659171/1/5020K
0.002110841251.40.0029.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

34-2421659181/1/5502K
0.001214406041.40.0029.28
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

35-2421659730/0/5011_
0.0011511057780.00.0028.65
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

36-2421659750/0/5104_
0.000013406220.00.0029.62
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

37-2421659760/0/5223_
0.0002514179130.00.0029.15
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

38-1-0/0/5308.
0.0013232715140710.00.0034.99
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

39-1-0/0/5608.
0.001331414022390.00.0028.96
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

40-1-0/0/4156.
0.00133147119800.00.0027.65
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

41-1-0/0/4491.
0.00133148681890.00.0027.12
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

42-1-0/0/5531.
0.001331514523020.00.0028.85
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 69subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 284 seconds, (range: 278...290)index usage: 2%, cache usage: 3%total entries stored since starting: 69total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 7 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-08-28 10:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d788f7f94

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 28-Aug-2022 10:45:09 UTC
Restart Time: Saturday, 27-Aug-2022 21:30:01 UTC
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  13 hours 15 minutes 7 seconds
Server load: 2.32 1.82 1.48
Total accesses: 215719 - Total Traffic: 1.7 GB - Total Duration: 53814383
CPU Usage: u5 s3.35 cu8367.09 cs532.32 - 18.7% CPU load
4.52 requests/sec - 37.0 kB/second - 8.2 kB/request - 249.465 ms/request
11 requests currently being processed, 24 idle workers
___W____R__________R_______KKKRWRRR.............................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2421658360/2/419_
0.2422371014890.00.015.30
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

1-2421658210/4/5755_
0.032014620790.00.0632.32
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

2-2421658320/3/5279_
0.1966512406780.00.07102.46
172.31.25.204http/1.1api.accounts.amlreputacional.coGET /user HTTP/1.1

3-2421658195/5/6137W
0.4300153052010.90.0133.95
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

4-2421658220/5/5008_
0.80023817470590.05.4137.55
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /ocorrencia/1456257 HTTP/1.1

5-2421658230/4/5327_
0.0911411379470.00.0134.96
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

6-2421658270/5/6009_
0.1307517322950.00.0738.32
172.31.25.204http/1.1api.accounts.amlreputacional.coPOST /authenticate HTTP/1.1

7-2421658240/2/5229_
0.014113103300.00.0132.03
172.31.25.204http/1.1api.log.riskmoney.com.br:443GET / HTTP/1.1

8-2421658180/2/5769R
0.251219214787350.00.0633.08
172.31.25.204http/1.1

9-2421658200/4/5720_
0.044116156860.00.0232.75
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

10-2421658250/4/5403_
0.0912014234730.00.0330.79
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /crime HTTP/1.1

11-2421658260/8/5035_
0.3651910519440.00.03101.51
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

12-2421658350/2/4963_
0.102112110270.00.0232.45
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

13-2421658370/2/419_
0.03151111200.00.014.33
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

14-2421658430/2/5376_
0.0352613230980.00.0131.72
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /mensagem/561451 HTTP/1.1

15-2421658440/2/5679_
0.10510315120270.00.7193.24
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /operacao?size=-1 HTTP/1.1

16-2421658510/2/5519_
0.036013872090.00.0530.30
172.31.25.204http/1.1api.captura-lrn.amlduediligenceGET / HTTP/1.1

17-2421658580/1/5977_
0.003315560700.00.0190.29
172.31.25.204http/1.1workstation.amlduediligence.comGET /automacao-m1/ocorrencia/editar/1456257 HTTP/1.1

18-2421658690/1/5508_
0.011513258630.00.01102.63
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

19-2421658790/1/5460R
0.006213101910.00.01143.54
172.31.25.204http/1.1arquivos.ipld.com.br:443

20-2421658820/1/5480_
0.004013870360.00.0030.83
172.31.25.204http/1.1api.log.riskmoney.com.br:80GET / HTTP/1.1

21-2421658860/1/5040_
0.004011962510.00.0032.31
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

22-2421658870/1/5148_
0.004010910370.00.0032.37
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

23-2421658950/2/5767_
0.034416763320.00.0131.20
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

24-2421658960/1/395_
0.00301249990.00.005.47
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

25-2421658970/1/4940_
0.00329824540.00.0138.17
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

26-2421658980/1/5711_
0.0122113760740.00.0132.66
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

27-2421659113/3/5153K
0.0001118471913.70.0133.23
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

28-2421659123/3/5764K
0.0102162155416.10.0229.59
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/31332e3232342e3138392e3832/_/;/META-INF/maven/com.atlass

29-2421659133/3/5334K
0.0001127155320.30.0230.77
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

30-2421659140/0/5693R
0.0061614898510.00.0030.39
172.31.25.204http/1.1arquivos.ipld.com.br:443

31-2421659151/1/4940W
0.0100117263412.20.0129.01
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

32-2421659160/0/5411R
0.006113332090.00.0029.11
172.31.25.204http/1.1arquivos.ipld.com.br:443

33-2421659170/0/5019R
0.0062210841210.00.0029.96
172.31.25.204http/1.1arquivos.ipld.com.br:443

34-2421659180/0/5501R
0.0061814406000.00.0029.28
172.31.25.204http/1.1arquivos.ipld.com.br:443

35-1-0/0/5011.
0.001311511057780.00.0028.65
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

36-1-0/0/5104.
0.00131013406220.00.0029.62
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

37-1-0/0/5223.
0.001312514179130.00.0029.15
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

38-1-0/0/5308.
0.0013032715140710.00.0034.99
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

39-1-0/0/5608.
0.001311414022390.00.0028.96
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

40-1-0/0/4156.
0.00131147119800.00.0027.65
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

41-1-0/0/4491.
0.00131148681890.00.0027.12
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

42-1-0/0/5531.
0.001311514523020.00.0028.85
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 67subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 287 seconds, (range: 280...292)index usage: 2%, cache usage: 3%total entries stored since starting: 67total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 6 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-08-28 10:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0ddba45346

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 28-Aug-2022 10:45:10 UTC
Restart Time: Saturday, 27-Aug-2022 21:30:01 UTC
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  13 hours 15 minutes 8 seconds
Server load: 2.32 1.82 1.48
Total accesses: 215759 - Total Traffic: 1.7 GB - Total Duration: 53815693
CPU Usage: u5.17 s3.39 cu8367.09 cs532.32 - 18.7% CPU load
4.52 requests/sec - 37.0 kB/second - 8.2 kB/request - 249.425 ms/request
35 requests currently being processed, 1 idle workers
KKKKKKKKRKWKKKKKKKKKKKKKKKKKKKKKKKK_............................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2421658361/3/420K
0.25001014911.40.025.30
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

1-2421658211/5/5756K
0.040014620801.40.0632.32
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

2-2421658321/5/5281K
0.210012407171.40.08102.47
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

3-2421658196/6/6138K
0.531575153167112.00.0133.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

4-2421658221/6/5009K
0.800117470621.45.4137.55
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

5-2421658231/5/5328K
0.090011379491.40.0134.97
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

6-2421658271/6/6010K
0.130017322971.40.0838.32
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

7-2421658241/3/5230K
0.010013103311.40.0132.03
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

8-2421658180/2/5769R
0.251319214787350.00.0633.08
172.31.25.204http/1.1

9-2421658201/5/5721K
0.040116156881.50.0332.75
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/31332e3232342e3138392e313132/_/;/META-INF/maven/com.atla

10-2421658250/4/5403W
0.090014234730.00.0330.79
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

11-2421658262/10/5037K
0.360110519492.30.03101.51
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

12-2421658351/3/4964K
0.110112110291.40.0232.45
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

13-2421658371/3/420K
0.04011111243.70.024.33
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

14-2421658432/4/5378K
0.040113231042.10.0131.72
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

15-2421658441/3/5680K
0.100115120291.40.7193.24
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

16-2421658511/3/5520K
0.040413872187.90.0630.31
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

17-2421658581/2/5978K
0.000415560797.90.0290.30
172.31.25.204http/1.1arquivos.ipld.com.br:443GET / HTTP/1.1

18-2421658691/2/5509K
0.010013258641.40.01102.63
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /info.php HTTP/1.1

19-2421658791/2/5461K
0.000213101964.40.01143.54
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

20-2421658821/2/5481K
0.000113870391.40.0030.83
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

21-2421658861/2/5041K
0.000511962623.70.0032.31
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /?rest_route=/wp/v2/users/ HTTP/1.1

22-2421658871/2/5149K
0.000110910401.40.0032.37
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

23-2421658952/4/5769K
0.040116763372.20.0231.21
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

24-2421658962/3/397K
0.00011250032.10.005.47
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

25-2421658971/2/4941K
0.01019824571.40.0138.17
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /debug/default/view?panel=config HTTP/1.1

26-2421658981/2/5712K
0.010113760761.40.0132.66
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

27-2421659114/4/5154K
0.0001118472114.50.0133.23
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /v2/_catalog HTTP/1.1

28-2421659124/4/5765K
0.0101162155716.90.0229.59
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /login.action HTTP/1.1

29-2421659135/5/5336K
0.0100127155821.80.0230.77
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /config.json HTTP/1.1

30-2421659141/1/5694K
0.000214898571.40.0030.39
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /info.php HTTP/1.1

31-2421659153/3/4942K
0.0101117264116.80.0229.01
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

32-2421659161/1/5412K
0.000213332131.40.0029.11
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.env HTTP/1.1

33-2421659171/1/5020K
0.000110841251.40.0029.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

34-2421659181/1/5502K
0.000214406041.40.0029.28
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

35-2421659730/0/5011_
0.0001511057780.00.0028.65
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

36-1-0/0/5104.
0.00132013406220.00.0029.62
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

37-1-0/0/5223.
0.001322514179130.00.0029.15
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

38-1-0/0/5308.
0.0013132715140710.00.0034.99
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

39-1-0/0/5608.
0.001321414022390.00.0028.96
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

40-1-0/0/4156.
0.00132147119800.00.0027.65
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

41-1-0/0/4491.
0.00132148681890.00.0027.12
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

42-1-0/0/5531.
0.001321514523020.00.0028.85
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 69subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 285 seconds, (range: 279...291)index usage: 2%, cache usage: 3%total entries stored since starting: 69total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 7 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-08-28 10:45

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e5d3fd0de5d3fd0d48a34a75

Apache Status

Apache Server Status for arquivos.ipld.com.br (via 172.31.25.204)

Server Version: Apache/2.4.52 (Ubuntu) OpenSSL/1.1.1f AML Reputacional
Server MPM: prefork
Server Built: 2021-12-28T20:18:12

Current Time: Sunday, 28-Aug-2022 10:45:09 UTC
Restart Time: Saturday, 27-Aug-2022 21:30:01 UTC
Parent Server Config. Generation: 25
Parent Server MPM Generation: 24
Server uptime:  13 hours 15 minutes 7 seconds
Server load: 2.32 1.82 1.48
Total accesses: 215725 - Total Traffic: 1.7 GB - Total Duration: 53815586
CPU Usage: u5.12 s3.36 cu8367.09 cs532.32 - 18.7% CPU load
4.52 requests/sec - 37.0 kB/second - 8.2 kB/request - 249.464 ms/request
18 requests currently being processed, 17 idle workers
___K___RRR_R__RRR__WR______KKKRKRKK.............................
................................................................
................................................................
...............................................................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-2421658360/2/419_
0.2422371014890.00.015.30
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

1-2421658210/4/5755_
0.032014620790.00.0632.32
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

2-2421658320/4/5280_
0.2101812407150.00.08102.47
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

3-2421658196/6/6138K
0.530575153167112.00.0133.96
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

4-2421658220/5/5008_
0.80123817470590.05.4137.55
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /ocorrencia/1456257 HTTP/1.1

5-2421658230/4/5327_
0.0911411379470.00.0134.96
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

6-2421658270/5/6009_
0.1317517322950.00.0738.32
172.31.25.204http/1.1api.accounts.amlreputacional.coPOST /authenticate HTTP/1.1

7-2421658240/2/5229R
0.015113103300.00.0132.03
172.31.25.204http/1.1arquivos.ipld.com.br:443

8-2421658180/2/5769R
0.251219214787350.00.0633.08
172.31.25.204http/1.1

9-2421658200/4/5720R
0.044116156860.00.0232.75
172.31.25.204http/1.1arquivos.ipld.com.br:443

10-2421658250/4/5403_
0.0912014234730.00.0330.79
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /crime HTTP/1.1

11-2421658260/8/5035R
0.3661910519440.00.03101.51
172.31.25.204http/1.1arquivos.ipld.com.br:443

12-2421658350/2/4963_
0.102112110270.00.0232.45
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET / HTTP/1.1

13-2421658370/2/419_
0.03251111200.00.014.33
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

14-2421658430/2/5376R
0.0362613230980.00.0131.72
172.31.25.204http/1.1arquivos.ipld.com.br:443

15-2421658440/2/5679R
0.10610315120270.00.7193.24
172.31.25.204http/1.1arquivos.ipld.com.br:443

16-2421658510/2/5519R
0.036013872090.00.0530.30
172.31.25.204http/1.1arquivos.ipld.com.br:443

17-2421658580/1/5977_
0.003315560700.00.0190.29
172.31.25.204http/1.1workstation.amlduediligence.comGET /automacao-m1/ocorrencia/editar/1456257 HTTP/1.1

18-2421658690/1/5508_
0.012513258630.00.01102.63
172.31.25.204http/1.1arquivos.ipld.com.br:443HEAD / HTTP/1.1

19-2421658790/1/5460W
0.000013101910.00.01143.54
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

20-2421658820/1/5480R
0.005013870360.00.0030.83
172.31.25.204http/1.1arquivos.ipld.com.br:443

21-2421658860/1/5040_
0.004011962510.00.0032.31
172.31.25.204http/1.1api.integracao.riskmoney.com.brGET / HTTP/1.1

22-2421658870/1/5148_
0.004010910370.00.0032.37
172.31.25.204http/1.1elearning.amlreputacional.com.bGET / HTTP/1.1

23-2421658950/2/5767_
0.034416763320.00.0131.20
172.31.25.204http/1.1elearning.amlreputacional.com.bGET /auth/login HTTP/1.1

24-2421658960/1/395_
0.00401249990.00.005.47
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

25-2421658970/1/4940_
0.00429824540.00.0138.17
172.31.25.204http/1.1api.accounts.amlreputacional.coGET / HTTP/1.1

26-2421658980/1/5711_
0.0132113760740.00.0132.66
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

27-2421659113/3/5153K
0.0001118471913.70.0133.23
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.git/config HTTP/1.1

28-2421659123/3/5764K
0.0102162155416.10.0229.59
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /s/31332e3232342e3138392e3832/_/;/META-INF/maven/com.atlass

29-2421659134/4/5335K
0.0102127155621.10.0230.77
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /api/search?folderIds=0 HTTP/1.1

30-2421659140/0/5693R
0.0061614898510.00.0030.39
172.31.25.204http/1.1arquivos.ipld.com.br:443

31-2421659152/2/4941K
0.0102117263816.00.0229.01
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /server-status HTTP/1.1

32-2421659160/0/5411R
0.006113332090.00.0029.11
172.31.25.204http/1.1arquivos.ipld.com.br:443

33-2421659171/1/5020K
0.000110841251.40.0029.96
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /telescope/requests HTTP/1.1

34-2421659181/1/5502K
0.000214406041.40.0029.28
172.31.25.204http/1.1arquivos.ipld.com.br:443GET /.DS_Store HTTP/1.1

35-1-0/0/5011.
0.001311511057780.00.0028.65
172.31.25.204http/1.1api.tratamento-lrn.amlduediligeGET /status HTTP/1.1

36-1-0/0/5104.
0.00131013406220.00.0029.62
172.31.25.204http/1.1api.cnia.riskmoney.com.br:80GET / HTTP/1.1

37-1-0/0/5223.
0.001312514179130.00.0029.15
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

38-1-0/0/5308.
0.0013032715140710.00.0034.99
172.31.25.204http/1.1api.autenticacao.riskmoney.com.GET /login HTTP/1.1

39-1-0/0/5608.
0.001311414022390.00.0028.96
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

40-1-0/0/4156.
0.00131147119800.00.0027.65
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

41-1-0/0/4491.
0.00131148681890.00.0027.12
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1

42-1-0/0/5531.
0.001311514523020.00.0028.85
172.31.25.204http/1.1api.usuarios.riskmoney.com.br:4GET /user/email/robows@xpi.com.br HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 69subcaches: 32, indexes per subcache: 88time left on oldest entries' objects: avg: 286 seconds, (range: 280...292)index usage: 2%, cache usage: 3%total entries stored since starting: 69total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 6 misstotal removes since starting: 0 hit, 0 miss

Found on 2022-08-28 10:45

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 52.222.214.105
Domain: hc-one-staging.co.uk
Port: 443
URL: https://hc-one-staging.co.uk

First seen 2023-06-02 04:34
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d073a4ff8073a4ff8073a4ff8073a4ff8
```
Found 1 files trough .DS_Store spidering:

/_next
```
  Found on 2023-06-02 04:34
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.224.189.15
Domain: brandsbenchmarked.com
Port: 443
URL: https://brandsbenchmarked.com

First seen 2022-09-30 02:58
Last seen 2023-01-21 04:25
Open for 113 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa5447182bb255dcb50c4ef286225629774c08
```
Found 18 files trough .DS_Store spidering:

/favicons
/images
/images/apps
/images/elements
/images/graphics
/images/hero
/images/icons
/images/logos
/images/logos/brandsbenchmarked-icon-blue.png
/images/logos/brandsbenchmarked-icon-blue.webp
/images/logos/brandsbenchmarked-icon-white.png
/images/logos/brandsbenchmarked-icon-white.webp
/images/logos/brandsbenchmarked-logo-blue.png
/images/logos/brandsbenchmarked-logo-blue.webp
/images/logos/brandsbenchmarked-logo-white.png
/images/logos/brandsbenchmarked-logo-white.webp
/index.html
/robots.txt
```
  Found on 2022-12-07 04:29
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc4d44ca588addeae9518a963552f34ccd
```
Found 4 files trough .DS_Store spidering:

/favicons
/images
/index.html
/robots.txt
```
  Found on 2022-09-30 02:58
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: www.eatatrickshaw-1.poc.futuralis.com
Port: 80
URL: http://www.eatatrickshaw-1.poc.futuralis.com

First seen 2022-09-20 10:39
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a43092e9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:clearmindgraphics/eat-at-rickshaw.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-09-20 10:39
  
  280 Bytes
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: www.eat14.poc.futuralis.com
Port: 443
URL: https://www.eat14.poc.futuralis.com

First seen 2022-09-16 08:42
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a43092e9
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:clearmindgraphics/eat-at-rickshaw.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
```
  Found on 2022-09-16 08:42
  
  280 Bytes
Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 52.222.214.64
Domain: gamingiqmobile.com
Port: 443
URL: https://gamingiqmobile.com

First seen 2022-07-11 05:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ce94c387ce94c387fd355ce3

Apache Status

Apache Server Status for gamingiqmobile.com (via 10.0.1.153)

Server Version: Apache/2.4.48 (Amazon)
Server MPM: prefork
Server Built: Jul  8 2021 16:24:43

Current Time: Monday, 11-Jul-2022 07:30:59 CEST
Restart Time: Wednesday, 22-Jun-2022 00:53:17 CEST
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  19 days 6 hours 37 minutes 42 seconds
Server load: 2.24 2.42 2.40
Total accesses: 27741515 - Total Traffic: 537.6 GB - Total Duration: 14260839314
CPU Usage: u61.22 s252.05 cu1433960 cs192154 - 97.7% CPU load
16.7 requests/sec - 338.5 kB/second - 20.3 kB/request - 514.061 ms/request
2 requests currently being processed, 10 idle workers
____W__W_.....__.._.............................................
................................................................
................................................................
........
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-444790/175/1967836_
9.74039718020670.01.2140015.45
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /info.php HTTP/1.1

1-499390/64/1935094_
3.72069555836490.00.4439434.88
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

2-465290/124/1896349_
6.59069358502330.00.9538729.83
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /s/35322e3232322e3231342e313035/_/;/META-INF/maven/com.atla

3-466210/108/1864470_
8.00059233423350.03.3038172.96
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /s/35322e3232322e3231342e3139/_/;/META-INF/maven/com.atlass

4-494470/74/1821716W
3.49009003572720.01.5337082.79
10.0.1.42http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=20220613074905914b87a0c2c0ed

5-471640/94/1785846_
6.52068787559610.00.5036029.97
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /.DS_Store HTTP/1.1

6-472810/99/1734903_
5.240168602167260.00.8335472.44
10.0.1.42http/1.1secure-landings.api.cloudioo.neGET /info/lps/aHR0cHM6Ly9nYW1pbmdpcW1vYmlsZS5jb20vcy8zNTMyMmUzM

7-4111500/22/1686559W
1.29008366047280.00.1534211.91
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /server-status HTTP/1.1

8-4113210/19/1622148_
0.97068061692970.00.1233357.07
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /s/35322e3232322e3231342e3634/_/;/META-INF/maven/com.atlass

9-4-0/0/1545794.
0.004307700365900.00.0031610.43
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

10-4-0/0/1440864.
0.00181107250773510.00.0029071.80
10.0.1.42http/1.1landings.api.cloudioo.net:80GET /thankyou-page?origin=and&cfg_sessionid=20220711073022IQ320

11-4-0/0/1275121.
0.00114166578297170.00.0025638.12
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=2022050319560562ad42d52ea987

12-4-0/0/1125929.
0.003705940538710.00.0022215.72
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

13-4-0/0/976888.
0.005005272816470.00.0019265.03
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

14-495980/69/851662_
3.40034666333050.00.2916082.44
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

15-495990/72/738319_
3.8501414090124480.00.6113918.07
10.0.1.42http/1.1dob.api.cloudioo.net:80GET /detection-back?detection_session_id=20220711073004889bb937

16-4-0/0/639186.
0.004903618196630.00.0012040.99
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

17-4-0/0/543238.
0.002403102519140.00.009802.20
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

18-496090/57/445471_
3.8704132596378980.00.417886.12
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=2022061223541351f7e0d1bbcf2c

19-4-0/0/332110.
0.0035701963630820.00.005680.24
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

20-4-0/0/265529.
0.0056101571116870.00.004501.59
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

21-4-0/0/201569.
0.0082501203427020.00.003390.36
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

22-4-0/0/172710.
0.0078701020237850.00.002780.55
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

23-4-0/0/153222.
0.00703417910334930.00.002503.02
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=20220602124528ceb3ff2a909b79

24-4-0/0/134847.
0.009260799399440.00.002192.23
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

25-4-0/0/116969.
0.008850703810850.00.001889.12
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

26-4-0/0/111114.
0.009280670159970.00.001812.96
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

27-4-0/0/82625.
0.009360502683770.00.001322.81
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

28-4-0/0/67656.
0.008910414860110.00.001023.80
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

29-4-0/0/42755.
0.008780267192560.00.00704.87
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

30-4-0/0/27800.
0.008600177575390.00.00450.89
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

31-4-0/0/21378.
0.009250135081070.00.00351.72
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

32-4-0/0/13380.
0.003532443083226940.00.00215.89
10.0.1.42http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=20210927164602e4146cc8e23282

33-4-0/0/9233.
0.0035500063752270.00.00156.82
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

34-4-0/0/8895.
0.0035482058780890.00.00144.60
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

35-4-0/0/7986.
0.0035328050811630.00.00152.59
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

36-4-0/0/7679.
0.0035493051626150.00.00101.70
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

37-4-0/0/6753.
0.0035446043468200.00.00104.28
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

38-4-0/0/6917.
0.0035448044687960.00.00127.39
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

39-4-0/0/7153.
0.00353021844991160.00.00122.81
10.0.0.76http/1.1secure-landings.api.cloudioo.neGET /info/lps/aHR0cHM6Ly9pcS5ybWFkcmlkLXNwb3J0cy5jb20vYWxsLWdvY

40-4-0/0/5907.
0.0035485036449480.00.0090.27
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

41-4-0/0/5395.
0.0035489037195460.00.0088.02
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

42-4-0/0/5105.
0.0035411032097910.00.0071.05
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

43-4-0/0/4751.
0.0035483032968640.00.0068.07
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

44-4-0/0/4599.
0.0035495032397810.00.0067.47
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

45-4-0/0/2147.
0.0035492014982300.00.0039.84
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

46-4-0/0/2263.
0.0054585014858450.00.0033.37
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

47-4-0/0/1372.
0.0054584011756170.00.0024.96
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

48-4-0/0/272.
0.0031649002992060.00.005.00
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

49-4-0/0/1048.
0.0031633207746590.00.0018.03
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

50-4-0/0/498.
0.0031647903848200.00.009.54
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

51-4-0

Found on 2022-07-11 05:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31dc02b73cdc02b73cb6e643d7

Apache Status

Apache Server Status for gamingiqmobile.com (via 10.0.1.211)

Server Version: Apache/2.4.48 (Amazon)
Server MPM: prefork
Server Built: Jul  8 2021 16:24:43

Current Time: Monday, 11-Jul-2022 07:30:59 CEST
Restart Time: Wednesday, 22-Jun-2022 00:52:46 CEST
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  19 days 6 hours 38 minutes 12 seconds
Server load: 3.26 2.41 2.16
Total accesses: 27739496 - Total Traffic: 535.8 GB - Total Duration: 14064166751
CPU Usage: u99.65 s251.16 cu1384140 cs186089 - 94.3% CPU load
16.7 requests/sec - 337.3 kB/second - 20.3 kB/request - 507.009 ms/request
5 requests currently being processed, 7 idle workers
W__.WW_.___....W..W_............................................
................................................................
................................................................
........
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-4293920/1/1975257W
0.07009610032040.00.0040063.66
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=20220614222622edfd574dbcd829

1-4221440/185/1872560_
10.06039112146910.02.1937913.96
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /.env HTTP/1.1

2-4222570/187/1910764_
8.61039265666730.01.0938641.59
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /.DS_Store HTTP/1.1

3-4-0/0/1873338.
0.005109156746820.00.0038063.55
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

4-4189920/240/1825599W
12.67108909546490.01.8137205.24
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /r/url?clickid=285_83_182_1tt_625d8dce40f22_27x83x839d7b800

5-4244260/109/1786449W
6.19008708982140.01.2236404.03
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /server-status HTTP/1.1

6-4272040/72/1742407_
4.18068538645030.00.8735232.34
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /.git/config HTTP/1.1

7-4-0/0/1687730.
0.003908240337890.00.0034388.62
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

8-4209520/226/1622359_
13.8303997965615540.02.2433201.25
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=202206122024232872d4e86d6f5d

9-4233330/150/1553074_
7.52047609854450.01.3331644.54
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /telescope/requests HTTP/1.1

10-4250550/89/1452283_
4.4104137209355670.00.8129465.83
10.0.1.42http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=202206140934441834e5eefc5702

11-4-0/0/1287713.
0.005006552548930.00.0025428.59
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

12-4-0/0/1132140.
0.001205901147340.00.0022222.26
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

13-4-0/0/993244.
0.004105295619470.00.0019182.09
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

14-4-0/0/850584.
0.003164605707090.00.0016082.80
10.0.0.76http/1.1secure-landings.api.cloudioo.neGET /info/lps/aHR0cHM6Ly93d3cubG92ZXJsYW5kLm1vYmkvcGVhY2gtdmlkZ

15-4209860/221/730989W
11.29004042435400.03.3813585.24
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=202206141418325b73d9671cf02e

16-4-0/0/655185.
0.003603633936690.00.0012063.11
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

17-4-0/0/545011.
0.004203053151960.00.009874.87
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

18-4165720/298/446677W
18.33102562422670.04.267883.62
10.0.1.42http/1.1landings.api.cloudioo.net:80GET /thankyou-page?origin=and&cfg_sessionid=20220711073022PK697

19-4272860/68/336875_
3.5802601944779390.00.475824.57
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /wallpapercapt-1000tt/index.html?stop_redirect=1 HTTP/1.1

20-4-0/0/257527.
0.0016601504566340.00.004440.60
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

21-4-0/0/201637.
0.0093501171804630.00.003245.36
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

22-4-0/0/164989.
0.009380968691730.00.002764.16
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

23-4-0/0/143601.
0.0069917846852560.00.002448.61
10.0.0.76http/1.1secure-landings.api.cloudioo.neGET /info/lps/aHR0cHM6Ly93d3cucGsta2lkZGllcy5uZXQva2lkMDZkZXMva

24-4-0/0/132078.
0.0010650764980810.00.002254.88
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

25-4-0/0/119994.
0.0011900706375980.00.002057.03
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

26-4-0/0/106021.
0.0013670622725710.00.001754.54
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

27-4-0/0/82866.
0.0011880499924110.00.001366.67
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

28-4-0/0/61927.
0.0016100380493080.00.00998.71
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

29-4-0/0/39178.
0.0016560245034940.00.00618.49
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

30-4-0/0/23777.
0.00316000153944770.00.00371.58
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

31-4-0/0/17071.
0.00546300107935300.00.00250.77
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

32-4-0/0/12189.
0.0054640079752920.00.00190.67
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

33-4-0/0/7843.
0.0054650050122650.00.00121.62
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

34-4-0/0/8590.
0.0054591057579690.00.00138.80
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

35-4-0/0/6521.
0.0054487042016460.00.0099.75
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

36-4-0/0/7446.
0.0054571048523490.00.00116.45
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

37-4-0/0/6879.
0.0054471045122180.00.00110.97
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

38-4-0/0/7239.
0.0054623046683770.00.00123.73
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

39-4-0/0/4827.
0.0054642029512850.00.0073.10
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

40-4-0/0/6619.
0.0054585039943290.00.0094.29
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

41-4-0/0/5209.
0.0054629032728400.00.0070.53
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

42-4-0/0/5967.
0.0054634040170120.00.0096.18
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

43-4-0/0/5361.
0.0054647031622240.00.0076.20
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

44-4-0/0/4538.
0.0054648031026980.00.0069.83
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

45-4-0/0/2598.
0.0054646017296350.00.0036.14
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

46-4-0/0/2157.
0.00206556015599230.00.0028.78
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

47-4-0/0/1257.
0.0020657009650670.00.0021.23
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

48-4-0/0/1242.
0.0029083609325710.00.0022.42
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

49-4-0/0/395.
0.0029091203728130.00.0010.64
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

50-4-0/0/657.
0.0029092506109100.00.0011.16
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

51-4-0/0/506.
0.0029090004190530.00.0012.06
::1http/1.1lws.alb.cloudioo.net:81

Found on 2022-07-11 05:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31e70506d4e70506d404f6573c

Apache Status

Apache Server Status for gamingiqmobile.com (via 10.0.1.206)

Server Version: Apache/2.4.48 (Amazon)
Server MPM: prefork
Server Built: Jul  8 2021 16:24:43

Current Time: Monday, 11-Jul-2022 07:30:59 CEST
Restart Time: Wednesday, 22-Jun-2022 00:53:36 CEST
Parent Server Config. Generation: 5
Parent Server MPM Generation: 4
Server uptime:  19 days 6 hours 37 minutes 23 seconds
Server load: 1.76 2.24 2.18
Total accesses: 27742223 - Total Traffic: 537.2 GB - Total Duration: 14447368127
CPU Usage: u94.03 s254.46 cu1408500 cs190479 - 96% CPU load
16.7 requests/sec - 338.2 kB/second - 20.3 kB/request - 520.772 ms/request
4 requests currently being processed, 9 idle workers
__W._..__W___.W.._W.............................................
................................................................
................................................................
........
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-430310/21/1959727_
1.27059822010580.00.1239722.86
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /.env HTTP/1.1

1-4311330/100/1927968_
5.080349645876650.00.6539220.36
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /downblackca-ca-157/error.html?n1=zr7778c3053de911ec9d9d123

2-4244920/251/1893546W
14.84009434210780.06.2038571.95
10.0.1.42http/1.1dob.api.cloudioo.net:80POST /api-v1/jsonrpc HTTP/1.1

3-4-0/0/1851660.
0.004309234859330.00.0037654.79
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

4-415080/64/1819467_
3.07039114207200.01.8137229.95
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /.git/config HTTP/1.1

5-4-0/0/1772231.
0.004108880838970.00.0036306.11
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

6-4-0/0/1727571.
0.00808665258400.00.0035159.59
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

7-417940/63/1672676_
3.010958373941120.00.4334031.59
10.0.1.42http/1.1landings.api.cloudioo.net:80GET /session-status?cfg_sessionid=20220711073055PK97262cbb58f37

8-418350/54/1613988_
2.720228099269470.00.3133087.85
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /downen/index.html?w_id=14710301658&a_id=599166501048&p=web

9-4251360/249/1540645W
14.65007784876110.04.5831380.37
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /server-status HTTP/1.1

10-418360/59/1442720_
2.500197364347990.00.1829059.50
10.0.1.42http/1.1secure-landings.api.cloudioo.neGET /info/lps/aHR0cHM6Ly9nYW1pbmdpcW1vYmlsZS5jb20vcy8zNTMyMmUzM

11-4299410/146/1281419_
7.26056691364980.03.1525561.85
10.0.0.132http/1.1lws.alb.cloudioo.net:81GET /info.php HTTP/1.1

12-4252380/245/1134390_
15.88036079033070.01.9522766.58
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.expor

13-4-0/0/968104.
0.003905311425590.00.0018641.45
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

14-4253730/236/854717W
13.78004757517270.03.3916299.38
10.0.1.42http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=20220613141007ff696ce4bf6e65

15-4-0/0/744844.
0.003504207384410.00.0013895.82
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

16-4-0/0/659922.
0.004403743198150.00.0012228.15
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

17-418980/54/550638_
2.47033183111200.00.3410070.02
10.0.1.70http/1.1lws.alb.cloudioo.net:81GET /.DS_Store HTTP/1.1

18-4299660/145/449412W
7.25002654474860.00.997995.40
10.0.0.76http/1.1landings.api.cloudioo.net:80POST /check-pin?cfg_sessionid=20220711073049PK40462cbb5897953a 

19-4-0/0/355962.
0.002902115173680.00.006233.97
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

20-4-0/0/260288.
0.004001561045670.00.004431.54
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

21-4-0/0/206362.
0.007064121247677210.00.003422.21
10.0.0.76http/1.1dob.api.cloudioo.net:80POST /nth_iq/notification?trans_id=20220526222555649ed00e116d65

22-4-0/0/173801.
0.0093301040767620.00.002846.34
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

23-4-0/0/151429.
0.008520898382290.00.002527.87
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

24-4-0/0/139017.
0.008590837942070.00.002364.76
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

25-4-0/0/128302.
0.0011290763799640.00.002046.76
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

26-4-0/0/106202.
0.0012520645382420.00.001735.20
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

27-4-0/0/91642.
0.0014750558749060.00.001487.24
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

28-4-0/0/64258.
0.0045130399468200.00.001004.35
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

29-4-0/0/43500.
0.0044900266385980.00.00625.24
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

30-4-0/0/28810.
0.0045230235165320.00.00458.04
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

31-4-0/0/17313.
0.0045220115267780.00.00283.56
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

32-4-0/0/14878.
0.00359680102861950.00.00244.93
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

33-4-0/0/9540.
0.0035828065315600.00.00149.82
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

34-4-0/0/7879.
0.0035974052122150.00.00118.82
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

35-4-0/0/8179.
0.0035972051175460.00.00130.30
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

36-4-0/0/5210.
0.0035960034280980.00.0075.48
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

37-4-0/0/7483.
0.0035978054383890.00.00107.00
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

38-4-0/0/6244.
0.0035908040224770.00.0092.45
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

39-4-0/0/6631.
0.0035980039610610.00.00102.75
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

40-4-0/0/7369.
0.0035816046541290.00.00128.69
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

41-4-0/0/5279.
0.0035947031948990.00.0078.89
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

42-4-0/0/5098.
0.0035977032089880.00.0074.24
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

43-4-0/0/4253.
0.0035988027999860.00.0053.18
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

44-4-0/0/3484.
0.0041566024025390.00.0055.84
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

45-4-0/0/3162.
0.0041689020486530.00.0072.84
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

46-4-0/0/2356.
0.0059080017467620.00.0029.11
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

47-4-0/0/925.
0.005904106286640.00.0027.90
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

48-4-0/0/1199.
0.0020793409268120.00.0020.33
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

49-4-0/0/683.
0.0020783705144520.00.007.64
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

50-4-0/0/182.
0.0032722801634600.00.003.27
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

51-4-0/0/113.
0.0040372001032760.00.002.60
::1http/1.1lws.alb.cloudioo.net:81OPTIONS * HTTP/1.0

52-4

Found on 2022-07-11 05:30

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.105
Domain: rbww.com.hk
Port: 443
URL: https://rbww.com.hk

First seen 2022-06-28 03:46
Last seen 2022-06-28 03:46
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65226c31914a
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[submodule]
	active = .
[remote "origin"]
	url = https://github.com/henry930/redbridge.dazzle.website.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
```
  Found on 2022-06-28 03:46
  
  346 Bytes
Create report

Open service 52.222.214.105:443 · whatarethebest.com

2026-02-06 13:24

HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Fri, 06 Feb 2026 13:24:34 GMT
Content-Type: text/html
Content-Length: 919
Connection: close
X-Cache: Error from cloudfront
Via: 1.1 f3e00d74aa4544d776f78a159416d17a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA56-P3
X-Amz-Cf-Id: uinQxzmDHjEgJbr2yaKXlHWDkY_ajx8BQ098Kkwj48VWUUVGGVcI4g==

Page title: ERROR: The request could not be satisfied

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>ERROR: The request could not be satisfied</TITLE>
</HEAD><BODY>
<H1>403 ERROR</H1>
<H2>The request could not be satisfied.</H2>
<HR noshade size="1px">
Request blocked.
We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner.
<BR clear="all">
If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.
<BR clear="all">
<HR noshade size="1px">
<PRE>
Generated by cloudfront (CloudFront)
Request ID: uinQxzmDHjEgJbr2yaKXlHWDkY_ajx8BQ098Kkwj48VWUUVGGVcI4g==
</PRE>
<ADDRESS>
</ADDRESS>
</BODY></HTML>

Found 2 days ago by HttpPlugin

Host 52.222.214.105

United States

Software information

Git configuration and history exposed

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

Git configuration and history exposed

Git configuration and history exposed

MacOS file listing through .DS_Store file

Git configuration and history exposed

Apache server-status page is publicly available

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

Git configuration and history exposed

Apache server-status page is publicly available

Git configuration and history exposed

whatarethebest.comwww.whatarethebest.com

dev-pl-admin.muthootfincorpone.com

weara.jpwww.weara.jp

pagemadeasy.com*.pagesmadeasy.com*.pagemadeasy.compagesmadeasy.com

candyrushglow.comwww.candyrushglow.com

sushichiyoportland.com*.sushichiyoportland.com

takitacostogo.com*.takitacostogo.com

orientalchefcatogo.com*.orientalchefcatogo.com

kennysrestaurantma.com*.kennysrestaurantma.com

yur8na.com*.yur8na.com

pr-status-removal-fc20.emails.superbud.io

serai.pk*.rockvillehouse.bg*.serai.pk*.serai.com.pkrockvillehouse.bgserai.com.pk

godmaps.tw*.godmaps.tw

leesgardenkitchen.com*.leesgardenkitchen.com

ricegardenaz.com*.ricegardenaz.com

chuanraleigh.com*.chuanraleigh.com

chinarockhilltogo.com*.chinarockhilltogo.com

aqsrchrdr.com*.aqsrchrdr.com

chopinlaan65.nl

leadliftlab.com

notebleu.com*.notebleu.com

portalfuncionario.confianca.com.br

*.d1nir7upt6602c.amplifyapp.comd1nir7upt6602c.amplifyapp.com

www.univa.co.kruniva.co.kr

*.d3814ex0y1xequ.amplifyapp.comd3814ex0y1xequ.amplifyapp.com

luckyspinsaga.com*.luckyspinsaga.com

Domain summary

pagemadeasy.com.pagesmadeasy.com.pagemadeasy.compagesmadeasy.com

serai.pk.rockvillehouse.bg.serai.pk*.serai.com.pkrockvillehouse.bgserai.com.pk